IPSec Crypto Map Configuration
The following is an example of IPSec Crypto Map configuration in UPF.
crypto map CP-1 ikev2-ipv4
match address CP-1
authentication local pre-shared-key encrypted key secretkey
authentication remote pre-shared-key encrypted key secretkey
ikev2-ikesa max-retransmission 3
ikev2-ikesa retransmission-timeout 1000
ikev2-ikesa transform-set list ikesa-CP-1
ikev2-ikesa rekey
keepalive interval 5 timeout 2 num-retry 4
control-dont-fragment clear-bit
payload foo-sa0 match ipv4
ipsec transform-set list A-CP-1
#exit
peer 209.165.200.230
ikev2-ikesa policy error-notification
#exit