vyos/vyos-documentation
1
0
Fork 0
mirror of https://github.com/vyos/vyos-documentation.git synced 2025-10-26 08:41:46 +01:00
Code Issues Packages Projects Releases Wiki Activity
2,911 Commits 32 Branches 12 Tags
Commit Graph

16 Commits

Author SHA1 Message Date
greenpsi
f0349e7f1f Nat update 
Update some nat commands to new syntax
 2023-11-16 00:19:59 +01:00
Robert Göhler
7aa0c1ab32
Merge pull request #1126 from srividya0208/ipsec_vips 
Added config example of vpn ipsec site-to-site
 2023-10-26 13:36:13 +02:00
srividya0208
4d7e44d3e7 Added config example of vpn ipsec site-to-site 2023-10-26 02:00:19 -04:00
aslanvyos
d3ef41c38f
Update site2site_ipsec.rst 
To make easily understandable the Site-to-Site VPN ikev2 configuration for users (especially if the user is new to VyOS) made the following changes:
- Added dummy interface to both routers for testing purposes
- Added static route for both routers for dummy interface
- Added this line of command: 
   set vpn ipsec option disable-route-autoinstall
   Because when we write this line after the commit action we got an error like:
WARNING: It's recommended to use ipsec vti with the next command

- corrected this line:
  set vpn ipsec site-to-site peer OFFICE-B local-address '192.168.0.10'
to this:
set vpn ipsec site-to-site peer OFFICE-B local-address '172.18.201.10'
 2023-10-18 15:24:39 +04:00
Viacheslav Hletenko
8f61920f01 Change IPsec authentication PSK and examples 2023-02-05 12:22:36 +00:00
rebortg
27ba499869 fix closeaction image 2023-01-03 20:37:50 +01:00
srividya0208
67c16e7f3a close-action: image reference is modified from image to figure 2023-01-02 22:33:11 -05:00
srividya0208
57b7e4f1b1 close-action: added an image to the details. 
There was a typo in the reference for the image added in the previous
commit, corrected that.
 2022-12-27 22:12:58 -05:00
srividya0208
b6b86f1946 ipsec_closeaction: added recommendation for closeaction options 
Added VPN IPSec connection-type recommendation for the close-action and
dpd settings.
For example close-action restart should not be added on both peers
 2022-12-26 09:26:32 -05:00
srividya0208
ac70a57fd1 Modified the documentation as per the new format/syntax 2022-11-08 22:24:58 -05:00
Viacheslav Hletenko
4dabe5123f ipsec: T4118: Change IPSec syntax 
Migration and Change boolean nodes "enable/disable" to
disable-xxxx, enable-xxxx and just xxx for VPN IPsec
configurations

  - IKE changes:
      - replace 'ipsec ike-group <tag> mobike disable'
             => 'ipsec ike-group <tag> disable-mobike'
      - replace 'ipsec ike-group <tag> ikev2-reauth yes|no'
             => 'ipsec ike-group <tag> ikev2-reauth'
  - ESP changes:
      - replace 'ipsec esp-group <tag> compression enable'
             => 'ipsec esp-group <tag> compression'
  - PEER changes:
      - replace: 'peer <tag> id xxx'
              => 'peer <tag> local-id xxx'
      - replace: 'peer <tag> force-encapsulation enable'
              => 'peer <tag> force-udp-encapsulation'
      - add option: 'peer <tag> remote-address x.x.x.x'

If peer name is IPv4 or IPv6 address add remote-address via
migration script
 2022-09-29 17:16:28 +03:00
srividya0208
da88a7dadc ipsec-interface: syntax correction 
The command to set the vpn interface is changed in the rolling release
which is not modified in many configuration examples, corrected syntax
in all pages where it is mentioned
 2022-09-08 06:55:52 -04:00
srividya0208
af2af9b50f deletion of note related to nat 
Removed the note from the firewall page as nat grouping is not added yet
Added the information about new option 'none' in the site-to-site ipsec vpn
page
 2022-04-24 14:46:53 -04:00
srividya0208
ae6a2ba810 configuration page: corrected spelling and grammatical mistakes 
There were minimal grammatical and spelling mistakes in the files which I
corrected as documentation proof reading.
Also added information about few ipsec vpn parameters.
 2021-06-30 06:17:12 -04:00
rebortg
19596fd91e vpn: fix lint errors 2020-12-11 14:54:50 +01:00
rebortg
ce090a4ced arrange examples 2020-12-06 21:41:10 +01:00