HP-UX IPSec version A.02.00 manpages

ManualsBrandsHP ManualsSoftwareHP-UX IPSec Software

ipsec_conﬁg(1M) ipsec_conﬁg(1M)

# authenticate all outbound telnet sessions to 10.2.2.2

add host telnet_out -destination 10.2.2.2/32/TELNET \

-pri 100 -action AH_SHA1

# authenticate all inbound telnet sessions from 10.2.2.2

add host telnet_in -source 0.0.0.0/0/TELNET \

-destination 10.2.2.2 -pri 110 -action AH_SHA1

# IKE policy

add ike all_ike -remote 10.2.2.2 -pri 10000 -auth psk

# preshared key for 10.2.2.2

add auth aloha -remote 10.2.2.2 -preshared good

IPSEC_CONFIG COMMAND

Name

delete - deletes conﬁguration records from the HP-UX IPSEC conﬁguration database.

Synopsis

ipsec_config del

[

ete]

auth

auth_name [

-nocommit

|nc

]

ipsec_config del

[

ete]

bypass|

bp ip_addr [

-nocommit

|nc

]

ipsec_config del

[ete

]

gateway|

gw_policy_name [

-nocommit

]

ipsec_config del

[ete]

host host_pol i cy_na me [

-nocommit

|nc]

ipsec_config del

[ete

] ike ike_policy_name [

-nocommit|

nc]

ipsec_config del

[ete]

tun[nel

] t unnel_policy_name [

-nocommit

|nc

]

Description

The

ipsec_config delete command deletes conﬁguration records from the conﬁguration database.

If HP-UX IPSec is active and running, the data (IPSec policy, authentication record or bypass list entry)

is also deleted from the runtime policy database. (SAs), HP-UX IPSec removes those SAs from the Secu-

rity Association Database (SADB) and sends a delete notiﬁcation to the remote system. If HP-UX IPSec

removes an ISAKMP/Main Mode SA, the associated IPSec/QuickMode SAs can remain active, but no IKE

control messages can be sent.

You cannot delete the

startup conﬁguration object.

Options and Operands

The

ipsec_config delete command recognizes the following options and operands:

object_name

Speciﬁes the name of the object you are deleting.

Do not use this argument when deleting a

bypass conﬁguration object.

You cannot delete the

default host or

default gateway IPSec policy.

ip_addr

Speciﬁes the IP address of the entry in the bypass list you are deleting.

Examples

The following command deletes the host IPSec policy named

telnet_out

ipsec_config delete host telnet_out

IPSEC_CONFIG COMMAND

Name

help - displays help and usage information for the HP-UX IPSec conﬁg operations

Synopsis

ipsec_config help [operation [option_type ]]

Description

The

ipsec_config help command displays help and usage information for the ipsec_config

operations.

32 Hewlett-Packard Company − 28 − HP-UX IPSec A.02.00