Cluster I/O Protocols (CIP) Configuration and Management Manual (H06.16+, J06.05+)
climconfig.remote Description
remote -add
adds a remote entry into the configuration file racoon.conf.
remote -add_proposal
adds an additional proposal for the remote ip-address into the configuration file racoon.conf
for the phase 1 IKE negotiation. A maximum of 10 proposals can exist in a remote configuration.
remote -delete
deletes a remote entry from the configuration file racoon.conf.
remote -delete_proposal
deletes a proposal with a tag identifier for the remote IP address from the configuration file
racoon.conf. At least one proposal must exist in a remote configuration.
remote -info
displays the remote configurations from the configuration file racoon.conf.
PARAMETERS
-prov
Specifies a provider name. This option is mandatory for CLIMs that have MULTIPROV set to
ON and cannot be used if MULTIPROV is set to OFF. Each provider has its own IPSec
configuration. The provider name is case-insensitive and always converted to UPPER case.
–ip ip-address
Specifies the IP address in the configuration file racoon.conf for which the remote command
is issued.
–ip anonymous
Indicates that no IP address is specified.
–M exchange_mode
Defines the exchange mode for phase 1 when the racoon is the initiator. This parameter also
defines the acceptable exchange mode when the racoon is the responder. exchange_mode
is one or more of: main, aggressive, or base. You can specify more than one mode by
separating them with a comma and enclosing them in double quotes. If you specify multiple
modes, the racoon uses the first mode when it is the initiator.
–idtype
Specifies the identifier sent to the remote host and the type to use in the phase 1 negotiation.
The value is one of: user_fqdn, fqdn, address, keyid, or asn1dn.
–idvalue
Specifies the idtype value. The value is one of: ip-address, string, file.
NOTE: When the value is of type file, the entire pathname has to be specified.
–peer_idtype
Specifies the peer's identifier to be received. If it is not defined, racoon will not verify the peer's
identifier in ID payload transmitted from the peer. If it is defined, the behavior of the verification
depends on the flag of verify_identifier. The value is one of: user-fqdn, fqdn, address,
keyid or asn1dn.
–peer_idvalue
Specifies the peer_idtype value. The value is one of: ip-address, string, file.
NOTE: When the value is of type file, the entire pathname has to be specified.
352