HP 6125XLG R2306-HP 6125XLG Blade Switch Security Command Reference - Page 271
local-address, pfs
View all HP 6125XLG manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 271 highlights
system-view [Sysname] ipsec transform-set tran1 [Sysname-transform-set-tran1] Related commands display ipsec transform-set local-address Use local-address to configure the local IP address for the IPsec tunnel. Use undo local-address to restore the default. Syntax local-address { ipv4-address | ipv6 ipv6-address } undo local-address Default Views The primary IPv4 address of the interface to which the IPsec policy is applied is used as the local IPv4 address, and the first IPv6 address of the interface to which the IPsec policy is applied is used as the local IPv6 address. IPsec policy view, IPsec policy template view Predefined user roles network-admin Parameters ipv4-address: Specifies the local IPv4 address for the IPsec tunnel. ipv6 ipv6-address: Specifies the local IPv6 address for the IPsec tunnel. Usage guidelines The remote IP address on the IKE negotiation initiator must be the same as the local address on the IKE negotiation responder. Examples # Configure the local address 1.1.1.1 for the IPsec tunnel. system-view [Sysname] ipsec policy map 1 isakmp [Sysname-ipsec-policy-isakmp-map-1] local-address 1.1.1.1 Related commands remote-address pfs Use pfs to enable the perfect forward secrecy (PFS) feature for an IPsec transform set, used for IKE negotiation. Use undo pfs to restore the default. 262