HP-UX IPSec version A.02.00 Administrator's Guide
Configuring HP-UX IPSec
Step 1: Configuring Host IPSec Policies
Chapter 3 77
lifetime_seconds
The
lifetime_seconds
is the maximum lifetime for
the IPSec SA, in seconds. A transform lifetime can be specified by time
(seconds), and by kilobytes transmitted or received. HP-UX IPSec
considers the lifetime to be exceeded if either value is exceeded.
Range: 0 (infinite), or 600 - 4294967294 seconds (approximately 497102
days).
Default: 28,800 (8 hours).
lifetime_kbytes
The
lifetime_kbytes
is the maximum lifetime for
the IPSec SA, measured by kilobytes transmitted or received. A
transform lifetime can be specified by time (seconds), and by kilobytes
transmitted or received. HP-UX IPSec considers the lifetime to be
exceeded if either value is exceeded.
Range: 0 (infinite), or 5120 - 4294967294 kilobytes.
Default: 0 (infinite).
ESP_DES_HMAC_SHA1 ESP DES, authenticated with
HMAC-SHA1.
ESP_3DES ESP with triple-DES CBC, three
encryption iterations, each with a
different 56-bit key, 3DES-CBC.
ESP_3DES_HMAC_MD5 ESP 3DES, authenticated with
HMAC-MD5.
ESP_3DES_HMAC_SHA1 ESP 3DES, authenticated with
HMAC-SHA1.
ESP_NULL_HMAC_MD5 ESP with null encryption and
authenticated with HMAC-MD5.
ESP_NULL_HMAC_SHA1 ESP with null encryption and
authenticated with HMAC-SHA1.
Table 3-2 ipsec_config Transforms (Continued)
Transform Name Description