secure-tunnel
secure-tunnel
This reference includes examples for the syntax information for the
secure-tunnel
command.To prevent unwanted cyberattack on the
insecure inter-platform communication,
VMware Aria Operations for Networks
provides option to secure the inter-platform communication
using IPsec based VPN.When you enable the secure communication,
each platform nodes gets an internal IP addressed assigned from a
/24
subnet. By default, VMware Aria Operations for Networks
uses 192.168.10.0/24
subnet. You
can change the default value of subnet when enabling the secure communication. The
subnet must not conflict with any other IP address used for configuring VMware Aria Operations for Networks
. For example, you must not
use IPs from /24
subnet as an SNMP or an SMTP host configured in
VMware Aria Operations for Networks
. After you enable the secure
communication, you cannot change the subnet. To change the subnet again, you
must disable the secure communication and enable it again.
Enabling the secure communication
operation can take 15 minutes or more depending size of the cluster. To avoid
session time out, you must use the VM console through VMware vCenter UI to run
this command.
Command | Description | Use | Examples |
|---|---|---|---|
secure-tunnel
| Enable, disable, check status, assign subnet of
secure tunnel | secure-tunnel {-e,-d,-s, -sub
SUBNET}
| secure-tunnel
-e -sub 198.168.0.0/24 secure-tunnel
-d secure-tunnel
-s |
Syntax
Flag | Description |
|---|---|
-e | -d |-s
| Enable secure tunnel, disable secure tunnel, or check status of
the secure tunnel |
-sub <SUBNET>
| /24 subnet address to use as internal IPs of platforms |