Switch Security 6-61

Crypto Map configuration. Also, adding new peers through the use of new sequence numbers and reassigning the Crypto Map does not tear down existing connections.

6.8.5 Viewing IPSec Security Associations

Refer to the IPSec SAs tab to review the various security associations (SAs) between the local and remote peers comprising an IPSec VPN connection. The IPSec SA tab also displays the authentication and encryption schemes used between the VPN peers as well other device address information.

To display IPSec VPN security associations:

1.Select Security > IPSec VPN from the main menu tree.

2.Click the IPSec SAs tab.

3. Refer to the following security association data:

Index

Displays the numerical (if defined) for the security association. Use the index to differentiate

 

the index from others with similar configurations.

Local Peer

Displays the name of the local peer at the near side of the VPN connection.

Remote Peer

Displays the name of the remote peer at the far side of the VPN connection.

ESP SPI In

SPI specified in the Encapsulating Security Payload (ESP) inbound header.

ESP SPI Out

SPI specified in the Encapsulating Security Payload (ESP) outbound header.

AH SPI In

Displays the inbound Authentication Header (AH).

AH SPI Out

Displays the outbound Authentication Header (AH).

Cipher Algorithm

Displays the algorithm used with the ESP cipher.

MAC Algorithm

Displays the algorithm used with the security association.

Page 285
Image 285
Motorola WS5100 manual Viewing IPSec Security Associations, Index from others with similar configurations