Manualshelf

Deployment Guide

ManualsBrandsDell ManualsserversDell Brocade 6520
231232233234235236237238239240
1. Select the SA(Manual) tab.
2. Select Add.
The Add Manual-SA dialog box displays.
3. Enter a security parameter index number in the SPI (Hexadecimal) field.
The SPI must be manually applied when manually adding an SA.
4. Enter the IP address of the endpoint that sends the SA in the Source IP Address field.
5. Enter the IP address of the endpoint that receives the SA in the Peer IP Address field.
6. Select the protocol used to carry the transmission using the Protocol Name selector.
7. Select the Traffic Flow Direction (in or out).
IPsec policies are unidirectional, and must be applied separately to inbound and outbound flows.
For the flow from peer to source, select in.
For the flow from source to peer select out.
8. Select the IPsec Mode.
The choices are Transport or Tunnel. Refer to Transport mode and tunnel mode on page 224 if
you are unfamiliar with Transport and Tunnel modes.
9. Select the IPsec Protocol.
The choices are ah (for authentication header) and esp (for encapsulated security protocol).
10.Select the IPsec Protection Type option.
11.Select the Authentication Algorithm option.
12.Enter or copy a generated encryption key in the Encryption Key field.
13.Select the Encryption Algorithm.
14.Enter or copy a generated authentication key in the Authentication Key field.
15.Optional: Enter a local and peer tunnel IP address.
16.Click OK.
Editing an IKE or IPsec policy
An existing IKE or IPsec policy can be edited.
To edit an IKE or IPsec policy, perform the following steps.
1. Open the Switch Administration window.
2. Click Show Advanced Mode.
3. Select the Security Policies tab.
4. Under Security Policies, select Ethernet IPsec or Ethernet IPsec.
5. Select the policy you want to edit.
6. Select Edit.
An Edit Policy dialog box displays.
7. Edit the policy as needed.
8. Click OK.
Deleting an IKE or IPsec policy
You can delete one or more IKE or IPsec policies.
To delete an IKE or IPsec policy, perform the following steps.
Editing an IKE or IPsec policy
232 Web Tools Administrator's Guide
53-1003169-01