Add IPSec base64 secrets

author: Viacheslav Hletenko <v.gletenko@vyos.io> 2024-11-27 10:15:31 +0200
committer: Viacheslav Hletenko <v.gletenko@vyos.io> 2024-11-27 10:15:31 +0200
commit: e07a1a740c2e587a22b361fc19dbd2b78957d135 (patch)
tree: e1dbd802785a8174071d0e7727ac71495ef794f7 /docs/configuration
parent: 940057d0d919e81faf9f61276b1b85029dc37a08 (diff)
download: vyos-documentation-e07a1a740c2e587a22b361fc19dbd2b78957d135.tar.gz
vyos-documentation-e07a1a740c2e587a22b361fc19dbd2b78957d135.zip
1 files changed, 5 insertions, 2 deletions
diff --git a/docs/configuration/vpn/site2site_ipsec.rst b/docs/configuration/vpn/site2site_ipsec.rst
index ab0f623f..400aff29 100644
--- a/docs/configuration/vpn/site2site_ipsec.rst
+++ b/docs/configuration/vpn/site2site_ipsec.rst
@@ -25,8 +25,11 @@ Each site-to-site peer has the next options:
     dynamically;
   * ``id`` - static ID's for authentication. In general local and remote
     address ``<x.x.x.x>``, ``<h:h:h:h:h:h:h:h>`` or ``%any``;
-  * ``secret`` - predefined shared secret. Used if configured mode
-    ``pre-shared-secret``;
+  * ``secret`` - a predefined shared secret used in configured mode
+    ``pre-shared-secret``. Base64-encoded secrets are allowed if
+    `secret-type base64` is configured;
+  * ``secret-type`` - specifies the secret type, either ``plaintext`` or
+    ``base64``. Default to ``plaintext``;
 
 
  * ``local-id`` - ID for the local VyOS router. If defined, during the
author	Viacheslav Hletenko <v.gletenko@vyos.io>	2024-11-27 10:15:31 +0200
committer	Viacheslav Hletenko <v.gletenko@vyos.io>	2024-11-27 10:15:31 +0200
commit	e07a1a740c2e587a22b361fc19dbd2b78957d135 (patch)
tree	e1dbd802785a8174071d0e7727ac71495ef794f7 /docs/configuration
parent	940057d0d919e81faf9f61276b1b85029dc37a08 (diff)
download	vyos-documentation-e07a1a740c2e587a22b361fc19dbd2b78957d135.tar.gz vyos-documentation-e07a1a740c2e587a22b361fc19dbd2b78957d135.zip