Brocade Mobility RFS Controller System Reference Guide (Supporting software release 5.5.0.0 and later) User Manual

Brocade Mobility RFS Controller System Reference Guide

193

53-1003099-01

5

Select Next to proceed to the fourth configuration screen. Use the Back button to navigate to the
previous step.

If any of the required values within the step 3 screen are not set properly, the fourth wizard
screen will not display until they are properly set.

FIGURE 89

VPN Step-By-Step Wizard - Step 4

Encryption

This field is enabled when Create New Policy is selected in Transform Set field. This is the encryption
used on data traversing through the tunnel. Select either esp-null, des, 3des, aes, aes-192 or aes-256.

Authentication

This field is enabled when Create New Policy is selected in Transform Set field. This is how peers
authenticate as the source of the packet to the other peers after a VPN tunnel has been created. Select
either MD5 or SHA.

Mode

This field is enabled when Create New Policy is selected in Transform Set field. This indicates how
packets are transported through the tunnel.

•

Tunnel – Use this mode when the Tunnel is between two routers or servers.

•

Transport – Use this mode when the Tunnel is created between a client and a server.

Security Association

Configures the lifetime of a security association (SA). Keys and SAs should be periodically renewed to
maintain security of the tunnel. The field defines the parameters that set the lifetime of a security
association.

•

Lifetime – Set the duration (in seconds) after which the keys should be changed. Set a value from
500-2,147,413,646 seconds.

•

Data – This is the amount of data in KBs the key can use. The key is changed after this quantity of
data has be encrypted/decrypted. Set a value from 500-2,147,413,646 KBs.