Chapter 44
Configuring IPsec Network Security
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m
Default Settings
Table 44-3
Table 44-3
Parameters
IKE
IKE version
IKE encryption algorithm
IKE hash algorithm
IKE authentication method
IKE DH group identifier
IKE lifetime association
IKE keepalive time for each peer (v2) 3,600 seconds (equals 1 hour).
Table 44-4
Table 44-4
Parameters
IPsec
Applying IPsec to the traffic.
IPsec PFS
IPsec global lifetime (traffic-volume)
IPsec global lifetime (time)
OL-17256-03, Cisco MDS NX-OS Release 4.x
lists the default settings for IKE parameters.
Default IKE Parameters
lists the default settings for IPsec parameters.
Default IPsec Parameters
Default
Disabled.
IKE version 2.
3DES.
SHA.
Not configurable (uses preshared keys).
Group 1.
86,400 00 seconds (equals 24 hours).
Default
Disabled.
Deny—allowing clear text.
Disabled.
450 Gigabytes.
3,600 seconds (one hour).
Cisco MDS 9000 Family Fabric Manager Configuration Guide
Default Settings
44-39