Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
ON THIS PAGE
 

ike (Access Profile)

Syntax

Hierarchy Level

Description

Configure an IKE access profile.

The remaining statements are explained below.

Note:

This statement is not supported on MX Series routers.

Options

allowed-proxy-pair

Specify the network address of the local and remote peer associated with an IKE access profile.

  • Values:

    • local local-proxy-address—Network address of the local peer. Default: 0.0.0.0

    • remote remote-proxy-address—Network address of the remote peer. Default: 0.0.0.0
ike-policy policy-name

Specify the IKE policy used to authenticate dynamic peers during IKE negotiation.

  • Values:

    • policy-name—The name of an IKE policy configured at the [edit services ipsec-vpn ike policy policy-name] hierarchy level. The IKE policy defines either the local digital certificate or the pre-shared key used for IKE authentication with dynamic peers.

initiate-dead-peer-detection

Detect inactive peers on dynamic IPsec tunnels.
pre-shared-key (ascii-text character-string | hexadecimal hexadecimal-digits);

Configure the key used to authenticate a dynamic peer during IKE phase 1 negotiation. Specify the key in either ASCII or hexadecimal format.

  • Values:

    • ascii-text character-string—Authentication key in ASCII format.

    • hexadecimal hexadecimal-digits—Authentication key in hexadecimal format.
reverse-route

Configure a reverse route for dynamic endpoint IPsec tunnels.

  • Values: preference metric-value

The remaining statements are explained separately. Search for a statement in CLI Explorer or click a linked statement in the Syntax section for details.

Required Privilege Level

admin—To view this statement in the configuration.

admin-control—To add this statement to the configuration.

Release Information

Statement introduced in Junos OS Release 7.4.

ike-policy statement introduced in Junos OS Release 8.2.

Related Documentation