Cisco Cisco Packet Data Gateway (PDG)
IPSec Reference, StarOS Release 17 ▄
67
Chapter 6
Crypto Maps
This chapter describes the various types of IPsec crypto maps supported under StarOS.
A crypto map is a software configuration entity that performs two primary functions:
Selects data flows that need security processing.
Defines the policy for these flows and the crypto peer to which that traffic needs to go.
A crypto map is applied to an interface. The concept of a crypto map was introduced in classic crypto but was expanded
for IPSec.
for IPSec.
Guidelines are provided for configuring the following types of crypto maps: