F3726, F3211, F3174, R5135, R3816-HP Firewalls and UTM Devices VPN Configuration Guide-6PW100

ManualsBrandsHP ManualsComputer AccessoriesHP 7100/7200 IPsec dl Module

100

Hardware IPv4 over IPv6 manual tunnel com

atible

Firewall module Yes

U200-A Yes

U200-S No

151BConfiguration prerequisites

Configure an IPv6 addresses for the interface (such as a VLAN interface, Ethernet interface, or loopback

interface) to be configured as the source interface of the tunnel interface.

152BConfiguration guidelines

Follow these guidelines when you configure an IPv4 over IPv6 manual tunnel:

• If the destination IPv4 network is not on the same subnet as the IPv4 address of the local tunnel

interface, you must configure a route destined for the destination IPv4 network through the tunnel

interface. You can configure a static route, and specify the local tunnel interface as the output

interface of the route or specify the IPv6 address of the peer tunnel interface as the next hop.

Alternatively, you can enable a dynamic routing protocol on both tunnel interfaces to achieve the

same purpose. For detailed configurations about static routes and other routing protocols, see

Network Management Configuration Guide.

• Two or more local tunnel interfaces using the same encapsulation protocol must have different

source and destination addresses.

• If you specify a source interface instead of a source address for a tunnel interface, the source

address of the tunnel interface is the primary IP address of the source interface.

153BConfiguration procedure

To configure an IPv4 over IPv6 manual tunnel:

Ste

Command

Remarks

1. Enter system view.

system-view N/A

2. Enable IPv6. ipv6

By default, the IPv6 packet forwarding

function is disabled.

3. Enter tunnel interface

view.

interface tunnel number N/A

4. Configure an IPv4

address for the tunnel

interface.

ip address ip-address { mask |

mask-length } [ sub ]

By default, no IPv4 address is configured

for the tunnel interface.

5. Specify the IPv4 over

IPv6 manual tunnel

mode.

tunnel-protocol ipv4-ipv6

The default tunnel mode is GRE over IPv4

mode. The same tunnel mode should be

configured at both ends of the tunnel.

Otherwise, packet delivery fails.

6. Configure the source

address or interface for

the tunnel interface.

source { ipv6-address |

interface-type interface-number }

By default, no source address or interface

is configured for the tunnel.