vyos/vyos-documentation
1
0
Fork 0
mirror of https://github.com/vyos/vyos-documentation.git synced 2025-10-26 08:41:46 +01:00
Code Issues Packages Projects Releases Wiki Activity

pki: add WireGuard key generation section

Browse Source
This commit is contained in:
Christian Poessinger 2021-07-18 15:54:01 +02:00
parent 09ba902610
commit 788d5be8d4
2 changed files with 49 additions and 8 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

44
docs/configuration/pki/index.rst
View File

@ -111,8 +111,50 @@ OpenVPN
.. opcmd:: generate pki openvpn shared-secret .. opcmd:: generate pki openvpn shared-secret
Genearate a new OpenVPN shared secret. Genearate a new OpenVPN shared secret. The generated secred is the output to
the console.
.. opcmd:: generate pki openvpn shared-secret install <name>
Genearate a new OpenVPN shared secret. The generated secred is the output to
the console.
.. include:: pki_cli_import_help.txt
WireGuard
---------
.. opcmd:: generate pki wireguard key-pair
Generate a new WireGuard public/private key portion and output the result to
the console.
.. opcmd:: generate pki wireguard key-pair install <interface>
Generate a new WireGuard public/private key portion and output the result to
the console.
.. note:: In addition to the command above, the output is in a format which can
be used to directly import the key into the VyOS CLI by simply copy-pasting
the output from op-mode into configuration mode.
``interface`` is used for the VyOS CLI command to identify the WireGuard
interface where this private key is to be used.
.. opcmd:: generate pki wireguard pre-shared-key
Generate a WireGuard pre-shared secret used for peers to communicate.
.. opcmd:: generate pki wireguard pre-shared-key install <peer>
Generate a WireGuard pre-shared secret used for peers to communicate.
.. note:: In addition to the command above, the output is in a format which can
be used to directly import the key into the VyOS CLI by simply copy-pasting
the output from op-mode into configuration mode.
``peer`` is used for the VyOS CLI command to identify the WireGuard peer where
this secred is to be used.
Configuration Configuration
============= =============

13
docs/configuration/pki/pki_cli_import_help.txt
View File

@ -1,8 +1,7 @@
In addition to the command above, the output is in a format which can be used .. note:: In addition to the command above, the output is in a format which can
to directly import the key into the VyOS CLI by simply copy-pasting the output be used to directly import the key into the VyOS CLI by simply copy-pasting
from op-mode into configuration mode. the output from op-mode into configuration mode.
Name is used for the VyOS CLI command to identify this CA on the running
configuration.
``name`` is used for the VyOS CLI command to identify this key. This
key ``name`` is then used in the CLI configuration to reference the key
instance.