Users Guide
For SHA-1 authentication, the key must be 40 hex digits (non-
encrypted) or 80 hex digits (encrypted).
Defaults Not configured.
Command Modes INTERFACE
Command History
This guide is platform-specific. For command information about other platforms, see
the relevant Dell Networking OS Command Line Reference Guide.
Version Description
9.10(0.1) Introduced on the S6010-ON and S4048T-ON.
9.8(1.0) Introduced on the Z9100-ON.
9.8(0.0P5) Introduced on the S4048-ON.
9.8(0.0P2) Introduced on the S3048-ON.
9.2(1.0) Introduced on the Z9500.
9.1.(0.0) Introduced on the S4810 and Z9000.
8.4.2.0 Introduced on the E-Series.
8.3.19.0 Introduced on the S4820T.
Usage Information
Before you enable IPsec encryption on an OSPFv3 interface, first enable IPv6 unicast
routing globally, configure an IPv6 address and enable OSPFv3 on the interface, and
assign the interface to an area.
An SPI value must be unique to one IPsec security policy (authentication or encryption)
on the router. Configure the same encryption policy (same SPI and key) on each
OSPFv3 interface in a link.
To remove an IPsec encryption policy from an interface, enter the no ipv6 ospf
encryption spi
number command. To remove null authentication on an interface
to allow the interface to inherit the authentication policy configured for the OSPFv3
area, enter the
no ipv6 ospf no ipv6 ospf encryption null command.
Related
Commands
• area encryption – configure an IPsec encryption policy for an OSPFv3 area.
• show crypto ipsec policy – display the configuration of IPsec encryption policies.
• show crypto ipsec sa ipv6 – display the security associations set up for OSPFv3
interfaces in encryption policies.
Open Shortest Path First (OSPFv2 and OSPFv3) 1473