Manualshelf

TMS zl Management and Configuration Guide ST.1.1.100226

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
1321132213231324132513261327132813291330
A-130
Command-Line Reference
IPsec Policy Context
Note that you can specify a position that is already used by another policy.
The new policy is inserted above the former policy, and the former policy’s
position (as well as policies below that policy) is modified accordingly.
preview
Before you apply the IPsec policy, you should preview it to make sure that
everything is correct. To preview your policy, enter the following command
from any IPsec policy context:
Syntax: preview
This command is also available from the IPsec policy apply, IPsec policy
bypass, IPsec policy deny, IPsec auto keys, IPsec manual keys, and IPsec IRAS
contexts.
For example:
ProCurve(tms-module-<slot ID>:ipsec:<action>)# preview
IPsec policy
-------------------------------------------------------
*Policy Name: testpol
Status: Enabled
Action: Apply
Direction: Both
Position: 1
Traffic Selector
*Protocol: Any
*Local Address: 10.1.1.1
*Remote Address: 10.2.2.0/24
IPsec Proposal
*Policy Name: testprop
Key Management
Key Exchange Method: Auto (with IKEv1)
*IKEv1 Policy: testIKE
PFS (Perfect Forward Secrecy) for keys: Disabled
SA Lifetime in Seconds: 28800
SA Lifetime in Kilobytes: 0
IP Address Pool for IRAS: Disabled