536
Use
undo ike keychain
to delete an IKE keychain.
Syntax
ike keychain
keychain-name
[
vpn-instance
vpn-instance-name
]
undo
ike keychain
keychain-name
[
vpn-instance
vpn-instance-name
]
Default
No IKE keychains exist.
Views
System view
Predefined user roles
network-admin
Parameters
keychain-name
: Specifies an IKE keychain name, a case-insensitive string of 1 to 63 characters.
vpn-instance
vpn-instance-name
: Specifies the MPLS L3VPN instance to which the IKE keychain
belongs. The
vpn-instance-name
argument represents the VPN instance name, a case-sensitive
string of 1 to 31 characters. To create an IKE keychain for the public network, do not specify this
option.
Usage guidelines
To use pre-shared key authentication, you must create and specify an IKE keychain for the IKE
profile.
Examples
# Create the IKE keychain
key1
and enter its view.
<Sysname> system-view
[Sysname] ike keychain key1
[Sysname-ike-keychain-key1]
Related commands
authentication-method
pre-shared-key
ike limit
Use
ike limit
to set the maximum number of half-open or established IKE SAs.
Use
undo ike limit
to restore the default.
Syntax
ike limit
{
max-negotiating-sa
negotiation-limit
|
max-sa sa-limit
}
undo ike limit
{
max-negotiating-sa
|
max-sa
}
Default
There is no limit to the maximum number of half-open or established IKE SAs.
Views
System view
Predefined user roles
network-admin
Summary of Contents for FlexNetwork MSR Series
Page 1005: ...987 ...
