To delete an SAD entry, click the ‘X’ button at the end of the row and click Commit
Changes.
To modify an SAD entry, change parameters as desired and click Commit Changes.
• Source: An address of the form address or address[port]. This specifies the source host (and
optionally port) for the security association.
• Destination: An address of the form address or address[port]. This specifies the destination host
(and optionally port) for the security association.
• SPI: A locally unique value identifying this security association. This is assigned locally and may be
specified in hex or decimal formats. This should be at least 0x100 (256 decimal) and must be the
same on both peers in an association.
• Mode: The IPsec mode to use: ESP, AH, ESP and AH, or IPComp.
• Cipher: The cipher to use when an ESP mode is selected.
• Encryption key: The key to use when ESP is enabled. This must be specified in hexadecimal
(beginning with 0x) and should be 24 bytes (48 digits) long for 3DES or 16, 24 or 32 bytes (32,
48, or 64 digits) long for AES.
• Hash: The hash algorithm to use when an AH mode is selected. MD5 is not recommended.
• Hash key: The hash key to use when AH is enabled. This must be specified in hexadecimal
(beginning with 0x) and should be 20 bytes (40 digits) long for SHA1 or 32 bytes (64 digits) long
for SHA256.
• Delete: When the button is clicked, this SAD entry will be deleted when changes are committed.
4-56
Chapter 4 - Managed Switch Software Setup
Stride Industrial Ethernet Switches User Manual 2nd Ed. Rev. A
To Next Page
Loading...