Spdadddiscard – AMX NI-2100/3100/4100 User Manual

Page 131

Advertising
background image

Appendix A: IPSec Configuration File

123

NI Series WebConsole & Programming Guide

SpdAddDiscard

SpdAddDiscard

NAME

spdAddDiscard – create a discard policy in the SPD

SYNOPSIS

spdAddDiscard=pConfStr

DESCRIPTION This rule creates a discard policy in the SPD.

Rule Value:

pConfStr

A stringValue specifier formatted as follows:

protocolSelector[/destinationPort/sourcePort],

destinationAddressSelector, sourceAddressSelector,

directionality,mirroring

where
- protocolSelector is a decValue IANA protocol number or ANY (6 for TCP or 17 for UDP).
- destinationPort is a decValue port number or ANY.
- sourcePort is a decValue port number or ANY.
- destinationAddressSelector is an address in the format:

ipAddress1[-ipAddress2 | /ipMaskPrefix].

- sourceAddressSelector is an address in the format:

ipAddress1[-ipAddress2 | /ipMaskPrefix].

- directionality is IN (for inbound) or OUT (for outbound). If IN, this policy applies to traffic
coming into the current host. If OUT, it applies to traffic going out of the current host.
- mirroring is NOTMIRRORED or MIRRORED. NOTMIRRORED creates a policy only in the
specified direction. MIRRORED creates two policies, one in each direction.

EXAMPLES

IPv4:

spdAddDiscard=17/17185/0,0.0.0.0/0,0.0.0.0/0,IN,NOTMIRRORED

IPv6:

spdAddDiscard=17/17185/0,::/0,::/0,IN,NOTMIRRORED

Config String
Format

protocolSelector[/destinationPort/sorucePort],

destinationAddressSelector,sourceAddressSelector,directionality,

mirroring

Advertising
This manual is related to the following products: