Versions Compared

Old Version 3

changes.mady.by.user Ribbon Communications

Saved on

compared with

New Version 4

changes.mady.by.user Ribbon Communications

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Noprint
Panel
borderColorgreen
bgColortransparent
borderWidth2

Back to Table of Contents

Back to All

Back to All - Address Context

Back to Address Context - Ipsec

Panel

In this section:

Table of Contents
maxLevel2

This object is used to configure Spd IPsec SPD for the SBC. The SPD establishes the phase 2 criteria for the negotiation between the SBC and the IKE peer. The successful completion of this negotiation results in a Security Association (SA).

To View

...

SPD

On SBC main screen, navigate to All > Address Context >Ipsec > Spd SPD.

The Spd SPD can be checked for each Address Context or for all the Address Contexts created. Use the drop-down box to select the desired Address Context.

Caption
0Figure
1All - Address Context - Ipsec - Spd Main Field

The Spd SPD window is displayed.

Caption
0Figure
1All - Address Context - Ipsec - Spd

To Edit

...

SPD

To edit any of the Spd SPD in the list, click the radio button next to the specific Spd specific SPD name.

Caption
0Figure
1All - Address Context - Ipsec - Spd Highlighted

The Edit Selected Spd Selected SPD window is displayed below.

...

Make the required changes and click Save at the right hand bottom of the panel to save the changes made.

To Create

...

SPD

To create a new SpdSPD, click New SpdSPD tab on the Spd the SPD List panel.

Caption
0Figure
1All - Address Context - Ipsec - Spd Fields

The Create New Spd New SPD window is displayed.

Caption
0Figure
1All - Address Context - Ipsec - Spd Create Window

...

Caption
0Table
1Spd Parameters

Parameter

Length/Range

Description

Name

1-23

Specifies the name of an IPsec Security Policy Database (SPD) entry. The IPsec SPD is an ordered list of entries ("rules") that specify sets of packets and determine whether or not to permit, deny, or protect packets between the 

Spacevars
0product
and the peer that is referenced from the entry. If the packets are to be protected, this entry references information that specifies how to protect them.

You may create and configure up to 4,096 SPD entries.

StateNAAdministrative state to disable or enable a SPD entry. Zero indicates wildcard.
Precedence0-65535Evaluation order of this entry. Zero indicates wildcard.
Local Ip AddrN/ASpecifies the local IPv4 or IPv6 address of the SPD traffic selector.
Local Ip Prefix Len0-128Specifies the local IP prefix length of the SPD traffic selector. Default value is 0.
Local Port0-65535Specifies the local port of the SPD traffic selector. Zero indicates wildcard. Default value is 0.
Remote Ip AddrNASpecifies the remote IPv4 or IPv6 address of the SPD traffic selector. Zero indicates wildcard.
Remote Ip Prefix Len0-128Specifies the remote IP prefix length of the SPD traffic selector. Zero indicates wildcard. Default value is 0.
Remote Port0-65535Specifies the remote port of the SPD traffic selector. Zero indicates wildcard. Default value is 0.
Protocol0-255Specifies the IP protocol number of the SPD traffic selector. This parameter uses IANA protocol number assignment, that is, protocol number 6 represents TCP, protocol number 17 represents UDP. Zero indicates wildcard. Default value is 0.

Action

N/A

Action applied when packets processed by IPSEC found matching the selectors of this SPD rule.

  • Discard – Specifies that the packets are dropped.
  • Bypass – Specifies that the packets are bypassed as clear text.
  • Protect – Specifies that the packets are protected by IPSEC based on the protection parameters specified in the configured ipsec protection profile.

Mode

NA

Use this parameter to set the IPsec mode for the SPD.

  • Tunnel (default) – Use this mode to encrypt and authenticate the entire IP packet (both header and payload). This encrypted packet is encapsulated in a new packet containing a new IP header.
  • Transport – Use this mode to encrypt and authenticate the IP payload only.

To Copy

...

SPD

To copy any of the created Spd SPD and to make any minor changes, click the radio button next to the specific Spd specific SPD to highlight the row.

Caption
0Figure
1All - Address Context - Ipsec - Spd Highlighted

 

Click Copy Spd SPD tab on the Spd SPD List panel.

Caption
0Figure
1All - Address Context - Ipsec - Spd Fields

 

The Copy Selected Spd SPD window is displayed along with the field details which can be edited.

...

Make the required changes to the required fields and click Save to save the changes. The copied Spd SPD is displayed at the bottom of the original Spd original SPD in the Spd the SPD List panel.

To Delete

...

SPD

To delete any of the created SpdSPD, click the radio button next to the specific Spd specific SPD which you want to delete.

...

Click Yes to remove the specific Spd SPD from the list.