Vyatta documentation

Learn how to install, configure, and operate the Vyatta Network Operating System (Vyatta NOS) and Orchestrator, which help drive our virtual networking and physical platforms portfolio.

Supported platforms

Supported platforms On this page:

vRouter

Configuration (vRouter)

Security and VPN

IPsec Site-to-Site VPN

IPsec VPN Overview

IPsec modes

Main mode

VNF

UfiSpace S9500-30XS

Physical uCPEs

Main mode

Under ordinary conditions, establishing the ISAKMP SA requires several packets to be sent and received:

The first two messages determine communications policy.
The next two messages exchange Diffie-Hellman public data.
The last two messages authenticate the Diffie-Hellman exchange.

This is the normal method of establishing a successful Phase 1 connection, and it is called main mode. This method provides the most security and privacy, because authentication information is not exchanged until a full Diffie-Hellman exchange has been negotiated and encryption has been enabled. The vRouter supports main mode.

Last updated: December 22, 2021

Helpful Links

Feedback

Key Resources

Get Started An introduction to the Ciena Vyatta NOS

The Vyatta NOS Overview Get to know more about how Vyatta NOS is the best solution

Vyatta NOS Architecture Overview An overview of the Vyatta NOS system architecture

Troubleshooting Guide Identify common issues with your configuration and network setup