HP FlexFabric 5700 series

To Next Page

To Previous Page

420

IP source guard

IPv4. See

IPv6. See

IP source guard (IPSG)

configuration, 346, 348, 351

displa

y, 350

ynamic binding, 347

main

tain, 350

stati

c binding, 347

security user profile configuration, 395

sec

ACL configuration, 256

CL de-encapsulated packet check, 264

L IPsec anti-replay, 265

L rule keywords, 256

CL-based implementation, 255

CL-based IPsec, 253

anti-r

eplay redundancy, 266

pplication-based IPsec, 254

uthentication, 253

uthentication algorithms, 253

onfiguration, 250, 272

displa

y, 271

enc

apsulation modes, 251

enc

ryption, 253

enc

ryption algorithms, 253

PS compliance, 254

KE configuration, 281, 283, 292

KE configuration (main mode/pre-shared key

authentication), 292

E DPD, 290

KE global identity information, 288

KE identity authentication, 282

E invalid SPI recovery, 291

KE keepalive function, 289

E keychain, 287

IKE N

AT keepalive function, 289

E negotiation, 281

KE negotiation mode, 252

KE profile configuration, 284

KE proposal, 286

KE SA max number, 291

E security mechanism, 282

KE SNMP notification, 291

mplementation, 253

v6. See

maintain, 271

mir

ror image ACLs, 256

non

-mirror image ACLs, 256

pac

ket DF bit, 268

pac

ket logging enable, 268

I configuration, 216, 218, 230

poli

cy application to interface, 264

poli

cy configuration (IKE-based), 260

poli

cy configuration (IKE-based/direct), 261

poli

cy configuration (IKE-based/template), 262

poli

cy configuration (manual), 258

poli

cy configuration restrictions, 258

poli

cy configuration restrictions (IKE-based), 260

otocols and standards, 254

oS pre-classify enable, 267

IPng configuration, 277

, 252

sec

urity protocols, 251

NMP notification configuration, 270

urce interface policy bind, 266

ansform set, 257

oubleshoot IKE, 295

oubleshoot IKE negotiation failure (no proposal

match), 295

oubleshoot IKE negotiation failure (no proposal or

keychain referenced correctly), 296

oubleshoot SA negotiation failure (invalid identity

info), 297

oubleshoot SA negotiation failure (no transform set

match), 296

tunnel e

stablishment, 254

tunnel f

or IPv4 packets (IKE-based), 274

nnel for IPv4 packets (manual), 272

IPsec tunnel for IPv4 packets (IKE-based), 274

Psec tunnel for IPv4 packets (manual), 272

urce guard. See

SSH SCP client device, 315

SH Secure Telnet server connection

establishment, 310

SH SFTP server connection establishment, 312

Pv4 source guard (IPv4SG)

configuration, 346, 348, 348, 351

Main Page

HP FlexFabric 5700 series - Page 432

Table of Contents

Other manuals for HP FlexFabric 5700 series

Related product manuals