Appendix A: IPSec Configuration File
115
NI Series WebConsole & Programming Guide
Appendix A: IPSec Configuration FileIPSec Config file
The IPSec Configuration file contains user specified IPSec rule definitions to be applied to the running
IPSec database. The IPSec Configuration file is read at boot-up and the individual lines are applied to the
IPSec database. Configuration lines are applied to the database in the order that they appear in the
configuration file.
Each line of the configuration file represents an individual rule. All lines follow the format:
<config action>=<config string>
All characters of a configuration line, both the action and the string, are case sensitive and white space is
relevant.
Lines beginning with a ‘#’ symbol are considered comments and are subsequently ignored during the
loading process.
All references to the master’s IP address in configuration lines can be substituted by
%LOCAL_ADDR% in order to provide flexibility and reuse of an IPSec Config file. At boot, all
occurrences of %LOCAL_ADDR% will be replaced by the actual IP address of the master. In this way,
a single IPSec configuration file can be uploaded to multiple masters that are to be configured with the
same IPSec configuration without having to specify the master’s local IP Address directly.
The IPSec Configuration file is loaded onto the master via the master’s Web interface under
Security->IPSec Security Settings.
The following are the list of configuration lines supported by the AMX IPSec Configuration file.