HP VPN Firewall Appliances VPN Configuration Guide
182
Displaying and maintaining IPsec
Task Command
Remarks
Display IPsec policy information.
display ipsec policy [ brief | name policy-name
[ seq-number ] ] [ | { begin | exclude |
include } regular-expression ]
Available in any view.
Display IPsec policy template
information.
display ipsec policy-template [ brief | name
template-name [ seq-number ] ] [ | { begin |
exclude | include } regular-expression ]
Available in any view.
Display the configuration of IPsec
profiles.
display ipsec profile [ name profile-name ] [ |
{ begin | exclude | include }
regular-expression ]
Available in any view.
Display IPsec transform set
information.
display ipsec transform-set
[ transform-set-name ] [ | { begin | exclude |
include } regular-expression ]
Available in any view.
Display IPsec SA information.
display ipsec sa [ active | brief | policy
policy-name [ seq-number ] | remote
ip-address | standby ] [ | { begin | exclude |
include } regular-expression ]
Available in any view.
Display IPsec packet statistics.
display ipsec statistics [ tunnel-id integer ] [ |
{ begin | exclude | include }
regular-expression ]
Available in any view.
Display IPsec tunnel information.
display ipsec tunnel [ active | standby ] [ |
{ begin | exclude | include }
regular-expression ]
Available in any view.
Clear SAs.
reset ipsec sa [ active | parameters
dest-address protocol spi | policy policy-name
[ seq-number ] | remote ip-address | standby ]
Available in user view.
Clear IPsec statistics. reset ipsec statistics Available in user view.
Manual mode IPsec tunnel for IPv4 packets configuration
example
Network requirements
As shown in Figure 128, configure an IPsec tunnel between Firewall A and Firewall B to protect data flows
between subnet 10.1.1.0/24 and subnet 10.1.2.0/24. Configure the tunnel to use the security protocol
ESP, the encryption algorithm DES, and the authentication algorithm SHA1-HMAC-96.