HP-UX IPSec Version A.03.00 Administrator's Guide

ManualsBrandsHP ManualsSoftwareHP-UX IPSec Software

configuring in IKEv1 policies, 97

configuring in tunnel IPsec policies, 82

key length, 167

RFC, 165

MM SA, 250

(see also IKE SA)

N

ndd, 151

netstat, 151

no proposal chosen error message, 156, 158

no suitable policy found error message, 158

O

Oakley, 250

group

configuring in IKEv1 policies, 97

configuring in IKEv2 policies, 100

protocol, 251

RFC, 165

P

PASS

configuring in host IPsec policies, 76

patch dependencies, 49

Perfect Forward Secrecy (PFS)

configuring in IKEv1 policies, 98

configuring in IKEv2 policies, 101

defined, 41, 251

PFS (see Perfect Forward Secrecy)

Phase 2 SA, 250

(see also IPsec SA)

phase1 negotiation failed message, 155

PKI (Public Key Infrastructure)

vendor requirements, 115

policy

definition, 251

manager daemon, 174

port number

configuring in host IPsec policies, 73

preshared keys, 40

configuring, 85

configuring as an authentication method in

authentication records, 89

definition, 251

using with IPsec, 30

primary authentication

configuring in authentication records, 89

priority

configuring in authentication records, 90

configuring in host IPsec policies, 76

configuring in IKEv1 policies, 98, 101

product limitations, 166

IKE, 166

product requirements, 48

disk, 48

protocol

configuring in host IPsec policies, 75

proxy identifiers

configuring in tunnel IPsec policies, 81

pseudo-random function

configuring in IKEv2 policies, 101

public key, 40, 114

using with IPsec, 30

Q

QM SA, 250

(see also IPsec SA)

Quick Mode (QM)

definition, 251

Quick Mode SA, 250

(see also IPsec SA)

R

random number generator

for generating encryption keys, 216

remote method

configuring, 90

reporting problems, 151

retransmission count exceeded error message, 156

retransmission count exceeded the limit, 156

RFCs, 165

RSA

cryptography, 251

for IKE authentication, 115

signatures

configuring as an authentication method in

authentication records, 89

S

SA, 38, 250 (see Security Association)

(see also IKE SA and IPsec SA)

Security Association, 38, 60, 108, 142, 175, 179, 251

negotiation, 169

security certificates

configuring as an authentication method in

authentication records, 89

service name

configuring in host IPsec policies, 73

Serviceguard

port numbers and protocols, 233

using with HP-UX IPSec, 222

session-based keying

configuring in host IPsec policies, 78

SHA1 (Secure Hash Algorithm-1)

configuring in host IPsec policies, 77

configuring in IKEv1 policies, 97

configuring in IKEv2 policies, 100, 101

configuring in tunnel IPsec policies, 82

key length, 167

RFC, 165

shared keys, 41

single-user mode, 50

SKEME, 250

software

loading, 50

SPI (Security Parameters Index)

configuring for manual keys, 216

256 Index