TMS zl Management and Configuration Guide ST.1.1.100430

A-158

Command-Line Reference

IPsec Policy Context

apply

Once you have configured all parts of the IPsec policy, you must apply the

policy. The apply command verifies that all required settings are configured

and then adds or edits the IPsec policy. (If the requirements are not met, the

command does not take effect, and an error message indicates which settings

are missing.) Enter the following command:

Syntax: apply

direction

To set the traffic direction to which the policy is applied, enter the following

command:

Syntax: direction <both | inbound | outbound>

The both option applies the deny action to traffic both to and from the local

and remote addresses and ports specified in the traffic selector. The inbound

option applies the deny action only to traffic from the remote addresses and

ports to the local addresses and ports. The outbound option applies the deny

action only to traffic from the local addresses and ports to the remote

addresses and ports.

traffic-selector

With this command, you configure the VPN traffic selector, which determines

the traffic to which this policy is applied. For a policy with the deny action,

this traffic is dropped.

To set the traffic selector, enter the following command:

Syntax: traffic-selector protocol <protocol> local <address> remote address

<address> [port <port>]

The available options for the command are shown in Table A-39.