host-vpn
Syntax
host-vpn {
connections {
connection-name {
children {
child-name {
esp-proposal esp-proposal;
local-traffic-selector {
(ipv4-prefix ipv4-prefix | ipv6-prefix ipv6-prefix);
port port;
protocol protocol;
}
mode (transport | tunnel);
rekey-time rekey-time;
remote-traffic-selector {
(ipv4-prefix ipv4-prefix | ipv6-prefix ipv6-prefix);
port port;
protocol protocol;
}
}
}
dpd-delay dpd-delay;
ike-proposal ike-proposal;
local {
id local-id;
}
local-address {
(ipv4 ipv4-address | ipv6 ipv6-address);
}
rekey-time rekey-time;
remote {
id remote-id;
}
}
remote {
id remote-id;
}
remote-address {
(ipv4 ipv4-address | ipv6 ipv6-address);
}
}
ike-log {
filename filename;
level level;
}
ike-secrets {
ike-secret {
id id;
secret (ascii-text ascii-text | hexadecimal hexadecimal);
}
}
}
Hierarchy Level
[edit security]
Description
Configure a host-to-host VPN type of IPsec connection.
The remaining statements are explained separately.
Required Privilege Level
security—To view this statement in the configuration.
security-control—To add this statement to the configuration.
Release Information
Statement introduced in Junos OS Release 18.3R1 Evolved.