HP-UX IPSec version A.02.01 Administrator's Guide
371
priority
configuring in host IPsec policies
, 107
configuring in IKE policies, 126, 307
product limitations, 233
IKE, 233
product requirements, 63
disk, 63
protocol
configuring in host IPsec policies
, 106
proxy identifiers
configuring in tunnel IPsec policies
, 117
public key, 50, 153
using with IPsec, 34
Q
QM SA
See also IPsec SA
, 363
Quick Mode (QM)
definition
, 364
Quick Mode SA
See also IPsec SA
, 363
R
random number generator
for generating encryption keys
, 287
reporting problems, 211
RFCs, 231
Route Optimization (Mobile IPv6)
defined, 281
RSA
cryptography
, 364
for IKE authentication, 154
signatures
configuring as an authentication method
in IKE policies
, 126, 308
S
SA
See also IKE SA and IPsec SA
, 363
See Security Association
Security Association
, 47, 82, 146, 194, 199,
365
negotiation, 191
security certificates
configuring as an authentication method in
IKE policies
, 126, 308
Security Parameters Index, 195
See SPI
service name
configuring in host IPsec policies
, 104
ServiceGuard
port numbers and protocols, 343
Serviceguard
using with HP-UX IPSec
, 327
session-based keying
configuring in host IPsec policies
, 112
SHA1 (Secure Hash Algorithm-1)
configuring in host IPsec policies
, 109
configuring in IKE policies, 127
configuring in tunnel IPsec policies, 120
key length, 236
RFC, 231
shared keys, 51
single-user mode, 66
SKEME, 47
software
loading
, 65
SPI (Security Parameters Index), 81, 146
configuring for manual keys, 286
processing, 195
startup options
configuring, 84, 148, 180
status
report
, 80, 144
verifying, 203
subnets
configuring policies for
ICMP messages
, 234
swinstall(1M), 65
swlist(1M), 64
T
tools survey
, 198
tracing
disabling
, 198
enabling, 198
layer 4, 205, 211
transform, 193
configuring in host IPsec policies, 108
configuring in tunnel IPsec policies, 120
discard, 80, 145
IPsec operation, 192
list, 221
pass, 80, 145
verify, 81, 145
transport mode
AH
, 44
ESP, 41
troubleshooting, 191