Technical Documentation

security-association (JUNOS Software)

Syntax

security-association sa-name {dynamic {ipsec-policy policy-name;replay-window-size (32 | 64); }manual {direction (inbound | outbound | bi-directional) {authentication {algorithm (hmac-md5-96 | hmac-sha1-96); key (ascii-text key | hexadecimal key); }auxiliary-spi auxiliary-spi-value;encryption {algorithm (des-cbc | 3des-cbc); key (ascii-text key | hexadecimal key); }protocol ( ah | esp | bundle);spi spi-value; }mode (tunnel | transport);}}

Hierarchy Level

[edit security ipsec]

Release Information

Statement introduced before JUNOS Release 7.4.

Description

Configure an IPsec security association.

Options

sa-name—Name of the security association.

The remaining statements are explained separately.

Required Privilege Level

system—To view this statement in the configuration.

system-control—To add this statement to the configuration.


Published: 2010-04-26