HP VPN Firewall Appliances VPN Configuration Guide
456
For more information about OSPF, BGP, and routing policies, see Layer 3—IP Routing Configuration
Guide.
Displaying and maintaining DVPN
Task Command
Remarks
Display address mapping
information about VAM clients
registered with the VAM server.
display vam server address-map
{ all | vpn vpn-name [ private-ip
private-ip ] } [ | { begin | exclude |
include } regular-expression ]
Available in any view.
Display statistics about VAM
clients registered with the VAM
server.
display vam server statistic { all |
vpn vpn-name } [ | { begin |
exclude | include }
regular-expression ]
Available in any view.
Display registration information
about VAM clients.
display vam client { address-map |
fsm } [ client-name ] [ | { begin |
exclude | include }
regular-expression ]
Available in any view.
Display information about DVPN
tunnels.
display dvpn session { all |
interface interface-type
interface-number [ private-ip
ip-address ] } [ | { begin | exclude
| include } regular-expression ]
Available in any view.
Display information about a
specific or all IPsec profiles.
display ipsec profile [ name
profile-name ] [ | { begin | exclude
| include } regular-expression ]
Available in any view.
Remove DVPN tunnels.
reset dvpn session { all | interface
interface-type interface-number
[ private-ip ip-address ] }
Available in user view.
For information about command display ipsec profile, see Security Command Reference.
Full mesh DVPN configuration example
Network requirements
In the full mesh network shown in Figure 347, the primary VAM server and the secondary VAM server
manage and maintain information about the nodes. The AAA server takes charge of VAM client
authentication and accounting. With each being the backup of the other, the two hubs perform data
forwarding and routing information exchange.
Create a permanent tunnel between each hub-spoke pair.
Spokes in the same VPN exchange data through dynamically established tunnels between them.