Ipsec Profile - HP FlexNetwork MSR Series Command Reference Manual

An IPsec policy template is a set of IPsec policy template entries that have the same name but
different sequence numbers.
With the seq-number argument specified, the undo command deletes an IPsec policy template
entry.
An IPv4 IPsec policy template and an IPv6 IPsec policy template can have the same name.
Examples
# Create an IPsec policy template entry and enter the IPsec policy template view. The template
name is template1 and the sequence number is 100.
<Sysname> system-view
[Sysname] ipsec policy-template template1 100
[Sysname-ipsec-policy-template-template1-100]
Related commands
display ipsec { ipv6-policy-template | policy-template }
ipsec { ipv6-policy | policy }
ipsec { ipv6-policy | policy } isakmp template

ipsec profile

Use ipsec profile to create an IPsec profile and enter its view, or enter the view of an existing IPsec
profile.
Use undo ipsec profile to delete the specified IPsec profile.
Syntax
ipsec profile profile-name [ manual | isakmp ]
undo ipsec profile profile-name
Default
No IPsec profiles exist.
Views
System view
Predefined user roles
network-admin
Parameters
profile-name: Specifies a name for the IPsec profile, a case-insensitive string of 1 to 63 characters.
manual: Specifies the IPsec SA setup mode as manual.
isakmp: Specifies the IPsec SA setup mode as IKE.
Usage guidelines
When you create an IPsec profile, you must specify the IPsec SA setup mode (isakmp or manual).
When you enter the view of an existing IPsec profile, you do not need to specify the IPsec SA setup
mode.
A manual IPsec profile is similar to a manual IPsec policy. It is used exclusively for IPsec protection
for application protocols, including OSPFv3, IPv6 BGP, and RIPng.
An IKE-based IPsec profile is similar to an IKE-based IPsec policy. It uses IKE negotiation to
establish IPsec SAs to protect both IPv4 and IPv6 application protocols, such as ADVPN. An
IKE-based IPsec profile does not require you to specify the remote end address or an ACL.
492