Vyatta Network OS Documentation

Learn how to install, configure and operate the Vyatta NOS, which helps drive our virtual networking & physical platforms portfolio.

security vpn ipsec site-to-site peer <peer> default-esp-group <name>

Specifies a default ESP configuration to use for all tunnels to the peer.

set security vpn ipsec site-to-site peer peer default-esp-group name
delete security vpn ipsec site-to-site peer peer default-esp-group
show security vpn ipsec site-to-site peer peer default-esp-group
peer
Mandatory. The address of the far-end VPN gateway. The format is an IPv4 address, an IPv6 address, a hostname (IPv4 networks only), an authentication ID, or 0.0.0.0.
name
Specifies the named ESP configuration (ESP group) to be used by default for all connections. The ESP group must have already been defined, using security vpn ipsec esp-group <name>.

Configuration mode

security {
        vpn {
            ipsec {
            site-to-site {
                peer peer {
                    default-esp-group name
                }
            }
        }
    }
}

Use this command to specify a default ESP configuration to use for all tunnels to the peer. This setting can be overridden on a per-tunnel basis by using security vpn ipsec site-to-site peer <peer> tunnel <tunnel> esp-group <name>.

Use the set form of this command to specify an ESP configuration to use for all connections by default.

Use the delete form of this command to remove the configuration.

Use the show form of this command to view the configuration.