Example—Securing Traffic Between IPv6 Addresses Without Rebooting

The following example describes how to test that you can secure traffic between systems with IPv6 addresses. In a production environment, to reboot is safer than to run the ipsecconf command.

1. Do the procedure How to Secure Traffic Between Two Systems through Step 5.

2. Instead of rebooting, use the ipseckey command to add the security associations to the database.

   # ipseckey -f /etc/inet/secret/ipseckeys

3. Activate IPsec policy with the ipsecconf command:

   # ipsecconf -a /etc/inet/ipsecinit.conf

   ---

   Note –

   Read the warning when you execute the command. A socket that is already in use (latched) provides an unsecured back door into the system.

   ---