Displaying And Maintaining Ike; Ike Configuration Example - HP 10500 Series Configuration Manual
Security configuration guide
Hide thumbs
Also See for 10500 Series:
- Security configuration manual (596 pages) ,
- Configuration manual (512 pages) ,
- Specifications (42 pages)
Table of Contents
Advertisement
Displaying and maintaining IKE
Task
Display IKE DPD information.
Display IKE peer information.
Display IKE SA information.
Display IKE proposal information.
Clear SAs established by IKE.
IKE configuration example
Network requirements
As shown in
and Switch B to secure the communication between the two switches.
For Switch A, configure an IKE proposal that uses the sequence number 10 and the authentication
algorithm SHA1. Configure Switch B to use the default IKE proposal.
Configure the two routers to use the pre-shared key authentication method.
Figure 118 Network diagram
Configuration procedure
1.
Make sure Switch A and Switch B can reach each other.
2.
Configure Switch A:
# Assign an IP address to VLAN-interface 1.
<SwitchA> system-view
[SwitchA] interface vlan-interface 1
[SwitchA-vlan-interface1] ip address 1.1.1.1 255.255.255.0
[SwitchA-Vlan-interface1] quit
# Configure ACL 3101 to identify traffic between Switch A and Switch B..
Figure 1
18, configure an IPsec tunnel that uses IKE negotiation between gateways Switch A
Command
display ike dpd [ dpd-name ] [ |
{ begin | exclude | include }
regular-expression ]
display ike peer [ peer-name ] [ |
{ begin | exclude | include }
regular-expression ]
display ike sa [ verbose
[ connection-id connection-id |
remote-address remote-address ] ]
[ | { begin | exclude | include }
regular-expression ]
display ike proposal [ | { begin |
exclude | include }
regular-expression ]
reset ike sa [ connection-id ]
323
Remarks
Available in any view.
Available in any view.
Available in any view.
Available in any view.
Available in user view.
Advertisement
Table of Contents
Troubleshooting
