Use the vEOS Router to establish and maintain IPsec tunnels between peer vEOS Router instances in different topologies of varying complexity.

The diagram below represents a basic IPsec tunnel configuration in which vEOS Router instances are using an IPsec tunnel.

Figure 1. vEOS Router Instance Using a Basic IPsec Tunnel

The vEOS Router establishes and maintains IPsec tunnels for secure or encrypted communications between vEOS Router instances and third party devices peer router instances.

The basic process for establishing secure communications using IPsec involves the following tasks:
  • Creating IKE Policy for establishing IKE with the peer.
  • Specifying the encryption, integrity protocols for the Security Association (SA) Policy.
  • Apply IKE and SA policies to a given profile.
  • Apply the profile to a tunnel interface.