Manualshelf

HP-UX IPSec Version A.03.00 Administrator's Guide

ManualsBrandsHP ManualsSoftwareHP-UX IPSec Software
181182183184185186187188189190
(port 514) service on the Windows 2008 server (10.0.0.208) from the HP-UX system
(10.0.0.11):
netsh advfirewall consec add rule name=iop-rule enable=yes
endpoint1=10.0.0.208 endpoint2=10.0.0.11 protocol=tcp port1=514
action=requireinrequireout auth1=computerpsk auth1psk=MyKey
Rules configured using the netsh advfirewall command-line context are
bidirectional. IPsec will be used for TCP packets from 10.0.0.11 to port 514 on 10.0.0.208
and for packets in the reverse direction.
The default IPsec transform is ESP with AES-128 encryption and SHA-1 authentication.
In addition to configuring IPsec rules, you must configure the firewall rules (accessible from
the Windows Firewall with Advanced Security MMC snap-in) and change the action for
the appropriate rule to secure. For example, the action for the inbound telnet server rule
must be set to secure to allow connection requests for the telnet server. The action secure
also causes Microsoft to apply the appropriate IPsec rule to the packets.
Microsoft 189