< Home

local-id (IKE peer view)

Function

The local-id command specifies the local ID for IKE negotiation.

The undo local-id command deletes the local ID for IKE negotiation.

By default, the local ID is not configured for IKE negotiation.

Format

local-id id

undo local-id

Parameters

Parameter Description Value
id Specifies the local ID used in IKE negotiation The value is a string of 1 to 255 case-sensitive characters. It cannot contain question marks.

Views

IKE peer view

Default Level

2: Configuration level

Usage Guidelines

Usage Scenario

If the ID type of the IKE peer is IP, FQDN, or USER-FQDN, you can configure the local end identity in the system view or IKE peer view.

The local-id command sets an ID, indicating that the IKE peer uses this ID for authentication. If the ID type is FQDN or User-FQDN, the ike local-name command sets an ID, indicating that all peers on the device use this ID for authentication. The ID specified by the local-id command has a higher priority than the one specified by the ike local-name command.

Precautions

The IPSec-enabled device cannot automatically obtain the device host name sysname as the ID for identity authentication. You must run the ike local-name or local-id command to specify the local ID used in IKE negotiation.

Example

# Set the local ID to be huawei in IKE negotiation.

<sysname> system-view
[sysname] ike peer peer1
[sysname-ike-peer-peer1] local-id huawei
Parent Topic: IPSec Configuration Commands
Copyright © Huawei Technologies Co., Ltd.
Copyright © Huawei Technologies Co., Ltd.
< Previous topic Next topic >