Motorola WS5100 Series Reference Manual page 313
Hide thumbs
Also See for WS5100 Series:
- Cli reference manual (492 pages) ,
- Migration giude (198 pages) ,
- Troubleshooting manual (100 pages)
Table of Contents
Advertisement
Authentication Type
Displays the authentication scheme used to validate the identity of each peer. Pre-
shared keys do not scale accurately with a growing network but are easier to
maintain in a small network. Options include:
• Pre-shared Key - Uses pre-shared keys.
• RSA Signature - Uses a digital certificate with keys generated by the RSA
signatures algorithm.
SA Lifetime
Displays an integer for the SA lifetime. The default is 60 seconds. With longer
lifetimes, security defines future IPSec security associations quickly. Encryption
strength is great enough to ensure security without using fast rekey times.
Motorola recommends using the default value.
DH Group
Displays the Diffie-Hellman (DH) group identifier. IPSec peers use the defined
value to derive a shared secret without transmitting it to one another.
NOTE: 192-bit AES and 256-bit AES are not supported for manual IPSec sa
configurations.
4. Highlight an existing policy and click the
scheme, hash value, authentication scheme, SA lifetime and DH group.
5. Select an existing policy and click the
6. If the properties of an existing policy are no longer relevant and cannot be edited to be useful, click the
Add
button to define a new policy.
Edit
button to revise the policy's existing priority, encryption
Delete
button to remove it from the table.
6-43
Switch Security
- Quick Links:
- Accessing the Switch Web Ui
Hide quick links:
Advertisement
Table of Contents
