Ipsec Configuration - H3C SecPath F1800-A Operation Manual
H3c secpath f1800-a firewall
Hide thumbs
Also See for H3C SecPath F1800-A:
- Installation manual (13 pages) ,
- Operation manual (30 pages)
Table of Contents
Advertisement
Operation Manual - VPN
H3C SecPath F1800-A Firewall
4)
The host processes the data.
The SecPath F1800-A offers a Plug and Play IPSec card. When the IPSec card is
drawn out of the device or fails, data encryption or decryption will be processed
instantly by software.
Note:
The processing mechanism of IPSec card is the same as that of the IPSec module of
VRP software. The only difference is that IPSec card encrypts and decrypts data
through hardware while IPSec module of VRP does that through software.
II. IKE on IPSec Encryption Card
Beside all software functions, the IPSec card also supports other functions.
For example, the SecPath F1800-A provides ID authentication mode by RSA
encrypting NONCE in IPSec high-speed encryption card.
Note:
The said functions take effect only when the IPSec card exists. If there is no IPSec
card on the firewall or the firewall is set to process IPSec features completely with
software only, the said functions are invalid.
3.2 IPSec Configuration
Note:
Ethernet 0/0/0 and Ethernet 0/0/1 on the main control board do not support IPSec.
When you need to use the IPSec, configure it at the interface on the Ethernet interface
board.
I. Configuring Manual Negotiation
Configuration of manual negotiation includes:
1)
Configuring ACL
2)
Configuring IPSec proposal
Defining IPSec proposal
7-44
Chapter 3 IPSec Configuration
Advertisement
Chapters
Table of Contents
Troubleshooting
Need help?
Do you have a question about the H3C SecPath F1800-A and is the answer not in the manual?