Tunnel Local - HPE FlexNetwork HSR6800 Security Command Reference
Hide thumbs
Also See for FlexNetwork HSR6800:
- Configuration manual (503 pages) ,
- Command reference manual (153 pages) ,
- Product end-of-life disassembly instructions (2 pages)
Table of Contents
Advertisement
A manual IPsec policy can reference only one IPsec transform set. To replace a referenced IPsec
transform set, use the undo transform-set command to remove the original transform set binding
and then use the transform-set command to reconfigure one.
An IKE negotiated IPsec policy can reference up to six IPsec transform sets. The IKE negotiation
process will search for and use the exactly matched transform set.
An IPsec profile can reference up to six IPsec transform sets. The IKE negotiation process will
search for and use the exactly matched transform set.
Related commands
•
ipsec transform-set
•
ipsec policy (system view)
•
ipsec profile (system view)
Examples
# Configure IPsec policy policy1 to reference IPsec transform set tran1.
[Sysname] ipsec transform-set tran1
[Sysname-ipsec-transform-set-tran1] quit
[Sysname] ipsec policy policy1 100 manual
[Sysname-ipsec-policy-manual-policy1-100] transform-set tran1
# Configure IPsec profile profile1 to reference IPsec transform set tran2.
<Sysname> system-view
[Sysname] ipsec transform-set tran2
[Sysname-ipsec-transform-set-prop2] quit
[Sysname] ipsec profile profile1
[Sysname-ipsec-profile-profile1] transform-set tran2
tunnel local
Use tunnel local to configure the local address of an IPsec tunnel.
Use undo tunnel local to remove the configuration.
Syntax
tunnel local [ ipv6 ] ip-address
undo tunnel local
Default
No local address is configured for an IPsec tunnel.
Views
IPsec policy view
Default command level
2: System level
Parameters
ipv6: Specifies an IPv6 address.
ip-address: Specifies the local address for the IPsec tunnel.
Usage guidelines
This command applies to only manual IPsec policies.
300
Advertisement
Table of Contents
