Q-Logic 5802V Manuel D’Utilisation
4 – Network Configuration
Managing IP Security
4-8
59263-01 A
S
A security association defines the encryption algorithm and encryption key to
apply when called by a security policy. A security policy may call several
associations at different times, but each association is related to only one policy.
The security association database is the set of all security associations.
apply when called by a security policy. A security policy may call several
associations at different times, but each association is related to only one policy.
The security association database is the set of all security associations.
IP Security configurations can be complex: it is possible to unintentionally
configure policies and associations that isolate a switch from all communication. If
this happens, you can disable IP Security by placing the switch in maintenance
mode, and correct the problem through the serial port interface. Refer to the
SANbox 5802V Fibre Channel Switch Installation Guide for information about
using maintenance mode and connecting through the serial port.
configure policies and associations that isolate a switch from all communication. If
this happens, you can disable IP Security by placing the switch in maintenance
mode, and correct the problem through the serial port interface. Refer to the
SANbox 5802V Fibre Channel Switch Installation Guide for information about
using maintenance mode and connecting through the serial port.
Displaying IP Security Information
You can display the security policy and security association databases in the
following ways:
following ways:
Active policies and associations; that is, policies and associations currently
in use
in use
Configured policies and associations; that is, policies and associations that
have been saved in the database
have been saved in the database
Policies and associations that are being edited, but have not been saved
You can display the following types of IP Security configuration information:
Policy and Association Information
To display general or specific policy and association information, enter the
command. The Ipsec List command does not require an Admin session
and
List commands display the same information.