Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 2009)
246 Web Tools Administrator’s Guide
53-1001194-01
IPSec over FCIP
17
IPSec over FCIP
7500 extension switches and FR4-81i blades use FCIP protocol to IP to carry Fibre Channel traffic
over IP networks. IPSec can be used to secure the IP flows over an FCIP tunnel.
At a high level, the steps to take are as follows:
• Access the IPSec Policies dialog box.
• Create an IKE policy for authentication.
• Create a security association (SA).
• Create an SA proposal.
• Add an IPSec Transform policy, referencing the IKE policy and the SA proposal.
• Add an IPSec selector that allows you to apply a Transform policy to a specific IP flow.
• Enable the policy.
Accessing the IPSec Policies dialog box
1. Open the Switch Administration window.
2. Select Show Advanced Mode.
3. Select the Security Policies tab.
4. Under Security Policies, select IPSec Policies.
The IPSec Policies window is displayed. The default view shows the IKE tab.
FIGURE 120 IKE Policies (FCIP)