Cisco Cisco Packet Data Gateway (PDG)
SecGW Service Creation
▀ Access Control Lists
▄ SecGW Administration Guide, StarOS Release 17
32
Dead Peer Detection: Disabled
Maximum CHILD_SA: 2 Overload Action: Ignore
DOS Cookie Challenge: Disabled
Dont Fragment: Copy bit from inner header
Local Gateway: Not Set
Remote Gateway: Not Set
Access Control Lists
IP access lists, commonly known as access control lists (ACLs), control the flow of packets into and out of the service.
They are configured on a per-context basis and consist of “rules” (ACL rules) or filters that control the action taken on
packets that match the filter criteria.
They are configured on a per-context basis and consist of “rules” (ACL rules) or filters that control the action taken on
packets that match the filter criteria.
Separate ACLs may be created for IPv4 and IPv6 access routes.
WSG Service uses ACLs to specify traffic selectors for site-to-site tunnels. The wsg-service supports multiple access-
lists.
lists.
You separately define ACLs outside of the wsg-service, at the context level. For information on creating and
configuring ACLs, see the following:
configuring ACLs, see the following:
Access Control Lists chapter in the VPC-VSM System Administration Guide
ACL Configuration Mode Commands chapter of the Command Line Interface Reference.