Reference Guide
Brocade Fabric OS Command Reference 445
53-1004112-02
ipSecConfig
-enc algorithm
Specifies the encryption algorithm. This operand is required. Valid algorithms include
the following:
3des_cbc
3DES encryption algorithm
blowfish_cbc
Blowfish encryption algorithm
null_enc
Null encryption algorithm
aes256_cb
AES-256 algorithm
-spi number
Specifies the security parameter index (SPI) for the SA. This is a user-defined index.
Valid SPI numbers consist of numeric characters (0-9). This operand is optional.
policy ike
Creates or modifies an IKE policy configuration. No subtype is required with this command.
The command defines the following IKE policy parameters: IKE version, IP address of the
remote entity, IP address of the local entity, encryption algorithm, hash algorithm, PRF
algorithm, DH group, authentication method, path and filename of the preshared key. The
syntax is as follows: ipsecConfig --add | --modify ike arguments.
arguments
Valid arguments for policy ike include the following:
-tag name
Specifies a name for the IKE policy. This is a user-generated name. The name must be
between 1 and 32 characters in length, and may include alphanumeric characters,
dashes (-), and underscores (_). This operand is required.
remote IP_address[/prefixlength]
Specifies the peer IPv4 or IPv6 address and prefix.
-id identifier
Specifies the local identifier. The switch is identified by its IPv4 or IPv6 address.
-remoteid identifier
Specifies the peer identifier. The remote peer is identified by its IPv4 or IPv6 address.
-enc algorithm
Specifies the encryption algorithm. Valid encryption algorithms include the following:
3des_cbc
DES algorithm
blowfish_cbc
Blowfish algorithm
aes128_cbc
AES 128-bit algorithm