R2511-HP MSR Router Series Security Command Reference(V5)
572
<Sysname> reset gdoi ks members group abc
reset gdoi ks redundancy role
Use reset gdoi ks redundancy role to reset GDOI KS redundancy roles.
Syntax
reset gdoi ks redundancy role [ group group-name ]
Views
User view
Default command level
2: System level
Parameters
group group-name: Specifies a GDOI KS group by its name, a case-sensitive string of 1 to 63 characters.
Usage guidelines
If you specify a GDOI KS group, the command resets KS redundancy roles in the specified GDOI KS
group. If you do not specify a GDOI KS group, the command resets KS redundancy roles in all GDOI KS
groups.
Examples
# Reset KS redundancy roles in the GDOI KS group abc.
<Sysname> reset gdoi ks redundancy role group abc
security acl (GDOI KS group IPsec policy view)
Use security acl to reference an ACL for the GDOI KS IPsec policy.
Use undo security acl to remove the referenced ACL.
Syntax
security acl { access-list-number | name access-list-name }
undo security acl
Default
No ACL is referenced.
Views
GDOI KS group IPsec policy view
Default command level
2: System level
Parameters
access-list-number: Specifies an ACL by its number in the range of 3000 to 3999.
name access-list-name: Specifies an ACL by its name, a case-insensitive string of 1 to 63 characters.
Usage guidelines
The GDOI KS sends the ACL to GMs, which use the ACL to filter traffic, so as to determine the traffic to
be protected by TEKs.