HPE FlexFabric 7900 Series Security Configuration Manual page 150
Hide thumbs
Also See for FlexFabric 7900 Series:
- Layer 3 ip routing command reference (414 pages) ,
- Security configuration manual (323 pages) ,
- Security command reference (320 pages)
Table of Contents
Advertisement
Remote address:
Transform set:
IKE profile: profile1
SA duration(time based):
SA duration(traffic based):
SA idle time:
Solution
1.
If no matching IKE profiles were found and the IPsec policy is referencing an IKE profile,
remove the reference.
2.
If the flow range defined by the responder's ACL is smaller than that defined by the initiator's
ACL, modify the responder's ACL so the ACL defines a flow range equal to or greater than that
of the initiator's ACL.
For example:
[Sysname] display acl 3000
Advanced ACL
ACL's step is 5
rule 0 permit ip source 192.168.222.0 0.0.0.255 destination 192.168.222.0 0.0.0.255
3.
Configure the missing settings (for example, the remote address).
transform1
3000, named -none-, 2 rules,
142
Advertisement
Table of Contents
Troubleshooting
