User's Guide Command Line Interface - QLogic

3–Network Configuration
Managing IP Security
Deleting a Policy
To delete a user-defined policy, enter the Ipsec Policy Delete command as shown
in the following example:
SANbox #> admin start
SANbox (admin) #> ipsec edit
SANbox (admin-ipsec) #> ipsec policy delete policy_1
The security policy will be deleted. Please confirm (y/n): [n] y
SANbox (admin-ipsec) #> ipsec save
The IPsec configuration will be saved and activated.
Please confirm (y/n): [n] y
Modifying a User-Defined Policy
To modify an existing user-defined policy, enter the Ipsec Policy Edit command in
an Admin session and an Ipsec Edit session as shown in the following example.
An asterisk (*) indicates a required entry.
SANbox (admin-ipsec) #> ipsec policy edit h2h-sh-sp
A list of attributes with formatting and current values will follow.
Enter a new value or simply press the ENTER key to accept the current value.
To remove a value for an optional attribute, use ’n’.
If you wish to terminate this process before reaching the end of the list
press 'q' or 'Q' and the ENTER key to do so.
Current Values:
Description
.
.
.
espRuleLevel
Host-to-host: switch->host
require
New Value (press ENTER to not specify value, 'q' to quit, 'n' for none):
Description (string value, 0-127 bytes) :
*SourceAddress (IPv4, IPv6 or hostname/[PrefixLength]) :
SourcePort (decimal value, 1-65535) :
*DestinationAddress (IPv4, IPv6 or hostname/[PrefixLength]) :
DestinationPort (decimal value, 1-65535) :
*Protocol (decimal value, or keyword)
Allowed keywords
icmp, icmp6, ip4, tcp, udp or any
: tcp
*Direction (1=in, 2=out) :
Priority (value, -2147483647 to +2147483647) :
*Action (1=discard, 2=none, 3=ipsec) :
Mode (1=transport, 2=tunnel) :
*TunnelSource (IPv4, or IPv6 Address) :
*TunnelDestination (IPv4, or IPv6 Address) :
*ProtectionDesired (select one, transport-mode only)
1=ah Authentication Header
3-14 59263-02 B