Configure WEST
Creating a site-to-site connection to a peer with a dynamic IP address defines configuration changes for a new site-to-site connection to EAST. The main change is the IP address specification of the peer. This is set to 0.0.0.0 to represent “any” IP address. Because the IP address of the peer is unknown, WEST will not initiate connections to the peer. It will only receive connections from the peer.
To configure this connection, perform the following steps on WEST in configuration mode.
Step | Command |
---|---|
Delete the previous configuration. |
|
Create the node for EAST and set the authentication mode. |
|
Navigate to the node for the peer for easier editing. |
|
Provide the string that will be used to generate encryption keys. |
|
Specify the default ESP group for all tunnels. |
|
Specify the IKE group. |
|
Identify the IP address on this vRouter to be used for this connection. |
|
Create a tunnel configuration, and provide the local subnet for this tunnel. |
|
Provide the remote subnet for the tunnel. |
|
Return to the top of the configuration tree. |
|
Commit the configuration. |
|
View the configuration for the site-to-site connection. |
|
View data plane interface dp0p1p2 address configuration. local-address is set to this address. |
|