HP-UX IPSec version A.02.00 Administrator's Guide
HP-UX IPSec and HP-UX Mobile IPv6
Step 4: (Optional) Securing Payload Packets Routed Through the Home Agent
Chapter 7 225
-source
cn_addr
The
cn_addr
is the Correspondent Node’s address. In
many cases, there will be a large number of possible Correspondent
Nodes and you may want to use the IPv6 wildcard address instead
(0::0).
-destination
mn_home_addr
The
mn_home_addr
is the Mobile Node’s
home address.
-priority
priority_number
The
priority_number
is the priority
value HP-UX IPSec uses when selecting a gateway IPSec policy (a lower
priority value has a higher priority). The priority must be unique for
each gateway IPSec policy. The range is 1 - 2147483647.
The priority must be lower than the priority for the policy configured for
the Mobile Node in “Step 2B: Return Routability Messages: Configuring
the Gateway IPSec Policy for Home Agent - Mobile Node Segments” on
page 216.
-tunnel
payload_tunnel_name
The
payload_tunnel_name
is the name of the tunnel policy that defines
the tunnel between the Mobile Node and the Home Agent, as configured
in the following section.
-action FORWARD The action must be FORWARD.
-homeclear
interface_name
The
interface_name
specifies the name
of the physical interface that is the home link for the Mobile IPv6
node(s). HP-UX IPSec will not secure packets to the Mobile Node when
the Mobile Node is attached to the home link.
-flags MIPV6 The flags must include MIPV6.
Step 4C: Payload Packets: Configuring the Home
Agent - Mobile Node Tunnel
Configure the tunnel between the Home Agent and Mobile Node used for
payload packets. The syntax is the same as the one used in “Step 2C:
Return Routability Messages: Configuring the Home Agent - Mobile
Node Tunnel” on page 218, except protocol is ALL.