CONFIG IPSEC POLICY GATEWAY ADD

Level

vpn,modify

History

Appears in Netasq 9.0.0
GRE protocol appears in 2.0
name appears in 3.4
tfc appears in 4.2.0 rulename appears in 4.2.0

Description

Add gateway-gateway policy. To add bypass policy, peer must be 'none'.

Usage

slot=<1-10> state=<on|off> local=<object|all|all_v4|all_v6> remote=<object|all> (peer=<peername> conf=<phase2profile> | peer=none) [proto=<any|tcp|udp|icmp|gre>] [keepalive=<0|30|60|120|300|600>] [comment=<str>] [position=<pos> | name=<string>] [rulename=<string>] [global=<0|1>] [tfc=<length>]

Example

CONFIG IPSEC POLICY GATEWAY ADD slot=01 state=on local=net_remote remote=host_remote peer=mypeer conf=myph2

Cache category clone

ipsec_pgateway