Manualshelf

F3726, F3211, F3174, R5135, R3816-HP Firewalls and UTM Devices VPN Command Reference-6PW100

ManualsBrandsHP ManualsComputer AccessoriesHP 7100/7200 IPsec dl Module
919293949596979899100
89
Default
No IPsec profile is applied to a DVPN tunnel interface or an IPsec tunnel interface, and no IPsec
protection is provided.
Views
Tunnel interface view
Default command level
2: System level
Parameters
profile-name: Name of the IPsec profile, a case-insensitive string of 1 to 15 characters.
Usage guidelines
Only one IPsec profile can be applied to a DVPN tunnel interface or an IPsec tunnel interface. To apply
another IPsec profile to the tunnel interface, remove the original application first.
An IPsec profile cannot be applied to both a DVPN tunnel interface and an IPsec tunnel interface at the
same time.
For information about DVPN tunnel interfaces and the hardware compatibility for DVPN, see VPN
Configuration Guide.
Examples
# Apply IPsec profile vtiprofile to the IPsec tunnel interface.
<Sysname> system-view
[Sysname] interface tunnel 0
[Sysname-Tunnel0] tunnel-protocol ipsec ipv4
[Sysname-Tunnel0] ipsec profile vtiprofile
# Apply IPsec profile dvpnprofile to the DVPN tunnel interface.
<Sysname> system-view
[Sysname] interface tunnel 1
[Sysname-Tunnel1] tunnel-protocol dvpn udp
[Sysname-Tunnel1] ipsec profile dvpnprofile
Related commands
ipsec profile (system view)
interface tunnel (Layer 3—IP Services Command Reference).
ipsec sa global-duration
Use ipsec sa global-duration to configure the global SA lifetime.
Use undo ipsec sa global-duration to restore the default.
Syntax
ipsec sa global-duration { time-based seconds | traffic-based kilobytes }
undo ipsec sa global-duration { time-based | traffic-based }
Default
The time-based global SA lifetime is 3600 seconds, and the traffic-based global SA lifetime is 1843200
kilobytes.