R2511-HP MSR Router Series Security Command Reference(V5)
220
Views
IPsec policy view, IPsec policy template view
Default command level
2: System level
Parameters
ipv6: Specifies an IPv6 address. Without this keyword, you must specify an IPv4 address.
hostname: Specifies the host name of the remote security gateway, a case-insensitive string of 1 to 255
characters. The host name uniquely identifies the remote IPsec peer and can be resolved to an IP address
by the DNS server.
dynamic: Uses dynamic address resolution for the remote gateway host name. If you do not provide this
keyword, the local end has the remote host name resolved only once after you configure the remote
gateway host name.
ipv4-address: Specifies the IPv4 address of the remote security gateway.
ipv6 ipv6-address: Specifies the IPv6 address of the remote security gateway.
Usage guidelines
This remote gateway IP address configuration is required on an IKEv2 negotiation initiator and optional
on a responder.
Examples
# Use 1.1.1.1 as the remote gateway IP address.
<Sysname> system-view
[Sysname] ipsec policy map 1 isakmp
[Sysname-ipsec-policy-isakmp-map-1] remote-address 1.1.1.1
reset ipsec sa
Use reset ipsec sa to clear IPsec SAs.
Syntax
reset ipsec sa [ parameters dest-address protocol spi | policy policy-name [ seq-number ] | remote
ip-address ]
Views
User view
Default command level
2: System level
Parameters
parameters: Specifies IPsec SAs that use the specified destination address, security protocol, and SPI .
dest-address: Specifies the destination address, in dotted decimal notation.
protocol: Specifies the security protocol, which can be keyword ah or esp, case insensitive.
spi: Specifies the security parameter index in the range of 256 to 4294967295.
policy: Specifies IPsec SAs that use an IPsec policy or IPsec profile.