Chapter 4
Configuration via the Command Line Interface
Protocol [proto] Access to an IPSec connection can be restricted to specific protocols. This can optionally be configured with the proto parameter. Valid entries are listed in the following table.
Protocol
ah | egp | esp |
|
|
|
ggp | gre | hmp |
|
|
|
icmp | igmp | pup |
|
|
|
rdp | rsvp | tcp |
|
|
|
udp | vines | |
|
|
|
6to4 |
|
|
|
|
|
Alternatively, any valid protocol number as assigned by IANA can be entered for the protocol parameter.
If you want to restrict the protocols on your secure VPN link, and you need multiple protocols, then you define a new connection for every individual protocol. Separate IPSec tunnels will be established for each protocol.
Port [port] If the tcp or udp protocol is selected for the protocol parameter, then the access to the IPSec connection can be further restricted to a single port number. Many well- known port numbers can be identified by their port name as well.
137 | |
|
