Configuring manual key settings – Brocade Mobility 7131N-FGR Access Point Product Reference Guide (Supporting software release 4.0.0.0-35GRN and later) User Manual

Brocade Mobility 7131N-FGR Product Reference Guide

183

53-1001947-01

Configuring VPN tunnels

6

Notice the status displays "NOT_ACTIVE". This screen automatically refreshes to get the
current status of the VPN tunnel. Once the tunnel is active, the IKE_STATE changes from
NOT_CONNECTED to SA_MATURE.

19. On AP #2, repeat the same steps as above. However, replace AP #2 information with AP #1

information.

20. Once both tunnels are established, ping each side to ensure connectivity.

Configuring manual key settings

A transform set is a combination of security protocols and algorithms applied to IPSec protected
traffic. During security association (SA) negotiation, both gateways agree to use a particular
transform set to protect data flow.

A transform set specifies one or two IPSec security protocols (either AH, ESP, or both) and specifies
the algorithms to use for the selected security protocol. If you specify an ESP protocol in a transform
set, specify just an ESP encryption transform or both an ESP encryption transform and an ESP
authentication transform.

When the particular transform set is used during negotiations for IPSec SAs, the entire transform
set (the combination of protocols, algorithms, and other settings) must match a transform set at
the remote end of the gateway.

Use the Manual Key Settings screen to specify the transform sets used for VPN access.

To configure manual key settings for the Brocade Mobility 7131N-FGR Access Point: