PolicyBasedIPSecVpnSession

A Policy Based VPN requires to define protect rules that match local and peer subnets. IPSec security associations is negotiated for each pair of local and peer subnet.

AllOf

This class requires all of the following:

IPSecVpnSession

InlinePolicyBasedIPSecVpnSession1

JSON Example

{
	"_create_time": 0,
	"_create_user": "string",
	"_last_modified_time": 0,
	"_last_modified_user": "string",
	"_links": [
		{
			"action": "string",
			"href": "string",
			"rel": "string"
		}
	],
	"_protection": "string",
	"_revision": 0,
	"_schema": "string",
	"_self": {
		"action": "string",
		"href": "string",
		"rel": "string"
	},
	"_system_owned": false,
	"authentication_mode": "PSK",
	"children": [
		{
			"_create_time": 0,
			"_create_user": "string",
			"_last_modified_time": 0,
			"_last_modified_user": "string",
			"_links": [
				{
					"action": "string",
					"href": "string",
					"rel": "string"
				}
			],
			"_protection": "string",
			"_revision": 0,
			"_schema": "string",
			"_self": {
				"action": "string",
				"href": "string",
				"rel": "string"
			},
			"_system_owned": false,
			"description": "string",
			"display_name": "string",
			"id": "string",
			"marked_for_delete": false,
			"resource_type": "string",
			"tags": [
				{
					"scope": "string",
					"tag": "string"
				}
			]
		}
	],
	"compliance_suite": "CNSA",
	"connection_initiation_mode": "INITIATOR",
	"description": "string",
	"display_name": "string",
	"dpd_profile_path": "string",
	"enabled": false,
	"id": "string",
	"ike_profile_path": "string",
	"local_endpoint_path": "string",
	"marked_for_delete": false,
	"parent_path": "string",
	"path": "string",
	"peer_address": "string",
	"peer_id": "string",
	"psk": "string",
	"relative_path": "string",
	"resource_type": "PolicyBasedIPSecVpnSession",
	"rules": [
		{
			"_create_time": 0,
			"_create_user": "string",
			"_last_modified_time": 0,
			"_last_modified_user": "string",
			"_links": [
				{
					"action": "string",
					"href": "string",
					"rel": "string"
				}
			],
			"_protection": "string",
			"_revision": 0,
			"_schema": "string",
			"_self": {
				"action": "string",
				"href": "string",
				"rel": "string"
			},
			"_system_owned": false,
			"action": "PROTECT",
			"children": [
				{
					"_create_time": 0,
					"_create_user": "string",
					"_last_modified_time": 0,
					"_last_modified_user": "string",
					"_links": [
						{
							"action": "string",
							"href": "string",
							"rel": "string"
						}
					],
					"_protection": "string",
					"_revision": 0,
					"_schema": "string",
					"_self": {
						"action": "string",
						"href": "string",
						"rel": "string"
					},
					"_system_owned": false,
					"description": "string",
					"display_name": "string",
					"id": "string",
					"marked_for_delete": false,
					"resource_type": "string",
					"tags": [
						{
							"scope": "string",
							"tag": "string"
						}
					]
				}
			],
			"description": "string",
			"destinations": [
				{
					"subnet": "string"
				}
			],
			"display_name": "string",
			"enabled": false,
			"id": "string",
			"logged": false,
			"marked_for_delete": false,
			"parent_path": "string",
			"path": "string",
			"relative_path": "string",
			"resource_type": "string",
			"sequence_number": 0,
			"sources": [
				{
					"subnet": "string"
				}
			],
			"tags": [
				{
					"scope": "string",
					"tag": "string"
				}
			]
		}
	],
	"tags": [
		{
			"scope": "string",
			"tag": "string"
		}
	],
	"tcp_mss_clamping": {
		"direction": "NONE",
		"max_segment_size": 0
	},
	"tunnel_profile_path": "string"
}

Vendor Extensions

This class contains the following vendor extensions defined in the spec:

x-vmw-nsx-module: PolicyIPSecVpn

[{"label":"Latest (v1.0)","version":"latest"}]

nsx-vmc-policy

PolicyBasedIPSecVpnSession

AllOf

JSON Example

Vendor Extensions

Was this page helpful?