HP-UX IPSec version A.02.00 Administrator's Guide
HP-UX IPSec Configuration Examples
Example 1: telnet Between Two Systems
Appendix C 295
Example 1: telnet Between Two Systems
You have two systems, Apple (15.1.1.1) and Banana (15.2.2.2) on a
private, isolated LAN. You want to use authenticated ESP with AES
encryption and SHA-1 authentication for all telnet traffic from Apple to
Banana, and for all telnet traffic from Banana to Apple. By default, all
other network traffic will pass in clear text.
You do not have a Public Key Infrastructure, so you can use only
preshared keys for ISAKMP primary authentication.
CAUTION If you do not have a private network, do not configure HP-UX IPSec to
pass packets in clear text by default. Do not configure HP-UX IPSec to
pass packets in clear text by default on systems where you are using
HP-UX IPSec as a filter or firewall to protect your network.
For more information, see “Maximizing Security” on page 59.
You will use the default values for most parameters, such as the Security
Association Lifetimes.