beautypg.com

Crypto-auto-ipsec-tunn el commands, Crypto-auto-ipsec-tunnel commands – Brocade Mobility RFS Controller CLI Reference Guide (Supporting software release 5.5.0.0 and later) User Manual

Page 601

background image

588

Brocade Mobility RFS Controller CLI Reference Guide

53-1003098-01

7

rfs7000-37FABE(config-profile-default-rfs7000)#crypto ipsec transform-set

tag1 esp-null esp-md5-hmac

rfs7000-37FABE(config-profile-default-rfs7000-transform-set-tag1)#?

Crypto Ipsec Configuration commands:

mode Encapsulation mode (transport/tunnel)

no Negate a command or set its defaults

clrscr Clears the display screen

commit Commit all changes made in this session

end End current mode and change to EXEC mode

exit End current mode and down to previous mode

help Description of the interactive help system

revert Revert changes

service Service Commands

show Show running system information

write Write running configuration to memory or terminal

rfs7000-37FABE(config-profile-default-rfs7000-transform-set-tag1)#

Related Commands:

crypto-auto-ipsec-tunnel commands

crypto

Creates an auto IPSec VPN tunnel and changes the mode to auto-ipsec-secure mode for further
configuration

Auto IPSec tunneling provides a secure tunnel between two networked peer controllers or service
platforms and associated access points that are within a range of valid IP addresses. You can
define which packets are sent within the tunnel, and how they are protected. When a tunnelled
peer sees a sensitive packet, it creates a secure tunnel and sends the packet through the tunnel to
its remote peer destination or associated access point.

Tunnels are sets of Security Associations (SA) between two peers. SAs define the protocols and
algorithms applied to sensitive packets and specify the keying mechanisms used by tunnelled
peers. SAs are unidirectional and exist in both the inbound and outbound direction. SAs are
established per the rules and conditions of defined security protocols (AH or ESP).

Internet Key Exchange (IKE) protocol is a key management protocol standard used in conjunction
with IPSec. IKE enhances IPSec by providing additional features, flexibility, and configuration
simplicity for the IPSec standard. IKE enables secure communications without time consuming
manual pre-configuration for auto IPSec tunneling.

.

rfs7000-37FABE(config-profile-default-rfs7000)#crypto auto-ipsec-secure

rfs7000-37FABE(config-profile-default-rfs7000-crypto-auto-ipsec-secure)#?

Crypto Auto IPSEC Tunnel commands:

groupid Local/Remote identity and Authentication credentials for Auto

IPSec Secure IKE negotiation

ike-lifetime Set lifetime for ISAKMP security association

ikev2 IKEv2 configuration commands

ip Internet Protocol config commands

no Negate a command or set its defaults

remotegw Auto IPSec Secure Remote Peer IKE

no

Disables or reverts settings to their default

See also other documents in the category Brocade Computer Accessories: