| A IKE HOST: | Add host connection (Administrator) |
| A IKE HOST:xx [par:val] |
It adds a new entry to the host connections table in the "ID:xx" position. The command can also set eventually indicated parameters to the specified values.
The host connections table can store up to 32 entries, therefore the host connection identifier value must be in the interval [0 - 31].
IKE host connection configurations don't require consecutive indexes. A new definition can be added in any position of the table that is currently free. If the specified index corresponds to a IKE host connection already present in the table the message "IKE HOST CONNECTION ALREADY EXISTS" will be shown
If the host connections table is full and a new host connection is asked to be added, an error message is generated: "IKE HOST CONNECTIONS TABLE IS FULL, COMMAND NOT EXECUTED".
Changes made on the host connections table are not immediately active. They can be activated by executing the initialization command INIT PO:xxx, where "xxx" is the IKE port number.
The "Not Refreshed (INIT)" message is displayed every time the table is modified while the Abilis CPX is working.
The "Not Saved (SAVE CONF)" message is displayed every time the table is modified but not saved with the SAVE CONF command.
If the Abilis CPX version, currently in use, does not support IKE service, the following message will be shown "IKE SERVICE NOT PRESENT".
[10:32:14] ABILIS_CPX:A IKE HOST:10 COMMAND EXECUTED
[10:32:14] ABILIS_CPX:A IKE HOST:7 CIPHER:3DES COMMAND EXECUTED
| C IKE HOST: | Clear host connection (Administrator) |
| C IKE HOST:xxx |
It deletes the specified entry from the host connections table. The host connection identifier must be in the interval [0 - 31].
If the requested entry is not present in the table, the following error message will be displayed: "IKE HOST CONNECTION NOT PRESENT".
If the host connections table is empty, the following message will be shown "IKE HOST CONNECTIONS TABLE IS EMPTY".
Changes made on the host connections table are not immediately active. They can be activated by executing the initialization command INIT PO:xxx, where "xxx" is the IKE port number.
The "Not Refreshed (INIT)" message is displayed every time the table is modified while the Abilis CPX is working.
The "Not Saved (SAVE CONF)" message is displayed every time the table is modified but not saved with the SAVE CONF command.
If the Abilis CPX version, currently in use, does not support IKE service, the following message will be shown "IKE SERVICE NOT PRESENT".
[10:32:14] ABILIS_CPX:C IKE HOST:10 COMMAND EXECUTED
[10:32:14] ABILIS_CPX:C IKE HOST:10 IKE HOST CONNECTION NOT PRESENT
| D IKE HOST: | Display host connection (User) |
| D IKE HOST D IKE HOST:xx |
It shows the host connections table.
If the identifier is omitted, the command will show all host connections currently set.
Here is an example of the command execution:
[21:28:23] ABILIS_CPX:D IKE HOST - Not Saved (SAVE CONF), Not Refreshed (INIT) --------------------------------- ------------------------------------------------------------------------------- HOST: NAME: LOC-IP: IPP: KEY-TRIES: CIPHER: AUTH: HASH: DH: REM-IP: SIDE: LIFE-TIME: ID-TYPE: IP: FQDN: PEER-ID-TYPE: PEER-IP: PEER-FQDN: ------------------------------------------------------------------------------- 0 CPX_1-to-CPX_2 192.168.002.001 1 3 3DES PSK MD5 MODP1024 192.168.002.002 AUTO 3600 IP 192.168.002.001 IP 192.168.002.002 ------------------------------------------------------------------------------- 1 CPX_1-to-CPX_3 192.168.002.001 1 3 IDEA PSK SHA MODP1536 * AUTO 3600 IP 192.168.002.001 FQDN www.antek.it -------------------------------------------------------------------------------
The "Not Refreshed (INIT)" message is displayed every time the table is modified while the Abilis CPX is working.
The "Not Saved (SAVE CONF)" message is displayed every time the table is modified but not saved with the SAVE CONF command.
If the host connections table is empty, the following message will be shown "*** NO IKE HOST CONNECTIONS DEFINED ***".
By specifying the host connection identifier, the command will show only the requested host connection.
[00:15:04] ABILIS_CPX:D IKE HOST:0 Parameter: |Value: ------------------------------------------------------------------------------ HOST: 0 NAME: CPX_1-to-CPX_2 LOC-IP: 192.168.002.001 REM-IP: 192.168.002.002 CIPHER: 3DES AUTH: PSK HASH: MD5 DH: MODP1024 KEY-TRIES: 3 LIFE-TIME: 3600 ID-TYPE: IP IP: 192.168.002.001 PEER-ID-TYPE: IP PEER-IP: 192.168.002.002 IPP: 0 SIDE: AUTO ------------------------------------------------------------------------------
The identifier must be in the interval [0 - 31]. If the requested entry is not present in the table, the following error message will be displayed: "IKE HOST CONNECTION NOT PRESENT".
For a more detailed description of the shown information, refer the Host connections table of the IKE port section.
If the Abilis CPX version, currently in use, does not support IKE service, the following message will be shown "IKE SERVICE NOT PRESENT".
| S IKE HOST: | Set host connection (Administrator) |
| S IKE HOST:xx par:val [par:val] |
It sets parameters of the specified host connection to their new values.
The specified host connection identifier value must be in the interval [0 - 31]. If the requested entry is not present in the table, the following error message will be displayed: "IKE HOST CONNECTION NOT PRESENT".
If the host connections table is empty, the following message will be shown "IKE HOST CONNECTIONS TABLE IS EMPTY".
The parameter list, defined in the command, is left to right evaluated: the parameters are set one after the other, starting from the leftmost. Command evaluating will terminate if one the following events will occur:
All the parameters evaluated, before the error occurrence, will get the new value, the other ones will not be changed.
Changes made on the host connections table are not immediately active. They can be activated by executing the initialization command INIT PO:xxx, where "xxx" is the IKE port number.
The "Not Refreshed (INIT)" message is displayed every time the table is modified while the Abilis CPX is working.
The "Not Saved (SAVE CONF)" message is displayed every time the table is modified but not saved with the SAVE CONF command.
If the Abilis CPX version, currently in use, does not support IKE service, the following message will be shown "IKE SERVICE NOT PRESENT".
[10:32:14] ABILIS_CPX:S IKE HOST:7 AUTH:PSK COMMAND EXECUTED
| A IKE CLI: | Add client connection (Administrator) |
| A IKE CLI:xx [par:val] |
It adds a new entry to the client connections table in the "ID:xx" position. The command can also set eventually indicated parameters to the specified values.
The client connections table can store up to 64 entries, therefore the client connection identifier value must be in the interval [0 - 63].
IKE client connection configurations don't require consecutive indexes. A new definition can be added in any position of the table that is currently free. If the specified index corresponds to a IKE client connection already present in the table the message "IKE CLIENT CONNECTION ALREADY EXISTS" will be shown
If the client connections table is full and a client connection is asked to be added, an error message is generated: "IKE CLIENT CONNECTIONS TABLE IS FULL, COMMAND NOT EXECUTED".
Changes made on the client connections table are not immediately active. They can be activated by executing the initialization command INIT PO:xxx, where "xxx" is the IKE port number.
The "Not Refreshed (INIT)" message is displayed every time the table is modified while the Abilis CPX is working.
The "Not Saved (SAVE CONF)" message is displayed every time the table is modified but not saved with the SAVE CONF command.
If the Abilis CPX version, currently in use, does not support IKE service, the following message will be shown "IKE SERVICE NOT PRESENT".
[10:32:14] ABILIS_CPX:A IKE CLI:10 COMMAND EXECUTED
[10:32:14] ABILIS_CPX:A IKE CLI:7 PFS:YES COMMAND EXECUTED
| C IKE CLI: | Clear client connection (Administrator) |
| C IKE CLI:xx |
It deletes the specified entry from the client connections table. The client connection identifier must be in the interval [0 - 63].
If the requested entry is not present in the table, the following error message will be displayed: "IKE CLIENT CONNECTION NOT PRESENT".
If the client connections table is empty, the following message will be shown "IKE CLIENT CONNECTIONS TABLE IS EMPTY".
Changes made on the client connections table are not immediately active. They can be activated by executing the initialization command INIT PO:xxx, where "xxx" is the IKE port number.
The "Not Refreshed (INIT)" message is displayed every time the table is modified while the Abilis CPX is working.
The "Not Saved (SAVE CONF)" message is displayed every time the table is modified but not saved with the SAVE CONF command.
If the Abilis CPX version, currently in use, does not support IKE service, the following message will be shown "IKE SERVICE NOT PRESENT".
[10:32:14] ABILIS_CPX:C IKE CLI:10 COMMAND EXECUTED
[10:32:14] ABILIS_CPX:C IKE CLI:10 IKE CLIENT CONNECTION NOT PRESENT
| D IKE CLI: | Display client connection (User) |
| D IKE CLI D IKE CLI:xx |
It shows the client connections table.
If the identifier is omitted, the command will show all client connections currently set.
Here is an example of the command execution:
[21:28:23] ABILIS_CPX:D IKE CLI - Not Saved (SAVE CONF), Not Refreshed (INIT) --------------------------------- ------------------------------------------------------------------------------- CLI: NAME: HOST-ID: RULE: LIFE-TIME: PFS: ESP: ESP-CIPHER: ESP-AUTH: PASSIVE: PERMANENT: NET-SRC: AH: AH-AUTH: TUNNEL: NET-DST: ------------------------------------------------------------------------------- 0 CPX_1-to-CPX_2 0 IPSEC 28800 YES YES 3DES MD5 YES YES 192.168.001.000/24 NO MD5 YES 192.168.003.000/24 ------------------------------------------------------------------------------- 1 CPX_1-to-CPX_3 1 IPSEC 28800 YES YES 3DES MD5 YES YES 192.168.001.000/24 NO MD5 YES 192.168.004.000/24 -------------------------------------------------------------------------------
The "Not Refreshed (INIT)" message is displayed every time the table is modified while the Abilis CPX is working.
The "Not Saved (SAVE CONF)" message is displayed every time the table is modified but not saved with the SAVE CONF command.
If the client connections table is empty, the following message will be shown "*** NO IKE CLIENT CONNECTIONS DEFINED ***".
By specifying the client connection identifier, the command will show only the requested client connection.
[00:15:04] ABILIS_CPX:D IKE CLI:0 Parameter: |Value: ------------------------------------------------------------------------------ CLI: 0 NAME: CPX_1-to-CPX_2 HOST-ID: 0 RULE: IPSEC PASSIVE: YES PERMANENT: YES TUNNEL: YES ESP: YES ESP-CIPHER: 3DES ESP-AUTH: MD5 AH: NO AH-AUTH: MD5 LIFE-TIME: 28800 PFS: YES NET-SRC: 192.168.001.000/24 NET-DST: 192.168.003.000/24 ------------------------------------------------------------------------------
The identifier must be in the interval [0 - 63]. If the requested entry is not present in the table, the following error message will be displayed: "IKE CLIENT CONNECTION NOT PRESENT".
For a more detailed description of the shown information, refer the Client connections table of the IKE port section.
If the Abilis CPX version, currently in use, does not support IKE service, the following message will be shown "IKE SERVICE NOT PRESENT".
| S IKE CLI: | Set client connection (Administrator) |
| S IKE CLI:xx par:val [par:val] |
It sets parameters of the specified client connection to their new values.
The specified client connection identifier value must be in the interval [0 - 63]. If the requested entry is not present in the table, the following error message will be displayed: "IKE CLIENT CONNECTION NOT PRESENT".
If the client connections table is empty, the following message will be shown "IKE CLIENT CONNECTIONS TABLE IS EMPTY".
The parameter list, defined in the command, is left to right evaluated: the parameters are set one after the other, starting from the leftmost. Command evaluating will terminate if one the following events will occur:
All the parameters evaluated, before the error occurrence, will get the new value, the other ones will not be changed.
Changes made on the client connections table are not immediately active. They can be activated by executing the initialization command INIT PO:xxx, where "xxx" is the IKE port number.
The "Not Refreshed (INIT)" message is displayed every time the table is modified while the Abilis CPX is working.
The "Not Saved (SAVE CONF)" message is displayed every time the table is modified but not saved with the SAVE CONF command.
If the Abilis CPX version, currently in use, does not support IKE service, the following message will be shown "IKE SERVICE NOT PRESENT".
[10:32:14] ABILIS_CPX:S IKE CLI:7 ESP-AUTH:SAH COMMAND EXECUTED
| A IKE PSK: | Add preshared key (Administrator) |
| A IKE PSK:xx [par:val] |
It adds a new entry to the preshared keys table in the "ID:xx" position. The command can also set eventually indicated parameters to the specified values.
The preshared keys table can store up to 64 entries, therefore the preshared key identifier value must be in the interval [0 - 63].
IKE preshared key configurations don't require consecutive indexes. A new definition can be added in any position of the table that is currently free. If the specified index corresponds to a IKE preshared key already present in the table the message "IKE PRESHARED KEY ALREADY EXISTS" will be shown
If the preshared keys table is full and a preshared key is asked to be added, an error message is generated: "IKE PRESHARED KEY TABLE IS FULL, COMMAND NOT EXECUTED".
Changes made on the preshared keys table are not immediately active. They can be activated by executing the initialization command INIT PO:xxx, where "xxx" is the IKE port number.
The "Not Refreshed (INIT)" message is displayed every time the table is modified while the Abilis CPX is working.
The "Not Saved (SAVE CONF)" message is displayed every time the table is modified but not saved with the SAVE CONF command.
If the Abilis CPX version, currently in use, does not support IKE service, the following message will be shown "IKE SERVICE NOT PRESENT".
[10:32:14] ABILIS_CPX:A IKE PSK:2 COMMAND EXECUTED
[10:32:14] ABILIS_CPX:A IKE PSK:7 ID-TYPE:IP COMMAND EXECUTED
| C IKE PSK: | Clear preshared key (Administrator) |
| C IKE PSK:xxx |
It deletes the specified entry from the preshared keys table. The preshared key identifier must be in the interval [0 - 63].
If the requested entry is not present in the table, the following error message will be displayed: "IKE PRESHARED KEY NOT PRESENT".
If the preshared keys table is empty, the following message will be shown "IKE PRESHARED KEYS TABLE IS EMPTY".
Changes made on the preshared keys table are not immediately active. They can be activated by executing the initialization command INIT PO:xxx, where "xxx" is the IKE port number.
The "Not Refreshed (INIT)" message is displayed every time the table is modified while the Abilis CPX is working.
The "Not Saved (SAVE CONF)" message is displayed every time the table is modified but not saved with the SAVE CONF command.
If the Abilis CPX version, currently in use, does not support IKE service, the following message will be shown "IKE SERVICE NOT PRESENT".
[10:32:14] ABILIS_CPX:C IKE PSK:10 COMMAND EXECUTED
[10:32:14] ABILIS_CPX:C IKE PSK:10 IKE PRESHARED KEY NOT PRESENT
| D IKE PSK: | Display preshared key (User) |
| D IKE PSK D IKE PSK:xx |
It shows the preshared keys table.
If the identifier is omitted, the command will show all client connections currently set.
Here is an example of the command execution:
[21:28:23] ABILIS_CPX:D IKE PSK - Not Saved (SAVE CONF), Not Refreshed (INIT) --------------------------------- ------------------------------------------------------------------------------- PSK: KEY: ID-TYPE: IP: FQDN: ------------------------------------------------------------------------------- 0 ******** IP 192.168.002.001 1 ******** ANONYMOUS 2 ******** FQDN konstt -------------------------------------------------------------------------------
The "Not Refreshed (INIT)" message is displayed every time the table is modified while the Abilis CPX is working.
The "Not Saved (SAVE CONF)" message is displayed every time the table is modified but not saved with the SAVE CONF command.
If the client connections table is empty, the following message will be shown "*** NO IKE PRESHARED KEYS DEFINED ***".
By specifying the preshared key identifier, the command will show only the requested preshared key.
[00:15:04] ABILIS_CPX:D IKE PSK:2 Parameter: |Value: ------------------------------------------------------------------------------ PSK: 2 KEY: ******** ID-TYPE: FQDN FQDN: konstt ------------------------------------------------------------------------------
The identifier must be in the interval [0 - 63]. If the requested entry is not present in the table, the following error message will be displayed: "IKE PRESHARED KEY NOT PRESENT".
For a more detailed description of the shown information, refer the Pre-shared key (PSK) table of the IKE port section.
If the Abilis CPX version, currently in use, does not support IKE service, the following message will be shown "IKE SERVICE NOT PRESENT".
| S IKE PSK: | Set preshared key (Administrator) |
| S IKE PSK:xx par:val [par:val] |
It sets parameters of the specified preshared key to their new values.
The specified preshared key identifier value must be in the interval [0 - 63]. If the requested entry is not present in the table, the following error message will be displayed: "IKE PRESHARED KEY NOT PRESENT".
If the preshared keys table is empty, the following message will be shown "IKE PRESHARED KEYS TABLE IS EMPTY".
The parameter list, defined in the command, is left to right evaluated: the parameters are set one after the other, starting from the leftmost. Command evaluating will terminate if one the following events will occur:
All the parameters evaluated, before the error occurrence, will get the new value, the other ones will not be changed.
Changes made on the preshared keys table are not immediately active. They can be activated by executing the initialization command INIT PO:xxx, where "xxx" is the IKE port number.
The "Not Refreshed (INIT)" message is displayed every time the table is modified while the Abilis CPX is working.
The "Not Saved (SAVE CONF)" message is displayed every time the table is modified but not saved with the SAVE CONF command.
If the Abilis CPX version, currently in use, does not support IKE service, the following message will be shown "IKE SERVICE NOT PRESENT".
[10:32:14] ABILIS_CPX:S IKE PSK:7 KEY:1234567890 COMMAND EXECUTED
Print this page