Manualshelf

Brocade Network Advisor SAN User Manual v12.0.0 (53-1002696-01, April 2013)

ManualsBrandsHP ManualsSoftwareHP B-series Data Center Fabric Manager Enterprise Software
831832833834835836837838839840
784 Brocade Network Advisor SAN User Manual
53-1002696-01
Configuring FCIP tunnel advanced settings
22
Configuring IPSec and IKE policies
IPSec and IKE policies are configured from the Security tab. The screens and procedures are
platform-dependent. Figure 351 on page 784 shows the screen for the 8 Gbps Extension Switch
and 8 Gbps Extension Blade.
1. Select Advanced Settings on the Add FCIP Tunnel or Edit FCIP Tunnel dialog box to display the
Advanced Settings dialog box.
2. Select the Security tab.
FIGURE 351 Advanced Settings Security Tab for the 8 Gbps extension Switch and Blade
3. As an option, click Ensure connecting peer switches have known WWNs. This provides an
added measure of security.
4. Enter the WWN for the remote switch.
5. Assign IKE and IPsec policies. For the 4 Gbps Extension Switch and Blade, you must choose
from a drop-down list of policies. The 8 Gbps Extension Switch and Blade have predefined IKE
and IPsec policies. These policies are enabled by selecting the Enable IPSec check box.
Matching policies are applied to the remote switch. Note that the Enable IPSec check box is
grayed while editing the tunnels because the IPsec settings cannot be edited for the secured
tunnels.
NOTE
IPSec settings cannot be edited. If you want to change settings, you will need to delete the
tunnel and then create a new tunnel with the new settings.
6. In the PreShared Key field, specify the key for IKE authentication. Use the following
specifications, depending on your extension platform.