crypto-ikev1/ikev2-peer commands

Associates IKEv1/IKEv2 policy with the IKEv1/IKEv2 peer respectively

Supported in the following platforms:

  • Access Points — AP505i, AP510i/e, AP560i/h
  • Service Platforms — NX5500, NX7500, NX9500, NX9600, VX9000


use ikev1-policy <IKEV1-POLICY-NAME>
use ikev2-policy <IKEV2-POLICY-NAME>


use ikev1-policy <IKEV1-POLICY-NAME>
use ikev1-policy <IKEV1-POLICY-NAME> Specify the IKEv1 policy name.

The local IKEv1 policy and the peer IKEv1 policy must have matching group settings for successful negotiations.

use ikev2-policy <IKEV2-POLICY-NAME>
use ikev2-policy <IKEV2-POLICY-NAME> Specify the IKEv2 policy name.

The local IKEv2 policy and the peer IKEv2 policy must have matching group settings for successful negotiations.


nx9500-6C8809(config-profile-default-rfs4000-ikev1-peer-peer1)#use ikev1-policy test-ikev1policy

nx9500-6C8809(config-profile-default-rfs4000-ikev1-peer-peer1)#show context
 crypto ikev1 peer peer1
  ip address
  remoteid dn SanJose
  localid email
  use ikev1-policy test-ikev1policy

nx9500-6C8809(config-profile-default-rfs4000-ikev2-peer-peer1)#use ikev2-policy test-ikev2policy

nx9500-6C8809(config-profile-default-rfs4000-ikev2-peer-peer1)#show context
 crypto ikev2 peer peer1
  remoteid address
  use ikev2-policy test-ikev2policy