Manualshelf

TMS zl Management and Configuration Guide ST.1.2.100916

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
1411141214131414141514161417141814191420
A-160
Command-Line Reference
IPsec Policy Context
hostswitch(tms-module-<slot ID>:config)# ipsec ikev1
iketest
hostswitch(tms-module-<slot ID>:ikev1)# type site-to-
site local-gateway vlan 20 remote-gateway 172.16.40.99
hostswitch(tms-module-<slot ID>:ikev1)# identities local
type ip-addr 172.16.20.103 remote type ip-addr
172.16.40.99
IPsec Proposal—testprop
Encapsulation mode Tunnel mode
Security protocol ESP
Encryption algorithm 3DES
Authentication algorithm MD5
IPsec Policy—policytest
Position 1
Action Apply
Protocol Any
Local address 10.1.5.0/24
Remote address 10.2.15.0/24
IKE exchange method Auto
Perfect Forward Secrecy Enabled—Group 2 (1024)
SA lifetime in seconds 28800
SA lifetime in kilobytes 1000000
Mode config address pool n/a
IP compression Enabled
Anti-replay window Enabled—size, 64
Extended sequence number Enabled
Re-key on sequence number overflow Enabled
Persistent tunnel Disabled
Fragment before IPsec Enabled
Copy DSCP value from the clear packet Enabled
Copy DF bit from the clear packet Disabled—DF bit clear
Parameter TMS zl Module Setting