HPE FlexNetwork MSR Series User Manual (English)

To Next Page

To Previous Page

195

# Create a RIPng process and enable it on Ethernet 1/1.

<RouterC> system-view

[RouterC] ripng 1

[RouterC-ripng-1] quit

[RouterC] interface ethernet 1/1

[RouterC-Ethernet1/1] ripng 1 enable

[RouterC-Ethernet1/1] quit

# Create an IPsec transform set named tran1, and set the encapsulation mode to transport

mode, the security protocol to ESP, the encryption algorithm to DES, and authentication

algorithm to SHA1-HMAC-96.

[RouterC] ipsec transform-set tran1

[RouterC-ipsec-transform-set-tran1] encapsulation-mode transport

[RouterC-ipsec-transform-set-tran1] transform esp

[RouterC-ipsec-transform-set-tran1] esp encryption-algorithm des

[RouterC-ipsec-transform-set-tran1] esp authentication-algorithm sha1

[RouterC-ipsec-transform-set-tran1] quit

# Create an IPsec policy named policy001, specify the manual mode for it, and configure the

SPIs of the inbound and outbound SAs as 123456, and the keys for the inbound and outbound

SAs using ESP as abcdefg.

[RouterC] ipsec policy policy001 10 manual

[RouterC-ipsec-policy-manual-policy001-10] transform-set tran1

[RouterC-ipsec-policy-manual-policy001-10] sa spi outbound esp 123456

[RouterC-ipsec-policy-manual-policy001-10] sa spi inbound esp 123456

[RouterC-ipsec-policy-manual-policy001-10] sa string-key outbound esp abcdefg

[RouterC-ipsec-policy-manual-policy001-10] sa string-key inbound esp abcdefg

[RouterC-ipsec-policy-manual-policy001-10] quit

# Apply IPsec policy policy001 to the RIPng process.

[RouterC] ripng 1

[RouterC-ripng-1] enable ipsec-policy policy001

[RouterC-ripng-1] quit

4. Verify the configuration:

After the configuration, Router A, Router B, and Router C learn IPv6 routing information through

RIPng. SAs are set up successfully, and the IPsec tunnel between two peers is up for protecting

the RIPng packets.

# Execute the display ripng command on Router A to view the running status and

configuration information of the specified RIPng process. The output shows that IPsec policy

policy001 is applied to this process successfully.

<RouterA> display ripng 1

RIPng process : 1

Preference : 100

Checkzero : Enabled

Default Cost : 0

Maximum number of balanced paths : 8

Update time : 30 sec(s) Timeout time : 180 sec(s)

Suppress time : 120 sec(s) Garbage-Collect time : 120 sec(s)

Number of periodic updates sent : 186

Number of trigger updates sent : 1

IPsec policy name: policy001, SPI: 123456

Other manuals for HPE FlexNetwork MSR Series

Configuration Guide861 pages

Comware 7 Layer 3 - Ip Services Configuration Guides554 pages

Guide213 pages

Command Reference120 pages

Comware 5 Layer 2 - Wan Access Configuration Guide420 pages

Need help?

Do you have a question about the HPE FlexNetwork MSR Series and is the answer not in the manual?

HPE FlexNetwork MSR Series Specifications

General

Category	Network Router
WAN Ports	Varies by model
LAN Ports	Varies by model
Switching Capacity	Varies by model
IPv6 Support	Yes
Product Series	MSR Series
Routing Protocols	BGP, OSPF, RIP, IS-IS, Static Routing
WAN Interfaces	Ethernet, Serial, T1/E1
LAN Interfaces	Ethernet, Fast Ethernet, Gigabit Ethernet
Power Supply	AC or DC (varies by model)
Management	CLI, Web GUI, SNMP
VPN Support	IPsec, GRE, L2TP, DMVPN
QoS Support	Yes
Ports	Varies by model
Firewall	Stateful packet inspection, DoS/DDoS protection, Application layer filtering