Manualshelf

HP-UX IPSec Version A.03.00 Administrator's Guide

ManualsBrandsHP ManualsSoftwareHP-UX IPSec Software
241242243244245246247248249250
-rtype IPV4 -rid 15.4.4.4
add auth client2 -remote 15.5.5.5 -kmp IKEV1 \
-ltype FQDN -lid mycluster.hp.com \
-rtype IPV4 -rid 15.5.5.5
Authentication Records on Client1 and Client2
On each cluster client, the ipsec_config batch file contains the following entries. The
authentication records use the default local ID type (IPV4) and default local ID value (the IP
address of the interface used to communicate with the remote system). If the cluster clients were
multihomed, you would add entries for the additional addresses on the cluster clients, and
specify local ID type and local ID value arguments.
Note that the -rid argument is the same for both records. The cluster nodes use the same
certificate on all nodes and for all package addresses.
add auth pkgA -remote 15.98.98.98 -kmp IKEV1 \
-rtype FQDN -rid mycluster.hp.com
add auth pkgB -remote 15.99.99.99 -kmp IKEV1 \
-rtype FQDN -rid mycluster.hp.com
Step 4: Configuring Authentication Records for Certificates 241