для Cisco Cisco Packet Data Gateway (PDG)
Access Control
Access Control via Blacklist or Whitelist ▀
IPSec Reference, StarOS Release 18 ▄
143
crypto whitelist file
Configures a whitelist (access permitted) file to be used by a security gateway (SeGW).
crypto whitelist file pathname
pathname specifies the location and protocol from which StarOS will retrieve the whitelist file.
Refer to the Command Line Interface Reference for a complete description of this command and its keywords.
Context Configuration Mode
Enable blacklist
The blacklist must be enabled in a crypto map or crypto template.
For a crypto map the configuration sequence is:
configure
context ctxt_name
crypto map template_name { ikev2-ipv4 | ikev2-ipv6 }
blacklist
For a crypto template the configuration sequence is:
configure
context ctxt_name
crypto template template_name ikev2-dynamic
blacklist
Refer to the Command Line Interface Reference for a complete description of these commands and their keywords.
Enable whitelist
A whitelist must be enabled in a crypto map or crypto template.
For a crypto map the configuration sequence is:
configure
context ctxt_name
crypto map template_name { ikev2-ipv4 | ikev2-ipv6 }
whitelist