[Contents] [Prev] [Next] [Index] [Report an Error]

perfect-forward-secrecy

Syntax

perfect-forward-secrecy {
keys (group1 | group2);
}

Hierarchy Level

[edit services ipsec-vpn ipsec policy policy-name]

Release Information

Statement introduced before JUNOS Release 7.4.

Description

Define Perfect Forward Secrecy (PFS). Creates single-use keys. This statement is optional.

Options

keys—Type of Diffie-Hellman prime modulus group that IKE uses when performing the new Diffie-Hellman exchange. The key can be one of the following:

Usage Guidelines

See Configuring Perfect Forward Secrecy.

Required Privilege Level

admin—To view this statement in the configuration.

admin-control—To add this statement to the configuration.

[Contents] [Prev] [Next] [Index] [Report an Error]

Copyright © 2008, Juniper Networks, Inc. All rights reserved. Trademark Notice.