Manualshelf

HP VPN Firewall Appliances VPN Command Reference

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
61626364656667686970
55
IPsec commands
The term "router" in this document refers to both routers and routing-capable firewalls and firewall
modules.
ah authentication-algorithm
Use ah authentication-algorithm to specify authentication algorithms for the AH protocol.
Use undo ah authentication-algorithm to restore the default.
Syntax
ah authentication-algorithm { md5 | sha1 } *
undo ah authentication-algorithm
Default
In non-FIPS mode, the default algorithm is MD5. In FIPS mode, MD5 is not supported and SHA1 is
default algorithm.
Views
IPsec transform set view
Default command level
2: System level
Parameters
md5: Uses MD5.
sha1: Uses SHA1.
Usage guidelines
You must use the transform command to specify the AH security protocol or both AH and ESP before you
specify authentication algorithms for AH.
Examples
# Configure IPsec transform set prop1 to use AH and SHA1.
<Sysname> system-view
[Sysname] ipsec transform-set prop1
[Sysname-ipsec-transform-set-prop1] transform ah
[Sysname-ipsec-transform-set-prop1] ah authentication-algorithm sha1
Related commands
ipsec transform-set
transform