Navigation
Table of Contents
Guide That Contains This Content
[+] Expand All
[-] Collapse All
Related Documentation
- Junos OS Feature Support Reference for SRX Series and J Series Devices
[edit security ipsec] Hierarchy Level
security {ipsec { policy policy-name { description description; perfect-forward-secrecy
keys (group1 | group14 | group2 | group5); proposal-set
(basic | compatible | standard); proposals [proposal-name];}proposal proposal-name {authentication-algorithm (hmac-md5-96 | hmac-sha-256-128
| hmac-sha1-96); description description; encryption-algorithm (3des-cbc
| aes-128-cbc | aes-192-cbc | aes-256-cbc | des-cbc);lifetime-kilobytes kilobytes; lifetime-seconds seconds;protocol (ah | esp);} traceoptions
{ flag flag;} vpn vpn-name { bind-interface interface-name; df-bit (clear
| copy | set); establish-tunnels
(immediately | on-traffic); ike {
gateway gateway-name; idle-time seconds; install-interval seconds; ipsec-policy ipsec-policy-name; no-anti-replay;
proxy-identity
{ local ip-prefix; remote ip-prefix; service
(any | service-name); }} manual
{ authentication
{ algorithm
(hmac-md5-96 | hmac-sha-256-128 | hmac-sha1-96); key (ascii-text key | hexadecimal key);} encryption
{ algorithm
(3des-cbc | aes-128-cbc | aes-192-cbc | aes-256-cbc | des-cbc); key (ascii-text key | hexadecimal key);
} external-interface external-interface-name; gateway ip-address; protocol
(ah | esp); spi spi-value; } vpn-monitor
{ destination-ip ip-address; optimized;
source-interface interface-name; }} vpn-monitor-options
{ interval seconds; threshold number; }}}
Related Documentation
- Junos OS Feature Support Reference for SRX Series and J Series Devices
