Manualshelf

HP-UX IPSec version A.02.01 manpages

ManualsBrandsHP ManualsSoftwareHP-UX IPSec Software
41424344454647484950
i
ipsec_config_delete(1M) ipsec_config_delete(1M)
(HP-UX IPSec Software Required)
NAME
ipsec_config_delete - delete configuration records from the HP-UX IPSec configuration database and
delete certificate files
SYNOPSIS
ipsec_config del
[
ete]
auth object_name [
nocommit
|nc
]
ipsec_config del
[ete
] bypass
|bp ip_addr [
nocommit|
nc]
ipsec_config del
[
ete]
cert[
ificate
]
ipsec_config del
[
ete]
gateway
|gw
object_name [
nocommit
|nc
]
ipsec_config del
[
ete]
host
object_name [
nocommit|
nc]
ipsec_config del
[
ete]
ike object_name [
nocommit
|
nc]
ipsec_config del
[
ete]
tun[
nel
] object_name [
nocommit
|
nc]
DESCRIPTION
The
ipsec_config delete
command deletes configuration records from the configuration database
and certificate data. If HP-UX IPSec is active and running, the data (IPsec policy, authentication record
or bypass list entry) is also deleted from the runtime policy database. If you delete IPsec policies that
have active Security Associations (SAs), HP-UX IPSec removes the SAs from the Security Association
Database (SADB) and sends a delete notification to the remote system. If HP-UX IPSec removes an IKE
SA, the associated IPSec SAs can remain active, but no IKE control messages can be sent.
The
ipsec_config delete certificate
command deletes all certificate data in the
/var/adm/ipsec.cert
file. This includes the certificate for the local system, the Certificate Revoca-
tion List (CRL) and any certificates for remote systems.
You cannot delete the
startup configuration object.
Options and Operands
The
ipsec_config delete command recognizes the following options and operands:
object_name
Specifies the name of the object you are deleting.
Do not use this argument when deleting a
bypass configuration object.
You cannot delete the
default
host or default gateway IPsec policy.
ip_addr
Specifies the IP address of the entry in the bypass list you are deleting.
EXAMPLES
The following command deletes the host IPsec policy named
telnet_out
:
ipsec_config delete host telnet_out
AUTHOR
ipsec_config_delete
was developed by HP.
FILES
/var/adm/ipsec/config.db
configuration database.
/var/adm/ipsec/.ipsec_profile
default ipsec_config
profile file.
SEE ALSO
ipsec_admin(1M), ipsec_config(1M), ipsec_config_add(1M), ipsec_config_batch(1M),
ipsec_config_export(1M), ipsec_config_show(1M), ipsec_migrate(1M), ipsec_policy(1M), ipsec_report(1M).
HP-UX IPSec A.02.01 1 Hewlett-Packard Company 43