Editing an existing transform set – Brocade Mobility RFS7000-GR Controller System Reference Guide (Supporting software release 4.1.0.0-040GR and later) User Manual
Page 399
Brocade Mobility RFS7000-GR Controller System Reference Guide
385
53-1001944-01
Configuring IPSec VPN
6
4. Refer to the Transform Sets field to view the following data:
5. Select an IPSec VPN transform set (by its index) and click the Edit button to modify its
properties. For more information, see
“Editing an existing transform set”
6. Select an index and click the Delete button to remove it from the table.
7. If none of the transform sets displayed appear useful, click the Add button to create a new
one. For more information, see
Editing an existing transform set
If the attributes of an existing transform set no longer lend themselves useful, consider editing the
transform set to be relevant with the needs of existing VPN peers.
To edit the attributes of an existing transform set:
Name
Displays a transform set identifier used to differentiate transform sets. The index is
helpful when transform sets with similar attributes need to be revised or
discarded.
ESP Encryption Scheme
Displays the ESP Encryption Transform used with the index. Options include:
•
None - No ESP encryption is used with the transform set.
•
ESP-DES - ESP with the 56-bit DES encryption algorithm.
•
ESP-3DES - ESP with 3DES, ESP with AES.
•
ESP-AES - ESP with 3DES, ESP with AES (128 bit key).
•
ESP-AES 192 - ESP with 3DES, ESP with AES (192 bit key).
•
ESP-AES 256 - ESP with 3DES, ESP with AES (256 bit key)
ESP Authentication
Scheme
Displays the ESP Authentication Transform used with the index. Options include:
•
None - No ESP authentication is used with the transform set.
•
MD5-HMAC - AH with the MD5 (HMAC variant) authentication algorithm.
•
SHA-HMAC - AH with the SHA (HMAC variant) authentication algorithm.
Mode
Displays the current mode used with the transform set. The mode is either tunnel
or transport.