HP-UX IPSec version A.02.00 manpages

ManualsBrandsHP ManualsSoftwareHP-UX IPSec Software

ipsec_conﬁg(1M) ipsec_conﬁg(1M)

-auto

[

boot]

ON|OFF

Starts HP-UX automatically at system boot-up time.

Acceptable values: OFF or ON.

Default: The value of the

-autoboot parameter in the

StartUp-Defaults

section of the

proﬁle ﬁle used. The default

-autoboot

value is OFF in

/var/adm/ipsec/.ipsec_profile

-auditlvl

al audit_le vel

Speciﬁes the audit level for the HP-UX IPSec subsystem. Valid audit levels are listed below, in

ascending order:

ALERT

ERROR

WARN[

ING

]

INFO[

RMATIVE]

DEBUG

Higher audit levels include all lower levels.

Default: If you do not specify audit_level , the default is the level speciﬁed for the audit

parameter in the

StartUp-Defaults

section of the proﬁle ﬁle used . The default audit

level is

ERROR, which includes

ALERT in

/var/adm/ipsec/.ipsec_profile

Refer to ipsec_admin (1M) for descriptions of the audit levels.

-auditdir

|ad audit_directory

Speciﬁes the directory in which HP-UX IPSec creates audit ﬁles.

Allowable values: Full ﬁle path name, up to 1023 characters long.

Default: If you do not specify audit_directory, the default is the directory speciﬁed for the

directory parameter in the

StartUp-Defaults

section of the proﬁle ﬁle used. The default

directory value is

/var/adm/ipsec

in /var/adm/ipsec/.ipsec_profile

-maxsize

|ms max_size

Speciﬁes the maximum size of an audit ﬁle (in kilobytes) that HP-UX IPSec allows before it

creates a new audit ﬁle.

Range: 1 - 4294967294 kilobytes.

Default: If you do not specify max_size , the default is the value speciﬁed for the maxsize

parameter in the

StartUp-Defaults

section of the proﬁle ﬁle used. The default maxsize

value is 100 (kilobytes) in

/var/adm/ipsec/.ipsec_profile

-spi_min

spi_min_value

Speciﬁes the lower bound for inbound, dynamic key Security Parameters Index (4PI) numbers

in hexadecimal, preﬁxed by 0x, or decimal.

Range: 1 - 4294967294 (0x1 - 0xFFFFFFFE hexadecimal).

Default: If you do not specify spi_min_value, the default is the value speciﬁed for the spi_min

parameter in the

StartUp-Defaults

section of the proﬁle ﬁle used. The default spi_min

value is 300 in

/var/adm/ipsec/.ipsec_profile

-spi_max sp i _max_va l ue

Speciﬁes the upper bound for inbound, dynamic key Security Parameters Index (SPI) numbers

in hexadecimal, preﬁxed by 0x, or decimal.

Range: 1 - 4294967294 (0x1 - 0xFFFFFFFE hexadecimal).

Default: If you do not specify spi_max_value, the default is the value speciﬁed for the

spi_max parameter in the

StartUp-Defaults section of the proﬁle ﬁle used. The default

spi_max value is 2500000 in /var/adm/ipsec/.ipsec_profile.

-spd_soft spd_soft_limit

Speciﬁes the "soft" limit for the size of the Security Policy Database (SPD). The SPD is the

HP-UX IPSec runtime policy database, with cached policy decisions for packet descriptors

(ﬁve-tuples consisting of exact, non-wildcard source IP address, destination IP address, proto-

col, source port, and destination port).

24 Hewlett-Packard Company − 20 − HP-UX IPSec A.02.00