CONFIG IPSEC PEER UPDATE

Level

vpn,modify

History

Appears in Netasq 9.0.0
auto mode appears in Netasq 9.0.1
ikeversion appears in 2.0.0
peeridentifier appears in 3.0.0
reauth appears in 3.5.0
inactivity appears in 3.8.0
ikedscp appears in 3.10.0
useclone appears in 4.2.0
force appears in 4.2.0
sharedsa removed in 4.2.0
backupmode removed in 4.2.0
backuppeer removed in 4.2.0
checkmode removed in 4.2.0
dpd_delay removed in 4.2.0
dpd_retry removed in 4.2.0
dpd_maxfail removed in 4.2.0
xauth method removed in 4.2.1
mobike appears in 4.3.0
unique appears in 4.5.0
eap_gtc method appears in 4.8.0
pki_eap_gtc method appears in 4.8.0
groups appears in 4.8.0
UDPEncapPreferred appears in 4.8.0
ocsp appears in 4.8.0
ppk_secret appears in 4.8.0
ppk_id appears in 4.8.0
ppk_required appears in 4.8.0

Description

Update a peer

Usage

name=<peername> [method=<psk|pki|xauth_pki|eap_gtc|pki_eap_gtc>] [mode=<main|aggressive>] [dst=<host|any>] [src=<host|any>] [responderonly=<0|1>] [natt=<none|auto|force>] [dpd_mode=<passive|low|high>] [ike_frag=<0|1>] [identifier=<asn1dn|user_fqdn|fqdn|ip>] [peeridentifier=<asn1dn|user_fqdn|fqdn|ip>] [peercert=<certname>] [cert=<certname>] [sendcert=<0|1>] [sendcr=<0|1>] [psk=<key>] [conf=<phase1profile>] [comment=<str>] [global=<0|1>] [ikeversion=<1|2>] [reauth=<0|1>] [inactivity=<num>] [ikedscp=(""|<0-63>)] [useclone=<0|1>] [force=<0|1>] [mobike=<0|1>] [unique=<keep|replace|no|never] [groups=<group1[,group2[...]]>] [UDPEncapPreferred=<on|off>] [ocsp=<both|reply|request|never>] [ppk_secret=<key>] [ppk_id=<str>] [ppk_required=<0|1>]

Example

CONFIG IPSEC PEER UPDATE name=mypeer natt=force