beautypg.com

Brocade Virtual ADX Global Server Load Balancing Guide (Supporting ADX v03.1.00) User Manual

Page 66

background image

56

Brocade Virtual ADX Global Server Load Balancing Guide

53-1003245-01

Secure GSLB

1

The IP address parameter specifies peer IP address this device talks to. The name parameter
specifies the host name of local device. The decimal parameter specifies TCP port used for the
key exchange communication, such as the following.

Virtual ADX(config)#crypto key-exchange 10.1.1.1 test 111

4. Bob receives David's public key. The fingerprint is printed on Bob's screen. Both Bob and David

read out the fingerprint and verify they match.

SLB-Site-Virtual ADX(config)#

Public key for Ctrl-Virtual ADX:

Serial Number

Fingerprint 7355edda 95906e7e f04e38a3 61f640fa c2e61fa7

Add this public key to the configuration?(enter 'y' or 'n'):

If they are the same, Bob answers `Y' to accept David's public key.

5. David waits for Bob to send his public key.

Wait for peer to send a key(enter 'y' or 'n'): y

Waiting ....

6. Bob sends back his public key.

Send peer a key in return(enter 'y' or 'n'): y

Public key for Site-Virtual ADX:

Serial Number

Fingerprint 92c8e6a2 cfe214e8 2645886f 2c7c6379 e0bfd96e

7. On David's device, Bob's fingerprint is displayed. Once again, both Bob and David read out the

fingerprint to verify the key.

SLB-Ctrl-Virtual ADX(config)#

Public key for Site-Virtual ADX:

Serial Number

Fingerprint 92c8e6a2 cfe214e8 2645886f 2c7c6379 e0bfd96e

8. David accepts Bob's public key and adds it to his database. The key exchange is complete.

Add this public key to the configuration?(enter 'y' or 'n'): y

9. After the key-exchange (fingerprint) takes place, the key must be saved on both the controller

and site ADX device using the crypto key-exchange save-peer-key command. Notice there is an
erase-peer-key option also.

SLB-Ctrl-Virtual ADX(config)#crypto key-exchange ?

A.B.C.D IP address of peer

erase-peer-key Erase peer public key in flash

passive

save-peer-key Save peer public key into flash

SLB-Ctrl-Virtual ADX(config)#crypto key-exchange save-peer-key

See also other documents in the category Brocade Computer Accessories: