Manualshelf

HP-UX IPSec version A.02.00 Administrator's Guide

ManualsBrandsHP ManualsSoftwareHP-UX IPSec Software
171172173174175176177178179180
Troubleshooting HP-UX IPSec
Reporting Problems
Chapter 5 169
using netfmt can only be parsed for the IP header. The netfmt
utility displays any data following the IP header as hexadecimal
values.
Relevant configuration files.
HP-UX IPSec configuration database:
/var/adm/ipsec/config.db
A formatted listing of the configuration database. Use the following
command to get a listing:
ipsec_config show all
Security certificate files, if you are using them:
/var/adm/ipsec/cainfo.txt
/var/adm/ipsec/.Bcerts (for Baltimore certificates)
/var/adm/ipsec/.Bsec (for Baltimore certificates)
/var/adm/ipsec/certs.txt (for VeriSign certificates)
/var/adm/ipsec/javabeans.txt (for VeriSign certificates)
IP configuration file:
/etc/rc.config.d/netconf
If the problem is reproducible, recreate it with the audit level set to
informative.
Run the following ndd commands:
ndd -get /dev/ip ip_ipsec_polist
ndd -get /dev/ip ip_ipsec_salist
ndd -get /dev/ip ip_ipsec_status