Q-Logic 5802V Manuel D’Utilisation

4 – Network Configuration

Managing IP Security

4-8

59263-01  A

S

A security association defines the encryption algorithm and encryption key to 
apply when called by a security policy. A security policy may call several 
associations at different times, but each association is related to only one policy. 
The security association database is the set of all security associations.

IP Security configurations can be complex: it is possible to unintentionally 
configure policies and associations that isolate a switch from all communication. If 
this happens, you can disable IP Security by placing the switch in maintenance 
mode, and correct the problem through the serial port interface. Refer to the 
SANbox  5802V Fibre Channel Switch Installation Guide for information about 
using maintenance mode and connecting through the serial port.

You can display the security policy and security association databases in the 
following ways:

„

Active policies and associations; that is, policies and associations currently 
in use

„

Configured policies and associations; that is, policies and associations that 
have been saved in the database

„

Policies and associations that are being edited, but have not been saved

You can display the following types of IP Security configuration information:

„

„

„

To display general or specific policy and association information, enter the 

 command. The Ipsec List command does not require an Admin session 

nor an Ipsec Edit session. Within an Ipsec Edit session, the 

and 

 List commands display the same information.