Manualshelf

Command Reference Guide

ManualsBrandsHP ManualsRoutersHP 3000 Router Series
1261126212631264126512661267126812691270
3Com Router 3000 Ethernet Family
Command Reference Guide
Chapter 3 DVPN Configuration Commands
3Com Corporation
3-4
Description
Use the data algorithm-suite command to specify the algorithm suite used by IPSec
SA (security association) to forward data.
Use the undo data algorithm-suite command to revert to the default algorithm suite.
The default algorithm suite number used by IPSec SA is 1, which stands for DES (for
encryption), MD5 (for authentication), and DHGROUP1 (for key negotiation).
Example
# Specify not to encrypt packets, that is, set the algorithm suite number to 0.
[Quidway-dvpn-policy-abc] data algorithm-suite 0
3.1.5 data ipsec-sa duration
Syntax
data ipsec-sa duration time-base time-interval
undo data ipsec-sa duration time-base
View
dvpn-policy view
Parameter
time-interval: Lifetime of the IPSec SA used to encrypt DVPN data. This argument
ranges from 180 seconds to 86,400 seconds and defaults to 3,600 seconds.
Description
Use the data ipsec-sa duration time-base command to set the lifetime of the IPSec
SA used to encrypt DVPN data.
Use the undo data ipsec-sa duration time-base command to restore the default
lifetime of the IPSec SA.
The default lifetime of the IPSec SA is 3,600 seconds.
Example
# Set the lifetime of the IPSec SA to 86,400 seconds.
[Quidway-dvpn-policy-abc] data ipsec-sa duration time-base 86400
3.1.6 debugging dvpn
Syntax
debugging dvpn { all | error | event { all | misc | register | session } | hexadecimal
| packet { all | control | data | ipsec } }