HP StorageWorks 4/64 Brocade Fabric OS Command Reference Guide v6.1.0 (53-1000 - Page 446
policy, Specifies the numeric ID of the policy. Valid values are 1 to 32, and ALL
View all HP StorageWorks 4/64 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 446 highlights
2 policy policy Displays or modifies the encryption and authentication algorithms for security policies. Synopsis policy option type number [-enc method] [-auth algorithm] [-pfs value] [-dh group] [-seclife seconds] Description Use this command to display or modify the encryption and authentication algorithms for security policies. You can configure a maximum of 32 Internet key exchange (IKE) and 32 Internet protocol security (IPSec) policies. Each FCIP tunnel is configured separately and may have the same or different IKE and IPSec policies. Policies cannot be altered. To change the parameters associated with a current IKE or IPSec policy, that policy must be deleted and re-created with new parameters. A policy cannot be deleted while an active FCIP tunnel is using it. Note The execution of this command is subject to Admin Domain restrictions that may be in place. The execution of this command is subject to Admin Domain restrictions that may be in place. Refer to chapter 1, "Understanding Admin Domain Restrictions" and Appendix A, "Command Availability" for details. Operands option --create --delete --show type ike ipsec number Specifies the action to take. Actions include: Creates the policy. Deletes the policy. Displays the policy. Specifies the policy type. Types include: Internet key exchange. Internet protocol security. Specifies the numeric ID of the policy. Valid values are 1 to 32, and ALL with the --show option. Optional Operands -enc method 3DES AES-128 AES-256 -auth algorithm SHA-1 MD5 AES-XCBC -pfs value Specifies the encryption algorithm. The default is AES-128. Methods include: Triple data encryption standard, 168-bit key. Advanced encryption standard, 128-bit key. Advanced encryption standard, 256-bit key. Specifies the authentication algorithm. The default is SHA-1. Algorithms include: Secure hash algorithm. Message digest 5. Advanced encryption standard. Valid only with IPSec. Specifies the perfect forward secrecy. This operand is valid only with IKE policies. Values are on (default) or off. 420 Fabric OS Command Reference 53-1000599-02