| Age | Commit message (Collapse) | Author |
|---|
|
* Fix typos in openconnect.rst
change Cerbort->Certbot
Update first line to reflect that openconnect was introduced in 1.3-rolling (T2036)
* typo in dmvpn.rst
* ipsec.rst justification, minor phrasing changes
* l2tp.rst justification and phrasing changes.
* sstp.rst phrasing, justification changes
* Update ipsec.rst
rephrase for clarity and to avoid possessive plural apostrophe
(cherry picked from commit 873a461bdf972ebd815baf50893700b0a2518213)
|
|
(cherry picked from commit cd1dcb5d8e66e3431415ebf31a2d5902b30c1ffc)
|
|
|
|
(cherry picked from commit deb4e15e51e2b5f5b281f0e17961a5c10d036bfe)
|
|
Changed from 'hold' to 'trap' and from 'restart' to 'start'
in close-action.
Changed from 'hold' to 'trap' in DPD action.
(cherry picked from commit cfb7e8186d83e45092f361f9717c9542bfad053b)
|
|
(cherry picked from commit 5953d6f69748c82cbd9eafbe662163924ae719e6)
|
|
for changes done for zone based firewall
|
|
|
|
Added Pseudo-Random Functions (PRF) information
in IPSEC documentation.
|
|
|
|
The command to set the vpn interface is changed in the rolling release
which is not modified in many configuration examples, corrected syntax
in all pages where it is mentioned
|
|
|
|
Ability to set Cisco FlexVPN vendor ID payload:
charon.cisco_flexvpn = yes
charon.install_virtual_ip_on = tunX
swanctl.connections.<conn>.vips = x.x.x.x, z.z.z.z
|
|
https://phabricator.vyos.net/T1856
https://github.com/vyos/vyos-1x/pull/1230
|
|
and remote
vyos@vyos# set int tunnel tun0
Possible completions:
remote Tunnel remote address
source-address
Source IP address used to initiate connection
|
|
|
|
|
|
A private key is also needed to finish the ipsec setup which is not mentioned
in the section "Source tunnel from loopbacks/Setting up IPSec". I have added
for reference.
|
|
|
|
RSA-Keys page was blank, so added the steps to generate and add the keys to
the VPN IPSec config.
Also corrected the IPSec/GRE page where authentication parameter was
missing before remote-id.
|
|
|
