Table of Contents
Advertisement
Chapter 4
Edit Interface/Connection
Inspect Rule
VPN
Note
Note
OL-4015-08
When a rule is applied to outbound traffic on an interface, the rule filters traffic
after it has entered the router but before it exits the interface. Any packet that the
rule does not permit is dropped before it leaves the interface.
The names of inspection rules associated with this interface. Inspection rules
create temporary holes in firewalls so that hosts inside the firewall that started
sessions can receive return traffic of the same type.
Inbound
The name or number of an inspection rule applied to inbound traffic on this
interface. If you want to apply a rule, click the button and either select an existing
rule or create a rule and select it.
Outbound
The name or number of an inspection rule applied to outbound traffic on this
interface. If you want to apply a rule, click the button and either select an existing
rule or create a rule and select it.
VPNs protect traffic that may flow over lines that your organization does not
control. You can use the selected interface in a VPN by associating it with an
IPSec policy.
IPSec Policy
The configured IPSec policy associated with this interface. To associate the
interface with an IPSec policy, select the policy from this list.
An interface can be associated with only one IPSec policy.
To create a GRE-over-IPSecTunnel, you must first associate the policy with the
Tunnel interface, and then associate it with the source interface for the tunnel. For
example, if you wanted to associate a policy with Tunnel3, whose source interface
Cisco Router and Security Device Manager Version 2.2 User's Guide
Association
4-11
Advertisement
Table of Contents
Troubleshooting
