Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

close
keyboard_arrow_left
Junos CLI Reference
Table of Contents Expand all
list Table of Contents
file_download PDF
keyboard_arrow_right

encryption

date_range 19-Nov-23

Syntax

content_copy zoom_out_map
encryption {
    algorithm algorithm;
    key (ascii-text key | hexadecimal key);
}

Hierarchy Level

content_copy zoom_out_map
[edit services ipsec-vpn rule rule-name term term-name then manual direction direction]

Description

Configure an encryption algorithm and key for manual SA.

Options

algorithm—Type of encryption algorithm. The algorithm can be one of the following:

  • des-cbc—Has a block size of 8 bytes (64 bits); the key size is 48 bits long.

  • 3des-cbc—Has a block size of 8 bytes (64 bits); the key size is 192 bits long.

  • aes-128-cbc—Advanced Encryption Standard (AES) 128-bit encryption algorithm.

  • aes-192-cbc—Advanced Encryption Standard (AES) 192-bit encryption algorithm.

  • aes-256-cbc—Advanced Encryption Standard (AES) 256-bit encryption algorithm.

    Note:

    For 3des-cbc, the first 8 bytes should differ from the second 8 bytes, and the second 8 bytes should be the same as the third 8 bytes.

key—Type of encryption key. The key can be one of the following:

  • ascii-text—ASCII text key. Following are the key lengths, in ASCII characters, for the different encryption options:

    • des-cbc option, 8 ASCII characters

    • 3des-cbc option, 24 ASCII characters

    • aes-128-cbc option, 16 ASCII characters

    • aes-192-cbc option, 24 ASCII characters

    • aes-256-cbc option, 32 ASCII characters

  • hexadecimal—Hexadecimal key. Following are the key lengths, in hexadecimal characters, for the different encryption options:

    • des-cbc option, 16 hexadecimal characters

    • 3des-cbc option, 48 hexadecimal characters

    • aes-128-cbc option, 32 hexadecimal characters

    • aes-192-cbc option, 48 hexadecimal characters

    • aes-256-cbc option, 64 hexadecimal characters

Required Privilege Level

system—To view this statement in the configuration.

system-control—To add this statement to the configuration.

Release Information

Statement introduced before Junos OS Release 7.4.

aes-128-cbc, aes-192-cbc, and aes-256-cbc options added in Junos OS Release 7.6.

external-footer-nav
Ask AI
close

How can I help you today?

LLMs can make mistakes. Verify important information.
chat_add_on New topic
send progress_activity
This conversation will be monitored and recorded. Any information you provide will be subject to our Privacy Notice and may be used for quality assurance purposes. Do not include any personal or sensitive information. Ask AI can make mistakes. Verify generated output for accuracy.
Protected by hCaptcha arrow_drop_down arrow_drop_up
Juniper Networks, Inc. | Privacy Notice | Terms of Use