Motorola WS-2000-SME-WW CLI Guide - Page 188
Esp-auth, Aes128, Aes192, Aes256
View all Motorola WS-2000-SME-WW manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 188 highlights
3-152 WS2000 Wireless Switch System Reference Guide authkey Sets the AH authentication key (if SPD type is Manual) for tunnel (1 to 13 characters) with the direction set to IN or OUT, and the manual authentication key set to . (The key size is 32 hex characters for MD5, and 40 hex characters for SHA1). enctype Sets the Encryption type for SPD (1 to 13 characters) to (one of None, ESP, or ESP-AUTH). encalgo Sets the Encryption Algorithm for SPD (1 to 13 characters) to (one of DES, 3DES, AES128, AES192, or AES256). espauthalgo Sets ESP Authentication Algorithm for SPD to (one of MD5 or SHA1). enckey Sets the Manual Encryption Key in ASCII for SPD and direction (IN or OUT) to the key . The size of the key depends on the encryption algorithm. - 16 hex chars for DES - 48 hex chars for 3DES - 32 hex chars for AES128 - 48 hex chars for AES192 - 64 hex chars for AES256 espauthkey Sets Manual ESP Authentication Key for SPD (1 to 13 characters) either for direction (IN or OUT) to , an ASCII string of hex characters. If authalgo is set to MD5, the provide 32 hex characters. If authalgo is set to SHA1, provide 40 hex characters. spi Sets the direction (IN(bound) or OUT(bound)) SPI for (AUTH (Manual Authentication) or ESP) for SPD (1 to 13 characters) to (a hex value more than 0xFF). localgw Sets the Local WAN IP to (a.b.c.d) for a SPI (1 to 13 characters). The local WAN IP (local gateway) can be set to 0.0.0.0 for a DHCP client. Any IP address obtained from the DHCP server is then used to initiate the VPN tunnel. The VPN peer must set it's Remote Gateway address to 0.0.0.0 to indicate an IP value of ANY and shall operate as a responder only. usepfs Enables or disables Perfect Forward Secrecy for SPD (1 to 13 characters). salife ipsecdel Enables the deletion of IPSEC SA when IKE SA is deleted for the tunnel named (1 to 13 characters). auto-initiation Enables / disables auto-initiation by WS2000 for the tunnel named (1 to 13 characters). auto-initiate-interval Sets the time duration between two consecutive auto-initiation attempts. This time duration is in seconds. Example admin(network.wan.vpn)>list Bob Detail listing of VPN entry: Name : Bob Local Subnet : 1