delete ipsec
Deletes the configuration of a specific IPsec tunnel on the Fabric IPsec Gateway Virtual Machine (VM).
Syntax
-
delete ipsec
<1-255> admin-state enable
-
delete ipsec
<1-255> auth-key
-
delete ipsec <1-255> cert-subject
-
delete ipsec
<1-255> egress-shaping-rate
-
delete ipsec <1-255> encryption-key-length
-
delete ipsec <1-255> esp
-
delete ipsec <1-255> fe-tunnel-dest-ip
-
delete ipsec <1-255> fragment-before-encrypt
enable
-
delete ipsec <1-255> ipsec-dest-ip
-
delete ipsec <1-255> mtu
-
delete ipsec <1-255> responder-only
-
delete ipsec <1-255> tunnel-name
Command Parameters
- admin-state enable
-
Disables the IPsec status on the specific IPsec tunnel.
- auth-key
- Deletes the authentication key that you configure on the specific IPsec
tunnel.
- cert-subject
- Removes the certificate subject that you configure on the specific IPsec
tunnel.
- egress-shaping-rate
-
Deletes the egress shaping rate for the IPsec tunnel.
- encryption-key-length
- Resets the encryption key
length for the specific IPsec tunnel to its default value, 128 bit.
- esp
- Removes the ESP cipher suite that you configure on the specific IPsec
tunnel.
- fe-tunnel-dest-ip
- Deletes the destination IP address that you configure on the Fabric Extend
(FE) tunnel.
- fragment-before-encrypt enable
- Disables the fragmentation of
packets before IPsec encryption on the tunnel. By default, fragmentation
before encryption is disabled.
- ipsec-dest-ip
- Deletes the destination IP address that you configure on the IPsec
tunnel.
- mtu
- Resets the Maximum
Transmission Unit (MTU) value for the specific IPsec tunnel to the MTU value
configured globally.
- responder-only
- Deletes the mode that you configure for the IPsec session in FE tunnel.
- tunnel-name
- Deletes the name that you configure for the IPsec tunnel.
Command Mode
Fabric IPsec Gateway Configuration
Usage Guidelines
This command does not apply to all hardware platforms. For more information about
feature support, see VOSS Feature Support Matrix.
You must disable the IPsec administrative state on the tunnel before you can remove
IPsec configuration.