R0106-HP MSR Router Series Layer 3 - IP Services Configuration Guide(V7)
321
Ste
p
Command
Remarks
1. Enter system view.
system-view N/A
2. Enter ADVPN domain view.
vam server advpn-domain
domain-name [ id domain-id ]
N/A
3. Enter hub group view.
hub-group group-name N/A
4. Configure rules for establishing
spoke-to-spoke tunnels.
• Configure rules for establishing
IPv4 spoke-to-spoke tunnels:
shortcut interest { all | acl
{ acl-number | name
acl-name } }
• Configure rules for establishing
IPv6 spoke-to-spoke tunnels:
shortcut ipv6 interest { all | acl
{ ipv6-acl-number | name
ipv6-acl-name } }
Use either command.
By default, no rules for establishing
IPv4 spoke-to-spoke tunnels are
configured. Spokes are not
allowed to establish direct tunnels.
Configuring the port number of the VAM server
Ste
p
Command
Remarks
1. Enter system view.
system-view N/A
2. Configure the port number of
the VAM server.
vam server listen-port port-number
The default port number is 18000.
Specifying authentication and encryption algorithms for the
VAM server
The VAM server uses the specified algorithms to negotiate with the VAM client.
The VAM server and client use SHA-1 and AES-128 during connection initialization, and use the
negotiated algorithms after connection initialization.
The algorithms specified in a command line are in the descending order of priority. Newly specified
algorithms do not affect registered VAM clients. They apply to subsequently registered VAM clients.
To specify authentication and encryption algorithms for the VAM server:
Ste
p
Command
Remarks
1. Enter system view.
system-view N/A
2. Enter ADVPN domain view.
vam server advpn-domain
domain-name [ id domain-id ]
N/A
3. Specify authentication
algorithms.
authentication-algorithm
{ aes-xcbc-mac | md5 | none |
sha-1 | sha-256 } *
The default authentication
algorithm is SHA-1.