EdgeIpSecVpnTunnelConnectionProperties
This specifies the given security profile/connection properties of a given IP Sec VPN Tunnel, such as Dead Probe Interval and IKE settings. If a security type is set to 'CUSTOM', then ike, tunnel, and/or dpd configurations can be specified. Otherwise, those fields are read only and are set to the values based on the specific security type.
{
"securityType": "string",
"ikeConfiguration": {
"ikeVersion": {},
"dhGroups": [
{}
],
"digestAlgorithms": [
{}
],
"encryptionAlgorithms": [
{}
],
"saLifeTime": 0
},
"tunnelConfiguration": {
"perfectForwardSecrecyEnabled": false,
"dfPolicy": {},
"dhGroups": [
{}
],
"digestAlgorithms": [
{}
],
"encryptionAlgorithms": [
{}
],
"saLifeTime": 0
},
"dpdConfiguration": {
"probeInterval": 0
}
}This is the security type used for the IPSec Tunnel. If nothing is specified, this will be set to 'DEFAULT' in which the default settings in NSX will be used. If 'CUSTOM' is specified, then ike, tunnel, and dpd configurations can be set.
This configuration captures the IKE and phase one negotiation parameters. This configuration can be set for peering properly with remote peers.
This configuration captures phase two negotiation parameters and tunnel properties.
Specifies the Dead Peer Detection Profile. This configurations determines the number of seconds to wait in time between probes to detect if an IPSec peer is alive or not. The default value for the DPD probe interval is 60 seconds.