Manualshelf

HP StorageWorks Enterprise File Services WAN Accelerator 3.0.4 Command-Line Interface reference manual (AG421-96004, March 2007)

ManualsBrandsHP ManualsSoftwareHP StorageWorks Enterprise File Services (EFS) DL320-M25 WAN Accelerator Manager
121122123124125126127128129130
124 4 - CONFIGURATION-MODE COMMANDS
Parameters
Example
minna (config) # ip security authentication policy hmac_md5
minna (config) #
ip security enable
Description Enables encryption and authentication support using the IP Security Protocol (IPsec).
The no command option disables encryption and authentication support.
Enabling IPsec support makes it difficult for a third party to view your data or pose as
a machine you expect to receive data from. You must also specify a shared secret to
enable IPsec support.
IMPORTANT: You must set IPsec support on each HP EFS WAN Accelerator with which you
want to establish a secure connection.
NOTE: To enable IPsec authentication, you must have at least one encryption and
authentication algorithm specified.
NOTE: If you Network Address Translate (NAT) traffic between HP EFS WAN Accelerators,
you cannot use the IPSEC channel between the appliances because the NAT changes the packet
headers causing IPSEC to reject them.
Syntax [no] ip security enable
Parameters None
minna (config) # ip security enable
minna (config) #
<policy> Specifies the primary policy (method 1):
•hmac_md5. Message-Digest algorithm 5 (MD5) is a widely-used
cryptographic hash function with a 128-bit hash value. The
default value is hmac_md5.
hmac_sha1.
Secure Hash Algorithm (SHA1) is a set of related
cryptographic hash functions. SHA-1 is considered to be the
successor to MD5.
<policy> Specifies the secondary policy (method 2): hmac_md5,
hmac_sha1.