bind dtls-policy

Function

The bind client dtls-policy command binds a DTLS policy to a client on a DCN.

The undo bind client dtls-policy> command unbinds a DTLS policy from a DCN client.

By default, no DTLS policy is bound.

Format

bind client dtls-policy dtlsPolicyName

undo bind client dtls-policy [ dtlsPolicyName ]

Parameters

Parameter Description Value
dtlsPolicyName

Specifies the DTLS policy name.

The value is a string of 1 to 23 case-insensitive characters composed of letters, digits, and underscores (_), spaces not supported.

Views

DCN view

Default Level

2: Configuration level

Task Name and Operations

Task Name Operations
dcn write

Usage Guidelines

Usage Scenario

When QX is used to manage NEs, the UDP connection between the GNE and NEs may be insecure. To improve the security of the connection between the GNE and NE, run the bind client dtls-policy command on the GNE to bind a DTLS policy to the GNE.

Precautions

  1. When DTLS encryption is used for the UDP channel between the GNE and NE, the number of non-GNEs that can be managed by the GNE is the same as the number of CAs that can be imported to the PKI module of the GNE.
  2. Before modifying or deleting the DTLS policy of a GNE, ensure that the DTLS policies of all NEs have been modified or deleted.

Example

# Bind a DTLS policy to a client.
<HUAWEI> system-view
[~HUAWEI] dtls policy qx_dtls_client
[*HUAWEI-dtls-policy-qx_dtls_client] quit
[*HUAWEI] dcn
[*HUAWEI-dcn] set compatible mode
[*HUAWEI-dcn] bind client dtls-policy qx_dtls_client
Parent Topic: IPRAN DCN Configuration Commands
Copyright © Huawei Technologies Co., Ltd.
Copyright © Huawei Technologies Co., Ltd.
< Previous topic Next topic >