HP Brocade 8/12c Brocade Fabric OS Command Reference Manual Supporting Fabric - Page 620
seclife, policy --create ike 10 -enc 3des -auth md5, policy --show ipsec 1
View all HP Brocade 8/12c manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 620 highlights
22 policy EXAMPLES AES-128 AES-256 -auth algorithm SHA-1 MD5 AES-XCBC -pfs value -dh group 1 14 -seclife seconds Advanced encryption standard, 128-bit key. Advanced encryption standard, 256-bit key. Specifies the authentication algorithm. The default is SHA-1. Algorithms include the following: Secure hash algorithm. Message digest 5. Advanced encryption standard. Valid only with IPSec. Specifies the perfect forward secrecy. This operand is valid only with IKE policies. Values are on (default) or off. Specifies the Diffie-Hellman group used in PFS negotiation. This operand is valid only with IKE policies. The default is 1. Values include the following: Fastest as it uses 768 bit values, but least secure. Slowest as it uses 2048 bit values, but most secure. Security association lifetime in seconds. A new key is renegotiated before the specified length of time expires. The valid range for seconds is 28800 to 250000000 or 0. The default is 28800. To create a new policy: switch:admin> policy --create ike 10 -enc 3des -auth md5 The following policy has been set: IKE policy 10 Authentication Algorithm: MD5 Encryption: 3DES Perfect Forward Secrecy: 0 Diffie-Hellman Group: 1 SA Life (seconds): 28800 To display a policy setting: switch:admin> policy --show ipsec 1 IPSec policy 1 Authentication Algorithm: SHA-1 Encryption: 3DES SA Life (seconds): 28800 586 Fabric OS Command Reference 53-1001764-01