Brocade Mobility RFS7000-GR Controller System Reference Guide (Supporting software release 4.1.0.0-040GR and later) User Manual

386

Brocade Mobility RFS7000-GR Controller System Reference Guide

53-1001944-01

Configuring IPSec VPN

6

1. Select Security > IPSec VPN from the main menu tree.

2. Click the Configuration tab.

3. Select an existing transform set and click the Edit button.

4. Revise the following information as required to render the existing transform set useful.

5. Refer to the Status field for the state of the requests made from applet. This field displays error

messages if something goes wrong in the transaction between the applet and the switch.

6. Click OK to use the changes to the running configuration and close the dialog.

7. Click Cancel to close the dialog without committing updates to the running configuration.

Name

The name is read-only and cannot be modified unless a new transform set is
created.

ESP Encryption Scheme

Select the Use ESP

checkbox (if necessary) to modify the ESP Encryption Scheme.

Options include:

•

None - No ESP encryption is used with the transform set.

•

ESP-DES - ESP with the 56-bit DES encryption algorithm.

•

ESP-3DES - ESP with 3DES, ESP with AES.

•

ESP-AES - ESP with 3DES, ESP with AES (128 bit key).

•

ESP-AES 192 - ESP with 3DES, ESP with AES (192 bit key).

•

ESP-AES 256 - ESP with 3DES, ESP with AES (256 bit key).

ESP Authentication
Scheme

Select the Use ESP checkbox (if necessary) to modify the ESP Authentication
Scheme. Options include:

•

None - No ESP authentication is used with the transform set.

•

MD5-HMAC - AH with the MD5 (HMAC variant) authentication algorithm.

•

SHA-HMAC - AH with the SHA (HMAC variant) authentication algorithm.

Mode

Modify (if necessary) the current mode used with the transform set. The mode is
either Tunnel or Transport.