White papers

Getting started Overview Architecture Supported platforms Release notes White papers

Getting started Overview Architecture Supported platforms Release notes White papers

Vyatta documentation

Learn how to install, configure, and operate the Vyatta Network Operating System (Vyatta NOS) and Orchestrator, which help drive our virtual networking and physical platforms portfolio.

White papers

White papers On this page:

Migrating OpenVPN to IPsec VPN (IKEv2)

IPsec use case: Remote access VPN (RA VPN)

Definitions of terms we use in IPsec RA VPN topics

Definitions of terms we use in IPsec RA VPN topics

IKE authentication; IKE exchange: Refers to the Phase1 IKEv2 negotiation as seen in the output of the show vpn ike sa command or IKE_SA in the logs.
Child SA: Refers to the Phase2 IKEv2 negotiation as seen in the output of the show vpn ipsec sa command or CHILD_SA in the logs.
1 tunnel: Refers to one 'IKE' security association pair (2) of 'IPsec' (SAs) with two or more security policies (SPs, at least one forward, at least one reverse). So, an established tunnel would refer to a client with two SAs and two or more SPs, and a server with two SAs and two or more SPs

Last updated: June 28, 2022

Related Articles:

IPsec use case: Remote access VPN (RA VPN)

Helpful Links

Key Resources

Get Started An introduction to the Ciena Vyatta NOS

The Vyatta NOS Overview Get to know more about how Vyatta NOS is the best solution

Vyatta NOS Architecture Overview An overview of the Vyatta NOS system architecture

Troubleshooting Guide Identify common issues with your configuration and network setup

Copyright © 2023 Ciena Corporation. All rights reserved