This object configures IKE Protection Profile by establishing the encryption algorithm, the maximum SA lifetime, and other SA conditions, for the peer. These properties are linked to each IKE peer that is provisioned with this profile.
To View Ike Protection Profile
On SBC main screen, go to Configuration > Profile Management > Category: Security Profiles > Ike Protection Profile.
The Ike Protection Profile window is displayed.
| Caption |
|---|
| 0 | Figure |
|---|
| 1 | Profile Management - Security Profiles - Ike Protection Profile |
|---|
|
 Image Modified
|
To Edit Ike Protection Profile
To edit any of the Ike Protection Profile in the list, click the radio button next to the specific Ike Protection Profile name.
| Caption |
|---|
| 0 | Figure |
|---|
| 1 | Profile Management - Security Profiles - Ike Protection Profile Highlighted |
|---|
|
Image Modified |
The Edit Selected Ike Protection Profile window is displayed below.
| Caption |
|---|
| 0 | Figure |
|---|
| 1 | Profile Management - Security Profiles - Ike Protection Profile Edit Window |
|---|
|
Image Modified |
Make the required changes and click Save at the right hand bottom of the panel to save the changes made.
To Create Ike Protection Profile
To create a new Ike Protection Profile, click New Ike Protection Profile tab on the Ike Protection Profile List panel.
| Caption |
|---|
| 0 | Figure |
|---|
| 1 | Profile Management - Security Profiles - Ike Protection Profile Fields |
|---|
|
Image Modified |
The Create New Ike Protection Profile window is displayed.
| Caption |
|---|
| 0 | Figure |
|---|
| 1 | Profile Management - Security Profiles - Ike Protection Profile Create Window |
|---|
|
Image Modified |
The following fields are displayed:
| Caption |
|---|
| 0 | Table |
|---|
| 1 | IKE Protection Profile Parameters |
|---|
|
Parameter | Description |
|---|
Name
| The name of the IKE Protection Profile. | SA Lifetime
Time
| The SA Lifetime setting, in seconds. This is the maximum interval that any one Security Association will be maintained before possible re-keying. Must be 1200-
1,000,000, default is 28,800 (seconds).This parameter applies to the IKE SA when it appears in the IKE Protection Profile and to the IPsec SA when it appears in the IPsec Protection Profile. The default value corresponds to 8 hours | DPD Interval
| Specifies the IKE Protection Profile Dead Peer Detection test interval period in seconds. The value '0' corresponds to DPD disabled. | Pfs Required | Enable flag to require PFS use during IPSec SA negotiation. disabled (default)enabled
|
|
To Copy Ike Protection Profile
To copy any of the created Ike Protection Profile and to make any minor changes, click the radio button next to the specific Ike Protection Profile to highlight the row.
| Caption |
|---|
| 0 | Figure |
|---|
| 1 | Profile Management - Security Profiles - Ike Protection Profile Highlighted |
|---|
|
Image Modified |
Click Copy Ike Protection Profile tab on the Ike Protection Profile List panel.
| Caption |
|---|
| 0 | Figure |
|---|
| 1 | Profile Management - Security Profiles - Ike Protection Profile Fields |
|---|
|
Image Modified |
The Copy Selected Ike Protection Profile window is displayed along with the field details which can be edited.
| Caption |
|---|
| 0 | Figure |
|---|
| 1 | Profile Management - Security Profiles - Ike Protection Profile Copy Window |
|---|
|
Image Modified |
Make the required changes to the required fields and click Save to save the changes. The copied Ike Protection Profile is displayed at the bottom of the original Ike Protection Profile in the Ike Protection Profile List panel.
To Delete Ike Protection Profile
To delete any of the created Ike Protection Profile, click the radio button next to the specific Ike Protection Profile which you want to delete.
| Caption |
|---|
| 0 | Figure |
|---|
| 1 | Profile Management - Security Profiles - Ike Protection Profile Highlighted |
|---|
|
Image Modified |
Click Delete at the end of the highlighted row. A delete confirmation message appears seeking your decision.
| Caption |
|---|
| 0 | Figure |
|---|
| 1 | Profile Management - Security Profiles - Ike Protection Profile Delete Confirmation |
|---|
|
Image Modified |
Click Yes to remove the specific Ike Protection Profile from the list.