Nortel Networks 620 User Manual
Chapter 4
Configuration via the Command Line Interface
E-DOC-CTC-20051017-0169 v0.1
111
4.3.1 Peer Security Descriptor Parameters
Parameter table
The following table summarizes the parameters comprised in the peer security
descriptor. The table also indicates the keyword used in the CLI for each parameter:
descriptor. The table also indicates the keyword used in the CLI for each parameter:
Example
A Peer Security Descriptor is a text string, comprising the parameters described in
the table above. An example is shown here:
the table above. An example is shown here:
Peer Descriptor name
[name]
This name is used internally to identify the Peer Security Descriptor.
Parameter
Keyword
Description
Cryptographic function
crypto
Cryptographic function used for
encrypting the IKE messages
encrypting the IKE messages
Key length
keylen
Length of the cryptographic key.
Hash function
integrity
Hashing function used for message
authentication
authentication
Diffie-Hellman group
group
Diffie-Hellman group for key exchange
IKE SA lifetime
lifetime_secs
The lifetime of the IKE Security
Association. At expiration of this
period re-keying occurs.
Association. At expiration of this
period re-keying occurs.
3DES
Lifetime 3600s
MODEP1024
Cryptographic function
Diffie-Hellman group
IPsec SA lifetime
MD5
Hash function