HP-UX IPSec version A.02.00 Administrator's Guide

ManualsBrandsHP ManualsSoftwareHP-UX IPSec Software

251

252

253

254

255

256

257

258

259

260

HP-UX IPSec and MC/ServiceGuard

Step 2: Configuring HP-UX Host IPSec Policies for MC/ServiceGuard

Chapter 8252

Cluster Node Host IPSec Policies for ServiceGuard Manager

For each cluster node, configure host IPSec policies so HP-UX IPSec does

not discard (the transform list contains any transform except DISCARD)

the packets listed below. If HP-UX IPSec is not installed on the

ServiceGuard Manager system, configure PASS host IPSec policies for

these packets.

ServiceGuard Manager Host IPSec Policies

If HP-UX IPSec is installed on the ServiceGuard Manager system,

configure host IPSec policies for the packets listed below with a

transform list that corresponds to the policies on the cluster nodes.

Source IP

Address

Destination

IP Address

Protocol

Source

Port

Destination

Port

cluster node

address (or

wildcard)

ServiceGuard

Manager

address

UDP 161 0

cluster node

address (or

wildcard)

ServiceGuard

Manager

address

UDP 0 162

Source IP

Address

Destination

IP Address

Protoco

Source

Port

Destination

Port

ServiceGuard

Manager

address (or

wildcard)

cluster node

address

UDP 0 161

ServiceGuard

Manager

address (or

wildcard0)

cluster node

address

UDP 162 0