Page Menu
Home
VyOS Platform
Search
Configure Global Search
Log In
Files
F2008370
ipsec-r1.txt
All Users
Actions
View File
Edit File
Delete File
View Transforms
Subscribe
Mute Notifications
Award Token
Flag For Later
Authored By
Viacheslav
Oct 25 2021, 11:45 AM
2021-10-25 11:45:13 (UTC+0)
Size
2 KB
Referenced Files
None
Subscribers
None
ipsec-r1.txt
View Options
set interfaces ethernet eth1 address '192.0.2.1/24'
set vpn ipsec esp-group ESP-GRP compression 'disable'
set vpn ipsec esp-group ESP-GRP lifetime '1800'
set vpn ipsec esp-group ESP-GRP mode 'tunnel'
set vpn ipsec esp-group ESP-GRP pfs 'enable'
set vpn ipsec esp-group ESP-GRP proposal 1 encryption 'aes256'
set vpn ipsec esp-group ESP-GRP proposal 1 hash 'sha1'
set vpn ipsec ike-group IKE-GRP ikev2-reauth 'no'
set vpn ipsec ike-group IKE-GRP key-exchange 'ikev1'
set vpn ipsec ike-group IKE-GRP lifetime '3600'
set vpn ipsec ike-group IKE-GRP proposal 1 encryption 'aes256'
set vpn ipsec ike-group IKE-GRP proposal 1 hash 'sha1'
set vpn ipsec ipsec-interfaces interface 'eth1'
set vpn ipsec site-to-site peer 192.0.2.2 authentication mode 'pre-shared-secret'
set vpn ipsec site-to-site peer 192.0.2.2 authentication pre-shared-secret 'SeCrEt'
set vpn ipsec site-to-site peer 192.0.2.2 connection-type 'initiate'
set vpn ipsec site-to-site peer 192.0.2.2 ike-group 'IKE-GRP'
set vpn ipsec site-to-site peer 192.0.2.2 local-address '192.0.2.1'
set vpn ipsec site-to-site peer 192.0.2.2 tunnel 0 allow-nat-networks 'disable'
set vpn ipsec site-to-site peer 192.0.2.2 tunnel 0 allow-public-networks 'disable'
set vpn ipsec site-to-site peer 192.0.2.2 tunnel 0 esp-group 'ESP-GRP'
set vpn ipsec site-to-site peer 192.0.2.2 tunnel 0 local prefix '10.1.1.0/24'
set vpn ipsec site-to-site peer 192.0.2.2 tunnel 0 remote prefix '10.2.1.0/24'
set vpn ipsec site-to-site peer 192.0.2.2 tunnel 1 allow-nat-networks 'disable'
set vpn ipsec site-to-site peer 192.0.2.2 tunnel 1 allow-public-networks 'disable'
set vpn ipsec site-to-site peer 192.0.2.2 tunnel 1 esp-group 'ESP-GRP'
set vpn ipsec site-to-site peer 192.0.2.2 tunnel 1 local prefix '10.1.2.0/24'
set vpn ipsec site-to-site peer 192.0.2.2 tunnel 1 remote prefix '10.2.2.0/24'
set vpn ipsec site-to-site peer 192.0.2.2 tunnel 2 allow-nat-networks 'disable'
set vpn ipsec site-to-site peer 192.0.2.2 tunnel 2 allow-public-networks 'disable'
set vpn ipsec site-to-site peer 192.0.2.2 tunnel 2 esp-group 'ESP-GRP'
set vpn ipsec site-to-site peer 192.0.2.2 tunnel 2 local prefix '10.1.3.0/24'
set vpn ipsec site-to-site peer 192.0.2.2 tunnel 2 remote prefix '10.2.3.0/24'
File Metadata
Details
Attached
Mime Type
text/plain
Storage Engine
local-disk
Storage Format
Raw Data
Storage Handle
d0/b1/aa963a4c2ba96a95c328b62b7dcf
Default Alt Text
ipsec-r1.txt (2 KB)
Attached To
Mode
T3941: "show vpn ipsec sa" shows established time of parent SA not child SA's
Attached
Detach File
Event Timeline
Log In to Comment