HP-UX IPSec version A.02.01 Administrator's Guide
Configuring HP-UX IPSec
Step 1: Configuring Host IPsec Policies
Chapter 4110
lifetime_seconds
The
lifetime_seconds
is the maximum lifetime for
the IPsec SA, in seconds. A transform lifetime can be specified by time
(seconds), and by kilobytes transmitted or received. HP-UX IPSec
considers the lifetime to be exceeded if either value is exceeded.
Range: 0 (infinite), or 600 - 4294967294 seconds (approximately 497102
days).
Default: 28,800 (8 hours).
lifetime_kbytes
The
lifetime_kbytes
is the maximum lifetime for
the IPsec SA, measured by kilobytes transmitted or received. A
transform lifetime can be specified by time (seconds), and by kilobytes
transmitted or received. HP-UX IPSec considers the lifetime to be
exceeded if either value is exceeded.
Range: 0 (infinite), or 5120 - 4294967294 kilobytes.
ESP_DES_HMAC_MD5 ESP with 56-bit Data Encryption
Standard, Cipher Block Chaining Mode
(DES), authenticated with HMAC-MD5.
ESP_DES_HMAC_SHA1 ESP with 56-bit Data Encryption
Standard, Cipher Block Chaining Mode
(DES), authenticated with HMAC-SHA1.
ESP_3DES_HMAC_MD5 ESP with triple-DES CBC, three
encryption iterations, each with a
different 56-bit key (3DES),
authenticated with HMAC-MD5.
ESP_3DES_HMAC_SHA1 ESP with triple-DES CBC, three
encryption iterations, each with a
different 56-bit key (3DES),
authenticated with HMAC-SHA1.
ESP_NULL_HMAC_MD5 ESP with null encryption and
authenticated with HMAC-MD5.
ESP_NULL_HMAC_SHA1 ESP with null encryption and
authenticated with HMAC-SHA1.
Table 4-2 ipsec_config Transforms (Continued)
Transform Name Description