HP-UX IPSec Version A.03.00 Administrator's Guide

ManualsBrandsHP ManualsSoftwareHP-UX IPSec Software

Determining if the IKEv2 SA Negotiation Succeeded........................................................154

IKEv1 SA Negotiation Fails or Times Out (phase1 negotiation failed)..........................154

Problem....................................................................................................................................154

Symptoms.................................................................................................................................155

Solution.....................................................................................................................................155

IKEv2 SA Negotiation Fails or Times Out (retransmission count exceeded the

limit)...........................................................................................................................................156

Problem....................................................................................................................................156

Symptoms.................................................................................................................................156

Solution.....................................................................................................................................156

IPsec SA Negotiation Fails.............................................................................................................157

Problem....................................................................................................................................157

Symptoms.................................................................................................................................157

Solution.....................................................................................................................................157

IKEv1 IPsec SA Error..........................................................................................................158

IKEv2 IPsec SA Error..........................................................................................................158

IKE Primary Authentication Fails with Certificates......................................................................158

Problem....................................................................................................................................158

Symptoms ................................................................................................................................158

Solution.....................................................................................................................................158

Details.......................................................................................................................................158

HP-UX Will Not Start (ipsec_admin -start Fails).................................................................159

Problem....................................................................................................................................159

Symptoms.................................................................................................................................159

Solution.....................................................................................................................................159

Corrupt or Missing HP-UX IPSec Configuration Database..........................................................160

Problem....................................................................................................................................160

Symptoms.................................................................................................................................160

Solution.....................................................................................................................................160

Autoboot is Not Working Properly...............................................................................................160

Problem....................................................................................................................................160

Symptoms.................................................................................................................................160

Solution.....................................................................................................................................160

Security Policy Database Limit Exceeded (Kernel Policy Cache Threshold reached

or Kernel Policy Cache Threshold exceeded ) .............................................................161

Problem....................................................................................................................................161

Symptoms.................................................................................................................................161

Solution.....................................................................................................................................161

A Product Specifications...............................................................................................163

Product Files and Directories..............................................................................................................163

IPsec RFCs...........................................................................................................................................165

Product Restrictions............................................................................................................................166

IKE Limitations..............................................................................................................................166

HP-UX IPSec Transforms....................................................................................................................167

Comparative Key Lengths.............................................................................................................167

Authentication Algorithms............................................................................................................167

Encryption Algorithms..................................................................................................................167

ESP-3DES-HMAC-MD5...........................................................................................................167

ESP-3DES-HMAC-SHA1..........................................................................................................167

ESP-AES128-HMAC-MD5........................................................................................................168

ESP-AES128-HMAC-SHA1......................................................................................................168

ESP-NULL-HMAC-MD5..........................................................................................................168

ESP-NULL-HMAC-SHA1........................................................................................................168

10 Table of Contents