193
ah authentication-algorithm { aes-xcbc-mac | md5 | sha1 | sha256 | sha384 | sha512 | sm3 } *
undo ah authentication-algorithm
In FIPS mode:
ah authentication-algorithm { sha1 | sha256 | sha384 | sha512 } *
undo ah authentication-algorithm
Views
IPsec transform set view
Change description
The following keywords were added:
aes-xcbc-mac: Specifies the HMAC-AES-XCBC-MAC algorithm, which uses a 128-bit key.
This keyword is available only for IKEv2.
sha256: Specifies the HMAC-SHA256 algorithm, which uses a 256-bit key. This keyword is
available only for IKEv2.
sha384: Specifies the HMAC-SHA384 algorithm, which uses a 384-bit key. This keyword is
available only for IKEv2.
sha512: Specifies the HMAC-SHA512 algorithm, which uses a 512-bit key. This keyword is
available only for IKEv2.
New command: esn enable
Use esn enable to enable the Extended Sequence Number (ESN) feature.
Use undo esn enable to disable ESN.
Syntax
esn enable [ both ]
undo esn enable
Default
ESN is disabled.
Views
IPsec transform set view
Predefined user roles
network-admin
Parameters
both: Specifies IPsec to support both extended sequence number and traditional sequence number.
If you do not specify this keyword, IPsec only supports extended sequence number.
To Next Page
Loading...
Need help?
General
