security vpn ipsec site-to-site peer <peer> default-esp-group <name>

Specifies a default ESP configuration to use for all tunnels to the peer.

set security vpn ipsec site-to-site peer peer default-esp-group name

delete security vpn ipsec site-to-site peer peer default-esp-group

show security vpn ipsec site-to-site peer peer default-esp-group

peer: Mandatory. The address of the far-end VPN gateway. The format is an IPv4 address, an IPv6 address, a hostname (IPv4 networks only), an authentication ID, or 0.0.0.0.
name: Specifies the named ESP configuration (ESP group) to be used by default for all connections. The ESP group must have already been defined, using security vpn ipsec esp-group <name>.

Configuration mode

security {
        vpn {
            ipsec {
            site-to-site {
                peer peer {
                    default-esp-group name
                }
            }
        }
    }
}

Use this command to specify a default ESP configuration to use for all tunnels to the peer. This setting can be overridden on a per-tunnel basis by using security vpn ipsec site-to-site peer <peer> tunnel <tunnel> esp-group <name>.

Use the set form of this command to specify an ESP configuration to use for all connections by default.

Use the delete form of this command to remove the configuration.

Use the show form of this command to view the configuration.

Vyatta documentation

Learn how to install, configure, and operate the Vyatta Network Operating System (Vyatta NOS) and Orchestrator, which help drive our virtual networking and physical platforms portfolio.

security vpn ipsec site-to-site peer <peer> default-esp-group <name>

Helpful Links

Key Resources