Manualshelf

TMS zl Management and Configuration Guide ST.1.1.100430

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
1391139213931394139513961397139813991400
A-163
Command-Line Reference
IPsec Policy Context
ProCurve(tms-module-<slot ID>:config)# ipsec proposal
testprop encapsulation tunnel security esp encryption
3des auth md5
ProCurve(tms-module-<slot ID>:config)# ipsec policy
policytest
ProCurve(tms-module-<slot ID>:ipsec)# action apply
ProCurve(tms-module-<slot ID>:ipsec:apply)# traffic-
selector protocol any local 10.1.5.0/24 remote 10.2.15.0/
24
ProCurve(tms-module-<slot ID>:ipsec:apply)# proposal
testprop
ProCurve(tms-module-<slot ID>:ipsec:apply)# key-
exchange-method auto
ProCurve(tms-module-<slot ID>:ipsec:apply:auto)# ikev1
iketest
ProCurve(tms-module-<slot ID>:ipsec:apply:auto)# pfs
enable dh-group group2-1024
ProCurve(tms-module-<slot ID>:ipsec:apply:auto)# sa-
lifetime seconds 28800 kilobytes 1000000
ProCurve(tms-module-<slot ID>:ipsec:apply:auto)# exit
ProCurve(tms-module-<slot ID>:ipsec:apply)# advanced ip-
compression enable
ProCurve(tms-module-<slot ID>:ipsec:apply)# advanced
anti-replay-win-size 64
ProCurve(tms-module-<slot ID>:ipsec:apply)# advanced
extended-seq-num enable
ProCurve(tms-module-<slot ID>:ipsec:apply)# advanced re-
key-seq-number-overf enable
ProCurve(tms-module-<slot ID>:ipsec:apply)# no advanced
persistent-tunnel enable
ProCurve(tms-module-<slot ID>:ipsec:apply)# advanced
fragment-before-ipsec enable