HP-UX IPSec version A.02.00 Administrator's Guide
HP-UX IPSec and HP-UX Mobile IPv6
Mobile IPv6 Configuration Example
Chapter 7230
Payload Tunnel IPSec Policy
Configure the tunnel between the local system (Home Agent) and the
Mobile Node. This is similar to the tunnel configured for Return
Routability messages, except protocol is ALL and the manual key SPI
numbers (inbound SPI numbers must be unique) and the keys are
different.
add tunnel mn2222_payload_tunnel \
-tsource 3ffe::83ff:fef7:1111 \(Home Agent)
-tdestination 3ffe::83ff:fef7:1111 \(Mobile Node’s Home Addr.)
-source 0::0 \(wildcard for any Correspondent Node)
-destination 3ffe::83ff:fef7:2222 \(Mobile Node’s Home Address)
-protocol ALL \
-action ESP_AES128_HMAC_SHA1 \
-in ESP/2500012/0x123456789012345678901234567890123456789A\
/0x1234567890123456789012345678901A/0x123456789012345A \
-out ESP/2500013/0x012345678901234567890123456789012345678B\
/0x0123456789012345678901234567890B/0x012345678901234B