R3166-R3206-HP High-End Firewalls VPN Configuration Guide-6PW101
125
[FirewallB-pkey-public-key] public-key-code begin
Public key code view: return to last view with "public-key-code end".
[FirewallB-pkey-key-code]30819F300D06092A864886F70D010101050003818D0030818902818100D9
0003
FA95F5A44A2A2CD3F814F9854C4421B57CAC64CFFE4782A87B0360B600497D87162D1F398E6E5E51E5E35
3B3
A9AB16C9E766BD995C669A784AD597D0FB3AA9F7202C507072B19C3C50A0D7AD3994E14ABC62DB125035E
A32
6470034DC078B2BAA3BC3BCA80AAB5EE01986BD1EF64B42F17CCAE4A77F1EF999B2BF9C4A10203010001
[FirewallB-pkey-key-code] public-key-code end
[FirewallB-pkey-public-key] peer-public-key end
# Display the host public key of Firewall A saved on Firewall B.
[FirewallB] display public-key peer name Firewalla
=====================================
Key Name : Firewalla
Key Type : RSA
Key Module: 1024
=====================================
Key Code:
30819F300D06092A864886F70D010101050003818D0030818902818100D90003FA95F5A44A2A2CD3F814F
985
4C4421B57CAC64CFFE4782A87B0360B600497D87162D1F398E6E5E51E5E353B3A9AB16C9E766BD995C669
A78
4AD597D0FB3AA9F7202C507072B19C3C50A0D7AD3994E14ABC62DB125035EA326470034DC078B2BAA3BC3
BCA
80AAB5EE01986BD1EF64B42F17CCAE4A77F1EF999B2BF9C4A10203010001
Importing the public key of a peer from a public key file
Network requirements
As shown in Figure 70, Firewall A is authenticated when accessing Firewall B, so the public host public
key of Firewall A should be configured on Firewall B in advance.
In this example:
• RSA is used.
• The host public key of Firewall A is imported from the public key file to Firewall B.
Figure 70 Network diagram for importing the public key of a peer from a public key file
Configurtion procedure
1. Create key pairs on Firewall A and export the host public key
# Create RSA key pairs on Firewall A.
<FirewallA> system-view
[FirewallA] public-key local create rsa