From 54bdc76b3bae95734d73a5ac2f174b32a1b9f2e9 Mon Sep 17 00:00:00 2001
From: srividya0208 <a.srividya@vyos.io>
Date: Mon, 4 Sep 2023 02:13:54 -0400
Subject: correction of ipsec compression syntax and added a reference for
 changes done for zone based firewall

---
 docs/configexamples/azure-vpn-bgp.rst      | 5 ++---
 docs/configexamples/azure-vpn-dual-bgp.rst | 7 +++----
 2 files changed, 5 insertions(+), 7 deletions(-)

(limited to 'docs/configexamples')

diff --git a/docs/configexamples/azure-vpn-bgp.rst b/docs/configexamples/azure-vpn-bgp.rst
index fc6e1a04..f272aafd 100644
--- a/docs/configexamples/azure-vpn-bgp.rst
+++ b/docs/configexamples/azure-vpn-bgp.rst
@@ -60,7 +60,6 @@ Vyos configuration
 
 .. code-block:: none
 
-  set vpn ipsec esp-group AZURE compression 'disable'
   set vpn ipsec esp-group AZURE lifetime '3600'
   set vpn ipsec esp-group AZURE mode 'tunnel'
   set vpn ipsec esp-group AZURE pfs 'dh-group2'
@@ -70,7 +69,7 @@ Vyos configuration
   set vpn ipsec ike-group AZURE dead-peer-detection action 'restart'
   set vpn ipsec ike-group AZURE dead-peer-detection interval '15'
   set vpn ipsec ike-group AZURE dead-peer-detection timeout '30'
-  set vpn ipsec ike-group AZURE ikev2-reauth 'yes'
+  set vpn ipsec ike-group AZURE ikev2-reauth
   set vpn ipsec ike-group AZURE key-exchange 'ikev2'
   set vpn ipsec ike-group AZURE lifetime '28800'
   set vpn ipsec ike-group AZURE proposal 1 dh-group '2'
@@ -94,7 +93,7 @@ Vyos configuration
 
 .. code-block:: none
 
-  set firewall options interface vti1 adjust-mss 1350
+  set interfaces vti vti1 ip adjust-mss 1350
 
 - Configure the VPN tunnel
 
diff --git a/docs/configexamples/azure-vpn-dual-bgp.rst b/docs/configexamples/azure-vpn-dual-bgp.rst
index 7f4987bb..d019092c 100644
--- a/docs/configexamples/azure-vpn-dual-bgp.rst
+++ b/docs/configexamples/azure-vpn-dual-bgp.rst
@@ -59,7 +59,6 @@ Vyos configuration
 
 .. code-block:: none
 
-  set vpn ipsec esp-group AZURE compression 'disable'
   set vpn ipsec esp-group AZURE lifetime '3600'
   set vpn ipsec esp-group AZURE mode 'tunnel'
   set vpn ipsec esp-group AZURE pfs 'dh-group2'
@@ -69,7 +68,7 @@ Vyos configuration
   set vpn ipsec ike-group AZURE dead-peer-detection action 'restart'
   set vpn ipsec ike-group AZURE dead-peer-detection interval '15'
   set vpn ipsec ike-group AZURE dead-peer-detection timeout '30'
-  set vpn ipsec ike-group AZURE ikev2-reauth 'yes'
+  set vpn ipsec ike-group AZURE ikev2-reauth
   set vpn ipsec ike-group AZURE key-exchange 'ikev2'
   set vpn ipsec ike-group AZURE lifetime '28800'
   set vpn ipsec ike-group AZURE proposal 1 dh-group '2'
@@ -96,8 +95,8 @@ Vyos configuration
 
 .. code-block:: none
 
-  set firewall options interface vti1 adjust-mss 1350
-  set firewall options interface vti2 adjust-mss 1350
+  set interfaces vti vti1 ip adjust-mss 1350
+  set interfaces vti vti2 ip adjust-mss 1350
 
 - Configure the VPN tunnels
 
-- 
cgit v1.2.3