Change IPsec authentication PSK and examples

author: Viacheslav Hletenko <v.gletenko@vyos.io> 2023-02-05 12:22:36 +0000
committer: Viacheslav Hletenko <v.gletenko@vyos.io> 2023-02-05 12:22:36 +0000
commit: 8f61920f01d30e2a864dc6927b0038357e56bb05 (patch)
tree: e57f854bda1bc1b0982f5ec4d371539a093a91a4 /docs/configuration/vpn/ipsec.rst
parent: d39ce49e2f54b99433c5c661fc1cb6efbbe6c930 (diff)
download: vyos-documentation-8f61920f01d30e2a864dc6927b0038357e56bb05.tar.gz
vyos-documentation-8f61920f01d30e2a864dc6927b0038357e56bb05.zip
1 files changed, 5 insertions, 1 deletions
diff --git a/docs/configuration/vpn/ipsec.rst b/docs/configuration/vpn/ipsec.rst
index d6a4733c..327f3abb 100644
--- a/docs/configuration/vpn/ipsec.rst
+++ b/docs/configuration/vpn/ipsec.rst
@@ -202,6 +202,11 @@ On the LEFT:
   ## IPsec
   set vpn ipsec interface eth0
 
+  # Pre-shared-secret
+  set vpn ipsec authentication psk vyos id 192.0.2.10
+  set vpn ipsec authentication psk vyos id 203.0.113.45
+  set vpn ipsec authentication psk vyos secret MYSECRETKEY
+
   # IKE group
   set vpn ipsec ike-group MyIKEGroup proposal 1 dh-group '2'
   set vpn ipsec ike-group MyIKEGroup proposal 1 encryption 'aes128'
@@ -213,7 +218,6 @@ On the LEFT:
 
   # IPsec tunnel
   set vpn ipsec site-to-site peer right authentication mode pre-shared-secret
-  set vpn ipsec site-to-site peer right authentication pre-shared-secret MYSECRETKEY
   set vpn ipsec site-to-site peer right authentication remote-id 203.0.113.45
 
   set vpn ipsec site-to-site peer right ike-group MyIKEGroup
author	Viacheslav Hletenko <v.gletenko@vyos.io>	2023-02-05 12:22:36 +0000
committer	Viacheslav Hletenko <v.gletenko@vyos.io>	2023-02-05 12:22:36 +0000
commit	8f61920f01d30e2a864dc6927b0038357e56bb05 (patch)
tree	e57f854bda1bc1b0982f5ec4d371539a093a91a4 /docs/configuration/vpn/ipsec.rst
parent	d39ce49e2f54b99433c5c661fc1cb6efbbe6c930 (diff)
download	vyos-documentation-8f61920f01d30e2a864dc6927b0038357e56bb05.tar.gz vyos-documentation-8f61920f01d30e2a864dc6927b0038357e56bb05.zip