Motorola Netopia 3397GP User Manual

Administrator’s Handbook

190

set security ipsec tunnels name "123" IKE-mode invalid-spi-recovery
{ off | on }

Enables the Gateway to re-establish the tunnel if either the Motorola Netopia® Gateway or the peer
gateway is rebooted.

set security ipsec tunnels name "123" xauth enable {off | on }

Enables or disables Xauth extensions to IPsec, when

IKE-mode neg-method is set to aggressive.

Default is

off.

set security ipsec tunnels name "123" xauth username

username

Sets the Xauth username, if Xauth is enabled.

set security ipsec tunnels name "123" xauth password

password

Sets the Xauth password, if Xauth is enabled.

set security ipsec tunnels name "123" nat-enable { on | off }

Enables or disables NAT on the specified IPsec tunnel. The default is

off.

set security ipsec tunnels name "123" nat-pat-address

ip-address

Specifies the NAT por t address translation IP address for the specified IPsec tunnel.

set security ipsec tunnels name "123" local-id-type
{ IP-address | Subnet | Hostname | ASCII }

Specifies the NAT local ID type for the specified IPsec tunnel, when Aggressive Mode is set.

set security ipsec tunnels name "123" local-id

id_value

Specifies the NAT local ID value as specified in the

local-id-type for the specified IPsec tunnel, when

Aggressive Mode is set.

☛

Note: If subnet is selected, the following two values are used instead:

set security ipsec tunnels name "123" local-id-addr

ip-address

set security ipsec tunnels name "123" local-id-mask

ip-mask

set security ipsec tunnels name "123" remote-id-type
{ IP-address | Subnet | Hostname | ASCII }

Specifies the NAT remote ID type for the specified IPsec tunnel, when Aggressive Mode is set.