Cisco Cisco Packet Data Gateway (PDG) Merkblatt
IKEv2 Security Association Configuration Mode Commands
▀ default
▄ Cisco ASR 5x00 Command Line Interface Reference
6198
default
Sets the default properties for the selected parameter.
Product
ePDG
PDIF
Privilege
Security Administrator, Administrator
Mode
Exec > Global Configuration > Context Configuration > IKEv2 Security Association Configuration
configure > context context_name > ikev2-ikesa transform-set set_name
Entering the above command sequence results in the following prompt:
[context_name]host_name(cfg-ctx-ikev2ikesa-tran-set)#
Syntax
default { encryption | group | hmac | lifetime | prf }
Set the defaults for the following parameters:
encryption
: Default algorithm for the IKEv2 IKE SA is AES-CBC-128.
group
: Default Diffie-Hellman group is Group 2.
hmac
: Default IKEv2 IKE SA hashing algorithm is SHA1-96.
lifetime
: Default lifetime for SAs derived from this transform-set is 86400 seconds.
prf
: Default PRF for the IKEv2 IKE SA is SHA1.
Usage
Configure default parameters for the IKEv2 IKE SA transform-set.
Example
Use the following configuration to set the default encryption algorithm:
default encryption