HP 6125XLG Layer 3 - Ip Routing Configuration Manual page 322
Blade switch
Hide thumbs
Also See for 6125XLG:
- Command reference manual (466 pages) ,
- Configuration manual (414 pages) ,
- Ip multicast configuration manual (383 pages)
Table of Contents
Advertisement
the encryption algorithm to DES, and authentication algorithm to SHA1. Create IPsec profile
named policy002, specify the manual mode for it, reference IPsec transform set tran2, and set the
SPIs of the inbound and outbound SAs to 54321 and the keys for the inbound and outbound SAs
using ESP to gfedcba.
[SwitchB] ipsec transform-set tran1
[SwitchB-ipsec-transform-set-tran1] encapsulation-mode transport
[SwitchB-ipsec-transform-set-tran1] esp encryption-algorithm des
[SwitchB-ipsec-transform-set-tran1] esp authentication-algorithm sha1
[SwitchB-ipsec-transform-set-tran1] quit
[SwitchB] ipsec profile policy001 manual
[SwitchB-ipsec-profile-policy001-manual] transform-set tran1
[SwitchB-ipsec-profile-policy001-manual] sa spi outbound esp 12345
[SwitchB-ipsec-profile-policy001-manual] sa spi inbound esp 12345
[SwitchB-ipsec-profile-policy001-manual] sa string-key outbound esp simple abcdefg
[SwitchB-ipsec-profile-policy001-manual] sa string-key inbound esp simple abcdefg
[SwitchB-ipsec-profile-policy001-manual] quit
[SwitchB] ipsec transform-set tran2
[SwitchB-ipsec-transform-set-tran2] encapsulation-mode transport
[SwitchB-ipsec-transform-set-tran2] esp encryption-algorithm des
[SwitchB-ipsec-transform-set-tran2] esp authentication-algorithm sha1
[SwitchB-ipsec-transform-set-tran2] quit
[SwitchB] ipsec profile policy002 manual
[SwitchB-ipsec-profile-policy002-manual] transform-set tran2
[SwitchB-ipsec-profile-policy002-manual] sa spi outbound esp 54321
[SwitchB-ipsec-profile-policy002-manual] sa spi inbound esp 54321
[SwitchB-ipsec-profile-policy002-manual] sa string-key outbound esp simple gfedcba
[SwitchB-ipsec-profile-policy002-manual] sa string-key inbound esp simple gfedcba
[SwitchB-ipsec-profile-policy002-manual] quit
# On Switch C, create an IPsec transform set named tran2, and set the encapsulation mode to
transport mode, the security protocol to ESP, the encryption algorithm to DES, and authentication
algorithm to SHA1. Create IPsec profile named policy002, specify the manual mode for it,
reference IPsec transform set tran2, and set the SPIs of the inbound and outbound SAs to 54321
and the keys for the inbound and outbound SAs using ESP to gfedcba.
[SwitchC] ipsec transform-set tran2
[SwitchC-ipsec-transform-set-tran2] encapsulation-mode transport
[SwitchC-ipsec-transform-set-tran2] esp encryption-algorithm des
[SwitchC-ipsec-transform-set-tran2] esp authentication-algorithm sha1
[SwitchC-ipsec-transform-set-tran2] quit
[SwitchC] ipsec profile policy002 manual
[SwitchC-ipsec-profile-policy002-manual] transform-set tran2
[SwitchC-ipsec-profile-policy002-manual] sa spi outbound esp 54321
[SwitchC-ipsec-profile-policy002-manual] sa spi inbound esp 54321
[SwitchC-ipsec-profile-policy002-manual] sa string-key outbound esp simple gfedcba
[SwitchC-ipsec-profile-policy002-manual] sa string-key inbound esp simple gfedcba
[SwitchC-ipsec-profile-policy002-manual] quit
5.
Configure IPsec to protect IPv6 BGP packets between Switch A and Switch B:
# Configure Switch A.
[SwitchA] bgp 65008
310
- Quick Links:
- Configuring Basic Ip Routing
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
