NSX-T Data Center REST API
Create custom IPSec tunnel profile (Deprecated)
Create custom IPSec tunnel profile. IPSec tunnel profile is a reusable profile that captures phase two negotiation parameters and tunnel properties. System will be provisioned with system owned non editable default IPSec tunnel profile. Any change in profile affects all sessions consuming this profile. Deprecated:Please use below Policy API.
PATCH /policy/api/v1/infra/ipsec-vpn-tunnel-profiles/<tunnel-profile-id>
Request:
Method:
POST
URI Path(s):
/api/v1/vpn/ipsec/tunnel-profiles
Request Headers:
n/a
Query Parameters:
n/a
Request Body:
IPSecVPNTunnelProfile+
Example Request:
POST https://<nsx-mgr>/api/v1/vpn/ipsec/tunnel-profiles { "resource_type" : "IPSecVPNTunnelProfile", "display_name" : "nsx-default-tunnel-profile", "enable_perfect_forward_secrecy" : true, "encryption_algorithms" : [ "AES_128" ], "digest_algorithms" : [ "SHA2_256" ], "sa_life_time" : 3600, "dh_groups" : [ "GROUP14" ], "encapsulation_mode" : "TUNNEL_MODE", "transform_protocol" : "ESP", "df_policy" : "COPY" }Successful Response:
Response Code:
201 Created
Response Headers:
Content-type: application/json
Response Body:
IPSecVPNTunnelProfile+