diff options
| author | Christian Poessinger <christian@poessinger.com> | 2020-11-11 17:55:58 +0100 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2020-11-11 17:55:58 +0100 |
| commit | d9d7e64a54cb2d32e0e8759d0a2af53a10002c93 (patch) | |
| tree | 6c3d58832ba824a985a45c6d742ad266a866e160 /docs | |
| parent | f0ed78b3ad3a7806b0443a2771cdeb6cbd13ba5a (diff) | |
| parent | 750387723f2b9bc7ce6d82ce4e27dd58fc1a3c3a (diff) | |
| download | vyos-documentation-d9d7e64a54cb2d32e0e8759d0a2af53a10002c93.tar.gz vyos-documentation-d9d7e64a54cb2d32e0e8759d0a2af53a10002c93.zip | |
Merge pull request #374 from currite/tunnel-keys
tunnel: add tunnel keys
Diffstat (limited to 'docs')
| -rw-r--r-- | docs/interfaces/tunnel.rst | 23 |
1 files changed, 23 insertions, 0 deletions
diff --git a/docs/interfaces/tunnel.rst b/docs/interfaces/tunnel.rst index 9674b0a8..c14314d1 100644 --- a/docs/interfaces/tunnel.rst +++ b/docs/interfaces/tunnel.rst @@ -131,6 +131,29 @@ ip otherwise it would have to be configured as well. tunnel source 203.0.113.10 tunnel destination 198.51.100.2 + +Tunnel keys +^^^^^^^^^^^ + +GRE is also the only classic protocol that allows creating multiple tunnels with the same source and destination due to its support for tunnel keys. Despite its name, this feature has nothing to do with security: it's simply an identifier that allows routers to tell one tunnel from another. + +An example: + +.. code-block:: none + + set interfaces tunnel tun0 local-ip 192.0.2.10 + set interfaces tunnel tun0 remote-ip 192.0.2.20 + set interfaces tunnel tun0 address 10.40.50.60/24 + set interfaces tunnel tun0 parameters ip key 10 + +.. code-block:: none + + set interfaces tunnel tun0 local-ip 192.0.2.10 + set interfaces tunnel tun0 remote-ip 192.0.2.20 + set interfaces tunnel tun0 address 172.16.17.18/24 + set interfaces tunnel tun0 parameters ip key 20 + + Troubleshooting ^^^^^^^^^^^^^^^ |