Supported platforms

Getting started Overview Architecture Supported platforms Release notes White papers

Getting started Overview Architecture Supported platforms Release notes White papers

Vyatta documentation

Learn how to install, configure, and operate the Vyatta Network Operating System (Vyatta NOS) and Orchestrator, which help drive our virtual networking and physical platforms portfolio.

Supported platforms

Supported platforms On this page:

vRouter

Configuration (vRouter)

Security and VPN

IPsec Site-to-Site VPN

IPsec site-to-site VPN configuration

VPN connection to a peer with a dynamic IP address

Configure EAST

VNF

UfiSpace S9500-30XS

Physical uCPEs

Configure EAST

The connection from EAST to WEST only requires a minor change from that configured in the section Basic site-to-site connection.

WEST retains its fixed IP, so no modification is required to the remote peer IP address.
EAST has a dynamic local IP, so that must change. The dhcp-interface option specifies the DHCP client interface.

To configure this connection, perform the following steps on EAST in configuration mode.

Table 1. Specify that the local IP is dynamic
Step	Command
Remove the existing local-address configuration so that doesn't conflict with the dhcp-interface configuration that will be set.	`vyatta@EAST# delete security vpn ipsec site-to-site peer 192.0.2.1 local-address [edit]`
Specify the DHCP client interface to use for the connection.	`vyatta@EAST# set security vpn ipsec site-to-site peer 192.0.2.1 dhcp-interface dp0p1p1 [edit]`
Commit the configuration.	`vyatta@EAST# commit`
View the configuration for the site-to-site connection.	`vyatta@EAST# show security vpn ipsec site-to-site peer 192.0.2.1 authentication mode pre-shared-secret pre-shared-secret test_key_1 } default-esp-group ESP-1E dhcp-interface dp0p1p1 ike-group IKE-1E tunnel 1 { local { prefix 192.168.60.0/24 } remote { prefix 192.168.40.0/24 } }`
View data plane interface dp0p1p1 address configuration. It is set to dhcp which configures it as a DHCP client. This is the setting required by dhcp-interface.	`vyatta@EAST# show interfaces dataplane dp0p1p1 address dhcp`

Last updated: December 22, 2021

Helpful Links

Key Resources

Get Started An introduction to the Ciena Vyatta NOS

The Vyatta NOS Overview Get to know more about how Vyatta NOS is the best solution

Vyatta NOS Architecture Overview An overview of the Vyatta NOS system architecture

Troubleshooting Guide Identify common issues with your configuration and network setup

Copyright © 2023 Ciena Corporation. All rights reserved