local-id-type (IKE peer view)

Function

The local-id-type command specifies the ID type of IKE peer.

The undo local-id-type command restores the default setting.

By default, the IKE peer ID is in the format of an IP address.

This command is supported only on the NetEngine 8000 F1A.

Format

local-id-type { ip | fqdn | dn | user-fqdn [ user-fqdn ] }

undo local-id-type

Parameters

Parameter Description Value
ip

Indicates the IKE peer ID in the format of an IP address.

-
fqdn

Indicates the IKE peer ID in the format of a DNS address, for example, dns.huawei.com.

-
dn

Indicates the IKE peer ID in the format of a DN address.

-
user-fqdn user-fqdn

Indicates the IKE peer ID in the format of a USER-FQDN address.

The value is a string of 1 to 255 characters.

Views

IKE peer view

Default Level

2: Configuration level

Task Name and Operations

Task Name Operations
ike write

Usage Guidelines

Usage Scenario

If the pre-share authentication method is used, the IKE peer ID format can be set to ip or fqdn.

If the rsa-sig authentication method is used, the IKE peer ID format can also be set to ip, user-fqdn, dn or fqdn.

Example

# Configure the ID type of the IKE peer peer1 to fqdn.
<HUAWEI> system-view
[~HUAWEI] ike peer peer1
[*HUAWEI-ike-peer-peer1] local-id-type fqdn
Parent Topic: IPSec Configuration Commands
Copyright © Huawei Technologies Co., Ltd.
Copyright © Huawei Technologies Co., Ltd.
< Previous topic Next topic >