HP ProCurve Secure Router 7203 dl Advanced Management And Configuration Manual page 468
Secure router
Hide thumbs
Also See for ProCurve Secure Router 7203 dl:
- Configuration manual (1114 pages) ,
- Reference manual (1455 pages) ,
- Product end-of-life disassembly instructions (2 pages)
Table of Contents
Advertisement
Virtual Private Networks
Troubleshooting a VPN That Uses IPSec
SA Attribute
Value Options
Group Description • DH Group 1
• DH Group 2
Authentication
• pre-shared key
Method
• DSS
• RSA
Encryption
• DES
Algorithm
• 3DES
• 128
• 192
• 256
Authentication
• SHA1
Algorithm
• MD5
Life Type
• seconds
• kilobytes
Life Time
• number of
seconds
8-82
Table 8-28. TRANSFORM ATTRIBUTES (IKE SA Security Proposals)
Remote Setting
Reconfigure any settings that do not match.
Comparing IPSec Policies. You can track IKE messages to verify that IKE
has entered phase 2. You should see such messages as:
sending main mode message 5
received main mode message 5
sending main mode message 6
received main mode message 6
sending aggressive mode message 3
received aggressive mode message 3
sending quick mode message 1
received quick mode message 1
Router
Options
Configuration
IKE attribute
• 1
policy:
• 2
group
IKE attribute
• pre-share
policy:
• dss-sig
authentication
• rsa-sig
IKE attribute
des
policy:
3des
encryption
aes-128-cbc
aes-192-cbc
aes-256-cbc
IKE attribute
• sha
policy:
• md5
hash
only supports
—
seconds
IKE attribute
60-86,400
policy:
lifetime
Local Setting
Advertisement
Chapters
Table of Contents
Troubleshooting
