Brocade Fabric OS Command Reference Manual - Supporting Fabric OS v5.3.0 (53-1000436-01, June 2007)
442 Fabric OS Command Reference Manual
53-1000436-01
policy
2
-seclife seconds Security association lifetime in seconds. A new key is renegotiated before
seconds expires. seconds must be between 28800 to 250000000 or 0. The
default is 28800.
Examples To create a new policy:
switch:admin> policy --create ike 10 -enc 3des -auth md5
The following policy has been set:
IKE policy 10
-----------------------------------------
Authentication Algorithm: MD5
Encryption: 3DES
Perfect Forward Secrecy: 0
Diffie-Hellman Group: 1
SA Life (seconds): 28800
To display a policy setting:
switch:admin> policy --show ipsec 1
IPSec policy 1
-----------------------------------------
Authentication Algorithm: SHA-1
Encryption: 3DES
SA Life (seconds): 28800
To display all IKE policy settings:
switch:admin> policy --show ike all
IKE Policy 1
-----------------------------------------
Authentication Algorithm: SHA-1
Encryption: AES-128
Perfect Forward Secrecy: on
Diffie-Hellman Group: 1
SA Life (seconds): 28800
IKE Policy 29
-----------------------------------------
Authentication Algorithm: SHA-1
Encryption: AES-128
Perfect Forward Secrecy: on
Diffie-Hellman Group: 1
SA Life (seconds): 28800
Operation Succeeded
To display all IPSec policy settings:
switch:admin> policy --show ipsec all
IPSec Policy 2
-----------------------------------------
Authentication Algorithm: SHA-1
Encryption: AES-128
SA Life (seconds): 28800
IPSec Policy 29
-----------------------------------------