Navigation
Related Documentation
- Junos OS Feature Support Reference for SRX Series and J Series Devices
[edit security ipsec] Hierarchy Level
security {ipsec { policy policy-name { description description; perfect-forward-secrecy keys (group1 | group14 | group2 | group5); proposal-set (basic | compatible | standard); proposals [proposal-name];}proposal proposal-name {authentication-algorithm (hmac-md5-96 | hmac-sha-256-128 | hmac-sha1-96); description description; encryption-algorithm (3des-cbc | aes-128-cbc | aes-192-cbc | aes-256-cbc | des-cbc);lifetime-kilobytes kilobytes; lifetime-seconds seconds;protocol (ah | esp);} traceoptions { flag flag;} vpn vpn-name { bind-interface interface-name; df-bit (clear | copy | set); establish-tunnels (immediately | on-traffic); ike { gateway gateway-name; idle-time seconds; install-interval seconds; ipsec-policy ipsec-policy-name; no-anti-replay; proxy-identity { local ip-prefix; remote ip-prefix; service (any | service-name); }} manual { authentication { algorithm (hmac-md5-96 | hmac-sha-256-128 | hmac-sha1-96); key (ascii-text key | hexadecimal key);} encryption { algorithm (3des-cbc | aes-128-cbc | aes-192-cbc | aes-256-cbc | des-cbc); key (ascii-text key | hexadecimal key); } external-interface external-interface-name; gateway ip-address; protocol (ah | esp); spi spi-value; } vpn-monitor { destination-ip ip-address; optimized; source-interface interface-name; }} vpn-monitor-options { interval seconds; threshold number; }}}
Related Documentation
- Junos OS Feature Support Reference for SRX Series and J Series Devices
Published: 2013-07-31
Related Documentation
- Junos OS Feature Support Reference for SRX Series and J Series Devices
