Send documentation comments to mdsfeedback-doc@cisco.com
22-3
Cisco MDS 9000 Family Troubleshooting Guide, Release 3.x
OL-9285-05
Chapter 22 Troubleshooting IPsec
Overview
IKE Allowed Transforms
Table 22-2 provides a list of allowed transform combinations for IKE.
Table 22-1 IPsec and IKE for Windows and Linux
Platform IKE IPsec
Microsoft iSCSI initiator,
Microsoft IPsec implementation
on Microsoft Windows 2000
platform
3DES, SHA-1 or MD5,
DH group 2
3DES, SHA-1
Cisco iSCSI initiator,
Free Swan IPsec implementation
on Linux platform
3DES, MD5, DH group 1 3DES, MD5
Table 22-2 IKE Transform Configuration Parameters
Parameter Accepted Values Default Value
Encryption algorithm 56-bit DES-CBC
168-bit DES (3DES)
128-bit AES
3DES
Hash algorithm SHA-1 (HMAC variant)
MD5 (HMAC variant)
SHA-1
Authentication method Preshared keys
RSA signatures in digital
certificates
Preshared keys
DH group identifier 768-bit DH
1024-bit DH
1536-bit DH
768-bit DH (1)
To Next Page
Loading...
Need help?
General