Enabling encryption – HP StorageWorks Enterprise File Services WAN Accelerator User Manual

58

2 C

ONFIGURING

THE

HP EFS WAN A

CCELERATOR

3. Use the controls to complete the configuration, as described in the following table.

4. Click Update Settings to apply your settings to the running configuration.

5. Click Save to write your settings to memory or click Reset to return the settings to

their previous values.

Enabling
Encryption

You configure IP Security Protocol (IPsec) encryption to allow data to be
communicated securely between peer appliances in the Advanced Networking -
Encryption page.

Enabling IPsec encryption makes it difficult for a third party to view your data or pose
as a machine you expect to receive data from. To enable IPsec, you must specify at
least one encryption and authentication algorithm. Only optimized data is protected,
pass-through traffic is not.

Enabling IPsec support is optional.

IMPORTANT: You must set IPsec support on each peer HP EFS WAN Accelerator in your
network for which you want to establish a secure connection. You must also specify a shared
secret on each peer appliance.

Control

Description

Add New Entry

Neighbor IP. Type the in-path IP address for the neighbor appliance in the text box.

When you define a neighbor, you must specify the appliance in-path IP address, not the
primary IP address.

Neighbor Port. Type the in-path port for the neighbor appliance in the text box. The
default is 7850.

Add Peer. To add a neighbor to the peer list, click Add Peer.

Remove Selected Entries. To remove a neighbor from the peer list, select it and click
Remove Selected Entries.

Global Settings

Enable Connection Forwarding. Check the box to enable connection forwarding by
default on all neighbors added to the peer list.

Port. Type a port number to use as the default for neighbor appliance in-path port. The
default is 7850.

Keep-Alive Interval. Type a number of seconds to use as the default interval for ping
commands between neighbor appliances. The default is 10.

Keep-Alive Count. Type a number of tries to use as the default number of failed ping
attempts before an appliance terminates a connection with a neighbor. The default value
is 3.

Update Settings. If you update any of the global settings, click Update Settings to apply
them to entries in the peer list.