Manualshelf

HP VPN Firewall Appliances Network Management Command Reference

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
931932933934935936937938939940
911
Syntax
peer { group-name | ipv6-address } ipsec-policy policy-name
undo peer { group-name | ipv6-address } ipsec-policy
Default
No IPsec policy is applied to any peer or peer group.
Views
IPv6 address family view
Default command level
2: System level
Parameters
group-name: Name of an IPv6 peer group, a string of 1 to 47 characters.
ipv6-address: IPv6 address of a peer.
policy-name: IPsec policy name, a string of 1 to 15 characters.
Usage guidelines
The IPsec policy to be applied must have been configured. Otherwise, the configuration fails.
You also need to make IPsec policy configuration on the peer or peer group. Otherwise, the local device
will not receive IPv6 BGP packets from the peer or peer group.
Examples
# Apply IPsec policy policy001 to IPv6 BGP peer 1212::1111.
<Sysname] system-view
[Sysname] bgp 100
[Sysname-bgp] ipv6-family
[Sysname-bgp-af-ipv6] peer 1212::1111 ipsec-policy policy001
peer keep-all-routes (IPv6 address family view)
Use peer keep-all-routes to save the original routing information from a peer or peer group, including
even routes that failed to pass the inbound policy.
Use undo peer keep-all-routes to disable this function.
Syntax
peer { group-name | ipv4-address | ipv6-address } keep-all-routes
undo peer { group-name | ipv4-address | ipv6-address } keep-all-routes
Default
The function is not enabled.
Views
IPv6 address family view
Default command level
2: System level