Appendix A: IPSec Configuration File
122 NI Series WebConsole & Programming Guide
SpdAddBypass SpdAddBypass
NAME spdAddBypass– create a bypass policy in the SPD
SYNOPSIS spdAddBypass=pConfStr
DESCRIPTION This rule creates a bypass policy in the SPD.
Rule Value:
pConfStr
A stringValue specifier formatted as follows:
protocolSelector[/destinationPort/sourcePort],
destinationAddressSelector, sourceAddressSelector,
directionality,mirroring
where
- protocolSelector is a decValue IANA protocol number or ANY (6 for TCP or 17 for UDP).
- destinationPort is a decValue port number or ANY.
- sourcePort is a decValue port number or ANY.
- destinationAddressSelector is an address in the format:
ipAddress1[-ipAddress2 | /ipMaskPrefix].
- sourceAddressSelector is an address in the format:
ipAddress1[-ipAddress2 | /ipMaskPrefix].
- directionality is IN (for inbound) or OUT (for outbound). If IN, this policy applies to traffic
coming into the current host. If OUT, it applies to traffic going out of the current host.
- mirroring is NOTMIRRORED or MIRRORED. NOTMIRRORED creates a policy only in the
specified direction. MIRRORED creates two policies, one in each direction.
EXAMPLES IPv4:
spdAddBypass=17/0/17185,0.0.0.0/0,0.0.0.0/0,OUT,NOTMIRRORED
IPv6:
spdAddBypass=17/0/17185,::/0,::/0,OUT,NOTMIRRORED
Config String
Format
protocolSelector[/destinationPort/sorucePort],
destinationAddressSelector,sourceAddressSelector,directionality,
mirroring