Avaya Configuring Integrated IP Security Manuel d'utilisateur télécharger pdf (Page 29)

Getting Started with IPsec

304111-A Rev 00

2-5

Inbound Policies

An inbound policy determines how a security gateway processes clear-text data

packets received from an untrusted network. Every packet arriving at a security

gateway is compared with the criteria to determine whether it matches an IPsec

policy for that router. If the incoming packet matches a policy, it can enter the

router; if not, it cannot pass through the security gateway.

For an inbound security policy, the action may be:

•Drop

• Bypass

•Log

• No action

Outbound Policies

An outbound policy determines how a security gateway processes data packets for

transmission across an untrusted network. You must assign an outbound policy for

all unicast traffic leaving an IPsec interface.

For an outbound policy, the action specification may be:

•Drop

• Bypass

• Protect

•Log

Any outbound policy with a protect action specification is mapped to a protect

security association (SA). See “Security Associations” on page 2-6 for detailed

information about protect and unprotect SAs.

1 2 ... 24 25 26 27 28 29 30 31 32 33 34 ... 71 72

Pas de commentaire

Avaya Configuring Integrated IP Security Manuel d'utilisateur Page 29