Peer List Configuration Mode Commands

Mode

The Peer List Configuration Mode is used to add or remove IP address to an SecGW crypto peer list..

Exec > Global Configuration >

configure > crypto peer-list { ipv4 | ipv6 } peer_list_name

[context_name]host_name(config-peer)#

Important

The commands or keywords/variables that are available are dependent on platform type, product version, and installed license(s).

address

Adds or deletes an IPv4 or IPv6 address to a crypto peer list.

Product

SecGW (WSG)

Privilege

Security Administrator

Mode

Exec > Global Configuration >

configure > crypto peer-list { ipv4 | ipv6 } peer_list_name

[context_name]host_name(config-peer)#

Syntax

[ no ] address  peer_address

no

Removes the specified IP address from the crypto peer list.

`peer_address`

Specifies an IP address in either IPv4 dotted-decimal (#.#.#.#/##) or IPv6 colon-separated-hexadecimal (####:####:####:####:####:####:####:####/###) notation with CIDR (required). The only notation allowed will be the one specified when the crypto peer list was created.

Usage Guidelines

Use this command to add or delete an IPv4 or IPv6 address to a crypto peer list.

Repeat this command to add up to 1,000 peer IP addresses to the crypto peer list. The IP addresses in the list can only be entered in either IPv4 or IPv6 notation, depending on the address type specified when the list was created.

The following restrictions apply:

A maximum of 1,000 peer IP addresses can be added to the peer list via the Peer List Configuration mode address command.
WSG service address binding is not allowed if a peer list is configured and both address types do not match. An error message is generated if they do not match.
An IPv4 or IPv6 peer list cannot be modified if peer-list peer_list_name is enabled under the WSG service.

Example

The following command adds IPv4 address 10.1.1.1 to the crypto peer list:

   address 10.1.1.1

do show

Executes all show commands while in Configuration mode.

Product

All

Privilege

Security Administrator, Administrator

Syntax

do show

Usage Guidelines

Use this command to run all Exec mode show commands while in Configuration mode. It is not necessary to exit the Config mode to run a show command.

The pipe character | is only available if the command is valid in the Exec mode.

Caution

There are some Exec mode show commands which are too resource intensive to run from Config mode. These include: do show support collection , do show support details , do show support record and do show support summary . If there is a restriction on a specific show command, the following error message is displayed:

Failure: Cannot execute 'do	show support' command from Config mode.

end

Exits the current configuration mode and returns to the Exec mode.

Product

All

Privilege

Security Administrator, Administrator

Syntax

end

Usage Guidelines

Use this command to return to the Exec mode.

exit

Exits the current mode and returns to the parent configuration mode.

Product

All

Privilege

Security Administrator, Administrator

Syntax

exit

Usage Guidelines

Use this command to return to the parent configuration mode.

Command Line Interface Reference, Modes I - Q, StarOS Release 21.11

Bias-Free Language

Book Title

Command Line Interface Reference, Modes I - Q, StarOS Release 21.11

Chapter Title