Appendix A: IPSec Configuration File
SpdAddBypass
SpdAddBypass
NAME
SYNOPSIS
DESCRIPTION This rule creates a bypass policy in the SPD.
EXAMPLES
Config String
Format
130
spdAddBypass– create a bypass policy in the SPD
spdAddBypass=pConfStr
Rule Value:
pConfStr
A stringValue specifier formatted as follows:
protocolSelector[/destinationPort/sourcePort],
destinationAddressSelector, sourceAddressSelector,
directionality,mirroring
where
- protocolSelector is a decValue IANA protocol number or ANY (6 for TCP or 17 for UDP).
- destinationPort is a decValue port number or ANY.
- sourcePort is a decValue port number or ANY.
- destinationAddressSelector is an address in the format:
ipAddress1[-ipAddress2 | /ipMaskPrefix].
- sourceAddressSelector is an address in the format:
ipAddress1[-ipAddress2 | /ipMaskPrefix].
- directionality is IN (for inbound) or OUT (for outbound). If IN, this policy applies to traffic
coming into the current host. If OUT, it applies to traffic going out of the current host.
- mirroring is NOTMIRRORED or MIRRORED. NOTMIRRORED creates a policy only in the
specified direction. MIRRORED creates two policies, one in each direction.
IPv4:
spdAddBypass=17/0/17185,0.0.0.0/0,0.0.0.0/0,OUT,NOTMIRRORED
IPv6:
spdAddBypass=17/0/17185,::/0,::/0,OUT,NOTMIRRORED
protocolSelector[/destinationPort/sorucePort],
destinationAddressSelector,sourceAddressSelector,directionality,
mirroring
NI Series WebConsole & Programming Guide