1 editing an existing transform set – Motorola Series Switch WS5100 User Manual
Page 270
6-46 WS5100 Series Switch System Reference Guide
4. Refer to the
Transform Sets
field to view the following data:
5. Select a IPSec VPN transform set (by its index) and click the
Edit
button to modify its properties.
6. s only recommended if the existing index is no longer relevant in its current state. For more information,
see
Editing an Existing Transform Set on page 6-46
.
7. Select an index and click the
Delete
button to remove it from the table.
8. If none of the transform sets displayed appear useful, click on the Add button to create a new one. For
more information, see
Adding a New Transform Set on page 6-47
6.8.1.1 Editing an Existing Transform Set
If the attributes of an existing transform set no longer lend themselves as useful, consider editing the
transform set to be relevant with the needs of existing VPN peers.
To edit the attributes of an existing transform set:
1. Select
Security
>
IPSec VPN
from the main menu tree.
2. Click the
Configuration
tab.
3. Select an existing transform set and click the
Edit
button.
Name
Displays a transform set identifier used to differentiate transform sets. The index is helpful
when transform sets with similar attributes need to be revised or discarded.
AH Authentication
Scheme
Displays the AH Transform Authentication scheme used with the index. Options include:
• None - No AH authentication is used.
• AH-MD5-HMAC - AH with the MD5 (HMAC variant) authentication algorithm.
• AH-SHA-HMAC - AH with the SHA (HMAC variant) authentication algorithm.
ESP Encryption
Scheme
Displays the ESP Encryption Transform used with the index. Options include:
• None - No ESP encryption is used with the transform set.
• ESP-DES - ESP with the 56-bit DES encryption algorithm.
• ESP-3DES - ESP with 3DES, ESP with AES.
• ESP-AES - ESP with 3DES, ESP with AES (128 bit key).
• ESP-AES 192 - ESP with 3DES, ESP with AES (192 bit key).
• ESP-AES 256- ESP with 3DES, ESP with AES (256 bit key)
ESP Authentication
Scheme
Displays the ESP Authentication Transform used with the index. Options include:
• None - No ESP authentication is used with the transform set.
• MD5-HMAC - AH with the MD5 (HMAC variant) authentication algorithm.
• SHA-HMAC - AH with the SHA (HMAC variant) authentication algorithm.
Mode
Displays the current mode used with the transform set. The mode is either tunnel or
transport.