NSX-T Data Center REST API

IPSecVPNPolicyRule (schema)

IPSec VPN policy rules

For policy-based IPsec VPNs, a security policy specifies as its action the VPN tunnel to be used for transit traffic that meets the policy's match criteria.

Name	Description	Type	Notes
_links	References related to this resource The server will populate this field when returing the resource. Ignored on PUT and POST.	array of ResourceLink	Readonly
_owner	Owner of this resource	OwnerResourceLink	Readonly
_revision	Generation of this resource config The _revision property describes the current revision of the resource. To prevent clients from overwriting each other's changes, PUT operations must include the current _revision of the resource, which clients should obtain by issuing a GET operation. If the _revision provided in a PUT request is missing or stale, the operation will be rejected.	int
_schema	Schema for this resource	string	Readonly
_self	Link to this resource	SelfResourceLink	Readonly
action	Action to be applied PROTECT - Protect rules are defined per policy based IPSec VPN session. BYPASS - Bypass rules are defined per IPSec VPN service and affects all policy based IPSec VPN sessions. Bypass rules are prioritized over protect rules.	string	Readonly Enum: PROTECT, BYPASS Default: "PROTECT"
description	Description of this resource	string	Maximum length: 1024 Sortable
destinations	Destination list List of peer subnets.	array of IPSecVPNPolicySubnet	Maximum items: 128
display_name	Identifier to use when displaying entity in logs or GUI Defaults to ID if not set	string	Maximum length: 255 Sortable
enabled	Enabled flag A flag to enable/disable the policy rule.	boolean	Default: "True"
id	Unique policy id Unique policy id.	string
logged	Logging flag A flag to enable/disable the logging for the policy rule.	boolean	Default: "False"
resource_type	Must be set to the value IPSecVPNPolicyRule	string
sources	Source list List of local subnets.	array of IPSecVPNPolicySubnet	Maximum items: 128