CONFIG IPSEC PEER UPDATE

Level

vpn,modify

History

Appears in Netasq 9.0.0
auto mode appears in Netasq 9.0.1
ikeversion appears in 2.0.0
peeridentifier appears in 3.0.0
reauth appears in 3.5.0
inactivity appears in 3.8.0
ikedscp appears in 3.10.0
useclone appears in 4.2.0
force appears in 4.2.0
sharedsa removed in 4.2.0
backupmode removed in 4.2.0
backuppeer removed in 4.2.0
checkmode removed in 4.2.0
dpd_delay removed in 4.2.0
dpd_retry removed in 4.2.0
dpd_maxfail removed in 4.2.0
xauth method removed in 4.2.1
mobike appears in 4.3.0
unique appears in 4.5.0
UDPEncapPreferred appears in 4.7.2

Description

Update a peer

Usage

name=<peername> [method=<psk|pki|xauth_pki>] [mode=<main|aggressive>] [dst=<host|any>] [src=<host|any>] [responderonly=<0|1>] [natt=<none|auto|force>] [dpd_mode=<passive|low|high>] [ike_frag=<0|1>] [identifier=<asn1dn|user_fqdn|fqdn|ip>] [peeridentifier=<asn1dn|user_fqdn|fqdn|ip>] [peercert=<certname>] [cert=<certname>] [sendcert=<0|1>] [sendcr=<0|1>] [psk=<key>] [conf=<phase1profile>] [comment=<str>] [global=<0|1>] [ikeversion=<1|2>] [reauth=<0|1>] [inactivity=<num>] [ikedscp=(""|<0-63>)] [useclone=<0|1>] [force=<0|1>] [mobike=<0|1>] [unique=<keep|replace|no|never] [UDPEncapPreferred=<on|off>]

Example

CONFIG IPSEC PEER UPDATE name=mypeer natt=force