Cisco Cisco Packet Data Interworking Function (PDIF)
ISAKMP Configuration Mode Commands
group ▀
Command Line Interface Reference, StarOS Release 17 ▄
6737
group
Configures the Oakely group (also known as the Diffie-Hellman [D-H] group) in which the D-H exchange occurs.
Product
PDSN
HA
GGSN
Privilege
Security Administrator, Administrator
Mode
Exec > Global Configuration > Context Configuration > ISAKMP Configuration
configure > context context_name > isakmp policy policy_number
Syntax
group { 1 | 2 | 5 }
[ default | no ] group
default group
Restores the default setting of this parameter.
no group
Removes a previously configured group.
{ 1 | 2 | 5 }
Default:
1
Specifies the number of the Oakley group. The following groups are allowed:
1
: Enables Oakley Group 1 using a 768-bit modp as defined in RFC 2409.
2
: Enables Oakley Group 2, using a 1024-bit modp as defined in RFC 2409.
5
: Enables Oakley Group 5, using a 1536-bit modp as defined in RFC 3526.
Usage
Specifies the Oakley group that determine the length of the base prime numbers that are used during the key
exchange process.
exchange process.
Example
The following command sets the group to
5
which specifies 1536-bit base prime numbers:
group 5