BSR 2000 Command Reference Guide

Release 1.0

 

 

spd policy

The spd policy command specifies a security policy for the given peers IPSec Security Policy Database (SPD). The SPD policy is priority based. The lower number index has a higher priority. Data packets are compared against rules in the SPD policy, starting with the first index. When a match is found, that rule is applied and no further comparisons are made against the SPD policy for that data packet. When deleting entries, a single rule or all the rules in the table can be deleted at once.

Group Access

All

Command Mode

IPSec Configuration

Command Line Usage

spd policy <ipAddr{-ipAddr2:ipMask}><ipAddr{-ipAddr2:ipMask}> <num> <0-65535><0-65535> {apply bypass discard} transport [after <num>]

no spd policy {<num> all}

Command Syntax

ipAddr{-ipAddr2:ipMask} source network IP address followed by a colon and subnetwork mask. If a hyphen is used between ipAddr and ipAddr2, this specifies a range of source network IP addresses.

ipAddr{-ipAddr2:ipMask} destination network IP address followed by a colon and subnetwork mask. If a hyphen is used between ipAddr and ipAddr2, this specifies a range of destination network IP addresses.

16-56

MGBI

526363-001-00 Rev. B

Page 1032
Image 1032
Motorola BSR 2000 manual Spd policy, No spd policy num all