HP VPN Firewall Appliances VPN Command Reference

[Sysname-ike-peer-peer1] exchange-mode main

Related commands

id-type

Use id-type to select the type of the ID for IKE negotiation.

Use undo id-type to restore the default.

Syntax

id-type { ip | name | user-fqdn }

undo id-type

Default

The ID type is IP address.

Views

IKE peer view

Default command level

2: System level

Parameters

ip: Uses an IP address as the ID during IKE negotiation.

name: Uses a name of the Fully Qualified Domain Name (FQDN) type as the ID during IKE negotiation.

user-fqdn: Uses a name of the user FQDN type as the ID during IKE negotiation.

Usage guidelines

In main mode, only the ID type of IP address can be used in IKE negotiation and SA creation. In

aggressive mode, either type can be used.

If the ID type of FQDN is used, configure a name without any at sign (@) for the local security gateway,

for example, foo.bar.com. If the ID type of user FQDN is used, configure a name with an at sign (@) for

the local security gateway, for example, test@foo.bar.com.

Examples

# Use the ID type of name during IKE negotiation.

<Sysname> system-view

[Sysname] ike peer peer1

[Sysname-ike-peer-peer1] id-type name

Related commands

• local-name

• ike local-name

• remote-name

• remote-address

• local-address

• exchange-mode