summaryrefslogtreecommitdiff
path: root/docs/configuration/vpn
AgeCommit message (Collapse)Author
2022-04-21OpenConnect new new syntax + OTP 2FAgoodNETnick
2022-02-23Update ipsec.rstmkorobeinikov
2022-02-23Add cisco_flexvpn and install_virtualip_on optionsmkorobeinikov
Ability to set Cisco FlexVPN vendor ID payload: charon.cisco_flexvpn = yes charon.install_virtual_ip_on = tunX swanctl.connections.<conn>.vips = x.x.x.x, z.z.z.z
2022-02-23Ability to set SA life bytes and packetsmkorobeinikov
https://phabricator.vyos.net/T1856 https://github.com/vyos/vyos-1x/pull/1230
2022-02-20openconnect: remove example b/c of missing PKIChristian Poessinger
OpenConnect lacks full documentation which would also include how to create and add use keys from the new PKI backend. For the time beeing we should not confuse users.
2022-02-20Merge pull request #704 from rickard-tpo/patch-1Christian Poessinger
Updated OpenConnect SSL Syntax
2022-02-15vpn-gre:incorrect syntax: local-ip and remote-ip changed to source-address ↵srividya0208
and remote vyos@vyos# set int tunnel tun0 Possible completions: remote Tunnel remote address source-address Source IP address used to initiate connection
2022-01-26Updated SSL Syntaxrickard-tpo
Updated syntax to match 1.4.x.
2021-12-07ESP group parametersgoodNETnick
2021-11-26IKE group parametersgoodNETnick
2021-11-18VPN IPsec: Added a note related to rsa keysrividya0208
A private key is also needed to finish the ipsec setup which is not mentioned in the section "Source tunnel from loopbacks/Setting up IPSec". I have added for reference.
2021-10-20RSA-keys updated to new syntaxgoodNETnick
2021-10-19IPsec key-pair new synthaxgoodNETnick
2021-07-11moved wg back into /interfaces dirusman-umer
2021-07-10 Moved wireguard from the interfaces to vpn directory, as it is a VPN.usman-umer
Modified the index files to reflect this. Added Diagram of the VPN Topology Modified the weird IP subnets for local& remote sites. This Included: Changing the Interface Address for the wg01 tunnel Chaning the WAN addresses to addrs not in the RFC1918 range (1.1.1.1 & 2.2.2.2) Modifing the allowed IPs and static route to reflect this. Modified the ping test to reflect this. Added an annotated verison of the wireguard local&remote config. Added an example of a firewall exception for wirguard (OUTSIDE_IN) Modified the explanation for the behavior of AllowedIPs for remote clients. Added an example of "sudo wg" to the operational commands. Fixed typo
2021-06-30configuration page: corrected spelling and grammatical mistakessrividya0208
There were minimal grammatical and spelling mistakes in the files which I corrected as documentation proof reading. Also added information about few ipsec vpn parameters.
2021-06-11Merge pull request #546 from rebortg/autosectionlabelRobert Göhler
Autosectionlabel
2021-06-11autosectionlabel: add custom headline refrebortg
2021-06-06ipsec: T3588: remove obsolete CLI commands for NATChristian Poessinger
2021-02-10Update l2tp.rstOliver Dickins
Update l2tp "name-server" with correct syntax
2020-12-25RSA Keys: Added information related to RSA keyssrividya0208
RSA-Keys page was blank, so added the steps to generate and add the keys to the VPN IPSec config. Also corrected the IPSec/GRE page where authentication parameter was missing before remote-id.
2020-12-11vpn: fix lint errorsrebortg
2020-12-11l2tp: fix linter errorsrebortg
2020-12-08Merge branch 'sagitta' of https://github.com/rebortg/vyos-documentationrebortg
2020-12-07fix build errors after arrangerebortg
2020-12-06arrange examplesrebortg