Issue A wildcard policy is an IPsec policy that applies to multiple IP endpoints When a wildcard IPsec policy is modified, ONTAP needs to delete the extant IKE SAs associated with the policy The bug c...Issue A wildcard policy is an IPsec policy that applies to multiple IP endpoints When a wildcard IPsec policy is modified, ONTAP needs to delete the extant IKE SAs associated with the policy The bug caused ONTAP to not delete all the old IKE SAs. Since IKE SAs still existed for the client IPs, ONTAP traffic from those clients to be encrypted. When the clients sent unencrypted traffic, ONTAP dropped the unencrypted traffic without responding.
