4 – Network Configuration
Managing IP Security
4-8 59263-02 A
S
A security association defines the encryption algorithm and encryption key to
apply when called by a security policy. A security policy may call several
associations at different times, but each association is related to only one policy.
The security association database is the set of all security associations.
IP Security configurations can be complex: it is possible to unintentionally
configure policies and associations that isolate a switch from all communication. If
this happens, you can disable IP Security by placing the switch in maintenance
mode, and correct the problem through the serial port interface. Refer to the
SANbox 5800V Series Stackable Fibre Channel Switch Installation Guide for
information about using maintenance mode and connecting through the serial
port.
Displaying IP Security Information
You can display the security policy and security association databases in the
following ways:
îš„ Active policies and associations; that is, policies and associations currently
in use
îš„ Configured policies and associations; that is, policies and associations that
have been saved in the database
îš„ Policies and associations that are being edited, but have not been saved
You can display the following types of IP Security configuration information:
îš„ Policy and Association Information
îš„ IP Security Configuration History
îš„ IP Security Configuration Limits
Policy and Association Information
To display general or specific policy and association information, enter the
Ipsec List command. The Ipsec List command does not require an Admin session
nor an Ipsec Edit session. Within an Ipsec Edit session, the Ipsec Association List
and Ipsec Policy List commands display the same information.
To Next Page
Loading...
Need help?
General
