Manualshelf

HP StorageWorks Enterprise File Services WAN Accelerator 3.0.4 Command-Line Interface reference manual (AG421-96004, March 2007)

ManualsBrandsHP ManualsSoftwareHP StorageWorks Enterprise File Services (EFS) DL320-M25 WAN Accelerator Manager
121122123124125126127128129130
126 4 - CONFIGURATION-MODE COMMANDS
The no command option disables Perfect Forward Secrecy.
Syntax [no] ip security pfs enable
Parameters None
minna (config) # ip security pfs enable
minna (config) #
ip security rekey interval
Description Sets the time between quick-mode renegotiation of keys by Internet Key Exchange
(IKE). IKE is a method for establishing a security association (SA) that authenticates
users, negotiates the encryption method, and exchanges a secret key. IKE uses public
key cryptography to provide the secure transmission of a secret key to a recipient so
that the encrypted data can be decrypted at the other end.
The no command options resets the interval to the default.
Syntax [no] ip security rekey interval <minutes>
Parameters
minna (config) # ip security rekey interval 30
minna (config) #
ip security shared secret
Description Sets the shared secret used to negotiate and renegotiate secret keys. All HP EFS WAN
Accelerators that need to communicate to each other using IPsec must have the same
key. The ip security shared secret option must be set before IPsec is enabled.
Syntax ip security shared secret <secret>
Parameters
minna (config) # ip security shared secret xxxx
minna (config) #
job command
Description Schedules CLI command execution for a specified time in the future. The job
includes a set of CLI commands and a time when the job will run. Jobs are run one
time only, but they can be reused.
<minutes> Specifies the number of minutes between quick-mode renegotiation
of keys. Value must be a number between 1 and 65535. The default
value is 240.
<secret> Specifies the secret key to ensure Perfect Forward Secrecy security.