InlineIPSecVPNPeerEndpoint1

JSON Example

{
    "authentication_mode": "string",
    "connection_initiation_mode": "string",
    "dpd_profile_id": "string",
    "ike_profile_id": "string",
    "ipsec_tunnel_profile_id": "string",
    "peer_address": "string",
    "peer_id": "string",
    "psk": "string"
}

string

authentication_mode

Optional

Constraints: default: PSK

Authentication mode used for the peer authentication. For PSK (Pre Shared Key) authentication mode, 'psk' property is mandatory and for the CERTIFICATE authentication mode, 'peer_id' property is mandatory.

Possible values are : PSK, CERTIFICATE,

string

connection_initiation_mode

Optional

Constraints: default: INITIATOR

Connection initiation mode used by local endpoint to establish ike connection with peer endpoint. INITIATOR - In this mode local endpoint initiates tunnel setup and will also respond to incoming tunnel setup requests from peer gateway. RESPOND_ONLY - In this mode, local endpoint shall only respond to incoming tunnel setup requests. It shall not initiate the tunnel setup. ON_DEMAND - In this mode local endpoint will initiate tunnel creation once first packet matching the policy rule is received and will also respond to incoming initiation request.

Possible values are : INITIATOR, RESPOND_ONLY, ON_DEMAND,

string

dpd_profile_id

Optional

Dead peer detection (DPD) profile id. Default will be set according to system default policy.

string

ike_profile_id

Optional

IKE profile id to be used. Default will be set according to system default policy.

string

ipsec_tunnel_profile_id

Optional

Tunnel profile id to be used. By default it will point to system default profile.

string

peer_address

Required

IPv4 or IPv6 address of peer endpoint on remote site.

string

peer_id

Required

Peer identifier.

string

psk

Optional

IPSec Pre-shared key. Maximum length of this field is 128 characters.

Used By

IPSecVPNPeerEndpoint