Brocade Mobility RFS Controller System Reference Guide (Supporting software release 5.5.0.0 and later) User Manual

Brocade Mobility RFS Controller System Reference Guide

485

53-1003099-01

8

FIGURE 65

Profile Security - VPN Transform Set create/modify screen

Define the following settings for the new or modified transform set configuration:

Select OK to save the changes made within the Transform Set screen. Select Reset to revert to the
last saved configuration

Select the Crypto Map tab.

Use crypto maps (as applied to IPSec VPN) to combine the elements used to create IPSec SAs
(including transform sets).

Name

If creating a new transform set, define a 32 character maximum name to differentiate this
configuration from others with similar attributes.

Authentication Algorithm

Set the transform sets’s authentication scheme used to validate identity credentials. Use
the drop-down menu to select either HMAC-SHA or HMAC-MD5. The default setting is
HMAC-SHA.

Encryption Algorithm

Set the transform set encryption method for protecting transmitted traffic. Options include
DES, 3DES, AES, AES-192 and AES-256. The default setting is AES-256.

Mode

Use the drop-down menu to select either Tunnel or Transport as the IPSec tunnel type used
with the transform set. Tunnel is used for site-to-site VPN and Transport should be used for
remote VPN deployments.