Reset Search
 

 

Article

Using policy to achieve subnet lockdown does not work with ip-sec source-lockdown.

« Go Back

Information

 
TitleUsing policy to achieve subnet lockdown does not work with ip-sec source-lockdown.
Symptoms
When you use policy to deny packets from the client IP to the local subnet, this does not work when ip-security source-lockdown is enabled
Environment
EXOS
OnePolicy
ip-security source lockdown
Cause
This is caused by the way Policy and ip-security ACL rules are implemented. A feature to change this behavior is created, CR xos0075432
Resolution
Upgrade to a release containing CR xos0075432.
Currently it is scoped for 30.4
Additional notes

Feedback

 

Was this article helpful?


   

Feedback

Please tell us how we can make this article more useful.

Characters Remaining: 255