Important: Because manual crypto map configurations require the use of static security keys (associations), they are not as secure as crypto maps that rely on dynamically configured keys. Therefore, it is recommended that they only be used for testing purposes.
Important: The commands or keywords/variables that are available are dependent on platform type, product version, and installed license(s).
acl_name can be from 1 to 47 alpha and/or numeric characters and is case sensitive.
The following command sets the crypto map ACL to the ACL named ACLlist1 and sets the crypto maps priority to the highest level.
ah_spi : The security parameter index (SPI) used to identify the AH security association (SA) between the system and the security gateway.
The encrypted keyword is intended only for use by the system while saving configuration scripts. The system displays the
encrypted keyword in the configuration file as a flag that the variable following the
key,
cipher, and/or
authenticator keyword is the encrypted version of the plain text key. Only the encrypted key is saved as part of the configuration file.
ah_key : The key used by the system to de/encapsulate IP packets using the AH protocol.
esp_spi : The SPI value. It can be configured to any integer value from 256 to 4294967295.
encryption_key must be entered as either a string or a hexadecimal number beginning with “0x”.
auth_key must be entered as either a string or a hexadecimal number beginning with “0x”.