Cisco Cisco Packet Data Gateway (PDG)
allow-custom-fqdn-idr
Allows non-standard FQDN (Fully Qualified Domain Name) strings in the IDr (Identification - Responder)
payload of IKE_AUTH messages received from the UE with the payload type as FQDN.
payload of IKE_AUTH messages received from the UE with the payload type as FQDN.
Product
All services using IKEv2 IPSec
Privilege
Security Administrator
Syntax Description
[ default | no ] allow-custom-fqdn-idr
no
Does not allow non-standard FQDN strings in the IDr payload of IKE_AUTH messages received from the
UE with the payload type as FQDN.
UE with the payload type as FQDN.
default
Restores the default setting, which does not allow non-standard FQDN strings in the IDr payload of IKE_AUTH
messages received from the UE with the payload type as FQDN.
messages received from the UE with the payload type as FQDN.
You can chain multiple CA-CRLs in a single command instance.
Usage Guidelines
Use this command to configure the system to skip the syntax check for the IDr payload in IKE_AUTH messages
received from the UE with the payload type as FQDN. This allows non-standard FQDN strings such as APN
names in the IDr payload.
received from the UE with the payload type as FQDN. This allows non-standard FQDN strings such as APN
names in the IDr payload.
Examples
The following command configures the system to allow non-standard FQDN strings in the IDr payload of
IKE_AUTH messages received from the UE with the payload type as FQDN:
allow-custom-fqdn-idr
IKE_AUTH messages received from the UE with the payload type as FQDN:
allow-custom-fqdn-idr
Command Line Interface Reference, Modes C - D, StarOS Release 19
1232
Crypto Template Configuration Mode Commands
allow-custom-fqdn-idr