HP-UX IPSec version A.02.01 Administrator's Guide
HP-UX IPSec and HP-UX Mobile IPv6
Mobile IPv6 Manual Key Configuration Example
Appendix F 317
-in ESP/2500009/0x1234567890123456789012345678901234567890\
/0x12345678901234567890123456789012/0x1234567890123456 \
-out ESP/2500010/0x0123456789012345678901234567890123456789\
/0x01234567890123456789012345678901/0x0123456789012345
Prefix Discovery Messages (Step 3)
This step is optional. You can skip this step if the Mobile Node does not
support prefix discovery.
add host mn2222_prefix \
-source 2001:db8:11:11::fefe:1111 \(Home Agent)
-destination 2001:db8:11:11::fefe:2222 \(Mobile Node’s Home
Address)
-proto ICMPV6 -pri 210 -action ESP_AES128_HMAC_SHA1 \
-flags MIPV6\
-in ESP/2500011/0x1234567890123456789012345678901234567890\
/0x12345678901234567890123456789012/0x1234567890123456 \
-out ESP/2500012/0x0123456789012345678901234567890123456789\
/0x01234567890123456789012345678901/0x0123456789012345
Payload Packets Routed Through the Home Agent
(Step 4)
This step is optional.
There are two gateway policies and a tunnel policy to secure payload
messages between the Mobile Node and the Correspondent Node when
they are routed through the local node (Home Agent).
Priority for Payload Gateway IPsec Policies
The priority values for these policies must be greater (lower priority)
than the gateway IPsec policies configured for the Return Routability
messages, and the protocol is ALL.
Gateway IPsec Policy for Home Agent - Correspondent Node
Segments (Step 4A) You can omit this policy if you are using the
default IPsec gateway policy shipped with HP-UX IPSec.