Motorola Netopia® Router Connection Profile Commands 3-27
This command sets or modifies all the per tinent IP values for the IPSec tunnel:
■
remote IPv4-addr1
– lowest IPv4 address in the remote network
■
remote IPv4-addr2
– highest IPv4 address in the remote ranged network
■
local IPv4-addr1
– lowest IPv4 address in the local network
■
local IPv4-addr2
– highest IPv4 address in the local ranged network
■
nn
– number of bits in the subnet mask (
nn
= 0...31). Current network is defined as a subnet.
■
net-index
– a configured network’s internal ordinal index, which is known by per forming the
show
command, shown below.
If a
remote members
or
local members
option (
[
foo
]
) is not present, the network is defined as a host net
(single address).
The
tep
clause sets the remote tunnel endpoint IP. In order for the profile to function properly, it must be
specified once. It becomes an optional clause thereafter.
If the
modify
option is absent, it means a
new
network configuration is added to the config area. Its presence
indicates a
change
to an existing network.
Examples:
Change a tunnel’s remote tunnel endpoint:
cp {
name
|
index
} ipsec ip remote members
x.x.x.x
Change a tunnel’s local tunnel endpoint:
cp {
name
|
index
} ipsec ip local members
x.x.x.x
Change a tunnel’s via gateway:
cp {
name
|
index
} ipsec ip via
x.x.x.x
Display a Connection Profile’s List of Network Configurations:
show config cp {
name
|
index
}
Delete a Network within a Connection Profile, or All Networks:
no cp {
name
|
index
} ipsec ip network {
net-index
| all }
cp
{
name | index
}
ipsec
spi
rx
-
esp
-
spi
[
tx
-
esp
-
spi
[
rx
-
ah
-
spi
[
tx
-
ah
-
spi
]]]
This command allows you to specify the security parameters indexes for an IPsec tunnel.
cp
{
name | index
}
ipsec
authentication
key
string
This command allows you to specify the authentication secret for an IPsec tunnel. You must specify an
authentication secret if the authentication type is anything other than None.
