ADC CLI Commands

ipsecalg-profile

The following operations can be performed on “ipsecalg-profile”:

rm unset set add show

rm ipsecalg profile

Remove an ipsec alg profile

Synopsis

rm ipsecalg profile

Arguments

name The name of the ipsec alg profile.

Example

rm ipsecalg profile

unset ipsecalg profile

Use this command to remove ipsecalg profile settings.Refer to the set ipsecalg profile command for meanings of the arguments.

Synopsis

unset ipsecalg profile [-ikeSessionTimeout] [-espSessionTimeout] [-espGateTimeout] [-connfailover]

set ipsecalg profile

Set an ipsec alg profile parameter.

Synopsis

set ipsecalg profile \[-ikeSessionTimeout <positive\_integer>] \[-espSessionTimeout <positive\_integer>] \[-espGateTimeout <positive\_integer>] \[-connfailover \( ENABLED | DISABLED )]

Arguments

name The name of the ipsec alg profile

ikeSessionTimeout IKE session timeout in minutes Default value: 60 Minimum value: 1 Maximum value: 1440

espSessionTimeout ESP session timeout in minutes. Default value: 60 Minimum value: 1 Maximum value: 1440

espGateTimeout Timeout ESP in seconds as no ESP packets are seen after IKE negotiation Default value: 30 Minimum value: 3 Maximum value: 1200

connfailover Mode in which the connection failover feature must operate for the IPSec Alg. After a failover, established UDP connections and ESP packet flows are kept active and resumed on the secondary appliance. Recomended setting is ENABLED.

Possible values: ENABLED, DISABLED Default value: ENABLED

add ipsecalg profile

Add an ipsec alg profile.

Synopsis

add ipsecalg profile \[-ikeSessionTimeout <positive\_integer>] \[-espSessionTimeout <positive\_integer>] \[-espGateTimeout <positive\_integer>] \[-connfailover \( ENABLED | DISABLED )]

Arguments

name The name of the ipsec alg profile

ikeSessionTimeout IKE session timeout in minutes Default value: 60 Minimum value: 1 Maximum value: 1440

espSessionTimeout ESP session timeout in minutes. Default value: 60 Minimum value: 1 Maximum value: 1440

espGateTimeout Timeout ESP in seconds as no ESP packets are seen after IKE negotiation Default value: 30 Minimum value: 3 Maximum value: 1200

connfailover Mode in which the connection failover feature must operate for the IPSec Alg. After a failover, established UDP connections and ESP packet flows are kept active and resumed on the secondary appliance. Recomended setting is ENABLED.

Possible values: ENABLED, DISABLED Default value: ENABLED

show ipsecalg profile

Display all of the configured ipsec alg profiles

Synopsis

show ipsecalg profile []

Arguments

name The name of the ipsec alg profile

Output

ikeSessionTimeout IKE session timeout in minutes

espSessionTimeout ESP session timeout in minutes.

espGateTimeout Timeout ESP in seconds as no ESP packets are seen after IKE negotiation

connfailover Mode in which the connection failover feature must operate for the IPSec Alg. After a failover, established UDP connections and ESP packet flows are kept active and resumed on the secondary appliance. Recomended setting is ENABLED.

devno count stateflag

Example

show ipsecalg profile

ipsecalg-profile