Merge pull request #1572 from sever-sever/T264-doc

Add IPSec base64 secrets

1 files changed, 5 insertions, 2 deletions

diff --git a/docs/configuration/vpn/site2site_ipsec.rst b/docs/configuration/vpn/site2site_ipsec.rst
index ab0f623f..400aff29 100644
--- a/docs/configuration/vpn/site2site_ipsec.rst
+++ b/docs/configuration/vpn/site2site_ipsec.rst
@@ -25,8 +25,11 @@ Each site-to-site peer has the next options:
     dynamically;
   * ``id`` - static ID's for authentication. In general local and remote
     address ``<x.x.x.x>``, ``<h:h:h:h:h:h:h:h>`` or ``%any``;
-  * ``secret`` - predefined shared secret. Used if configured mode
-    ``pre-shared-secret``;
+  * ``secret`` - a predefined shared secret used in configured mode
+    ``pre-shared-secret``. Base64-encoded secrets are allowed if
+    `secret-type base64` is configured;
+  * ``secret-type`` - specifies the secret type, either ``plaintext`` or
+    ``base64``. Default to ``plaintext``;
 
 
  * ``local-id`` - ID for the local VyOS router. If defined, during the