beautypg.com

Crypto ipsec transform-set

Page 329

background image

Command Reference Guide

Global Configuration Mode Command Set

61200990L1-35E

Copyright © 2005 ADTRAN

329

crypto ipsec transform-set

Use the crypto ipsec transform-set command to define the transform configuration for securing data
(e.g., esp-3des, esp-sha-hmac, etc.). The transform set is then assigned to a crypto map using the map’s
set transform-set command. Refer to set transform-set

on page 1051

.

Syntax Description

Assigns a name to the transform set you are about to define.

Assigns a combination of up to three security algorithms. This field is a valid
combination of the following:

ah-md5-hmac, ah-sha-hmac

esp-des, esp-3des, esp-aes-128-cbc, esp-aes-192-cbc, esp-aes-256-cbc,
esp-null

esp-md5-hmac, esp-sha-hmac

Default Values

There are no default settings for this command.

Applicable Platforms

This command applies to the NetVanta 300, 1000R, 2000, 3000, and 4000 and Total Access 900 Series
units.

Command History

Release 4.1

Command was introduced.

Functional Notes

Crypto map entries do not directly contain the transform configuration for securing data. Instead, the crypto
map is associated with transform sets which contain specific security algorithms.

If no transform set is configured for a crypto map, the entry is incomplete and will have no effect on the
system.

For VPN configuration example scripts, refer to the technical support note VPN
Configuration Guide located on the ADTRAN OS Documentation CD provided with
your unit.

See also other documents in the category ADTRAN Hardware: