osc network vpn ipsec-site-connection create

Creates a site-to-site IPsec connection for a service.

Normal response codes: 201

Error response codes: 400, 401

Usage: osc network vpn ipsec-site-connection create [OPTIONS]

Options:

  • --admin-state-up <ADMIN_STATE_UP> — The administrative state of the resource, which is up (true) or down (false)

    Possible values: true, false

  • --description <DESCRIPTION> — A human-readable description for the resource. Default is an empty string

  • --dpd <DPD> — A dictionary with dead peer detection (DPD) protocol controls

  • --ikepolicy-id <IKEPOLICY_ID> — The ID of the IKE policy

  • --initiator <INITIATOR> — Indicates whether this VPN can only respond to connections or both respond to and initiate connections. A valid value is response- only or bi-directional. Default is bi-directional

    Possible values: bi-directional, response-only

  • --ipsecpolicy-id <IPSECPOLICY_ID> — The ID of the IPsec policy

  • --local-ep-group-id <LOCAL_EP_GROUP_ID> — The ID for the endpoint group that contains private subnets for the local side of the connection. Yo must specify this parameter with the peer_ep_group_id parameter unless in backward- compatible mode where peer_cidrs is provided with a subnet_id for the VPN service

  • --no-local-ep-group-id — Set explicit NULL for the local_ep_group_id

  • --local-id <LOCAL_ID> — An ID to be used instead of the external IP address for a virtual router used in traffic between instances on different networks in east-west traffic. Most often, local ID would be domain name, email address, etc. If this is not configured then the external IP address will be used as the ID

  • --mtu <MTU> — The maximum transmission unit (MTU) value to address fragmentation. Minimum value is 68 for IPv4, and 1280 for IPv6

  • --name <NAME> — Human-readable name of the resource. Default is an empty string

  • --peer-address <PEER_ADDRESS> — The peer gateway public IPv4 or IPv6 address or FQDN

  • --peer-cidrs <PEER_CIDRS> — (Deprecated) Unique list of valid peer private CIDRs in the form < net_address > / < prefix > .

    Parameter is an array, may be provided multiple times.

  • --peer-ep-group-id <PEER_EP_GROUP_ID> — The ID for the endpoint group that contains private CIDRs in the form < net_address > / < prefix > for the peer side of the connection. You must specify this parameter with the local_ep_group_id parameter unless in backward-compatible mode where peer_cidrs is provided with a subnet_id for the VPN service

  • --no-peer-ep-group-id — Set explicit NULL for the peer_ep_group_id

  • --peer-id <PEER_ID> — The peer router identity for authentication. A valid value is an IPv4 address, IPv6 address, e-mail address, key ID, or FQDN. Typically, this value matches the peer_address value

  • --psk <PSK> — The pre-shared key. A valid value is any string

  • --tenant-id <TENANT_ID> — The ID of the project

  • --vpnservice-id <VPNSERVICE_ID> — The ID of the VPN service