R3166-R3206-HP High-End Firewalls VPN Command Reference-6PW101
54
Default level
2: System level
Parameters
policy-name: Name for the IPsec policy, a case-insensitive string of 1 to 15 characters. No minus sign (-)
can be included.
seq-number: Sequence number for the IPsec policy, in the range 1 to 10000.
isakmp template template-name: Name of the IPsec policy template to be referenced.
Description
Use the ipsec policy isakmp template command to create an IPsec policy by referencing an existing IPsec
policy template, so that IKE can use the IPsec policy for SA negotiation.
Use the undo ipsec policy command to delete an IPsec policy.
Using the undo ipsec policy command without the seq-number argument deletes an IPsec policy group.
In an IPsec policy group, an IPsec policy with a smaller sequence number has a higher priority.
Related commands: ipsec policy (system view) and ipsec policy-template.
Examples
# Create an IPsec policy with the name policy2 and sequence number 200 by referencing IPsec policy
template temp1.
<Sysname> system-view
[Sysname] ipsec policy policy2 200 isakmp template temp1
ipsec policy-template
Syntax
ipsec policy-template template-name seq-number
undo ipsec policy-template template-name [ seq-number ]
View
System view
Default level
2: System level
Parameters
template-name: Name for the IPsec policy template, a case-insensitive string of 1 to 41 characters. No
minus sign (-) can be included.
seq-number: Sequence number for the IPsec policy template, in the range 1 to 10000.
Description
Use the ipsec policy-template command to create an IPsec policy template and enter the IPsec policy
template view.
Use the undo ipsec policy-template command to delete the specified IPsec policy template(s).
By default, no IPsec policy template exists.
Using the undo command without the seq-number argument deletes an IPsec policy template group.