vyos/vyos-documentation
1
0
Fork 0
mirror of https://github.com/vyos/vyos-documentation.git synced 2025-10-26 08:41:46 +01:00
Code Issues Packages Projects Releases Wiki Activity

Add cisco_flexvpn and install_virtualip_on options

Browse Source 
Ability to set Cisco FlexVPN vendor ID payload:
charon.cisco_flexvpn = yes
charon.install_virtual_ip_on = tunX
swanctl.connections.<conn>.vips = x.x.x.x, z.z.z.z
This commit is contained in:
mkorobeinikov 2022-02-23 10:49:37 +10:00 committed by GitHub
parent 5d3bffe651
commit ea485aede1
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 13 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

13
docs/configuration/vpn/ipsec.rst
View File

@ -162,7 +162,20 @@ VyOS ESP group has the next options:
* ``encryption`` encryption algorithm (default 128 bit AES-CBC); * ``encryption`` encryption algorithm (default 128 bit AES-CBC);
* ``hash`` hash algorithm (default sha1). * ``hash`` hash algorithm (default sha1).
***********************************************
Options (Global IPsec settings) Attributes
***********************************************
* ``options`` IPsec settings:
* ``disable-route-autoinstall`` Do not automatically install routes to remote networks;
* ``flexvpn`` Allow FlexVPN vendor ID payload (IKEv2 only);
* ``interface`` Interface Name to use;
* ``virtual-ip`` Allow install virtual-ip addresses.
************************* *************************
IPsec policy matching GRE IPsec policy matching GRE
************************* *************************