You might want to delete an obsolete security policy and replace it with an up-to-date one.
Considerations
You can remove entries from the security policy database by deleting any of the
following:
- All entries
- Individual entries identified by SPD index number (displayed by
the ipsec policy show
command)
- Groups of entries identified by any of the following:
- Source and destination addresses
- Direction (relative to your storage system)
- Mirror policy
Step
- At your storage system command line, enter the following command:
ipsec policy delete all | -i index [[-s src_ip|-t
dst_ip] -d {in|out} [-m]]
Note: You must delete the same policies from corresponding clients.