HP-UX IPSec version A.02.01 Administrator's Guide
HP-UX IPSec and HP-UX Mobile IPv6
Step 2: (Recommended) Securing Return Routability Messages Routed Through the Home Agent
Appendix F 293
Figure F-5 Mobile IPv6 RR Home Test Init and Home Test Packets
To secure Return Routability messages between Mobile Nodes and
Correspondent Nodes as they are forwarded through the Home Agent,
use the following procedure to configure three IPsec policies on the Home
Agent for each Mobile Node. If you are using IKE, you can configure one
set of three policies for a group of Mobile Nodes by specifying a subnet
address and prefix for the Mobile Node address.
Step 2A: Configure a gateway IPsec policy for the data path segments
between the Home Agent and the Correspondent Node (2A in
Figure F-5).
Step 2B: Configure a gateway IPsec policy for the data path segments
between the Home Agent and the Mobile Node (2B in Figure F-5).
Step 2C: Configure a tunnel IPsec policy for the data path segments
between the Home Agent and the Mobile Node (2C in Figure F-5).
Step 2A: Return Routability Messages: Configuring
the Home Agent - Correspondent Node Gateway IPsec
Policy
The first gateway IPsec policy is for the clear text data path segments
between the Home Agent (the gateway) and the Correspondent Node
(data path 2A in Figure F-5). The source and destination address