Cisco Cisco Packet Data Gateway (PDG) Wartungshandbuch

Generally Available 06-30-2010

Modified Configuration Commands

3-131

Web Element Manager Path

This functionality is not supported at this time on the Web Element Manager.

group

PDIF now supports encryption at Diffie-Hellman Group level 14. Selecting any group
automatically enables Perfect Forward Secrecy. Selecting the new keyword

none

disables

PFS.

none

is the default setting.

CLI (IPsec Transform-set Config Mode)

group 14

Web Element Manager Path

This functionality is not supported at this time on the Web Element Manager.

hmac

The

NULL

encryption algorithm represents the optional use of applying encryption within

ESP. ESP can then be used to provide authentication and integrity without confidentiality.

CLI (IPsec Transform-Set Config Mode)

hmac null

Web Element Manager Path

This functionality is not supported at this time on the Web Element Manager.

IKEv2-IKESA policy error notification

This modified command in the Crypto-Template config mode generates errors for packets
with invalid syntax or invalid message ids.

CLI (Crypto Template Configuration Mode

kev2-ikesa { keepalive-user-activity | max-retransmissions

number

retransmission-timeout msec

policy error-notification [ invalid-message-id | invalid-syntax ] |

setup-timer

sec

transform-set list

name

}

Web Element Manager Path

This functionality is not supported at this time on the Web Element Manager.

peer

The peer command has been amended so the user can administratively enable and disable a
Diameter peer. If the peer is disabled, it still retains its configuration. The default option is
to Enable.

CLI (Diameter Endpoint Config Mode)

peer peer_name admin-status { enable | disable }

default peer peer_name admin-status

Web Element Manager Path

This functionality is not supported at this time on the Web Element Manager.