Policy > Networking > Network Services > VPN > IPSEC > IPSEC Profiles

Create or fully replace a custom IPSec tunnel Profile

Create or fully replace custom IPSec tunnel profile. IPSec tunnel profile is a reusable profile that captures phase two negotiation parameters and tunnel properties. System will be provisioned with system owned editable default IPSec tunnel profile. Any change in profile affects all sessions consuming this profile. Revision is optional for creation and required for update.

Request:

Method:
PUT
URI Path(s):
/policy/api/v1/infra/ipsec-vpn-tunnel-profiles/{tunnel-profile-id}
Request Headers:
n/a
Query Parameters:
n/a
Request Body:
IPSecVpnTunnelProfile+

Example Request:

PUT https://<policy-mgr>/policy/api/v1/infra/ipsec-vpn-tunnel-profiles/aws-tunnel-profile { "resource_type" : "IPSecVpnTunnelProfile", "display_name" : "aws-tunnel-profile", "enable_perfect_forward_secrecy" : true, "encryption_algorithms" : [ "AES_128" ], "digest_algorithms" : [ "SHA2_256" ], "sa_life_time" : 3600, "dh_groups" : [ "GROUP14" ], "df_policy" : "COPY" "_revision" : 2 }

Successful Response:

Response Code:
200 OK
Response Headers:
Content-type: application/json
Response Body:
IPSecVpnTunnelProfile+

Example Response:

{ "resource_type" : "IPSecVpnTunnelProfile", "display_name" : "aws-tunnel-profile", "path": "/infra/ipsec-vpn-ike-profiles/aws-tunnel-profile", "enable_perfect_forward_secrecy" : true, "encryption_algorithms" : [ "AES_128" ], "digest_algorithms" : [ "SHA2_256" ], "sa_life_time" : 3600, "dh_groups" : [ "GROUP14" ], "df_policy" : "COPY", "_create_time" : 1517289492627, "_last_modified_user" : "system", "_last_modified_time" : 1517289492627, "_system_owned" : false, "_create_user" : "system", "_protection" : "NOT_PROTECTED", "_revision" : 3 }

Required Permissions:

crud

Feature:

policy_vpn

Additional Errors: