sa3450 and sa3000 Series VPN Manager - Release 6.8.2 Release Notes

Hewlett-Packard VPN Server Appliance SA3110/SA3150/SA3400/SA3450

For this example, the following information appears:

Prompt>

int e 0

ip address 10.250.145.3 255.255.0.0

…

dhcp-relay enable

int e 1

ip address 207.37.244.51 255.255.255.0

dhcp-relay enable

dhcp-relay-server 192.168.1.10 207.37.244.51

To shut down the relay capability on the first interface,

enter the following command sequence:

[conf]

int e 0

dhcp-relay disable

end

This design assumes that the remote device has fixed IP

addresses for both the black and red interfaces and that it

is the default gateway for the local network.

IPSec Secondary Authentication

Implemented

Release 6.8.2 of the VPN Manager extends IPSec capability

to provide an X-Auth implementation of authentication

using SecurID or RADIUS in conjunction with IKE/IPSec

negotiation. Accordingly, changes have been made to the

GUI to provide for IKE secondary authentication in tunnel

security profiles and ACLs.

Improved Authentication Support for SST

Reference Numbers 675P2-2 and 670P10GW-1

The HP device firmware supports RADIUS, SecurID, and

Intel NetStructure Certificate Authority, Shiva Certificate

Authority and Entrust certificate authentication over

unreliable connections.