HP StorageWorks 8/20q HP StorageWorks 8/20q Fibre Channel Switch command line - Page 175
Direction, Priority, Action, ProtectionDesired, ahRuleLevel, ipsec save
View all HP StorageWorks 8/20q manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 175 highlights
Table 15 Policy configuration parameters (continued) Parameter Direction Priority Action ProtectionDesired ahRuleLevel espRuleLevel Description Direction of the data traffic to which the policy is to be applied: • In-Data entering the source • Out-Data leaving the source A number from -2147483647 to +214783647 that determines priority for this policy in the security policy database. The higher the number, the higher the priority. Processing to apply to data traffic: • Discard-Unconditionally disallow all inbound or outbound data traffic. • None-Allow all inbound or outbound data traffic without encryption or decryption. • Ipsec-Apply IP security to inbound and outbound data traffic. Type of IP security protection to apply: • AH-Authentication Header • ESP-Encapsulating Security Payload • Both-Apply both AH and ESP protection Rule level to apply for AH protection: • Default-Use the system wide default for the protocol • Use-Use a security association if one is available • Require-A security association is required whenever a packet is sent that is matched with the policy Rule level to apply for ESP protection: • Default-Use the system wide default for the protocol • Use-Use a security association if one is available • Require-A security association is required whenever a packet is sent that is matched with the policy Operands delete [policy] Deletes the policy given by [policy] from the Security Policy database. You must enter the ipsec save command afterwards to save your changes. edit [policy] Opens an edit session in which to change the configuration of an existing policy given by [policy]. list [option] Displays the configuration for the policies given by [option]. If you omit [option], the command displays the configuration of all active policies. [option] can be one of the following: [policy] Displays the configuration for the policy given by [policy]. active Displays the configuration for all active policies. configured Displays the configuration for all user-defined policies. edited Displays the configuration for all policies that have been modified, but not saved. 8/20q Fibre Channel Switch command line interface guide 175