ipsec.IPSecRemoteUser (NSP Network Functions Manager

ipsec
IPSecRemoteUser

Inheritance Hierarchy
- ManagedObject
  - ipsec. IPSecRemoteUser

Parent Hierarchy
- service.ServiceManager
  - ies.Ies
    - ies.Site
      - ies.L3AccessInterface
        
        ipsec.IPSecGateway
        
        ipsec.IPSecRemoteUser [svc-mgr:[service-${*id}]:[${siteId}][-switch-$%{ethernetSwitchCardPointer}]:[ip-interface-${*id}]:[-ipsecGateway]:[ipsecru-${internetIpAddress}][-${udpPortId}]]
  - vprn.Vprn
    - vprn.DVRSSite
      - vprn.L3AccessInterface
        
        ipsec.IPSecGateway
        
        ipsec.IPSecRemoteUser [svc-mgr:[service-${*id}]:[${siteId}][-switch-$%{ethernetSwitchCardPointer}]:[ip-interface-${*id}]:[-ipsecGateway]:[ipsecru-${internetIpAddress}][-${udpPortId}]]
    - vprn.Site
      - vprn.L3AccessInterface
        
        ipsec.IPSecGateway
        
        ipsec.IPSecRemoteUser [svc-mgr:[service-${*id}]:[${siteId}][-switch-$%{ethernetSwitchCardPointer}]:[ip-interface-${*id}]:[-ipsecGateway]:[ipsecru-${internetIpAddress}][-${udpPortId}]]

Relationships
- many ipsec.IPSecRemoteUsers may be direct children of one ipsec.IPSecGateway (child-parent relationship)
- one ipsec.IPSecRemoteUser may be a direct parent of many ipsec.IPSecRemoteUserSecurityAssociations (parent-child relationship)

IPSecRemoteUser

Relative Name=[[ipsecru-${internetIpAddress}][-${udpPortId}]]

Displayed Name=IPsec Remote User

Properties
creationOrigin	type=svt.L2RouteOriginType access=read-create default=manual
dhGroup	Indicates the new Diffie-Hellman key exchange each time the SA key is re-negotiated. type=ipsec.DHGGroup access=read-only default=group2 Displayed(tab/group)=DH Group
hasBidirectionalSA	True if this tunnel has bi-directional Security Association entries. type=generic.TruthValue access=read-only default=false Displayed(tab/group)=Bidirectional SA
hostEsaId	Indicates the active ESA that is being used to host this RU tunnel. It will contain a non-zero value only when the tunnel is both operationally up and is being hosted by an ESA Virtual Machine. type=int access=read-only default=0 minimum=0 maximum=16 Displayed(tab/group)=ESA ID (/Host ESA)
hostEsaVmId	Indicates the active ESA Virtual Machine that is being used to host this RU tunnel. It will contain a non-zero value only when the tunnel is both operationally up and is being hosted by an ESA Virtual Machine. type=int access=read-only default=0 minimum=0 maximum=4 Displayed(tab/group)=ESA VM ID (/Host ESA)
hostISA	Indicates the active ISA that is being used to host this tunnel. type=int access=read-only default=0
hostISAString	Indicates the active ISA that is being used to host this tunnel and it is displayed as slotId/mdaSlotId string format. type=string access=read-only default= maximum=64 Displayed(tab/group)=Host MDA
internetAddressType	type=rtr.InetAddressType access=read-only default=ipv4
internetIpAddress	Indicates the IP address of remote IPsec gateway to the tunnel in case of dynamic site-site mode, and the public IP address of the remote soft client in case of soft client mode. type=InetAddress access=read-create default=0.0.0.0 Displayed(tab/group)=Internet IP Address
ipsec.IPSecRemoteUserSecurityAssociation-Set	type=Children-Set
matchTrustAnchor	type=Pointer access=read-only default= Displayed(tab/group)=Match Trust Anchor
portId	The port ID associated with the tunnel. type=long access=read-only default=0
privateIfIndex	Indicates the private interface index used by the tunnel. type=long access=read-only default=1 Displayed(tab/group)=Private Interface ID
privateIpAddress	Indicates the private IP address on the IPsec gateway tunnel (i.e. the address in the secure service). type=InetAddress access=read-only default=0.0.0.0 Displayed(tab/group)=Private IP Address
privateIpAddress2	Indicates the second private address on the IPsec gateway tunnel. type=InetAddress access=read-only default=0.0.0.0 Displayed(tab/group)=Second Private IP Address
privateIpAddress2Type	type=rtr.InetAddressType access=read-only default=ipv4
privateIpAddressType	type=rtr.InetAddressType access=read-only default=ipv4
privateIpPrefixLength	Private IP prefix length. type=int access=read-only default=0 Displayed(tab/group)=Private IP Prefix Length
privateIpPrefixLength2	Prefix length for second private address. type=int access=read-only default=0 Displayed(tab/group)=Second Private IP Prefix Length
privateServiceId	Indicates the service ID of the tunnel secure service. type=long access=read-only default=0 Displayed(tab/group)=Private Service ID
replayWindow	Specifies the size of the anti-replay window. type=ipsec.ReplayWindowType access=read-only default=0 Displayed(tab/group)=Replay Window
saLifeTime	Indicates the life time of the phase 2 Ike key. Range 1200...172800. type=long access=read-only default=86400 minimum=1200 maximum=172800 units=seconds Displayed(tab/group)=SA Life Time
sapEncapValue	The dot1q encap value of the SAP. type=long access=read-only default=0
serviceId	The service ID on the node to which this tunnel belongs to. type=long access=read-only default=0 Displayed(tab/group)=Service ID
siteId	type=string access=read-only default= maximum=64
templateId	Indicates the ID of a tunnel template entry used for the tunnel. type=long access=read-only
tunnelTemplatePointer	type=Pointer default= Displayed(tab/group)=Tunnel Template
udpPortId	Indicates the UDP port of the remote IPsec gateway or soft client to the tunnel. type=long access=read-create default=0 Displayed(tab/group)=UDP Port ID

Properties

creationOrigin

type=svt.L2RouteOriginType
access=read-create
default=manual

dhGroup

Indicates the new Diffie-Hellman key exchange each time the SA key is re-negotiated.

type=ipsec.DHGGroup
access=read-only
default=group2
Displayed(tab/group)=DH Group

hasBidirectionalSA

True if this tunnel has bi-directional Security Association entries.

type=generic.TruthValue
access=read-only
default=false
Displayed(tab/group)=Bidirectional SA

hostEsaId

Indicates the active ESA that is being used to host this RU tunnel. It will contain a non-zero value only when the tunnel is both operationally up and is being hosted by an ESA Virtual Machine.

type=int
access=read-only
default=0
minimum=0
maximum=16
Displayed(tab/group)=ESA ID (/Host ESA)

hostEsaVmId

Indicates the active ESA Virtual Machine that is being used to host this RU tunnel. It will contain a non-zero value only when the tunnel is both operationally up and is being hosted by an ESA Virtual Machine.

type=int
access=read-only
default=0
minimum=0
maximum=4
Displayed(tab/group)=ESA VM ID (/Host ESA)

hostISA

Indicates the active ISA that is being used to host this tunnel.

type=int
access=read-only
default=0

hostISAString

Indicates the active ISA that is being used to host this tunnel and it is displayed as slotId/mdaSlotId string format.

type=string
access=read-only
default=
maximum=64
Displayed(tab/group)=Host MDA

internetAddressType

type=rtr.InetAddressType
access=read-only
default=ipv4

internetIpAddress

Indicates the IP address of remote IPsec gateway to the tunnel in case of dynamic site-site mode, and the public IP address of the remote soft client in case of soft client mode.

type=InetAddress
access=read-create
default=0.0.0.0
Displayed(tab/group)=Internet IP Address

ipsec.IPSecRemoteUserSecurityAssociation-Set

type=Children-Set

matchTrustAnchor

type=Pointer
access=read-only
default=
Displayed(tab/group)=Match Trust Anchor

portId

The port ID associated with the tunnel.

type=long
access=read-only
default=0

privateIfIndex

Indicates the private interface index used by the tunnel.

type=long
access=read-only
default=1
Displayed(tab/group)=Private Interface ID

privateIpAddress

Indicates the private IP address on the IPsec gateway tunnel (i.e. the address in the secure service).

type=InetAddress
access=read-only
default=0.0.0.0
Displayed(tab/group)=Private IP Address

privateIpAddress2

Indicates the second private address on the IPsec gateway tunnel.

type=InetAddress
access=read-only
default=0.0.0.0
Displayed(tab/group)=Second Private IP Address

privateIpAddress2Type

type=rtr.InetAddressType
access=read-only
default=ipv4

privateIpAddressType

type=rtr.InetAddressType
access=read-only
default=ipv4

privateIpPrefixLength

Private IP prefix length.

type=int
access=read-only
default=0
Displayed(tab/group)=Private IP Prefix Length

privateIpPrefixLength2

Prefix length for second private address.

type=int
access=read-only
default=0
Displayed(tab/group)=Second Private IP Prefix Length

privateServiceId

Indicates the service ID of the tunnel secure service.

type=long
access=read-only
default=0
Displayed(tab/group)=Private Service ID

replayWindow

Specifies the size of the anti-replay window.

type=ipsec.ReplayWindowType
access=read-only
default=0
Displayed(tab/group)=Replay Window

saLifeTime

Indicates the life time of the phase 2 Ike key. Range 1200...172800.

type=long
access=read-only
default=86400
minimum=1200
maximum=172800
units=seconds
Displayed(tab/group)=SA Life Time

sapEncapValue

The dot1q encap value of the SAP.

type=long
access=read-only
default=0

serviceId

The service ID on the node to which this tunnel belongs to.

type=long
access=read-only
default=0
Displayed(tab/group)=Service ID

siteId

type=string
access=read-only
default=
maximum=64

templateId

Indicates the ID of a tunnel template entry used for the tunnel.

type=long
access=read-only

tunnelTemplatePointer

type=Pointer
default=
Displayed(tab/group)=Tunnel Template

udpPortId

Indicates the UDP port of the remote IPsec gateway or soft client to the tunnel.

type=long
access=read-create
default=0
Displayed(tab/group)=UDP Port ID

Properties inherited from ManagedObject
actionMask, children-Set, deploymentState, isFaultSquelched, name, objectFullName, selfAlarmed

Properties inherited from ManagedObject

actionMask, children-Set, deploymentState, isFaultSquelched, name, objectFullName, selfAlarmed

Supported Network Elements
7750 SR	Supported from 10.0.R1 until 13.0.R13 Excluded chassis types: 7750-SR1, 7750-SRc4, 7750-SRa4, 7750-SRa8, 7750 SR-1e, 7750 SR-2e, 7750 SR-3e, 7750-SR1 Fixed CFM, 7750 SR-14s, 7750 SR-7s, 7750 SR-1s, 7750 SR-2s Supported from 13.0.R13 until 14.0.R1 Excluded chassis types: 7750-SRc4, 7750-SRa4, 7750-SRa8, 7750-SR1 Fixed CFM, 7750 SR-14s, 7750 SR-7s, 7750 SR-1s, 7750 SR-2s Supported from 14.0.R1 until 14.0.R4 Excluded chassis types: 7750-SRc4, 7750-SRa4, 7750-SRa8, 7750 SR-1e, 7750 SR-2e, 7750 SR-3e, 7750-SR1 Fixed CFM, 7750 SR-14s, 7750 SR-7s, 7750 SR-1s, 7750 SR-2s Supported from 14.0.R4 until 20.10.R1 Excluded chassis types: 7750-SRc4, 7750-SRa4, 7750-SRa8, 7750-SR1 Fixed CFM, 7750 SR-14s, 7750 SR-7s, 7750 SR-1s, 7750 SR-2s Supported from 20.10.R1 until 21.2.R1 Excluded chassis types: 7750-SRc4, 7750-SRa4, 7750-SRa8, 7750 SR-14s, 7750 SR-7s, 7750 SR-1s Supported from 21.2.R1 until 21.7.R1 Excluded chassis types: 7750-SRc4, 7750-SRa4, 7750-SRa8, 7750 SR-7s, 7750 SR-14s Supported from 21.7.R1 Excluded chassis types: 7750-SRc4, 7750-SRa4, 7750-SRa8
7705 SAR Gen 2
7450 ESS	Supported from 11.0.R1 Excluded chassis types: 7450-ESS1 Required Capabilities: MixedMode
7705 SAR Hm
Product Specifics
7450 ESS 20.0	Warning: iframes not supported by this browser.
7450 ESS 21.0
7450 ESS 22.0
7450 ESS 23.0
7450 ESS 24.0
7450 ESS 25.0
7705 SAR Gen 2 25.0
7705 SAR Hm 20.0
7705 SAR Hm 21.0
7705 SAR Hm 22.0
7705 SAR Hm 23.0
7705 SAR Hm 24.0
7705 SAR Hm 25.0
7750 SR 20.0
7750 SR 21.0
7750 SR 22.0
7750 SR 23.0
7750 SR 24.0
7750 SR 25.0

Supported Network Elements

7750 SR

Supported from 10.0.R1 until 13.0.R13

Excluded chassis types: 7750-SR1, 7750-SRc4, 7750-SRa4, 7750-SRa8, 7750 SR-1e, 7750 SR-2e, 7750 SR-3e, 7750-SR1 Fixed CFM, 7750 SR-14s, 7750 SR-7s, 7750 SR-1s, 7750 SR-2s

Supported from 13.0.R13 until 14.0.R1

Excluded chassis types: 7750-SRc4, 7750-SRa4, 7750-SRa8, 7750-SR1 Fixed CFM, 7750 SR-14s, 7750 SR-7s, 7750 SR-1s, 7750 SR-2s

Supported from 14.0.R1 until 14.0.R4

Excluded chassis types: 7750-SRc4, 7750-SRa4, 7750-SRa8, 7750 SR-1e, 7750 SR-2e, 7750 SR-3e, 7750-SR1 Fixed CFM, 7750 SR-14s, 7750 SR-7s, 7750 SR-1s, 7750 SR-2s

Supported from 14.0.R4 until 20.10.R1