traffic selector

  traffic selector

    Posted 07-16-2017 04:31

    i have read that a single phase 1 can establish multiple phase 2 SAs or VPNs .....



    1-is this related to traffic selector or there is other senarios ???



    2- when using traffic selector , does it create a separate SA for each subnet ??

  RE: traffic selector
    Best Answer

    Posted 07-16-2017 17:36

    Multiple SA are created in three scenarios:


    Policy based VPN when you have more than one subnet on at least one side of the VPN


    route based VPN when you configure traffic selectors


    route based VPN when you configure proxy-id


    Each set of subnets one local and one remote create an SA