beautypg.com

1 editing an existing transform set – Motorola Series Switch WS5100 User Manual

Page 270

background image

6-46 WS5100 Series Switch System Reference Guide

4. Refer to the

Transform Sets

field to view the following data:

5. Select a IPSec VPN transform set (by its index) and click the

Edit

button to modify its properties.

6. s only recommended if the existing index is no longer relevant in its current state. For more information,

see

Editing an Existing Transform Set on page 6-46

.

7. Select an index and click the

Delete

button to remove it from the table.

8. If none of the transform sets displayed appear useful, click on the Add button to create a new one. For

more information, see

Adding a New Transform Set on page 6-47

.

6.8.1.1 Editing an Existing Transform Set

If the attributes of an existing transform set no longer lend themselves as useful, consider editing the
transform set to be relevant with the needs of existing VPN peers.

To edit the attributes of an existing transform set:

1. Select

Security

>

IPSec VPN

from the main menu tree.

2. Click the

Configuration

tab.

3. Select an existing transform set and click the

Edit

button.

Name

Displays a transform set identifier used to differentiate transform sets. The index is helpful
when transform sets with similar attributes need to be revised or discarded.

AH Authentication
Scheme

Displays the AH Transform Authentication scheme used with the index. Options include:

• None - No AH authentication is used.

• AH-MD5-HMAC - AH with the MD5 (HMAC variant) authentication algorithm.

• AH-SHA-HMAC - AH with the SHA (HMAC variant) authentication algorithm.

ESP Encryption
Scheme

Displays the ESP Encryption Transform used with the index. Options include:

• None - No ESP encryption is used with the transform set.

• ESP-DES - ESP with the 56-bit DES encryption algorithm.

• ESP-3DES - ESP with 3DES, ESP with AES.

• ESP-AES - ESP with 3DES, ESP with AES (128 bit key).

• ESP-AES 192 - ESP with 3DES, ESP with AES (192 bit key).

• ESP-AES 256- ESP with 3DES, ESP with AES (256 bit key)

ESP Authentication
Scheme

Displays the ESP Authentication Transform used with the index. Options include:

• None - No ESP authentication is used with the transform set.

• MD5-HMAC - AH with the MD5 (HMAC variant) authentication algorithm.

• SHA-HMAC - AH with the SHA (HMAC variant) authentication algorithm.

Mode

Displays the current mode used with the transform set. The mode is either tunnel or
transport.