No relevant resource is found in the selected language.
Enterprise
Worldwide
Huawei Global - English
Support Documentation
WLAN AC V200R010C00 Command Reference
Rate and give feedback:
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
dpd packet receive if-related enable

dpd packet receive if-related enable

Function

The dpd packet receive if-related enable command enables the function that checks whether the interface that receives DPD packets is the interface that establishes an IPSec SA.

The undo dpd packet receive if-related enable command disables the function that checks whether the interface that receives DPD packets is the interface that establishes an IPSec SA.

By default, the function that checks whether the interface that receives DPD packets is the interface that establishes an IPSec SA is disabled.

Format

dpd packet receive if-related enable

undo dpd packet receive if-related enable

Parameters

N/A

Views

IKE peer view

Default Level

2: Configuration level

Usage Guidelines

Usage Scenario

When IPSec policies with different names and the same parameters have been applied to multiple interfaces of the device, the interface that receives encrypted traffic is not the interface that establishes an IPSec SA during an interface switchover. If you want the two interfaces to be the same, run the dpd packet receive if-related enable command to enable the function that checks whether the interface that receives DPD packets is the interface that establishes an IPSec SA. If the two interfaces are different, DPD packets are discarded and the DPD detection result becomes abnormal. This causes the IPSec SA to be deleted and triggers IKE re-negotiation.

Precautions

This function applies only to the scenario where IPSec policies have been applied to physical interfaces.

Example

# Enable the function that checks whether the interface that receives DPD packets is the interface that establishes an IPSec SA.

<AC6605> system-view
[AC6605] ike peer test
[AC6605-ike-peer-test] dpd packet receive if-related enable
Translation
简体中文
Download
Updated: 2021-02-27

Document ID: EDOC1100064351

Views: 3204396

Downloads: 595

Average rating:
This Document Applies to these Products

Related Version

Related Documents

Share
Previous Next
Huawei e+ App Huawei e+

Copyright © 2022 Huawei Technologies Co., Ltd. All rights reserved.

You are going to visit :