Manualshelf

Command Reference Guide

ManualsBrandsHP ManualsRoutersHP 5000 Router Series
2361236223632364236523662367236823692370
3Com Router 5000 Family and Router 6000 Family dvpn security 37
Command Reference
dvpn security
Purpose Use the dvpn security acl command to configure the ACL used for deciding
which data stream needs IPSec encryption on the tunnel interface.
Use the undo dvpn security acl command to remove the ACL.
Syntax dvpn security acl acl-number
undo dvpn security acl
Parameters acl-number
Specifies an ACL number used by the system to decide
which data stream needs encryption on the current
interface. Valid values are 3,000 to 3,999.
Example On tunnel interface 0 encrypt data streams except for those denied by ACL 3100.
[3Com] acl number 3100
[3Com-acl-adv-3100] rule deny ip
[3Com-acl-adv-3100] quit
[3Com] interface tunnel 0
[3Com-Tunnel0] dvpn security acl 3100
View This command can be used in the following views:
Tunnel Interface view
Description You can reference an ACL to decide which packets need IPSec encryption before they
are forwarded in a DVPN domain. Those denied by the ACL are not to be encrypted
by IPSec.
The dvpn security acl command needs to be used together with the acl and
rule commands. If you provide the deny keyword for the rule command and specify
the corresponding ACL in the dvpn security acl command, all packets that
match the ACL are not to be encrypted by IPSec.