Manualshelf

HP-UX IPSec Version A.03.02.02 Administrator's Guide HP-UX 11i version 2 and HP-UX 11i version 3 (762800-001, April 2014)

ManualsBrandsHP ManualsSoftwareHP-UX IPSec Software
41424344454647484950
2 Installing HP-UX IPSec
This chapter describes installation prerequisites and procedures for installing HP-UX IPSec software.
It contains the following sections:
“HP-UX IPSec product requirements” (page 45)
“Step 1: Verifying HP-UX IPSec installation and configuration prerequisites” (page 45)
“Step 2: Loading the HP-UX IPSec software ” (page 46)
“Step 3: Establishing the HP-UX IPSec password” (page 47)
“Step 4: Completing Post-Installation migration requirements” (page 47)
HP-UX IPSec product requirements
Prior to installing the HP-UX IPSec product, check that your system can accommodate the following
product requirements.
Software requirements
HP-UX IPSec requires the following software:
OpenSSL software version A.00.09.08q or later. There are two ways to meet this requirement:
On HP-UX 11i v3 systems, the software bundle SysMgmtMin includes OpenSSL software
that meets this requirement.
OpenSSL software for HP-UX is available at no charge from the HP Software Depot
website, at the following web address:
software.hp.com
Search for the product OpenSSL.
You must install the patch PHNE_43412 for HP-UX IPSec A.03.02.02 to support new encryption
and authentication algorithms (AES-192/256 and SHA2).
Disk requirements
The total size of the disk space required for the HP-UX IPSec product is 50 Mbytes. Requirements
for variable-length user files are listed below:
Configuration database file (/var/adm/ipsec/config.db): minimum of 50 kbytes per
policy file. Most configuration database files will be approximately 1 Mbyte or less. An
extremely large configuration database (thousands of entries) can be as large as 5 Mbytes.
Audit file: This file can grow very fast if Informative auditing is enabled. HP recommends 1
Mbyte for the Alerts and Errors level of logging, 5 Mbytes for the Warnings level, and 200
or more Mbytes for the Informative message level. Informative auditing could generate 3-5
Mbytes per hour. Audit files should be kept in a separate directory or file system. The default
directory is /var/adm/ipsec.
Step 1: Verifying HP-UX IPSec installation and configuration prerequisites
1. Verify that the operating system version is HP-UX 11i version 3 (B.11.31) or HP-UX 11i v2
Update 2 (v2UD2).
To determine the OS version, enter the following command:
HP-UX IPSec product requirements 45