HP-UX IPSec version A.02.01 Administrator's Guide
HP-UX IPSec Configuration Examples
Host to Host telnet
Appendix D 259
Host to Host telnet
You have two systems, Apple (15.1.1.1) and Banana (15.2.2.2) on a
private, isolated LAN. You want to use authenticated ESP with AES
encryption and SHA-1 authentication for all telnet traffic from Apple to
Banana, and for all telnet traffic from Banana to Apple. By default, all
other network traffic will pass in clear text.
You do not have a Public Key Infrastructure, so you can use only
preshared keys for IKE primary authentication.
CAUTION If you do not have a private network, do not configure HP-UX IPSec to
pass packets in clear text by default. Do not configure HP-UX IPSec to
pass packets in clear text by default on systems where you are using
HP-UX IPSec as a filter or firewall to protect your network.
For more information, see “Maximizing Security” on page 91.
You will use the default values for most parameters, such as the Security
Association Lifetimes.