When you test with IKEv2, you can provision the Initiator and Responder traffic selector payloads for each IPSec SA with the Advanced... button in the IPSec Tunnel pane. Up to 3 traffic selector pairs can be defined in the Advanced window, and you can add or remove a traffic selector with the Add and Delete buttons.
Define a range of IP addresses and ports and the data protocol type for each traffic selector with the parameters in this topic. Define the traffic source (MN/UE or a network node) in the Initiator list and the traffic's final destination (HNB GW, HA, LNS, or Network Host) in the Responder list. The responder will determine, based on its policies, whether the traffic selectors proposed by the initiator are acceptable and may not accept all selectors.
The topics listed under Related Parameters describe the Advanced settings used with IKEv2, settings used during IKE Phase I, and the general IPSec options.
In HNB IPSec testing, the range indicators for the Starting IP and Ending IP addresses support auto increment for IP addresses by allowing you to enter a + next to the IP address.
|
The lower limit for IP addresses included in the selector. Range: any valid IP address Default: N/A |
|
|
The lowest port number included in the selector. Enter 1 to allow all ports. Range: 1 — 65535 Default: N/A |
|
|
The upper limit for IP address included in the selector. Range: any valid IP address Default: N/A |
|
|
The highest port number included in the selector. Enter 65535 to allow all ports. Range: 1 — 65535 Default: N/A |
|
|
Use the drop-down list to select the protocol type included in the selector. Select Any to allow all protocols or define a specific protocol type:
Options: Any, TCP, UDP, ICMP, or RAW Default: N/A |