R3721-F3210-F3171-HP High-End Firewalls VPN Command Reference-6PW101
167
View
VPN domain view
Default level
2: System level
Parameters
retry-times: Maximum number of attempts for a VAM client to send a keepalive packet, in the range 1 to
6.
Description
Use keepalive retry to set the maximum number of attempts for a VAM client to send a keepalive packet
to the VAM server. If the maximum number of attempts is reached but the client receives no response, the
connection is considered broken.
Use undo keepalive retry to restore the default.
By default, the maximum number of attempts for a VAM client to send a keepalive packet to the VAM
server is 3.
The VAM server sends this setting in a registration response to its clients. All clients in a VPN use the same
keepalive settings. However, if you change the keepalive settings of the server, the new settings are sent
to only clients that register later; all clients registering before use the old settings.
Related commands: keepalive interval and vam server vpn.
Examples
# Set the client keepalive transmission limit to 5.
<Sysname> system-view
[Sysname] vam server vpn 1
[Sysname-vam-server-vpn-1] keepalive retry 5
pre-shared-key (VPN domain view)
Syntax
pre-shared-key { cipher | simple } key-string
undo pre-shared-key
View
VPN domain view
Default level
2: System level
Parameters
cipher: Displays the pre-shared key in cipher text.
simple: Displays the pre-shared key in plain text.
key-string: Pre-shared key, a case-sensitive string of 1 to 31 characters.
Description
Use pre-shared-key to configure the pre-shared key of the VAM server, which is used to generate the keys
for encryption and integrity validation of the VAM protocol packets.