Vyatta NOS documentation

Learn how to install, configure, and operate Vyatta Network Operating System (Vyatta NOS), which helps to drive our virtual networking and physical platforms portfolio.

security vpn ipsec site-to-site peer <peer> authentication id <id>

Specifies local authentication credentials to send to the VPN peer.

set security vpn ipsec site-to-site peer peer authentication id id
delete security vpn ipsec site-to-site peer peer authentication id
show security vpn ipsec site-to-site peer peer authentication id
peer
Mandatory. The address of the far-end VPN gateway. The format is an IPv4 address, an IPv6 address, a hostname (IPv4 networks only), an authentication ID, or 0.0.0.0.
id
The local authentication credentials to send to the VPN peer. Can be specified if the local-address address for the peer is set to any (which means the external address of the interface is dynamic); ignored otherwise. Use the format @ id to specify the id.

Configuration mode

security {
        vpn {
            ipsec {
            site-to-site {
                peer peer {
                    authentication {
                            id id
                    }
                }
            }
        }
    }
}

Use this command to specify the local authentication credentials to send to the VPN peer.

When using IP address as the id, make sure the certificate has Subject Alternative Name with the IP address field. For example:

X509v3 extensions:

X509v3 Subject Alternative Name:

IP Address:192.0.71.1

Use the set form of this command to specify the local authentication credentials to send to the VPN peer.

Use the delete form of this command to remove the local authentication credentials.

Use the show form of this command to view the local authentication credentials.