HP AE370A Brocade Fabric OS Command Reference Manual v6.2.0 (53-1001186-01, Ap - Page 556
is 28800 to, specified length of time expires. The valid range
UPC - 882780362611
View all HP AE370A manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 556 highlights
2 policy -dh group -seclife seconds Specifies the Diffie-Hellman group used in PFS negotiation. This operand is valid only with IKE policies. The default is 1. Values include: 1 Fastest as it uses 768 bit values, but least secure. 14 Slowest as it uses 2048 bit values, but most secure. Security association lifetime in seconds. A new key is re-negotiated before the specified length of time expires. The valid range for seconds is 28800 to 250000000 or 0. The default is 28800. Examples To create a new policy: switch:admin> policy --create ike 10 -enc 3des -auth md5 The following policy has been set: IKE policy 10 Authentication Algorithm: MD5 Encryption: 3DES Perfect Forward Secrecy: 0 Diffie-Hellman Group: 1 SA Life (seconds): 28800 To display a policy setting: switch:admin> policy --show ipsec 1 IPSec policy 1 Authentication Algorithm: SHA-1 Encryption: 3DES SA Life (seconds): 28800 To display all IKE policy settings: switch:admin> policy --show ike all IKE Policy 1 Authentication Algorithm: SHA-1 Encryption: AES-128 Perfect Forward Secrecy: on Diffie-Hellman Group: 1 SA Life (seconds): 28800 IKE Policy 29 Authentication Algorithm: SHA-1 Encryption: AES-128 Perfect Forward Secrecy: on Diffie-Hellman Group: 1 SA Life (seconds): 28800 Operation Succeeded 528 Fabric OS Command Reference 53-1001186-01