Appendix A: CLI Guide
1462
SonicOS Enhanced 5.6 Administrator’s Guide
proposal ipsec [<esp|ah>]
[encr <des|triple-
des|aes-128|aes-192|aes-
256>] [auth <md5|sha1>]
[dh <1|2|5>] [lifetime
<seconds>]
Sets encryption settings for IPSec
proposal
sa [in-spi <Incoming
SPI>] [out-spi <Outgoing
SPI>] [encr-key <Encryp-
tion Key>] [auth-key
<Authentication Key>]
Sets hexidecimal incoming and
outgoing Security Parameter Index
(SPI) to allow the SonicWALL to
uniquely identify all security
associations
VPN SUB-COMMANDS (3rd PARTY CERTIFICATE)
abort Exits to top-level menu and cancels
changes where needed
[no] advanced apply-nat Enable or disable translation of the
local and/or remote networks
communicating with this VPN tunnel
[no] advanced auto-add-
rule
Enables or disables the auto-add
access rule
advanced bound-to inter-
face <interface>
Binds VPN policy to specific interface
a
dvanced bound-to zone
<zone>
Binds VPN policy to a specific zone
[no] advanced default-
lan-gw <ip address>
Sets the default LAN gateway for VPN
tunnel traffic
[no] advanced keepalive Enables or disables heartbeat
messages between peers on this VPN
tunnel
[no] advanced management
http
Enables or disables HTTP as the
management method security
association
[no] advanced managment
https
Enables or disables HTTPS as the
management method security
association
[no] advanced multicast Enables IP multicasting traffic to pass
through the VPN tunnel
[no] advanced netbios Enables or disables Windows
Networking (NetBIOS) Broadcast
[no] advanced ocsp <url> Enables use of Online Certificate
Status Protocol (OCSP) to check VPN
certificate status and specifies the URL
where to check the certificate status
[no] advanced use-xauth
<group name>
Configures or removes the specified
user group for XAUTH users
[no] advanced user-login
http
Enables or disables required user login
through HTTP
[no] advanced user-login
https
Enables or disables required user login
through HTTPS
cancel Cancel from menu without applying
changes
Command Description