TMS zl Management and Configuration Guide ST.1.2.100916

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module

1401

A-154

Command-Line Reference

IPsec Policy Context

ports to the local addresses and ports. The outbound option applies the

bypass action only to traffic from the local addresses and ports to the remote

addresses and ports.

traffic-selector

With this command, you configure the VPN traffic selector, which determines

the traffic to which this policy is applied. For a policy with the bypass action,

this traffic is forwarded normally without being secured by an SA.

To set the traffic selector, enter the following command:

Syntax: traffic-selector protocol <protocol> local <address> remote address

<address> [port <port>]

The available options for the command are shown in Table A-39.

Table A-42. IPsec Policy Traffic Selector Command Options

Parameter Options

protocol •any

• <1-255>

•ah

•esp

•ip

•igmp

•gre

•l2tp

•ospf

•pim

• tcp [port <any | port number>] *

• udp [port <any | port number>] *

• icmp < any | echo** | timestamp** >

address •any

•host <IP address>

• network address/prefix length

• ip-range <start IP address> <end IP address>

• address <address object>

*If you use TCP or UDP for the traffic selector, you must enter port and specify a port

after both the local address and the remote address.

**If you select echo or timestamp, the tunnel must use manual keying instead of IKE

in your IPsec policy.