White papers

Getting started Overview Architecture Supported platforms Release notes White papers

Getting started Overview Architecture Supported platforms Release notes White papers

Vyatta documentation

Learn how to install, configure, and operate the Vyatta Network Operating System (Vyatta NOS) and Orchestrator, which help drive our virtual networking and physical platforms portfolio.

White papers

White papers On this page:

Migrating OpenVPN to IPsec VPN (IKEv2)

IPsec use case: Remote access VPN (RA VPN)

Prerequisites for the Vyatta NOS RA VPN solution

Prerequisites for the Vyatta NOS RA VPN solution

A brief overview of the technical specification of the Vyatta NOS RA VPN solution and some other solution components that you need to make the overall use case work.

Technical data sheet for RA VPN

Total maximum supported tunnels (= IPsec SAs): 1000
IKEv2 authentication methods: X.509, with OCSP/CRL support
Policy-based VPN
ESP with Tunnel Mode
Native NAT support: UDP encapsulation of ESP traffic
VFP support: Apply firewall/QoS/NAT on the overlay network

Solution requirements

Public key infrastructure, including OCSP responder or CRL hosted on a HTTP server (recommended)
Root certificate(s) of the certificate authority that issued the VPN client certificates
Root certificate(s) of the certificate authority that issued the end-entity certificate of the server
End-entity certificate issued by the certificate authority for the IPsec RA VPN server
IKEv2
Dead-peer-detection (DPD)

Last updated: June 28, 2022

Related Articles:

IPsec use case: Remote access VPN (RA VPN)

Helpful Links

Key Resources

Get Started An introduction to the Ciena Vyatta NOS

The Vyatta NOS Overview Get to know more about how Vyatta NOS is the best solution

Vyatta NOS Architecture Overview An overview of the Vyatta NOS system architecture

Troubleshooting Guide Identify common issues with your configuration and network setup

Copyright © 2023 Ciena Corporation. All rights reserved