Area Encryption - Dell C9000 Series Reference Manual
Networking command-line reference guide
Hide thumbs
Also See for C9000 Series:
- Configuration manual (9 pages) ,
- Networking configuration manual (1251 pages)
Table of Contents
Advertisement
If you have enabled IPsec encryption in an OSPFv3 area with the area encryption
command, you cannot use the area authentication command in the area at the
same time.
The configuration of IPsec authentication on an interface-level takes precedence over
an area-level configuration. If you remove an interface configuration, an area
authentication policy that has been configured is applied to the interface.
To remove an IPsec authentication policy from an OSPFv3 area, enter the no area
area-id authentication spi number command.
Related
ipv6 ospf authentication
Commands
interface.
show crypto ipsec policy
area encryption
Configure an IPsec encryption policy for OSPFv3 packets in an OSPFv3 area.
C9000 Series
Syntax
area area-id encryption ipsec spi number esp encryption-algorithm
[key-encryption-type] key authentication-algorithm [key-
encryption-type] key
Parameters
area area-id
ipsec spi number
esp encryption-
algorithm
key-encryption-
algorithm
– configures an IPsec authentication policy on an OSPFv3
– displays the configuration of IPsec authentication policies.
Area for which OSPFv3 traffic is to be encrypted. For area-id,
enter a number.
The range is from 0 to 4294967295.
Security Policy index (SPI) value that identifies an IPsec security
policy.
The range is from 256 to 4294967295.
Encryption algorithm used with ESP.
Valid values are: 3DES, DES, AES-CBC, and NULL.
For AES-CBC, only the AES-128 and AES-192 ciphers are
supported.
(OPTIONAL) Specifies if the key is encrypted.
Open Shortest Path First (OSPFv2 and OSPFv3)
1568
Advertisement
Chapters
Table of Contents
