ietf-i2nsf-ikec

Common data model for the IKE and IKE-less cases defined by the SDN-based IPsec flow protection service. The key words 'MUST', ...

Grouping Objects Abstract
encap espencap sport dport oaddr This group of nodes allows defining of the type of encapsulation in case NAT traversal is required and includes port information.
ipsec-policy-grouping anti-replay-window-size traffic-selector processing-info Holds configuration information for an IPsec SPD entry.
lifetime time bytes packets idle Different lifetime values limited to an IPsec SA.
port-range start end This grouping defines a port range, such as that expressed in RFC 4301, for example, 1500 (Start Port Number)-1600 (End Port Number). A port range is used in the Traffic Selector.
selector-grouping local-prefix remote-prefix inner-protocol local-ports remote-ports This grouping contains the definition of a Traffic Selector, which is used in the IPsec policies and IPsec SAs.
tunnel-grouping local remote df-bit bypass-dscp dscp-mapping The parameters required to define the IP tunnel endpoints when IPsec SA requires tunnel mode. The tunnel is defined by two endpoints: the local IP address and the remote IP address.

© 2023 YumaWorks, Inc. All rights reserved.