Internet Protocol Security |
Rules govern how and when an IPSec policy protects communication. A rule provides the ability to trigger and control secure communication based on the source, destination, and type of IP traffic.
Each rule contains a list of IP filters and a collection of security actions that take place upon a match with that filter list:
Each policy can contain one or multiple rules; one or all of which can be active simultaneously. For example, you might want to have one policy for a site router, but you require different security actions for intranet and Internet communications. One policy can be used for the router by creating multiple rules: one for each possible communication scenario.
Default rules are provided with IPSec, and encompass a variety of client and server based communications. These can be used as is, or modified to your requirements.