HP StorageWorks Enterprise File Services WAN Accelerator 2.1 Command Line Interface Reference Guide (November 2005)
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL 99
4 - CONFIGURATION-MODE
C
OMMANDS
Parameters
Example
minna (config) # ip security encryption policy des
minna (config) #
ip security peer ip
Description Sets the peer HP EFS WAN Accelerator for which you want to make a secure
connection. If IPsec is enabled on this HP EFS WAN Accelerator, then it must also be
enabled on all HP EFS WAN Accelerators in the IP security peers list, otherwise this
HP EFS WAN Accelerator will not be able to make optimized connections with those
peers that are not running IPsec. The no command option disables the peer.
IMPORTANT: If IPsec is enabled then each peer HP EFS WAN Accelerator must also have
IPsec correctly configured for optimization to occur.
Syntax ip security peer ip <addr>
Parameters
Example
minna (config) # ip security peer ip 10.0.0.2
minna (config) #
ip security pfs enable
Description Enables Perfect Forward Secrecy. Perfect Forward Secrecy provides additional
security by renegotiating keys at specified intervals. With Perfect Forward Secrecy, if
one key is compromised, previous and subsequent keys are secure because they are
not derived from previous keys. The no command option disables Perfect Forward
Secrecy.
Syntax ip security pfs enable
Parameters None
minna (config) # ip security pfs enable
minna (config) #
<algorithm> Specifies the primary algorithm:
•des. The Data Encryption Standard (DES). The default value is
des.
• null_enc. The null encryption algorithm.
<algorithm> Specifies the alternate algorithm: des and null_enc.
<addr> Specifies the peer IP address.