diff options
| author | Daniil Baturin <daniil@vyos.io> | 2025-04-17 15:21:58 +0100 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2025-04-17 15:21:58 +0100 |
| commit | 9deb059d3d781b1fdc0f3dd707590979426f3370 (patch) | |
| tree | c73f7bee83c42c6074341d03becfe55198ef26dc /interface-definitions | |
| parent | 4069538bc665148e7277d15f202ad26fdcc66916 (diff) | |
| parent | 41ba7fc5c7edbaca6ff149818aa5689b3ac3c097 (diff) | |
| download | vyos-1x-9deb059d3d781b1fdc0f3dd707590979426f3370.tar.gz vyos-1x-9deb059d3d781b1fdc0f3dd707590979426f3370.zip | |
Merge pull request #4446 from sever-sever/T7343
T7343: IPsec add traffic-selector handling for VTI interfaces
Diffstat (limited to 'interface-definitions')
| -rw-r--r-- | interface-definitions/vpn_ipsec.xml.in | 57 |
1 files changed, 57 insertions, 0 deletions
diff --git a/interface-definitions/vpn_ipsec.xml.in b/interface-definitions/vpn_ipsec.xml.in index 0cf526fad..873a4f882 100644 --- a/interface-definitions/vpn_ipsec.xml.in +++ b/interface-definitions/vpn_ipsec.xml.in @@ -1244,6 +1244,63 @@ <children> #include <include/ipsec/bind.xml.i> #include <include/ipsec/esp-group.xml.i> + <node name="traffic-selector"> + <properties> + <help>Traffic-selectors parameters</help> + </properties> + <children> + <node name="local"> + <properties> + <help>Local parameters for interesting traffic</help> + </properties> + <children> + <leafNode name="prefix"> + <properties> + <help>Local IPv4 or IPv6 prefix</help> + <valueHelp> + <format>ipv4net</format> + <description>Local IPv4 prefix</description> + </valueHelp> + <valueHelp> + <format>ipv6net</format> + <description>Local IPv6 prefix</description> + </valueHelp> + <constraint> + <validator name="ipv4-prefix"/> + <validator name="ipv6-prefix"/> + </constraint> + <multi/> + </properties> + </leafNode> + </children> + </node> + <node name="remote"> + <properties> + <help>Remote parameters for interesting traffic</help> + </properties> + <children> + <leafNode name="prefix"> + <properties> + <help>Remote IPv4 or IPv6 prefix</help> + <valueHelp> + <format>ipv4net</format> + <description>Remote IPv4 prefix</description> + </valueHelp> + <valueHelp> + <format>ipv6net</format> + <description>Remote IPv6 prefix</description> + </valueHelp> + <constraint> + <validator name="ipv4-prefix"/> + <validator name="ipv6-prefix"/> + </constraint> + <multi/> + </properties> + </leafNode> + </children> + </node> + </children> + </node> </children> </node> </children> |