IPSec Crypto Map Configuration
The following is an example of IPSec Crypto Map configuration in SMF.
crypto map UP-1 ikev2-ipv4
match address UP-1
authentication local pre-shared-key encrypted key secretkey
authentication remote pre-shared-key encrypted key secretkey
ikev2-ikesa max-retransmission 3
ikev2-ikesa retransmission-timeout 1000
ikev2-ikesa transform-set list ikesa-UP-1
ikev2-ikesa rekey
keepalive interval 4 timeout 1 num-retry 4
control-dont-fragment clear-bit
payload foo-sa0 match ipv4
ipsec transform-set list A-UP-1
lifetime 300
rekey keepalive
#exit
peer 209.165.200.224
ikev2-ikesa policy error-notification
#exit