IPSEC CryptoMap Set Entry

Field

Description

IpFilter

Specifies an IP protocol filter to be secured using this cryptomap entry. When it has a value of zero-length string, it is not valid/applicable.

TransformSetIdList

The list of cipsXformSetId that are members of this CipsStaticCryptomapEntry. The value of this object is a concatenation of zero ormore 4-octet strings, where each 4-octet string contains a 32-bit cipsXformSetId value in network byte order. A zero length string value means this list has no members.

AutoPeer

If true the destination address is taken as the peer address, while creating the tunnel.

Peer Address

The IP address of the peer to which this cryptomap entry is currently connected.

PFS

Identifies whether the tunnels instantiated due to this policy item should use Perfect Forward Secrecy (PFS) and if so, what group of Oakley they should use.

LifeTime

Specifies the lifetime of the IPsec Security Associations (SA) created using this IPsec policy entry.

Lifesize Value

Identifies the life size (maximum traffic in bytes that may be carried) of the IPSec SAs created using this IPSec policy entry. When a Security Association (SA) is created using this IPsec policy entry, its life size takes the value of this object.



Copyright © 2002-2007, Cisco Systems, Inc. All rights reserved.