[x]

IPsec configuration commands > ipsec proposal

 

 Next

ipsec proposal

Syntax

ipsec proposal proposal-name

undo ipsec proposal proposal-name

View

System view

Default level

2: System level

Parameters

proposal-name: Name for the proposal, a case-insensitive string of 1 to 32 characters .

Description

Use the ipsec proposal command to create an IPsec proposal and enter its view.

Use the undo ipsec proposal command to delete an IPsec proposal.

By default, no IPsec proposal exists.

In non-FIPS mode, an IPsec proposal created by using the ipsec proposal command takes the security protocol of ESP, the encryption algorithm of DES, and the authentication algorithm of MD5 by default.

In FIPS mode, an IPsec proposal created by using the ipsec proposal command takes the security protocol of ESP, the encryption algorithm of AES-128, and the authentication algorithm of SHA1 by default.

Related commands: display ipsec proposal.

Examples

# Create an IPsec proposal named newprop1.

<Sysname> system-view
[Sysname] ipsec proposal newprop1

prev

 

up

 next

ipsec policy (system view) 

home

 ipsec sa global-duration

© Copyright 2016 Hewlett Packard Enterprise Development LP