Vyatta Network OS Documentation

Learn how to install, configure and operate the Vyatta NOS, which helps drive our virtual networking & physical platforms portfolio.

security vpn ipsec site-to-site peer <peer> authentication x509 key file <file-name>

Specifies the name of the VPN server's private key file for IPsec authentication of the VPN peer.

set security vpn ipsec site-to-site peer peer authentication x509 key file file-name
delete security vpn ipsec site-to-site peer peer authentication x509 key file
show security vpn ipsec site-to-site peer peer authentication x509 key file
peer
Mandatory. The address of the far-end VPN gateway. The format is an IPv4 address, an IPv6 address, a hostname (IPv4 networks only), an authentication ID, or 0.0.0.0.
file-name
The name of the VPN server's private key file. This parameter is mandatory if authentication mode is x509.

Configuration mode

security {
        vpn {
            ipsec {
                site-to-site {
                    peer peer {
                        authentication {
                            x509 {
                                key {
                                    file file-name
                            }
                        }
                    }
                }
            }
        }
    }
}

Use this command to specify the name of the VPN server's private key file. The VPN server's private key certifies the identity of the VPN server.

The file is assumed to be in /config/auth unless an absolute path is specified.

Use the set form of this command to specify the location of the VPN server's private key file.

Use the delete form of this command to remove the location of the VPN server's private key file.

Use the show form of this command to display VPN server private key file configuration.