Supported platforms

Getting started Overview Architecture Supported platforms Release notes White papers

Getting started Overview Architecture Supported platforms Release notes White papers

Vyatta documentation

Learn how to install, configure, and operate the Vyatta Network Operating System (Vyatta NOS) and Orchestrator, which help drive our virtual networking and physical platforms portfolio.

Supported platforms

Supported platforms On this page:

vRouter

Configuration (vRouter)

Security and VPN

IPsec Site-to-Site VPN

IPsec site-to-site VPN configuration

Basic site-to-site connection

Configure EAST

Configure an ESP group on EAST

VNF

UfiSpace S9500-30XS

Physical uCPEs

Configure an ESP group on EAST

This task creates ESP group ESP-1E on EAST. This ESP group contains two proposals:

Proposal 1 uses AES-256 as the encryption cipher and SHA-1 as the hash algorithm
Proposal 2 uses Triple-DES as the encryption cipher and MD5 as the hash algorithm

The lifetime of a proposal from this ESP group is set to 1800 seconds.

To create this ESP group, perform the following steps on EAST in configuration mode.

Table 1. Configuring an ESP group on EAST
Step	Command
Create the configuration node for proposal 1 of ESP group ESP-1E.	`vyatta@EAST# set security vpn ipsec esp-group ESP-1E proposal 1`
Set the encryption cipher for proposal 1.	`vyatta@EAST# set security vpn ipsec esp-group ESP-1E proposal 1 encryption aes256`
Set the hash algorithm for proposal 1.	`vyatta@EAST# set security vpn ipsec esp-group ESP-1E proposal 1 hash sha1`
Set the encryption cipher for proposal 2. This also creates the configuration node for proposal 2 of ESP group ESP-1E.	`vyatta@EAST# set security vpn ipsec esp-group ESP-1E proposal 2 encryption 3des`
Set the hash algorithm for proposal 2.	`vyatta@EAST# set security vpn ipsec esp-group ESP-1E proposal 2 hash md5`
Set the lifetime for the whole ESP group.	`vyatta@EAST# set security vpn ipsec esp-group ESP-1E lifetime 1800`
View the configuration for the ESP group. Don't commit yet.	`vyatta@EAST# show security vpn ipsec esp-group ESP-1E proposal 1 { encryption aes256 hash sha1 } proposal 2 { encryption 3des hash md5 } lifetime 1800`

Last updated: December 22, 2021

Helpful Links

Key Resources

Get Started An introduction to the Ciena Vyatta NOS

The Vyatta NOS Overview Get to know more about how Vyatta NOS is the best solution

Vyatta NOS Architecture Overview An overview of the Vyatta NOS system architecture

Troubleshooting Guide Identify common issues with your configuration and network setup

Copyright © 2023 Ciena Corporation. All rights reserved