Technical Documentation

encryption (JUNOS Software)

Syntax

encryption {algorithm (des-cbc | 3des-cbc);key (ascii-text key | hexadecimal key);}

Hierarchy Level

[edit security ipsec security-association sa-name manual direction (inbound | outbound | bidirectional)]

Release Information

Statement introduced before JUNOS Release 7.4.

Description

Configure an encryption algorithm and key for manual SA.

Options

algorithm—Type of encryption algorithm. It can be one of the following:

  • des-cbc—Has a block size of 8 bytes (64 bits); its key size is 48 bits long.
  • 3des-cbc—Has block size of 8 bytes (64 bits); its key size is 192 bits long.

    Note: For 3des-cbc, we recommend that the first 8 bytes be different from the second 8 bytes, and the second 8 bytes be the same as the third 8 bytes.

key—Type of encryption key. It can be one of the following:

  • ascii-text—ASCII text key. For the des-cbc option, the key contains 8 ASCII characters; for 3des-cbc, the key contains 24 ASCII characters.
  • hexadecimal—Hexadecimal key. For the des-cbc option, the key contains 16 hexadecimal characters; for the 3des-cbc option, the key contains 48 hexadecimal characters.

Required Privilege Level

system—To view this statement in the configuration.

system-control—To add this statement to the configuration.


Published: 2010-04-26