HP-UX IPSec Version A.03.00 Administrator's Guide

3 Quick Configuration Procedure and Tips

This chapter contains a procedure for quickly configuring HP-UX IPSec for a simple host-to-host

topology using IKE with preshared keys. In this procedure, you modify the batch file template

/var/adm/ipsec/templates/host-to-host. This chapter also includes configuration tips.

This chapter contains the following sections:

• “Overview” (page 53)

• “Step 1: Establishing the HP-UX IPSec Password” (page 54)

• “Step 2: Modifying the Configuration Batch File Template” (page 55)

• “Step 3: Verifying the Batch File Syntax” (page 59)

• “Step 4: Committing the Batch File Configuration and Verifying Operation” (page 60)

• “Step 5: Configuring HP-UX IPSec to Start Automatically” (page 62)

• “Step 6: Creating Backup Copies of Configuration Files” (page 62)

• “Configuration Tips and Reminders” (page 63)

For information on configuring HP-UX IPSec for other topologies, see Chapter 4: “Configuring

HP-UX IPSec” (page 65).

Overview

The steps for configuring a simple host-to-host topology using the batch file template /var/

adm/ipsec/templates/host-to-host are as follows:

1. Use the ipsec_admin -newpasswd command to establish the HP-UX IPSec password, if

you have not already done this as part of the installation.

2. Edit the configuration batch file template for host-to-host topologies.

3. Verify the batch file syntax.

4. Commit the batch file operations to the database and start HP-UX IPSec to verify operation.

5. Configure HP-UX IPSec to start automatically at system boot-up time (optional).

6. Back up the ipsec_config batch file and the configuration database.

Overview 53