HP 6125XLG R2306-HP 6125XLG Blade Switch Security Configuration Guide - Page 260
AAA for MPLS L3VPNs, 1X HP MAC-based access control
View all HP 6125XLG manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 260 highlights
exchange, 222 keychain, 225 main mode configuration, 232 main mode in phase 1, 222 maintaining, 232 negotiation failure (no proposal or keychain referenced correctly), 236 negotiation failure troubleshooting (no proposal match), 235 negotiation process, 222 PFS, 224 pre-shared key authentication, 223 profile, 225 SA, 200 SA lifetime, 227 security mechanism, 223 troubleshooting, 235 IKE-based IPsec policy configuring by referencing IPsec policy template, 209 direct configuration, 208 IMC RADIUS session-control feature configuration, 44 implementing 802.1X HP MAC-based access control, 68 802.1X HP port-based access control, 68 AAA for MPLS L3VPNs, 13 AAA HWTACACS, 7 AAA LDAP, 9 AAA on device, 11 AAA RADIUS, 2 ACL-based IPsec, 202 IPsec, 201 importing peer host public key from file, 119 public key from file, 122 initiating 802.1X authentication, 62, 63 Internet Key Exchange. See IKE intrusion protection blockmac mode, 93 disableport mode, 93 disableport-temporarily mode, 93 port security feature, 87 IP uRPF configuration, 186, 189, 190 IP addressing ARP attack protection configuration, 171 ARP filtering configuration, 184 ARP gateway protection, 183 ARP user/packet validity check, 180 LDAP server IP address configuration, 37 outgoing RADIUS packet source IP address, 27 RADIUS security policy server IP address configuration, 30 security AAA HWTACACS outgoing packet source IP address, 34 SFTP client source IP address or interface specification, 135 Stelnet client source IP address, 133 IP source guard configuration, 161, 162 displaying, 165 IPv4 configuration, 162 IPv4 dynamic configuration with DHCP relay, 169 IPv4 dynamic configuration with DHCP snooping, 167 IPv4 on interface, 162 IPv4 static configuration, 165 IPv4 static entry on interface, 163 IPv6 configuration, 164 IPv6 on interface, 164 IPv6 static configuration, 170 IPv6 static entry on interface, 164 maintaining, 165 static binding entries, 161 ip validity check (ARP), 178 IPsec ACL-based IPsec, 201 applying IPsec policy, 211 authentication, 200 binding source interface to IPsec policy, 213 configuration, 198 configuring ACL, 203 configuring anti-replay, 212 configuring DF bit of IPsec packets, 214 configuring IKE profile, 225 configuring IKE proposal, 227 configuring IKE-based policy, 207 251