diff options
author | Christian Breunig <christian@breunig.cc> | 2024-04-07 16:22:26 +0200 |
---|---|---|
committer | GitHub <noreply@github.com> | 2024-04-07 16:22:26 +0200 |
commit | 58d8b562d2aa0ce6bf6699c1ef4ab064384c740d (patch) | |
tree | d3f9dade84def436470c377d5d3edf232d180103 /docs/configuration | |
parent | 7fcf02c24772ad2dfe68ad15d9cb12c4da7a1d68 (diff) | |
parent | 9fe4b8a9360c8c6544a21111c556cd0a4ec30d6c (diff) | |
download | vyos-documentation-58d8b562d2aa0ce6bf6699c1ef4ab064384c740d.tar.gz vyos-documentation-58d8b562d2aa0ce6bf6699c1ef4ab064384c740d.zip |
Merge pull request #1359 from vyos/mergify/bp/sagitta/pr-1354
Fix mistake in RPKI documentation about the use of TLS (backport #1354)
Diffstat (limited to 'docs/configuration')
-rw-r--r-- | docs/configuration/protocols/rpki.rst | 12 |
1 files changed, 7 insertions, 5 deletions
diff --git a/docs/configuration/protocols/rpki.rst b/docs/configuration/protocols/rpki.rst index d40bfb5c..acce2d56 100644 --- a/docs/configuration/protocols/rpki.rst +++ b/docs/configuration/protocols/rpki.rst @@ -140,11 +140,13 @@ Configuration SSH === -Connections to the RPKI caching server can not only be established by HTTP/TLS -but you can also rely on a secure SSH session to the server. To enable SSH you -first need to create yoursels an SSH client keypair using ``generate ssh -client-key /config/auth/id_rsa_rpki``. Once your key is created you can setup -the connection. +Connections to the RPKI caching server can not only be established by TCP using +the RTR protocol but you can also rely on a secure SSH session to the server. +This provides transport integrity and confidentiality and it is a good idea if +your validation software supports it. To enable SSH, first you need to create +an SSH client keypair using ``generate ssh client-key +/config/auth/id_rsa_rpki``. Once your key is created you can setup the +connection. .. cfgcmd:: set protocols rpki cache <address> ssh username <user> |