1752 and 1754 SHDSL Router User’s Guide
Option |
| Description |
|
|
|
|
|
Df Bit |
| Df Bit indicates how the Don’t Fragment (DF) bit in the IP |
|
|
| header should be be handled in tunnel mode. You can |
|
|
| choose from the following dfbitcfg values: |
|
|
| If copy is set, the DF bit in the outer IP (tunnel) header is |
|
|
| copied from the inner IP header. |
|
|
| If set is set, the DF bit is always set to 1 in the tunnel IP |
|
|
| header. This should only be specified if the SA is a tunnel |
|
|
| mode SA. |
|
|
| If clear is set, the DF bit in the tunnel header will always be |
|
|
| reset. |
|
Bundle Id |
| A unique identifier for each SA that forms part of a bundle. All |
|
|
| SA bundles associated with a policy should have different |
|
|
| bundleids. By default, the bundleid is 0, signifying that the SA |
|
|
| is not part of any bundle or is a single SA. |
|
|
| e.g. 0. |
|
Bundle Order |
| The Bundle Order specifies the location of a particular SA in a |
|
|
| bundle. This is a mandatory parameter if bundleid is |
|
|
| specified. It can take positive integer values. The SA with the |
|
|
| lowest bundleorder value is applied first, followed by the |
|
|
| higher bundleorder value, irrespective of the direction of the |
|
|
| SA. |
|
|
| e.g. 0. |
|
SPI |
| SPI specifies a unique value. If the SA is applicable to |
|
|
| inbound traffic (in), the SPI is assigned by the sender. If the |
|
|
| SA is applicable to outbound traffic (out), the SPI is assigned |
|
|
| by the receiver. This value must be greater than 255 and less |
|
|
| than 65536. |
|
|
| e.g. 300. |
|
Self Ipv4Addr |
| The source gateway addresses for IPv4 packets. These are |
|
| only specified in tunnel mode. |
| |
|
|
| |
Peer Ipv4Addr |
| The destination gateway addresses for IPv4 packets. These |
|
| are only specified in tunnel mode. |
| |
|
|
| |
Addr Ver |
| IPv4 or IPv6. Only IPv4 is currently supported. |
|
|
|
| |
|
|
|
|
IPsec SA Stats for |
| statistics about the number of inbound and outbound packets |
|
| that match a specific IPsec policy. |
| |
SA |
|
| |
|
|
| |
|
|
|
|
Aut Algo |
| Indicates the authentication algorithm used for IPsec |
|
|
| processing. Supported values are md5 and sha1. |
|
|
| e.g. md5 |
|
Enc Algo |
| Indicates the encryption algorithm used for IPsec processing. |
|
|
| It can only be specified if the IPsec protocol used is ESP. |
|
|
| Supported values are des and 3des. |
|
|
| e.g. 3des. |
|
82 | June 2005 |
