Technical Documentation

Example: Configuring an Inbound Traffic Filter for a Policy Check

Here, an inbound firewall filter, which performs the final IPsec policy check, is created on security Gateway A. This check ensures that only packets that match the traffic configured for this tunnel are accepted.

filter ipsec-decrypt-policy-filter {term term1 { # perform policy checkfrom {source-address { # remote network10.2.2.0/24; }destination-address { # local network10.1.1.0/24; }then accept;

Published: 2010-04-26