Manualshelf

Command Reference Guide

ManualsBrandsHP ManualsRoutersHP 5000 Router Series
2251225222532254225522562257225822592260
3Com Router 5000 Family and Router 6000 Family sa authentication-hex 261
Command Reference
sa authentication-hex
Purpose Use the sa authentication-hex command to set the SA authentication key
manually for the ipsec policy of manual mode.
Use the undo sa authentication-hex command to delete the SA
authentication key already set.
Syntax sa authentication-hex { inbound | outbound } { ah | esp } hex-key
undo sa authentication-hex { inbound | outbound } { ah | esp }
Parameters inbound
Configures the authentication-hex parameter for the
inbound SA. IPSec uses the inbound SA for processing
the packet in the inbound direction (received).
outbound
Configures the authentication-hex parameter for the
outbound SA. IPSec uses the outbound SA for
processing the packet in the outbound direction (sent).
ah
Sets the authentication-hex parameter for the SA using
AH. If the IPSec proposal used by the ipsec policy
adopts AH, the ah key word is used here to set the AH
relevant parameter of the SA.
esp
Sets the authentication-hex parameter for the SA using
ESP. If the IPSec proposal used by the ipsec policy
adopts ESP, the esp key word is used here to set the
ESP relevant parameter of the SA.
hex-key
Specifies a key for the SA input in the hex format. If
MD5 is used, then input a 16-byte key; if SHA1 is used,
input a 20-byte key.
Example Set SPI of the inbound SA to 10000, key to
0x112233445566778899aabbccddeeff00; set the SPI of the outbound SA to 20000,
and its key to 0xaabbccddeeff001100aabbccddeeff00 in the ipsec policy using AH
and MD5.
[3Com] ipsec proposal prop_ah
[3Com-ipsec-proposal-prop_ah] transform ah
[3Com-ipsec-proposal-prop_ah] ah authentication-algorithm md5
[3Com-ipsec-proposal-prop_ah] quit
[3Com] ipsec policy tianjin 100 manual
[3Com-ipsec-policy-manual-tianjin-100] proposal prop_ah
[3Com-ipsec-policy-manual-tianjin-100] sa spi inbound ah 10000
[3Com-ipsec-policy-manual-tianjin-100] sa authentication-hex inbound ah
112233445566778899aabbccddeeff00
[3Com-ipsec-policy-manual-tianjin-100] sa spi outbound ah 20000
[3Com-ipsec-policy-manual-tianjin-100] sa authentication-hex outbound
ah aabbccddeeff001100aabbccddeeff00