Manualshelf

TMS zl Management and Configuration Guide ST.1.2.100916

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
1381138213831384138513861387138813891390
A-136
Command-Line Reference
IPsec Policy Context
To set the traffic selector, enter the following command:
Syntax: traffic-selector protocol <protocol> local <address> remote address
<address> [port <port>]
The available options for the command are shown in Table A-39.
Table A-39. IPsec Policy Traffic Selector Command Options
For example:
hostswitch(tms-module-<slot ID>:ipsec:<action>)#
traffic-selector protocol tcp local any port any remote
host 10.2.3.3 port 89
This command is also available from the IPsec policy apply, IPsec policy
bypass, and IPsec policy deny contexts.
Parameter Options
protocol any
<1-255>
ah
esp
•ip
•igmp
•gre
•l2tp
•ospf
•pim
tcp [port <any | port number>] *
udp [port <any | port number>] *
icmp < any | echo** | timestamp** >
address any
host <IP address>
network address/prefix length
ip-range <start IP address> <end IP address>
address <address object>
*If you use TCP or UDP for the traffic selector, you must enter port and specify a
port after both the local address and the remote address.
**If you select echo or timestamp, the tunnel must use manual keying instead of
IKE in your IPsec policy.