Motorola RF Switch CLI Reference Guide
5-28
Usage Guidelines
Follow the table to calculate how many character are required to add the key size for
authentication and encryption. This is used while configuring Manual IPSEC only.
For example, To create a key with authentication type as ESP-SHA and encryption type as
AES-192, enter 20+16=36 characters.
The key size for all the 3 different AES combinations is 128 bits or 16 bytes.
Follow the example below to see how the Auth and Encryption key is created in
(config)# crypto-ipsec instance and used in (config)# crypt-map instance.
RFSwitch(config)#crypto ipsec transform-set Test1 ?
ah-md5-hmac AH-HMAC-MD5 transform
ah-sha-hmac AH-HMAC-SHA transform
esp-3des ESP transform using 3DES cipher (168 bits)
esp-aes ESP transform using AES cipher
esp-aes-192 ESP transform using AES cipher (192 bits)
esp-aes-256 ESP transform using AES cipher (256 bits)
esp-des ESP transform using DES cipher (56 bits)
esp-md5-hmac ESP transform using HMAC-MD5 auth
esp-sha-hmac ESP transform using HMAC-SHA auth
RFSwitch(config)#crypto ipsec transform-set Test1 esp-aes-
192 esp-sha-hmac
RFSwitch(config-crypto-ipsec)#exit
RFSwitch(config)#crypto map TestMap-TechPub 10 ipsec-manual
RFSwitch(config-crypto-map)#set peer 1.1.1.1
RFSwitch(config-crypto-map)#match address 101
RFSwitch(config-crypto-map)#set transform-set tfset-manual
To Next Page
Loading...
Need help?
General
