Project

General

Profile

Actions

Feature #3329

closed

Allow creating "not" rules for IPsec Phase 2

Added by Jim Pingle about 11 years ago. Updated about 4 years ago.

Status:
Resolved
Priority:
Normal
Category:
IPsec
Target version:
Start date:
11/19/2013
Due date:
% Done:

100%

Estimated time:
Plus Target Version:
Release Notes:

Description

We should have the ability in Phase 2 to negate the action ("none" in the SPD) so that specific traffic can be made to not enter an IPsec tunnel.

Somewhat related to #3328 (reordering P2 entries) so these exceptions can be moved above the other entries as needed.

These entries would not need to have any encryption options chosen, only the networks defined.


Files

shunt.png (21.9 KB) shunt.png Markus Stockhausen, 07/28/2017 02:20 PM
Actions

Also available in: Atom PDF