Login
- Table of Contents
-
- 09-Security Configuration Guide
- 00-Preface
- 01-AAA configuration
- 02-Password control configuration
- 03-Keychain configuration
- 04-Public key management
- 05-PKI configuration
- 06-IPsec configuration
- 07-SSH configuration
- 08-SSL configuration
- 09-Object group configuration
- 10-Attack detection and prevention configuration
- 11-TCP attack prevention configuration
- 12-IP source guard configuration
- 13-ARP attack protection configuration
- 14-ND attack defense configuration
- 15-uRPF configuration
- 16-SAVI configuration
- 17-SAVA configuration
- 18-Crypto engine configuration
- 19-FIPS configuration
- 20-MACsec configuration
- Related Documents
-
| Title | Size | Download |
|---|---|---|
| 18-Crypto engine configuration | 38.23 KB |
Configuring crypto engines
About crypto engines
Crypto engines encrypt and decrypt data for service modules.
The device supports only one software crypto engine, which is a set of software encryption algorithms. The software crypto engine is always enabled.
When a service module requires data encryption/decryption, it sends the desired data to the crypto engine. After the crypto engine completes data encryption/decryption, it sends the data back to the service module.
Display and maintenance commands for crypto engines
Execute display commands in any view and reset commands in user view.
|
Task |
Command |
|
Display crypto engine information. |
display crypto-engine |
|
Display crypto engine statistics. |
In standalone mode: display crypto-engine statistics [ engine-id engine-id slot slot-number ] In IRF mode: display crypto-engine statistics [ engine-id engine-id chassis chassis-number slot slot-number ] |
|
Clear crypto engine statistics. |
In standalone mode: reset crypto-engine statistics [ engine-id engine-id slot slot-number ] In IRF mode: reset crypto-engine statistics [ engine-id engine-id chassis chassis-number slot slot-number ] |
