Cisco Cisco Packet Data Interworking Function (PDIF)
ISAKMP Configuration Mode Commands
encryption ▀
Command Line Interface Reference, StarOS Release 17 ▄
6733
encryption
Configures the encryption protocol to use to protect subsequent IKE SA negotiations.
Product
PDSN
HA
GGSN
Privilege
Security Administrator, Administrator
Mode
Exec > Global Configuration > Context Configuration > ISAKMP Configuration
configure > context context_name > isakmp policy policy_number
Syntax
encryption { 3des-cbc | aes-cbc-128 | aes-cbc-256 | des-cbc }
[ default | no ] encryption
default encryption
Restores the default setting of this parameter.
no encryption
Removes a previously configured encryption type.
3des-cbc
Specifies that the encryption protocol is Triple Data Encryption Standard (3DES) in chain block (CBC)
mode.
mode.
aes-cbc-128
Specifies that the encryption protocol is Advanced Encryption Standard (AES) in CBC mode with a 128-bit
key.
key.
aes-cbc-256
Specifies that the encryption protocol is Advanced Encryption Standard (AES) in CBC mode with a 256-bit
key.
key.
des-cbc
Specifies that the encryption protocol is DES in CBC mode. This is the default setting.
Usage
Once the D-H exchange between the system and the security gateway has been successfully completed,
subsequent IKE SA negotiations will be protected using the protocol specified by this command.
subsequent IKE SA negotiations will be protected using the protocol specified by this command.
Example