Switch Security 6-69
2. Click the IKE Policies tab.
3. Refer to the values displayed within the IKE Policies tab to determine if an existing policy requires
revision, removal or a new policy requires creation.
Sequence Number Displays the sequence number for the IKE policy. The available range is from 1 to
10,000, with 1 being the highest priority value.
Encryption Displays the encryption method protecting data transmitted between peers.
Options include:
• DES 56-bit DES-CBC. The default value.
• 3DES - 168-bit Triple DES.
• AES - 128-bit AES.
• AES 192 - 192-bit AES.
• AES 256 - 256-bit AES.
Hash Value Displays the hash algorithm used to ensure data integrity. The hash value
validates a packet comes from its intended destination, and has not been modified
in transit. Options include:
• SHA - The default value.
• MD5 - MD5 has a smaller digest and is somewhat faster than SHA-1.
Authentication Type Displays the authentication scheme used to validate the identity of each peer. Pre-
shared keys do not scale accurately with a growing network but are easier to
maintain in a small network. Options include:
• Pre-shared Key - Uses pre-shared keys.
• RSA Signature - Uses a digital certificate with keys generated by the RSA
signatures algorithm.
To Next Page
Loading...
