< Back
Set-NsxIPsec
Post
NAME Set-NsxIPsec
SYNOPSIS
Configures an NSX (VPN) IPsec.
SYNTAX
Set-NsxIPsec [-IPsec] <XmlElement> [-Enabled] [-EnableLogging] [-LogLevel <String>] [-psk <String>]
[-serviceCertificate <String>] [-Connection <PSObject>] [<CommonParameters>]
DESCRIPTION
An NSX Edge Service Gateway provides all NSX Edge services such as firewall,
NAT, DHCP, VPN IPsec, load balancing, and high availability.
The NSX supports site-to-site IPSec VPN between an NSX Edge instance and
remote sites. Certificate authentication, preshared key mode, IP unicast
traffic, and no dynamic routing protocol are supported between the NSX Edge
instance and remote VPN routers.
This cmdlet sets the basic IPsec configuration of an NSX ESG.
PARAMETERS
-IPsec <XmlElement>
Required? true
Position? 2
Default value
Accept pipeline input? true (ByValue)
Accept wildcard characters? false
-Enabled [<SwitchParameter>]
Required? false
Position? named
Default value False
Accept pipeline input? false
Accept wildcard characters? false
-EnableLogging [<SwitchParameter>]
Required? false
Position? named
Default value False
Accept pipeline input? false
Accept wildcard characters? false
-LogLevel <String>
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-psk <String>
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-serviceCertificate <String>
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-Connection <PSObject>
PowerNSX Connection object
Required? false
Position? named
Default value $defaultNSXConnection
Accept pipeline input? false
Accept wildcard characters? false
<CommonParameters>
This cmdlet supports the common parameters: Verbose, Debug,
ErrorAction, ErrorVariable, WarningAction, WarningVariable,
OutBuffer, PipelineVariable, and OutVariable. For more information, see
about_CommonParameters (https:/go.microsoft.com/fwlink/?LinkID=113216).
INPUTS
OUTPUTS
-------------------------- EXAMPLE 1 --------------------------
PS C:\\>Get-NsxEdge Edge01 | Get-NsxIPsec | Set-NsxIPsec -Enabled
Enabled the IPsec feature on Edge (Need to add IPsec Site before).
-------------------------- EXAMPLE 2 --------------------------
PS C:\\>Get-NsxEdge Edge01 | Get-NsxIPsec | Set-NsxIPsec -Enabled:$false
Disabled the IPsec feature on Edge.
-------------------------- EXAMPLE 3 --------------------------
PS C:\\>Get-NsxEdge Edge01 | Get-NsxIPsec| Set-NsxIPsec -EnableLogging
Enabled IPsec collects traffic logs.
-------------------------- EXAMPLE 4 --------------------------
PS C:\\>Get-NsxEdge Edge01 | Get-NsxIPsec | Set-NsxIPsec -LogLevel debug
Choose the log level (emergency, alert, critical, error, warning, notice, info, debug)
of IPsec traffic logs.
-------------------------- EXAMPLE 5 --------------------------
PS C:\\>Get-NsxEdge Edge01 | Get-NsxIPsec | Set-NsxIPsec -psk VMWare1!
Specify a "global" PSK for IPsec tunnel
-------------------------- EXAMPLE 6 --------------------------
PS C:\\>Get-NsxEdge Edge01 | Get-NsxIPsec | Set-NsxIPsec -serviceCertificate certificate-1
Choose a (service)Certificate for IPsec tunnel
RELATED LINKS
SYNOPSIS
Configures an NSX (VPN) IPsec.
SYNTAX
Set-NsxIPsec [-IPsec] <XmlElement> [-Enabled] [-EnableLogging] [-LogLevel <String>] [-psk <String>]
[-serviceCertificate <String>] [-Connection <PSObject>] [<CommonParameters>]
DESCRIPTION
An NSX Edge Service Gateway provides all NSX Edge services such as firewall,
NAT, DHCP, VPN IPsec, load balancing, and high availability.
The NSX supports site-to-site IPSec VPN between an NSX Edge instance and
remote sites. Certificate authentication, preshared key mode, IP unicast
traffic, and no dynamic routing protocol are supported between the NSX Edge
instance and remote VPN routers.
This cmdlet sets the basic IPsec configuration of an NSX ESG.
PARAMETERS
-IPsec <XmlElement>
Required? true
Position? 2
Default value
Accept pipeline input? true (ByValue)
Accept wildcard characters? false
-Enabled [<SwitchParameter>]
Required? false
Position? named
Default value False
Accept pipeline input? false
Accept wildcard characters? false
-EnableLogging [<SwitchParameter>]
Required? false
Position? named
Default value False
Accept pipeline input? false
Accept wildcard characters? false
-LogLevel <String>
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-psk <String>
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-serviceCertificate <String>
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-Connection <PSObject>
PowerNSX Connection object
Required? false
Position? named
Default value $defaultNSXConnection
Accept pipeline input? false
Accept wildcard characters? false
<CommonParameters>
This cmdlet supports the common parameters: Verbose, Debug,
ErrorAction, ErrorVariable, WarningAction, WarningVariable,
OutBuffer, PipelineVariable, and OutVariable. For more information, see
about_CommonParameters (https:/go.microsoft.com/fwlink/?LinkID=113216).
INPUTS
OUTPUTS
-------------------------- EXAMPLE 1 --------------------------
PS C:\\>Get-NsxEdge Edge01 | Get-NsxIPsec | Set-NsxIPsec -Enabled
Enabled the IPsec feature on Edge (Need to add IPsec Site before).
-------------------------- EXAMPLE 2 --------------------------
PS C:\\>Get-NsxEdge Edge01 | Get-NsxIPsec | Set-NsxIPsec -Enabled:$false
Disabled the IPsec feature on Edge.
-------------------------- EXAMPLE 3 --------------------------
PS C:\\>Get-NsxEdge Edge01 | Get-NsxIPsec| Set-NsxIPsec -EnableLogging
Enabled IPsec collects traffic logs.
-------------------------- EXAMPLE 4 --------------------------
PS C:\\>Get-NsxEdge Edge01 | Get-NsxIPsec | Set-NsxIPsec -LogLevel debug
Choose the log level (emergency, alert, critical, error, warning, notice, info, debug)
of IPsec traffic logs.
-------------------------- EXAMPLE 5 --------------------------
PS C:\\>Get-NsxEdge Edge01 | Get-NsxIPsec | Set-NsxIPsec -psk VMWare1!
Specify a "global" PSK for IPsec tunnel
-------------------------- EXAMPLE 6 --------------------------
PS C:\\>Get-NsxEdge Edge01 | Get-NsxIPsec | Set-NsxIPsec -serviceCertificate certificate-1
Choose a (service)Certificate for IPsec tunnel
RELATED LINKS