default send-key-id
Function
The default send-key-id command configures a default key ID for packet sending.
The undo default send-key-id command deletes the default key ID for packet sending.
By default, no key ID for packet sending is configured.
Usage Guidelines
Usage Scenario
In keychain authentication mode, secure protocol packet transmission is provided by changing the authentication algorithm and key dynamically. This can reduce the workload of changing the algorithm and key manually. A keychain consists of multiple authentication key IDs, each of which is valid within different time periods. When a key ID becomes valid, the authentication algorithm corresponding to the key ID is used, and packets passing the authentication will be sent or received.
If a key ID for packet sending is not configured in a keychain or no key ID for packet sending is valid within a certain period, protocol packets cannot be authenticated and encrypted. As a result, protocol packet transmission fails. To resolve such a problem, configure a default key ID for packet sending. If no key ID is valid, the default key ID for packet sending is used.
Precautions
Each keychain can have only one default key ID for packet sending.
If the default key ID for packet sending is an existing key ID, the authentication and encryption algorithms, and key corresponding to the key ID are used.
If the default key ID for packet sending is a newly created key ID, configure the authentication and encryption algorithms, and key for the key ID.