Manualshelf

R2511-HP MSR Router Series Security Command Reference(V5)

ManualsBrandsHP ManualsNetwork HardwareHP MSR1003-8 AC Router
291292293294295296297298299300
285
Default command level
2: System level
Parameters
interval: Specifies the IKEv2 DPD interval in seconds, in the range of 1 to 300.
on-demand: Specifies DPD in on-demand mode.
periodic: Specifies DPD in periodic mode.
Usage guidelines
In on-demand mode, the DPD function works as follows:
1. When the local end sends an IPsec packet, it checks the time the last IPsec packet was received
from the peer.
2. If the time interval exceeds the DPD interval, it sends a DPD hello to the peer to detect its liveliness.
In periodic mode, the DPD function sends DPD hellos to the peer at the specified interval to detect the
liveliness of the peer.
Examples
# Configure on-demand IKEv2 DPD and set the interval to 15 seconds.
<Sysname> system-view
[Sysname] ikev2 dpd 15 on-demand
# Configure periodic IKEv2 DPD and set the interval to 15 seconds.
<Sysname> system-view
[Sysname] ikev2 dpd 15 periodic
ikev2 keyring
Use ikev2 keyring to create an IKEv2 keyring and enter IKEv2 keyring view, where you can create IKEv2
peers, configure their hostnames, IP addresses, or IDs, and specify the pre-shared keys.
Use undo ikev2 keyring to delete an IKEv2 keyring and its IKEv2 peers.
Syntax
ikev2 keyring keyring-name
undo ikev2 keyring keyring-name
Default
No IKEv2 keyring exists.
Views
System view
Default command level
2: System level
Parameters
keyring-name: Specifies the IKEv2 keyring name, a case-insensitive string of 1 to 32 characters. It can
consist of only English letters and digits.