Brocade Mobility RFS Controller System Reference Guide (Supporting software release 5.5.0.0 and later) User Manual

Page 495

Advertising
background image

Brocade Mobility RFS Controller System Reference Guide

483

53-1003099-01

8

Select Add to define a new peer configuration, Edit to modify an existing configuration or Delete to
remove an existing peer configuration. The parameters that can de defined for the peer
configuration vary depending on whether IKEv1 or IKEv2 was selected.

IKE Policy Name

Lists the IKEv1 or IKE v2 policy used with each listed peer configuration. If a policy requires
creation, select the Create button.

Name

If creating a new peer configuration (remote gateway) for VPN tunnel connection, assign it a
32 character maximum name to distinguish it from other with similar attributes.

IP Type or
Select IP/Hostname

Enter either the IP address or FQDN hostname of the IPSec VPN peer used in the tunnel
setup. If IKEv1 is used, this value is titled IP Type, if IKEv2 is used, this parameter is titled
Select IP/Hostname.

Authentication Type

Select either pre-shared key (PSK) or RSA. Rivest, Shamir, and Adleman (RSA) is an
algorithm for public key cryptography. It’s the first algorithm known to be suitable for signing
and encryption If using IKEv2, this screen displays both local and remote authentication
options, as both ends of the VPN connection require authentication. RSA is the default value
for both local and remote authentication (regardless of IKEv1 or IKEv2).

Authentication Value

Define the authentication string (shared secret) shared by both ends of the VPN tunnel
connection. The string must be between 8 - 21 characters long. If using IKEv2, both a local
and remote string must be specified for handshake validation at both ends (local and
remote) of the VPN connection.

Local Identity

Select the local identifier used with this peer configuration for an IKE exchange with the
target VPN IPSec peer. Options include IP Address, Distinguished Name, FQDN, email and
string. The default setting is string.

Remote Identity

Select the remote identifier used with this peer configuration for an IKE exchange with the
target VPN IPSec peer. Options include IP Address, Distinguished Name, FQDN, email and
string. The default setting is string.

IKE Policy Name

Select the IKEv1 or IKE v2 policy name (and settings) to apply to this peer configuration. If a
policy requires creation, select the Create icon.

Advertising
Popular Brands
Popular manuals