ipsec.IPSecGateway (NSP Network Functions Manager

ipsec
IPSecGateway

Inheritance Hierarchy
- ManagedObject
  - svt.GenericMsIsaTunnel
    - ipsec.IPSecBaseEntity
      - ipsec. IPSecGateway

Parent Hierarchy
- service.ServiceManager
  - ies.Ies
    - ies.Site
      - ies.L3AccessInterface
        
        ipsec.IPSecGateway [svc-mgr:[service-${*id}]:[${siteId}][-switch-$%{ethernetSwitchCardPointer}]:[ip-interface-${*id}]:[-ipsecGateway]]
  - vprn.Vprn
    - vprn.DVRSSite
      - vprn.L3AccessInterface
        
        ipsec.IPSecGateway [svc-mgr:[service-${*id}]:[${siteId}][-switch-$%{ethernetSwitchCardPointer}]:[ip-interface-${*id}]:[-ipsecGateway]]
    - vprn.Site
      - vprn.L3AccessInterface
        
        ipsec.IPSecGateway [svc-mgr:[service-${*id}]:[${siteId}][-switch-$%{ethernetSwitchCardPointer}]:[ip-interface-${*id}]:[-ipsecGateway]]

Children Hierarchy
- ipsec.IPSecGateway
  - ipsec.IPSecRemoteUser
    - ipsec.IPSecRemoteUserSecurityAssociation
      - ipsec.IPsecRemoteUserTrafficSelector
  - ipsec.InternalDHCPv4AddressAssignment
  - ipsec.InternalDHCPv6AddressAssignment
  - ipsec.LocalAddressAssignment
  - ipsec.TrafficSelectorNegotiationList

Relationships
- many ipsec.IPSecGateways may be direct children of one ies.L3AccessInterface (child-parent relationship)
  - Supported for 7450 ESS from 11.0.R1
  - Supported for 7750 SR
  - Supported for 7705 SAR Gen 2
  - Supported for 7705 SAR Hm
- many ipsec.IPSecGateways may be associated with ipsec.CertProfile (implied relationship)
- many ipsec.IPSecGateways may be associated with ipsec.IPSecClientDB (implied relationship)
- one ipsec.IPSecGateway may be a direct parent of many ipsec.IPSecRemoteUsers (parent-child relationship)
- many ipsec.IPSecGateways may be associated with ipsec.IPSecTunnelTemplate (implied relationship)
- many ipsec.IPSecGateways may be associated with ipsec.IkePolicy (implied relationship)
- one ipsec.IPSecGateway may be a direct parent of many ipsec.InternalDHCPv4AddressAssignments (parent-child relationship)
- one ipsec.IPSecGateway may be a direct parent of many ipsec.InternalDHCPv6AddressAssignments (parent-child relationship)
- one ipsec.IPSecGateway may be a direct parent of many ipsec.LocalAddressAssignments (parent-child relationship)
- many ipsec.IPSecGateways may be associated with ipsec.RadiusAccountingPolicy (implied relationship)
- many ipsec.IPSecGateways may be associated with ipsec.RadiusAuthenticationPolicy (implied relationship)
- one ipsec.IPSecGateway may be a direct parent of many ipsec.TrafficSelectorNegotiationLists (parent-child relationship)
- many ipsec.IPSecGateways may be associated with ipsec.TrustAnchorProfile (implied relationship)
- many ipsec.IPSecGateways may be associated with sitesec.CertificateAuthProfile (implied relationship)
- many ipsec.IPSecGateways may be direct children of one vprn.L3AccessInterface (child-parent relationship)
  - Supported for 7450 ESS from 11.0.R1
  - Supported for 7750 SR
  - Supported for 7705 SAR Gen 2
  - Supported for 7705 SAR Hm

public class IPSecGateway

Relative Name=[[-ipsecGateway]]
Displayed Name=IPsec Gateway

Stats:: ipsec.IPSecLockoutClientEsaStats ipsec.IPSecLockoutClientStats ipsec.IPSecRemoteUserDhcpLeaseStats ipsec.IPSecRemoteUserSAStats ipsec.IPSecRemoteUserStats ipsec.IkeExchangeFailureStats ipsec.NumberOfTunnelStats ipsec.ThroughputStats ipsec.TrafficForwardingRUTunnelStats ipsec.TrafficForwardingStats ipsec.TunnelSetupRateStats

Properties
clientDBPointer	specifies the Client Database associated with IPSec Gateway. type=Pointer default= Displayed(tab/group)=Client DB (/IPSec Client DataBase)
clientDataBaseFallBack	specifies whether or not this IPsec gateway falls back to the default authentication policy when the IPsec tunnel authentication request fails to match any clients in the IPsec database. type=boolean default=true Displayed(tab/group)=IPSec Gateway FallBack (/IPSec Client DataBase)
creationOrigin	type=svt.L2RouteOriginType access=read-create default=manual
gatewayName	Specifies the name for this IPsec gateway. type=string access=read-create minimum=1 maximum=32 Mandatory on create Displayed(tab/group)=Name
ipsec.IPSecRemoteUser-Set	type=Children-Set
ipsec.InternalDHCPv4AddressAssignment-Set	type=Children-Set
ipsec.InternalDHCPv6AddressAssignment-Set	type=Children-Set
ipsec.LocalAddressAssignment-Set	type=Children-Set
ipsec.TrafficSelectorNegotiationList-Set	type=Children-Set
ipsecInterfaceGateway	Specifies the IPsec interface used by the SAP. type=string access=read-only default=
ipsecInterfaceGatewayPointer	Specifies the pointer for the service site ID. type=Pointer default= Displayed(tab/group)=IPsec Interface Name
localRadiusAcctPolicyPointer	type=Pointer default=
localRadiusAuthPolicyPointer	type=Pointer default=
localTunnelTemplatePointer	type=Pointer access=read-only default=
operationalFlags	Indicates the reason why the gateway is operationally down. type=ipsec.GatewayOperFlagsType access=read-only Displayed(tab/group)=Operational Flags (States)
radiusAcctPolicyPointer	Specifies the RADIUS accounting policy associated with this IPsec gateway. type=Pointer default= Displayed(tab/group)=Radius Accounting Policy (/Radius Policies)
radiusAuthPolicyPointer	Specifies the RADIUS authentication policy associated with this IPsec gateway. type=Pointer default= Displayed(tab/group)=Radius Authentication Policy (/Radius Policies)
tunnelTemplatePointer	Specifies the TIMETRA-IPSEC-MIB::tIPsecTnlTempId used by this SAP IPsec gateway. type=Pointer default= Displayed(tab/group)=IPsec Tunnel Template

Properties inherited from ipsec.IPSecBaseEntity
certFile, certProfilePointer, certTrustAnchorPointer, defaultResult, gwAddressType, gwIpAddress, ikePolicyPointer, keyFile, localCertTrustAnchorPointer, localIdType, localIdValue, localIkePolicyPointer, preSharedKey, primary, remoteIdType, remoteIdValue, secondary, trustAnchorProfilePointer

Properties inherited from svt.GenericMsIsaTunnel
adminState, operationalState, portId, sapEncapValue, serviceId, serviceIdPointer, siteId, siteServiceId, svcName

Properties inherited from ManagedObject
actionMask, children-Set, deploymentState, isFaultSquelched, name, objectFullName, selfAlarmed

Methods

shutDown

Used to administratively disable the IPsec gateway.

Input Parameters:

turnUp

Used to administratively enable the IPsec gateway.

Input Parameters:

Supported Network Elements
7750 SR	Supported from 10.0.R1 until 13.0.R13 Excluded chassis types: 7750-SR1, 7750-SRc4, 7750-SRa4, 7750-SRa8, 7750 SR-1e, 7750 SR-2e, 7750 SR-3e, 7750-SR1 Fixed CFM, 7750 SR-14s, 7750 SR-7s, 7750 SR-1s, 7750 SR-2s Supported from 13.0.R13 until 14.0.R1 Excluded chassis types: 7750-SRc4, 7750-SRa4, 7750-SRa8, 7750-SR1 Fixed CFM, 7750 SR-14s, 7750 SR-7s, 7750 SR-1s, 7750 SR-2s Supported from 14.0.R1 until 14.0.R4 Excluded chassis types: 7750-SRc4, 7750-SRa4, 7750-SRa8, 7750 SR-1e, 7750 SR-2e, 7750 SR-3e, 7750-SR1 Fixed CFM, 7750 SR-14s, 7750 SR-7s, 7750 SR-1s, 7750 SR-2s Supported from 14.0.R4 until 20.10.R1 Excluded chassis types: 7750-SRc4, 7750-SRa4, 7750-SRa8, 7750-SR1 Fixed CFM, 7750 SR-14s, 7750 SR-7s, 7750 SR-1s, 7750 SR-2s Supported from 20.10.R1 until 21.2.R1 Excluded chassis types: 7750-SRc4, 7750-SRa4, 7750-SRa8, 7750 SR-14s, 7750 SR-7s, 7750 SR-1s Supported from 21.2.R1 until 21.7.R1 Excluded chassis types: 7750-SRc4, 7750-SRa4, 7750-SRa8, 7750 SR-7s, 7750 SR-14s Supported from 21.7.R1 Excluded chassis types: 7750-SRc4, 7750-SRa4, 7750-SRa8
7705 SAR Gen 2
7450 ESS	Supported from 11.0.R1 Excluded chassis types: 7450-ESS1 Required Capabilities: MixedMode
7705 SAR Hm
Product Specifics
7450 ESS 20.0	Warning: iframes not supported by this browser.
7450 ESS 21.0
7450 ESS 22.0
7450 ESS 23.0
7450 ESS 24.0
7450 ESS 25.0
7705 SAR Gen 2 25.0
7705 SAR Hm 20.0
7705 SAR Hm 21.0
7705 SAR Hm 22.0
7705 SAR Hm 23.0
7705 SAR Hm 24.0
7705 SAR Hm 25.0
7750 SR 20.0
7750 SR 21.0
7750 SR 22.0
7750 SR 23.0
7750 SR 24.0
7750 SR 25.0

ipsec IPSecGateway

shutDown

turnUp

ipsec
IPSecGateway