F3726, F3211, F3174, R5135, R3816-HP Firewalls and UTM Devices Access Control Command Reference-6PW100

ManualsBrandsHP ManualsComputer AccessoriesHP 7100/7200 IPsec dl Module

211

212

213

214

215

216

217

218

219

220

205

vpn-instance vpn-instance-name: Specifies the VPN to which the source IPv4 address belongs. The

vpn-instance-name argument is a case-sensitive string of 1 to 31 characters. With a VPN specified, the

command specifies a private-network source IPv4 address. With no VPN specified, the command

specifies a public-network source IPv4 address.

Usage guidelines

You can specify up to one public-network source IP address and 15 private-network source IP addresses.

A newly specified public-network source IP address overwrites the previous one. Each VPN can have only

one private-network source IP address. A private-network source IP address newly specified for a VPN

overwrites the previous one.

The source IP address of RADIUS packets that a NAS sends must match the IP address of the NAS that

is configured on the RADIUS server. A RADIUS server identifies a NAS by its IP address. Upon receiving

a RADIUS packet, a RADIUS server checks whether the source IP address of the packet is the IP address

of any managed NAS. If it is, the server processes the packet. If it is not, the server drops the packet.

The setting configured by the nas-ip command in RADIUS scheme view is only for the RADIUS scheme,

whereas that configured by the radius nas-ip command in system view is for all RADIUS schemes. The

setting in RADIUS scheme view takes precedence.

Examples

# Set the IP address for the device to use as the source address of the RADIUS packets to 129.10.10.1.

<Sysname> system-view

[Sysname] radius nas-ip 129.10.10.1

Related commands

nas-ip

radius scheme

Use radius scheme to create a RADIUS scheme and enter RADIUS scheme view.

Use undo radius scheme to delete a RADIUS scheme.

Syntax

radius scheme radius-scheme-name

undo radius scheme radius-scheme-name

Default

No RADIUS scheme is defined.

Views

System view

Default command level

3: Manage level

Parameters

radius-scheme-name: RADIUS scheme name, a case-insensitive string of 1 to 32 characters.

Usage guidelines

A RADIUS scheme can be referenced by more than one ISP domain at the same time.

A RADIUS scheme referenced by ISP domains cannot be removed.