policy (IKE)

Syntax

policy policy-name {certificate {local-certificate certificate-id ;peer-certificate-type (pkcs7 | x509-signature);trusted-ca ( ca-index | use-all);}description description ;mode (aggressive | main);pre-shared-key (ascii-text | hexadecimal);proposal-set <basic | compatible | standard>;proposals [proposal-names];}

Hierarchy Level

[edit security group-vpn member ike][edit security group-vpn server ike][edit security ike]

Release Information

Statement modified in Release 8.5 of Junos OS. Support for group-vpn hierarchies added in Junos OS Release 10.2.

Description

Configure an IKE policy.

Options

policy-name —Name of the IKE policy. The policy name can be up to 32alphanumeric characters long.

The remaining statements are explained separately.

Usage Guidelines

For configuration instructions and examples, see the Junos OS Security Configuration Guide.

Required Privilege Level

security—To view this statement in the configuration.

security-control—To add this statement to the configuration.