Getting started
On SNS firewalls, IPsec tunnels can be implemented based on various types of routing. Instead of information that has been defined in the Security Policy Database (SPD), routing instructions (static routing, dynamic routing or filter-based routing) now determine whether packets need to pass through these IPsec tunnels.
This technical note explains the use case of a hub and spoke architecture, in which a central site (hub) and a satellite site (spoke) implement virtual IPsec interfaces. The technical note also explains how to set up IPsec tunnels based on routing with a dynamic or anonymous peer. This peer may be a mobile unit, for example, such as an emergency service or a service provider for an event, which would be granted mobile Internet access.
| Date | Description |
|---|---|
| November 4, 2025 |
New document |