Command Reference Guide
3Com Router 3000 Ethernet Family
Command Reference Guide
Chapter 5 IPSec Configuration Commands
3Com Corporation
5-14
The undo esp authentication-algorithm command is not used to restore the
authentication algorithm to the default; instead it is used to set the authentication
algorithm to vacant, i.e. not authentication. When the encryption algorithm is not vacant,
the undo esp authentication-algorithm command is valid.
The proposal used by the ipsec policies set at both ends of the security tunnel must be
set as having the same authentication algorithm.
Related command: ipsec proposal, esp encryption-algorithm, proposal,
transform.
Example
# Set a proposal that adopts ESP, and uses SHA1.
[3Com] ipsec proposal prop1
[3Com-ipsec-proposal- prop1] transform esp
[3Com-ipsec-proposal- prop1] esp authentication-algorithm sha1
5.1.10 esp encryption-algorithm
Syntax
esp encryption-algorithm { 3des | des | aes [ 128 | 192 | 256 ] }
undo esp encryption-algorithm
View
IPSec proposal view
Parameter
des: Data Encryption Standard (DES), a universal encryption algorithm with the length
of the key being 56 bits.
3des: 3DES (Triple DES), another universal encryption algorithm with the length of the
key being 168 bits.
aes [ 128 | 192 | 256 ]: Advanced encryption standard (AES), an encryption algorithm
conforming to IETF standards. 128, 192, and 256 are available key lengths. The default
is 128 bits.
Description
Use the esp encryption-algorithm command to set the encryption algorithm adopted
by ESP.
Use the undo esp encryption-algorithm command to set the ESP not to encrypt
packets.
By default, DES algorithm is used.