5–Managing Switches
Configuring the Network
5-38 59266-01 B
Security Associations
A security association defines the encryption algorithm and encryption key to
apply when called by a security policy. A security policy may call several
associations at different times, but each association is related to only one policy.
The security association database is the set of all security associations. IP
Security configurations can be complex: it is possible to unintentionally configure
policies and associations that isolate a switch from all communication. If this
happens, you can disable IP security by placing the switch in maintenance mode,
and correct the problem through the serial port interface.
To create an association, click Add on the Security Association Database side of
the IPsec Configuration dialog box. This opens the Create IPsec Security
Association dialog box (Figure 5-18). Table 5-8 describes the text boxes in the
Create IP Security Association dialog box.
Figure 5-18. Create IP Security Association Dialog Box
espRuleLevel Rule level to apply for ESP protection:
Default
Use
Require
Table 5-7. Create IP Security Policy Dialog Box Fields (Continued)
Field Description
To Next Page
Loading...
