< Home

ospfv3 ipsec sa

Function

The ospfv3 ipsec sa command configures an SA in the OSPFv3 interface.

The undo ospfv3 ipsec sa command deletes the SA configured in the OSPFv3 interface.

By default, no SA is configured in the OSPFv3 interface.

Format

ospfv3 ipsec sa sa-name

undo ospfv3 ipsec sa

Parameters

Parameter Description Value

sa-name

Specifies the name of an SA.

The value is an existing SA name.

Views

Interface view

Default Level

2: Configuration level

Usage Guidelines

Usage Scenario

If an SA is configured on an interface, OSPFv3 uses the SA to authenticate and encrypt packets sent and received by the interface.

If no SA is configured on the interface or the configured SA is deleted from the interface, OSPFv3 uses the SA configured in the process or the area where the interface resides to authenticate packets sent and received by the interface.

  • The SA configured in the interface view takes precedence over that configured in the OSPFv3 area view or the OSPFv3 process view.
  • The ospfv3 ipsec sa command can be used on all the OSPFv3 instances of an interface.

Example

# Configure an SA named sa3 for the interface VLANIF10. (This SA has been created.)

<HUAWEI> system-view
[HUAWEI] ospfv3
[HUAWEI-ospfv3-1] router-id 10.1.1.1
[HUAWEI-ospfv3-1] quit
[HUAWEI] interface vlanif 10
[HUAWEI-Vlanif10] ipv6 enable
[HUAWEI-Vlanif10] ospfv3 1 area 0
[HUAWEI-Vlanif10] ospfv3 ipsec sa sa3
Parent Topic: OSPFv3 Configuration Commands
Copyright © Huawei Technologies Co., Ltd.
Copyright © Huawei Technologies Co., Ltd.
< Previous topic Next topic >