Defining an interface for the VPN filter rules

 

After you configure your VPN packet rules and any other rules that you need to enable your VPN connection, define the interface to which to they apply.

To define an interface to which to apply your VPN filter rules, follow these steps:

If you just configured the VPN packet rules, the Packet Rules interface will still be open; go to step four.

  1. In iSeries™ Navigator, expand your system > Network > IP Policies.

  2. Right-click Packet Rules and select Rules Editor. This opens the Packet Rules editor, which allows you to create or edit filter and NAT rules for your system.

  3. On the Welcome window, select Create a new packet rules file and click OK.

  4. From the Packet Rules editor select Insert > Filter Interface.

  5. On the General page, select Line name, and then select the line description to which your VPN packet rules apply from the drop-down list.

  6. (optional) Enter a description.

  7. On the Filter Sets page, click Add to add each set name for the filters you just configured.

  8. Click OK.

  9. Save your rules file. The file is saved into the integrated file system on your system with an extension of .i3p.

    Do not save your file into the following directory: 

    /QIBM/UserData/OS400/TCPIP/RULEGEN

    This directory is for system use only. If you ever need to use the RMVTCPTBL *ALL command to deactivate packet rules, the command will delete all files within this directory.

After you define an interface for your filter rules, activate them before you can start the VPN.

 

Parent topic:

Configuring VPN packet rules

Related concepts
Configuring VPN packet rules

Related tasks
Configuring a policy filter rule Activating VPN packet rules