Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

Navigation
Guide That Contains This Content
[+] Expand All
[-] Collapse All
     

    Related Documentation

     

    ipsec key manual pre-share

    Syntax

    [ no ] ipsec key manual pre-share { ipAddress | ip address ipAddress | identity fqdn | local-ip-address localIpAddress [ remote-ip-address remoteIpAddress ] }

    Release Information

    Command introduced before JunosE Release 7.1.0.
    local-ip-address and remote-ip-address keywords added in JunosE Release 7.3.0.
    localIpAddress and remoteIpAddress variables added in JunosE Release 7.3.0.

    Description

    Specifies a preshared key for a remote peer, indexed by remote IP or remote identity. It can also specify a preshared key which is indexed by the local ip / remote IP pair for use in specific pairings or in group preshared keys (remote is wildcard 0.0.0.0).

    Manually configured keys are used during the tunnel establishment phase when the ISAKMP/IKE policy specifies preshared key authentication.

    You can identify the remote peer by either IP address or fully qualified domain name (FQDN). The no version deletes a preshared key.

    Note: You must enter this command in the virtual router context where the IP address or FQDN of the peer is defined.

    Options

    • ipAddress—Address of the peer for which the key can be used
    • fqdn—Fully qualified domain name of the peer for which the key can be used; a maximum of 80 characters
    • localIpAddress—Address of the local peer for which the key can be used
    • remoteIpAddress—Address of the remote peer for which the key can be used

    Mode

    Global Configuration

     

    Related Documentation

     

    Published: 2014-08-14