The following rule allows any type of traffic to flow between PublicServerAddressA1 and SubnetC using the same Security Association. PublicServerAddressA1 and SubnetC can be defined in either the common or the stack-specific IP security configuration file. The AutoActivate parameter causes the IKE negotiation to initiate when the stack or IKE initializes.
LocalDynVpnRule ZoneC_VPN-All-traffic
{
LocalIpRef PublicServerAddressA1
RemoteIpSetRef SubnetC
Protocol all
AutoActivate yes
}
IpAddr PublicServerAddressA1
{
Addr 9.3.3.3
}
IpAddrSet SubnetC
{
Prefix 9.6.0.0/16
}