HP-UX IPSec version A.02.01 Administrator's Guide
368
authentication records
, 129
bypass list, 140
certificates, 162
gateway IPsec policies, 285
host IPsec policies, 103, 171
IKE policies, 123
manual keys, 286
prerequisites, 64
preshared keys, 129
startup options, 84, 148, 180
tunnel IPsec policies, 115
Correspondent Node (Mobile IPv6)
defined
, 279
CRL (Certificate Revocation List), 154, 361
retrieving, 171, 174
CSR (Certificate Signing Request), 158
D
daemons
HP-UX IPSec
, 203
demilitarized zone
See DMZ
DES (Data Encryption Standard)
, 43, 361
configuring in host IPsec policies, 109
configuring in IKE policies, 127
configuring in tunnel IPsec policies, 120
key length, 236
RFC, 231
warning, 44
Diffie-Hellman, 47, 51, 362
group, 362
configuring in IKE policies, 126, 308
digital signature, 50
using with IPsec, 34
disk requirements, 63
DMZ
securing with IPsec
, 58
E
Encapsulating Security Payload
See ESP
encryption
algorithms
, 237
configuring in IKE policies, 127, 309
definition, 362
keys, 191
generating, 287
Linux interoperability, 237
ESP (Encapsulating Security Payload), 33
algorithms, 237
configuring in host IPsec policies, 108
configuring in tunnel IPsec policies, 120
definition, 362
negotiation, 191
processing, 195
RFC, 231
tunnel mode, 41
F
filter
definition
, 362
foreign network (Mobile IPv6)
defined
, 279
G
gateway IPsec policies
configuring
, 285
H
hash algorithm
configuring in IKE policies
, 127, 308
home address (Mobile IPv6)
defined
, 279
Home Agent (Mobile IPv6)
defined
, 280
host IPsec policies
configuring
, 103, 158, 171
default, 102
examples, 112
host-to-gateway topology
configuration example, 266
I
ICMP messages
common messages used
, 234
discarding with IPv4, 234
ICMPv6 messages, 235
ID payload, 133, 163, 234
IKE (Internet Key Exchange), 34
defined, 37
description, 47
ID
configuring for certificates
, 163
ID payload, 133, 163, 234
limitations, 233
policies
examples
, 128