Cisco Cisco Packet Data Gateway (PDG)
SecGW Changes in Release 17
▀ SecGW Enhancements for 17.0
▄ Release Change Reference, StarOS Release 17
462
The following CLI command sequence configures the previously created peer list for use in the WSG service.
configure
context wsg_ctxt_name
wsg-service wsg_service_name
peer-list peer_list_name
exit
Notes:
peer_list_name must have been previously configured via the Context COnfiguration mode crypto peer-list
command.
Use the no peer-list command to remove the peer-list and disable the SecGW as initiator feature.
initiator-mode-duration,responder-mode-duration
When a peer list has been configured in the WSG service, the initiator and responder mode timer intervals each default
to 10 seconds. The SecGW will wait for 10 seconds in the responder mode for a peer session initiation request before
switching to the initiator mode and waiting 10 seconds for a peer response.
to 10 seconds. The SecGW will wait for 10 seconds in the responder mode for a peer session initiation request before
switching to the initiator mode and waiting 10 seconds for a peer response.
You can change the default settings for the initiator and/or responder mode intervals using the following CLI command
sequence.
sequence.
configure
context wsg_ctxt_name
wsg-service wsg_service_name
initiator-mode-duration seconds
responder-mode-duration seconds
exit
Notes:
seconds is an integer from 5 through 250.
Performance Indicator Changes
show wsg-service all
Run this CLI command to display the current crypto peer list configuration.
peer list: peer_list_name
Initiator mode duration: nnn seconds
Responder mode duration: nnn seconds