CreateIPsecConnection

Creates an IPsec connection. For example,
CreateIPsecConnection name=ipsec1 vipUuid=c023e287a3fa4503b259f893aaf2d33d \
l3NetworkUuid=9082f45fce9c46f19b2ab5ff117511d6 peerAddress=10.128.19.5 peerCidrs=172.20.222.1/24 \
authKey=123456

Parameters

Name Description Optional Valid Value Starting Version
name The IPsec connection name. 0.6
description The detailed description of the IPsec connection. Yes 0.6
l3NetworkUuid The L3 network UUID. 0.6
peerAddress The peer IP address. 0.6
authMode The authentication mode. Yes
  • psk
  • certs
 0.6
authKey The authentication key. 0.6
vipUuid The VIP UUID. 0.6
peerCidrs The peer CIDR. 0.6
ikeAuthAlgorithm The IKE authentication algorithm. Yes
  • md5
  • sha1
  • sha256
  • sha384
  • sha512
 0.6
ikeEncryptionAlgorithm The IKE encryption algorithm. Yes
  • 3des
  • aes-128
  • aes-192
  • aes-256
 0.6
ikeDhGroup The IKE perfect forward secrecy. Yes 0.6
policyAuthAlgorithm The ESP authentication algorithm. Yes
  • md5
  • sha1
  • sha256
  • sha384
  • sha512
 0.6
policyEncryptionAlgorithm The ESP encryption algorithm. Yes
  • 3des
  • aes-128
  • aes-192
  • aes-256
 0.6
pfs The perfect forward secrecy. Yes
  • dh-group2
  • dh-group5
  • dh-group14
  • dh-group15
  • dh-group16
  • dh-group17
  • dh-group18
  • dh-group19
  • dh-group20
  • dh-group21
  • dh-group22
  • dh-group23
  • dh-group24
  • dh-group25
  • dh-group26
 0.6
policyMode The policy mode. Yes
  • tunnel
  • transport
 0.6
transformProtocol The transform protocol. Yes
  • esp
  • ahah-esp
 0.6
resourceUuid The resource UUID. Yes 0.6
userTags The user tags. For more information, see CreateUserTag. Yes 0.6
systemTags The system tags. For more information, see CreateSystemTag. Yes 0.6
timeout Yes