HP-UX IPSec version A.02.01 manpages

ManualsBrandsHP ManualsSoftwareHP-UX IPSec Software

ipsec_report(1M) ipsec_report(1M)

(IPSec Software Required)

Possible ﬂags are deﬁned as follows:

MIPV6

indicates this policy is used for Mobile IPv6. HP-UX IPSec checks the Mobile IPv6 bind-

ing cache for routing information.

Tunnel Name

The name of the tunnel policy used with this host policy. This ﬁeld is not present if no tunnel

is conﬁgured for this gateway policy.

The

ipsec_report -gateway active

displays the following report:

-------------------

Active Gateway Policy Rule ---------------------

Rule Name: gwy_policy_name2 ID: 17

Cookie: 5 Priority: 3

Src IP Addr: 0::0 Prefix: 0

Dst IP Addr: fe80::230:6666:7777:8888

Prefix: 128

Network Protocol: MH Action: Forward

Tunnel Name: mipv6_tunnel_name

FLAGS: MIPv6

-------------------

Active Gateway Policy Rule ---------------------

Rule Name: default ID: 2 Cookie: 2

Action: Forward

REPORT: ipsec_report -tunnel

The

ipsec_report -tunnel command displays the information about tunnel IPsec policies kept by

the Policy daemon.

Tunnel policy ﬁelds are deﬁned as follows:

Tunnel Name

A character string used as the name of the tunnel policy.

An integer used internally by IPSec to index the entries.

An integer used internally by IPSec to identify the entries.

Tunnel Src IP Addr

This ﬁeld is not present if the tunnel source address (

-tsource

) was not conﬁgured in the

tunnel IPsec policy and the output is for a conﬁgured (static) policy. If the output is for a

dynamic policy created for a tunnel SA, this ﬁeld contains the IP address of the actual tunnel

endpoint.

Tunnel Dst IP Addr

This ﬁeld is not present if the tunnel destination address (

-tdestination) was not

conﬁgured in the tunnel IPsec policy and the output is for a conﬁgured (static) policy. If the

output is for a dynamic policy created for a tunnel SA, this ﬁeld contains the IP address of the

actual tunnel endpoint.

Src IP Address

The source proxy (end host) IP address. (The source end-to-end address for outbound packets;

the destination end-to-end address for inbound packets.)

Dst IP Address

The destination proxy (end host) IP address. (The destination end-to-end address for outbound

packets; the source end-to-end address for inbound packets.)

Prefix

The number of bits that must match when comparing IP addresses, beginning with the left-

most bit.

Port number

(This ﬁeld is only present if the network protocol is TCP, UDP, or ALL.) The source or desti-

nation port number for the upper-layer protocol.

Dst IP Address

The destination proxy (end host) IP address.

HP-UX IPSec A.02.01 − 11 − Hewlett-Packard Company 61