crypto-ikev1/ikev2-peer commands

crypto

Use the (config) instance to configure IKEv1/IKEv2 peer configuration commands. To navigate to the IKEv1/IKEv2 peer config instance, use the following commands:

<DEVICE>(config)#profile <DEVICE-TYPE> <PROFILE-NAME>
<DEVICE>(config-profile-<PROFILE-NAME>)#crypto ikev1/ikev2 peer <IKEV1/IKEV2-PEER-NAME>

nx9500-6C8809(config-profile-default-nx5500)#crypto ikev1 peer peer1
nx9500-6C8809(config-profile-default-nx5500-ikev1-peer-peer1)#?
Crypto IKEV1 Peer Configuration commands:
  authentication  Configure Authentication credentials
  ip              Configure peer address/fqdn
  localid         Set local identity
  no              Negate a command or set its defaults
  remoteid        Configure remote peer identity
  use             Set setting to use

  clrscr          Clears the display screen
  commit          Commit all changes made in this session
  end             End current mode and change to EXEC mode
  exit            End current mode and down to previous mode
  help            Description of the interactive help system
  revert          Revert changes
  service         Service Commands
  show            Show running system information
  write           Write running configuration to memory or terminal

nx9500-6C8809(config-profile-default-nx5500-ikev1-peer-peer1)#

nx9500-6C8809(config-profile-default-nx5500)#crypto ikev2 peer peer1
nx9500-6C8809(config-profile-default-nx5500-ikev2-peer-peer1)#?
Crypto IKEV2 Peer Configuration commands:
  authentication  Configure Authentication credentials
  ip              Configure peer address/fqdn
  localid         Set local identity
  no              Negate a command or set its defaults
  remoteid        Configure remote peer identity
  use             Set setting to use

  clrscr          Clears the display screen
  commit          Commit all changes made in this session
  do              Run commands from Exec mode
  end             End current mode and change to EXEC mode
  exit            End current mode and down to previous mode
  help            Description of the interactive help system
  revert          Revert changes
  service         Service Commands
  show            Show running system information
  write           Write running configuration to memory or terminal

nx9500-6C8809(config-profile-default-nx5500-ikev2-peer-peer1)#

The following table summarizes crypto IPSec IKEv1/IKEv2 peer configuration mode commands:

Command Description
authentication Configures a peer‘s authentication mode and the pre-shared key
ip Configures the peer‘s IP address
localid Configures a peer‘s local identity details
remoteid Configures a remote peer‘s identity details
use Associates an IKEv1 policy and IKEv2 policy with the IKEv1 and IKEv2 peer respectively
no Negates a command or reverts settings to their default. The no command, when used in the ISAKMP policy mode, defaults the ISAKMP protection suite settings.