Comware Based
Showing results for 
Search instead for 
Did you mean: 

[A5500-EI] 5500.EI_4800G_F2218: ACL-based IPsec

Trusted Contributor

[A5500-EI] 5500.EI_4800G_F2218: ACL-based IPsec

Nice, we are getting "ACL-based IPsec". Is this kind of 802.1ae/MACSec for IP only?

"The switch supports IPsec for data flows in standard mode. In standard mode, one tunnel protects one data flow. The data flow permitted by an ACL rule is protected by one tunnel that is established solely for it."


So this is hardware based IPSec? What performance will I get if I create an ACL with:


rule 0 permit ip source any destination any