Manualshelf

HP-UX IPSec version A.02.01 Administrator's Guide

ManualsBrandsHP ManualsSoftwareHP-UX IPSec Software
71727374757677787980
Quick Configuration Procedure and Tips
Step 2: Modifying the Configuration Batch File Template
Chapter 3 75
#
######################################################################
#
# To use this file:
# 1. Uncomment the appropriate configuration statements.
# For host-to-host IPsec, you must configure the following items:
# a. At least one host IPsec policy. See SECTION 1 below.
# b. An IKE policy. See SECTION 2 below.
# c. An authentication record with the preshared key. See SECTION 3
# below.
# Replace the parameters in angle brackets (<>) with the appropriate
# values for your configuration.
# 2. Save your copy of the modified contents in another file, such as
# my_batch_file.
# 3. Use your batch file as input to the ipsec_config command:
# ipsec_config batch <my_batch_file>
#
# Refer to the ipsec_config manpage and the HP-UX IPSec AdministratorĂ­s
# Guide for more information.
# ############################################################################
#
# SECTION 1: Host IPsec Policies
# ############################################################################
#
# This section contains host IPsec policies for different topologies.
# Select the topology that most closely matches what you want to implement
# and uncomment and modify the appropriate host IPsec policies.
#
# Transform
# ---------
# This configuration uses ESP in tunnel mode with AES128 encryption and SHA1
# authentication for the IPSec SAs. AES128 provides strong encryption
# with the best performance.
#
# Search Priority
# ---------------
# Enter the most specific policies first.
# ipsec_config will assign priority numbers in ascending order and
# HP-UX IPSec searches policies starting with the lowest priority number,
# so it will search the policies in the order you configure them.
# Alternatively, you can explicitly assign a priority number using the
# -priority <priority_number>
# argument. A lower priority_number has a higher priority. For example,
# a policy with priority number 1 has a higher priority than a policy
# with priority number 100.
#