Follow Techotopia on Twitter

On-line Guides
All Guides
eBook Store
iOS / Android
Linux for Beginners
Office Productivity
Linux Installation
Linux Security
Linux Utilities
Linux Virtualization
Linux Kernel
System/Network Admin
Programming
Scripting Languages
Development Tools
Web Development
GUI Toolkits/Desktop
Databases
Mail Systems
openSolaris
Eclipse Documentation
Techotopia.com
Virtuatopia.com
Answertopia.com

How To Guides
Virtualization
General System Admin
Linux Security
Linux Filesystems
Web Servers
Graphics & Desktop
PC Hardware
Windows
Problem Solutions
Privacy Policy

  




 

 

System Administration Guide: IP Services
Previous Next

Modifying the Mobile IP Configuration File

This section shows you how to modify the Mobile IP configuration file by using the mipagentconfig command. This section also shows you how to display the current settings of parameter destinations.

Configuring the Mobility IP Agent provides a conceptual description of the mipagentconfig command's usage. You can also review the mipagentconfig(1M) man page.

How to Modify the General Section

  1. Assume the Primary Administrator role, or become superuser on the system where you want to enable Mobile IP.

    The Primary Administrator role includes the Primary Administrator profile. To create the role and assign the role to a user, see Chapter 2, Working With the Solaris Management Console (Tasks), in System Administration Guide: Basic Administration.

  2. On a command line, type the following command for each label that you want to modify in the General section.
    # mipagentconfig change <label> <value>
Example 28-1 Modifying a Parameter in the General Section

The following example shows how you might change the version number in the configuration file's General section.

# mipagentconfig change version 2

How to Modify the Advertisements Section

  1. Assume the Primary Administrator role, or become superuser, on the system where you want to enable Mobile IP.

    The Primary Administrator role includes the Primary Administrator profile. To create the role and assign the role to a user, see Chapter 2, Working With the Solaris Management Console (Tasks), in System Administration Guide: Basic Administration.

  2. Type the following command for each label that you want to modify in the Advertisements section:
    # mipagentconfig change adv device-name <label> <value>

    For example, if you are changing the agent's advertised lifetime to 300 seconds for device hme0, use the following command.

    # mipagentconfig change adv hme0 AdvLifetime 300
Example 28-2 Modifying the Advertisements Section

The following example shows how you might change other parameters in the configuration file's Advertisements section.

# mipagentconfig change adv hme0 HomeAgent yes
# mipagentconfig change adv hme0 ForeignAgent no
# mipagentconfig change adv hme0 PrefixFlags no
# mipagentconfig change adv hme0 RegLifetime 300
# mipagentconfig change adv hme0 AdvFrequency 4
# mipagentconfig change adv hme0 ReverseTunnel yes

How to Modify the GlobalSecurityParameters Section

  1. Assume the Primary Administrator role, or become superuser, on the system where you want to enable Mobile IP.

    The Primary Administrator role includes the Primary Administrator profile. To create the role and assign the role to a user, see Chapter 2, Working With the Solaris Management Console (Tasks), in System Administration Guide: Basic Administration.

  2. Type the following command for each label that you want to modify in the GlobalSecurityParameters section:
    # mipagentconfig change <label> <value>

    For example, if you are enabling home agent and foreign agent authentication, use the following command:

    # mipagentconfig change HA-FAauth yes
Example 28-3 Modifying the Global Security Parameters Section

The following example shows how you might change other parameters in the configuration file's GlobalSecurityParameters section.

# mipagentconfig change MaxClockSkew 200
# mipagentconfig change MN-FAauth yes
# mipagentconfig change Challenge yes
# mipagentconfig change KeyDistribution files

How to Modify the Pool Section

  1. Assume the Primary Administrator role, or become superuser, on the system where you want to enable Mobile IP.

    The Primary Administrator role includes the Primary Administrator profile. To create the role and assign the role to a user, see Chapter 2, Working With the Solaris Management Console (Tasks), in System Administration Guide: Basic Administration.

  2. Type the following command for each label that you want to modify in the Pool section:
    # mipagentconfig change Pool pool-identifier <label> <value>
Example 28-4 Modifying the Pool Section

The following example shows the commands to use for changing the base address to 192.168.1.1 and the size of Pool 10 to 100.

# mipagentconfig change Pool 10 BaseAddress 192.168.1.1
# mipagentconfig change Pool 10 Size 100

How to Modify the SPI Section

  1. Assume the Primary Administrator role, or become superuser, on the system where you want to enable Mobile IP.

    The Primary Administrator role includes the Primary Administrator profile. To create the role and assign the role to a user, see Chapter 2, Working With the Solaris Management Console (Tasks), in System Administration Guide: Basic Administration.

  2. Type the following command for each label that you want to modify in the SPI section:
    # mipagentconfig change SPI SPI-identifier <label> <value>

    For example, if you are changing the key for SPI 257 to 5af2aee39ff0b332, use the following command.

    # mipagentconfig change SPI 257 Key 5af2aee39ff0b332
Example 28-5 Modifying the SPI Section

The following example shows how to change the ReplayMethod label in the configuration file's SPI section.

# mipagentconfig change SPI 257 ReplayMethod timestamps

How to Modify the Address Section

  1. Assume the Primary Administrator role, or become superuser, on the system where you want to enable Mobile IP.

    The Primary Administrator role includes the Primary Administrator profile. To create the role and assign the role to a user, see Chapter 2, Working With the Solaris Management Console (Tasks), in System Administration Guide: Basic Administration.

  2. Type the following command for each label that you want to modify in the Address section:
    # mipagentconfig change addr [NAI | IPaddr | node-default] <label> <value>

    See Address Section for a description of the three configuration methods (NAI, IP address, and node-default).

    For example, if you are changing the SPI of IP address 10.1.1.1 to 258, use the following command:

    # mipagentconfig change addr 10.1.1.1 SPI 258
Example 28-6 Modifying the Address Section

The following example shows how you can change other parameters that are provided in the sample configuration file's Address section.

# mipagentconfig change addr 10.1.1.1 Type agent
# mipagentconfig change addr 10.1.1.1 SPI 259
# mipagentconfig change addr [email protected] Type node
# mipagentconfig change addr [email protected] SPI 258
# mipagentconfig change addr [email protected] Pool 2
# mipagentconfig change addr node-default SPI 259
# mipagentconfig change addr node-default Pool 3
# mipagentconfig change addr 10.68.30.36 Type agent
# mipagentconfig change addr 10.68.30.36 SPI 260
# mipagentconfig change IPsecRequest apply {auth_algs md5 sa shared}

How to Add or Delete Configuration File Parameters

  1. Assume the Primary Administrator role, or become superuser, on the system where you want to enable Mobile IP.

    The Primary Administrator role includes the Primary Administrator profile. To create the role and assign the role to a user, see Chapter 2, Working With the Solaris Management Console (Tasks), in System Administration Guide: Basic Administration.

  2. Type the appropriate command for each label that you want to add or delete for the designated section:

    • For the General section use the following:

      # mipagentconfig [add | delete] <label> <value>

    • For the Advertisements section use the following:

      # mipagentconfig [add | delete] adv device-name <label> <value>

      Note - You can add an interface by typing the following:

      # mipagentconfig add adv device-name

      In this instance, default values are assigned to the interface (for both the foreign agent and the home agent).

    • For the GlobalSecurityParameters, section use the following:

      # mipagentconfig [add | delete] <label> <value>

    • For the Pool section, use the following:

      # mipagentconfig [add | delete] Pool pool-identifier <label> <value>

    • For the SPI section, use the following:

      # mipagentconfig [add | delete] SPI SPI-identifier <label> <value>

    • For the Address section, use the following:

      # mipagentconfig [add | delete] addr [NAI | IP-address | node-default] \
<label> <value>

    Note - Do not create identical Advertisements, Pool, SPI, and Address sections.

Example 28-7 Modifying File Parameters

For example, to create a new address pool, Pool 11, that has a base address of 192.167.1.1 and a size of 100, use the following commands.

# mipagentconfig add Pool 11 BaseAddress 192.167.1.1 
# mipagentconfig add Pool 11 size 100
Example 28-8 Deleting SPI

The following example shows how to delete the SPI security parameter SPI 257.

# mipagentconfig delete SPI 257

How to Display Current Parameter Values in the Configuration File

You can use the mipagentconfig get command to display current settings that are associated with parameter destinations.

  1. Assume the Primary Administrator role, or become superuser, on the system where you are enabling Mobile IP.

    The Primary Administrator role includes the Primary Administrator profile. To create the role and assign the role to a user, see Chapter 2, Working With the Solaris Management Console (Tasks), in System Administration Guide: Basic Administration.

  2. Type the following command for each parameter for which you want to display settings:
    # mipagentconfig get [<parameter> | <label>]

    For example, if you are displaying the advertisement settings for the hme0 device, use the following command:

    # mipagentconfig get adv hme0

    As a result, the following output might be displayed:

    [Advertisements hme0]
   HomeAgent = yes
   ForeignAgent = yes
Example 28-9 Using the mipagentconfig get Command to Display Parameter Values

The following example shows the results of using the mipagentconfig get command with other parameter destinations.

# mipagentconfig get MaxClockSkew
      [GlobalSecurityParameters]
         MaxClockSkew=300

# mipagentconfig get HA-FAauth
      [GlobalSecurityParameters]
         HA-FAauth=no

# mipagentconfig get MN-FAauth
      [GlobalSecurityParameters]
         MN-FAauth=no

# mipagentconfig get Challenge
      [GlobalSecurityParameters]
         Challenge=no

# mipagentconfig get Pool 10
      [Pool 10]
         BaseAddress=192.168.1.1
         Size=100

# mipagentconfig get SPI 257
      [SPI 257]
         Key=11111111111111111111111111111111
         ReplayMethod=none

# mipagentconfig get SPI 258
      [SPI 258]
         Key=15111111111111111111111111111111
         ReplayMethod=none

# mipagentconfig get addr 10.1.1.1
      [Address 10.1.1.1]
         SPI=258
         Type=agent

# mipagentconfig get addr 192.168.1.200
      [Address 192.168.1.200]
         SPI=257
         Type=node# mipagentconfig get addr 10.1.1.1
      [Address 10.1.1.1]
         Type=agent
         SPI=258
         IPsecRequest = apply {auth_algs md5 sa shared}
         IPsecReply = permit {auth_algs md5}
         IPsecTunnel = apply {encr_algs 3des sa shared}
Previous Next

 
 
  Published under the terms fo the Public Documentation License Version 1.01. Design by Interspire