Encapsulation-Mode - HP 5120 SI series Command Reference Manual

Hide thumbs Also See for 5120 SI series:
Table of Contents

Advertisement

------------------------------------------------
connection id: 5
perfect forward secrecy:
SA's SPI:
inbound:
outbound: 12345 (0x3039) [ESP]
tunnel:
flow:
current Encrypt-card:
Table 54 Output description
Field
connection id
perfect forward secrecy
SA's SPI
tunnel
flow
as defined in acl 3001
current Encrypt-card

encapsulation-mode

Syntax
encapsulation-mode { transport | tunnel }
undo encapsulation-mode
View
IPsec proposal view
Default level
2: System level
Parameters
transport: Uses transport mode.
tunnel: Uses tunnel mode.
Description
Use the encapsulation-mode command to set the encapsulation mode that the security protocol uses to
encapsulate IP packets.
Use the undo encapsulation-mode command to restore the default.
By default, a security protocol encapsulates IP packets in tunnel mode.
Related commands: ipsec proposal.
12345 (0x3039) [ESP]
Description
Connection ID, used to uniquely identify an IPsec Tunnel
Perfect forward secrecy, indicating which DH group is to be used for fast
negotiation mode in IKE phase 2
SPIs of the inbound and outbound SAs
Local and remote addresses of the tunnel
Data flow protected by the IPsec tunnel, including source IP address,
destination IP address, source port, destination port and protocol
The IPsec tunnel protects all data flows defined by ACL 3001
Encryption card interface used by the current tunnel
331

Hide quick links:

Advertisement

Table of Contents
loading

Table of Contents