crypto-map-ipsec-isakmp-instance
Applies a transform set (encryption and hash algorithms) to site-to-site VPN tunnel or remote VPN client. This command allows you to provide customized data protection for each crypto map can be customized with its own data protection and peer authentication schemes.
transform-set <TRANSFORM-SET-TAG> {<TRANSFORM-SET-TAG>}
transform-set <TRANSFORM-SET-TAG> {<TRANSFORM-SET-TAG>}
transform-set <TRANSFORM-SET-TAG> <TRANSFORM-SET-TAG> | Applies a
transform set. The transform set should be existing and configured.
|
Site-to-site VPN tunnel: rfs4000-229D58(config-device-00-23-68-22-9D-58-cryptomap-test#1)#transform-set AutoVPN rfs4000-229D58(config-device-00-23-68-22-9D-58-cryptomap-test#1)#show context crypto map test 1 ipsec-isakmp security-association level perhost peer 1 ikev2 ikev2Peer1 local-endpoint-ip 192.168.13.10 pfs 5 security-association lifetime kilobytes 250000 security-association inactivity-timeout 200 transform-set AutoVPN ip nat crypto rfs4000-229D58(config-device-00-23-68-22-9D-58-cryptomap-test#1)# Remote VPN client: rfs4000-229D58(config-device-00-23-68-22-9D-58-cryptomap-test#2)#transform-set RemoteVPN rfs4000-229D58(config-device-00-23-68-22-9D-58-cryptomap-test#2)#show context crypto map test 2 ipsec-isakmp dynamic peer 1 ikev1 RemoteIKEv1Peer1 local-endpoint-ip 157.235.204.62 pfs 14 security-association lifetime seconds 10000 transform-set RemoteVPN remote-type none rfs4000-229D58(config-device-00-23-68-22-9D-58-cryptomap-test#2)#