Manualshelf

HP StorageWorks Enterprise File Services WAN Accelerator 3.0.4 Command-Line Interface reference manual (AG421-96004, March 2007)

ManualsBrandsHP ManualsSoftwareHP StorageWorks Enterprise File Services (EFS) DL320-M25 WAN Accelerator Manager
121122123124125126127128129130
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL 125
4 - CONFIGURATION-MODE
C
OMMANDS
ip security encryption policy
Description Sets the encryption algorithms in order of priority. You must specify at least one
algorithm. The algorithm is used to encrypt each packet sent using IPsec.
Syntax ip security encryption policy <algorithm> [<algorithm>]
Parameters
Example
minna (config) # ip security encryption policy des
minna (config) #
ip security peer ip
Description Sets the peer HP EFS WAN Accelerator for which you want to make a secure
connection. If IPsec is enabled on this HP EFS WAN Accelerator, then it must also be
enabled on all HP EFS WAN Accelerators in the IP security peers list; otherwise this
HP EFS WAN Accelerator will not be able to make optimized connections with those
peers that are not running IPsec.
The no command option disables the peer.
IMPORTANT: If IPsec is enabled, then each peer HP EFS WAN Accelerator must also have
IPsec correctly configured for optimization to occur.
Syntax [no] ip security peer ip <addr>
Parameters
Example
minna (config) # ip security peer ip 10.0.0.2
minna (config) #
ip security pfs enable
Description Enables Perfect Forward Secrecy. Perfect Forward Secrecy provides additional
security by renegotiating keys at specified intervals. With Perfect Forward Secrecy, if
one key is compromised, previous and subsequent keys are secure because they are
not derived from previous keys.
<algorithm> Specifies the primary algorithm:
•des. The Data Encryption Standard (DES). The default value is
des.
null_enc. The null encryption algorithm.
<algorithm> Specifies the alternate algorithm: des and null_enc.
<addr> Specifies the peer IP address.