2.2.1.2.247 IKEV2_TUNNEL_CONFIG_PARAMS_3
The IKEV2_TUNNEL_CONFIG_PARAMS_3 structure<176> is used to get or set configured parameters for IKEv2 devices (see [RFC4306]).
|
|
|
|
|
|
|
|
|
|
1 |
|
|
|
|
|
|
|
|
|
2 |
|
|
|
|
|
|
|
|
|
3 |
|
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
dwIdleTimeout |
|||||||||||||||||||||||||||||||
|
dwNetworkBlackoutTime |
|||||||||||||||||||||||||||||||
|
dwSaLifeTime |
|||||||||||||||||||||||||||||||
|
dwSaDataSizeForRenegotiation |
|||||||||||||||||||||||||||||||
|
dwConfigOptions |
|||||||||||||||||||||||||||||||
|
dwTotalCertificates |
|||||||||||||||||||||||||||||||
|
certificateNames (variable) |
|||||||||||||||||||||||||||||||
|
... |
|||||||||||||||||||||||||||||||
|
machineCertificateName (variable) |
|||||||||||||||||||||||||||||||
|
... |
|||||||||||||||||||||||||||||||
|
dwEncryptionType |
|||||||||||||||||||||||||||||||
|
customPolicy |
|||||||||||||||||||||||||||||||
|
... |
|||||||||||||||||||||||||||||||
|
dwTotalEkus |
|||||||||||||||||||||||||||||||
|
certificateEKUs (variable) |
|||||||||||||||||||||||||||||||
|
... |
|||||||||||||||||||||||||||||||
|
machineCertificateHash (variable) |
|||||||||||||||||||||||||||||||
|
... |
|||||||||||||||||||||||||||||||
dwIdleTimeout (4 bytes): Same as dwIdleTimeout in IKEV2_TUNNEL_CONFIG_PARAMS_1 (section 2.2.1.2.136).
dwNetworkBlackoutTime (4 bytes): Same as dwNetworkBlackoutTime in IKEV2_TUNNEL_CONFIG_PARAMS_1.
dwSaLifeTime (4 bytes): Same as dwSaLifeTime in IKEV2_TUNNEL_CONFIG_PARAMS_1.
dwSaDataSizeForRenegotiation (4 bytes): Same as dwSaDataSizeForRenegotiation in IKEV2_TUNNEL_CONFIG_PARAMS_1.
dwConfigOptions (4 bytes): Same as dwConfigOptions in IKEV2_TUNNEL_CONFIG_PARAMS_1.
dwTotalCertificates (4 bytes): Same as dwTotalCertificates in IKEV2_TUNNEL_CONFIG_PARAMS_1.
certificateNames (variable): Same as certificateNames in IKEV2_TUNNEL_CONFIG_PARAMS_1.
machineCertificateName (variable): Same as machineCertificateName in IKEV2_TUNNEL_CONFIG_PARAMS_2 (section 2.2.1.2.238).
dwEncryptionType (4 bytes): Same as dwEncryptionType in IKEV2_TUNNEL_CONFIG_PARAMS_2.
customPolicy (8 bytes): Same as customPolicy in IKEV2_TUNNEL_CONFIG_PARAMS_2.
dwTotalEkus (4 bytes): Total number of EKUs in member variable certificateEKUs.
certificateEKUs (variable): An array of CERT_EKU_1 (section 2.2.1.2.246) that specifies the EKU parameter of the certificates that are accepted by the RemoteAccess server for IKEv2 tunnel-based VPN connections.
machineCertificateHash (variable): This MUST be a CERT_BLOB_1 (section 2.2.1.2.135). This member specifies the hash of the X.509 certificate that is configured to be sent to the peer for authentication during the MM SA negotiation [RFC4306] for the IKE2 tunnel-based VPN connections. A zero (0) value for the cbData member of CERT_BLOB_1 indicates that no certificate is configured.