CertiGuide to A+ (A+ 4 Real)  9  Chapter 3: Windows XP Command Line Interface (CLI)

HelpCtr 1 LogMan

This is the CLI version of the IP Security Policies Microsoft Management Console (MMC) snap-in.⁵⁵ This command has three basic modes: dynamic, static, and query. If this MMC snap-in has not been configured on your Windows XP computer, you will not be able to access it from the command line.

The following is the Parameters List for this command:

\\ComputerName: This specifies the remote node where you want to add a rule

-f FilterList: This specifies one or more filter specifications

-n NegotiationPolicyList: Specifies one or more security methods

-t TunnelAddr: Specifies the tunnel endpoint for tunnel mode expressed as either an IP address or a domain name

-a AuthMethodList: Specifies one or more authentication methods

-1s SecurityMethodList: Specifies one or more key exchange security methods

-1k MainModeRekeySettings: Specifies main mode SA rekey settings

-1p Enables master key perfect forward secrecy

-1f MMfilterList: Specifies one or more filter specifications for main mode SAs

-1e SoftSAExpirationTime: Specifies the expiration time for soft SAs in seconds

-soft Enables soft SAs

-confirm Specifies that a confirmation prompt will appear before a rule is added

{-dialup | -lan} Specifies whether the rule applies only to remote/dial-up connections or only to LANs (Local Area Networks)

-u Used to delete all dynamic policies

“/?” Displays the ipseccmd help page

HelpCtr 1 LogMan