Vyatta documentation

Learn how to install, configure, and operate the Vyatta Network Operating System (Vyatta NOS) and Orchestrator, which help drive our virtual networking and physical platforms portfolio.

Configure the Gnome Desktop client for IPsec RA VPN

  1. Navigate to the upper-right of the task bar and select the icon for Network Manager. Then click on the Settings cog icon.
    Layer 112
    1. Network Manager icon
    2. Settings cog icon
  2. To the right of VPN, click the + icon to start the VPN wizard.
  3. Select the IPsec/IKEv2 (strongswan) menu entry.
  4. Add a VPN connection name as well as an address for the connection.

    Because the Subject Alternative Name (SAN) in this example only contains a DNS name, the VPN profile must use a DNS name, not an address.

    You can select the CA certificate, client certificate and client key in this menu.

    Note that we use Request an inner IP address to assign a VIP.

    Finally we enable an additional cipher proposal aes128gcm128-ecp256 for ESP to align with the cipher we specified on the RA VPN server we used for this example.

  5. Enter the password for your key.

    The entry for the VPN toggle will now be blue.

In the taskbar you will now see a lock icon, which indicates that the IPsec RA VPN is established; click this and you will see a panel which includes the option Turn Off, which you can use to disconnect the VPN.