Dell 9.8(0.0) Switch User Manual


  Open as PDF
of 1905
 
session-key
Specify the session keys used in the crypto policy entry.
Z9500
Syntax
session-key {inbound | outbound} {ah spi hex-key-string | esp
spi encrypt hex-key-string auth hex-key-string
To delete the session key information from the crypto policy, use the no
session-key {inbound | outbound} {ah | esp} command.
Parameters
name Enter the name for the transform set.
inbound Specify the inbound session key for IPSec.
outbound Specify the outbound session key for IPSec.
ah Use the AH protocol when you select the AH transform set in
the crypto policy.
esp Use the ESP protocol when you select the ESP transform set
in the crypto policy.
spi Enter the security parameter index number.
hex-key-string Enter the session key in hex format (a string of 8, 16, or 20
bytes). For DES algorithms, specify at least 16 bytes per key.
For SHA algorithms, specify at least 20 bytes per key.
encrypt Indicates the ESP encryption transform set key string.
auth Indicates the ESP authentication transform set key string.
Defaults none
Command
Modes
CONF-CRYPTO-POLICY
Command
History
This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version Description
9.2(1.0) Introduced on the Z9500.
9.2(0.0) Introduced on the Z9000, S4810, and S4820T.
Usage
Information
This command is only available in the ipsec-manual model.
The key information entry is associated with the global method for enabling
clear text or encrypted display in the running config.
920
Internet Protocol Security (IPSec)