Table of Contents
Advertisement
Configuring Encryption Services
The Encryption Service Adapter (ESA) is a high-performance data encryption
module that offloads some of the encryption processing from the Catalyst 4224
main processor and improves performance. The ESA implements data encryption
and authentication algorithms on the Catalyst 4224 through a software service
called a crypto engine.
The ESA includes a public key math processor and a hardware random number
generator. These features support public key cryptography for key generation,
exchange, and authentication. The ESA can encrypt and authenticate two
full-duplex T1 or two E1 communication links.
Each data line can be channelized with a separate encryption context. The ESA
uses Public Key (PK) technology based on the concept of the Protected Entity
(PE) and employs IPSec Data Encryption Standard (DES) 56-bit and 3(Triple)
DES 168-bit encryption to ensure that secure data and information can be
transferred between similarly equipped hosts on your network.
This section details how to configure the ESA and includes the following topics:
•
•
•
OL-2031-02
Configuring the Encryption Service Adapter, page 11-2
Verifying the Configuration, page 11-9
Sample Configurations, page 11-9
Catalyst 4224 Access Gateway Switch Software Configuration Guide
C H A P T E R
11
11-1
Advertisement
Table of Contents
Troubleshooting
