2.2.1.5 ipsecFilter Object Attribute Details

The Filter policy stores IP filter conditions. The ipsecFilter data attribute contains the IPsec filter policy information. This information includes what is commonly associated with IP filters (for example, source address/mask, destination address/mask, and port). The following diagram shows a Filter policy object.

Figure 14: Filter policy object

The ipsecFilter object creation MUST use the LDAP add functionality in conformance with [RFC2251] section 4.7.

The ipsecFilter object creation/modification MUST use the LDAP modify functionality in conformance with [RFC2251] section 4.6.

The ipsecFilter attributes are specified in the following subsection.