 |
Note: Each manual SA must have a unique SPI and protocol combination. Use the auxiliary SPI when you configure the protocol statement to use the bundle option. For more information, see Configuring the Auxiliary Security Parameter Index. |
An SPI is an arbitrary value that uniquely identifies which SA to use at the receiving host. The sending host uses the SPI to identify and select which SA to use to secure every packet. The receiving host uses the SPI to identify and select the encryption algorithm and key used to decrypt packets.
|
Note: Each manual SA must have a unique SPI and protocol combination. Use the auxiliary SPI when you configure the protocol statement to use the bundle option. For more information, see Configuring the Auxiliary Security Parameter Index. |
To configure the SPI on an ES PIC, include the spi statement and specify a value (256 through 16,639) at the [edit security ipsec security-association sa-name manual direction (inbound | outbound | bi-directional] hierarchy level:
- [edit security ipsec security-association sa-name manual direction (inbound |
- outbound | bidirectional)]
-
spi spi-value;
 | Copyright © 2009, Juniper Networks, Inc. All rights reserved. Trademark Notice. | |