- Foundry Router User Guide
Security Features
June 2004 © 2004 Foundry Networks, Inc. 15 - 61
Security Protocol Defaults
This section provides information about IPSec supported protocols and modes, encryption algorithms and block
sizes, and Foundry IPSec and IKE default values.
IPSec Supported Protocols and Algorithms
The following tables provide supported protocol and algorithm information.
Table 15.1: IPSec Protocols Support
Supported Security
Protocols
Mode
ESP Tunnel
Transport
AH Tunnel
Transport
Table 15.2: Encryption Algorithms
Encryption Algorithms for ESP Block Size
Data Encryption Standard (DES) 56 bits
Triple Data Encryption Standard
(3DES)
168 bits
Advanced Encryption Standard (AES-
128)
128 bits
Advanced Encryption Standard (AES-
192)
192 bits
Advanced Encryption Standard (AES-
256)
256 bits
Null Encryption
Foundry/configure# firewall corp
Foundry/configure/firewall corp# object
Foundry/configure/firewall corp/object# nat-pool addresspoolPat
pat 50.1.1.5
Foundry/configure/firewall corp/object# exit
Foundry/configure/firewall corp# policy 2 out address 10.1.1.1
10.1.1.3 any any
Foundry/configure/firewall corp/policy 2 out# apply-object nat-
pool addresspoolPat
Foundry/configure/firewall corp/policy 2 out# exit 2
Foundry/configure#