From e07a1a740c2e587a22b361fc19dbd2b78957d135 Mon Sep 17 00:00:00 2001
From: Viacheslav Hletenko <v.gletenko@vyos.io>
Date: Wed, 27 Nov 2024 10:15:31 +0200
Subject: Add IPSec base64 secrets

---
 docs/configuration/vpn/site2site_ipsec.rst | 7 +++++--
 1 file changed, 5 insertions(+), 2 deletions(-)

(limited to 'docs/configuration/vpn/site2site_ipsec.rst')

diff --git a/docs/configuration/vpn/site2site_ipsec.rst b/docs/configuration/vpn/site2site_ipsec.rst
index ab0f623f..400aff29 100644
--- a/docs/configuration/vpn/site2site_ipsec.rst
+++ b/docs/configuration/vpn/site2site_ipsec.rst
@@ -25,8 +25,11 @@ Each site-to-site peer has the next options:
     dynamically;
   * ``id`` - static ID's for authentication. In general local and remote
     address ``<x.x.x.x>``, ``<h:h:h:h:h:h:h:h>`` or ``%any``;
-  * ``secret`` - predefined shared secret. Used if configured mode
-    ``pre-shared-secret``;
+  * ``secret`` - a predefined shared secret used in configured mode
+    ``pre-shared-secret``. Base64-encoded secrets are allowed if
+    `secret-type base64` is configured;
+  * ``secret-type`` - specifies the secret type, either ``plaintext`` or
+    ``base64``. Default to ``plaintext``;
 
 
  * ``local-id`` - ID for the local VyOS router. If defined, during the
-- 
cgit v1.2.3