vpn peer local-ip

Controls the assignment of a local IP address to the VPN for network address translation (NAT).

Syntax

[no] vpn peer <id> local-ip <ipv4>|<ipv6>|v4-none|v6-none

Syntax Description

Keyword
Description

no

(Optional) Removes a previously specified local IP address and restores the default behavior.

id

The VPN identifier. Must be a number in the range 0-1022 or the string "auto".

ipv4

An IPv4 address (e.g., 10.200.1.1) to be used for IPv4 NAT.

ipv6

An IPv6 address (e.g., fdfb:cb92:b476:f3ac::1) to be used for IPv6 NAT.

v4-none

Ignore any remotely-assigned IPv4 address and disable IPv4 NAT.

v6-none

Ignore any remotely-assigned IPv6 address and disable IPv6 NAT.

Defaults

If this command is not specified, the default is to use the IP address assigned by the remote peer. If the remote peer has not assigned an IP address, NAT will not be used.

Usage Guidelines

This command controls whether network address translation (NAT) will be used for outbound traffic on the VPN. If no local address is assigned to the VPN, NAT will not occur and outbound traffic will use local LAN addresses.

If a VPN exists with the specified identifier, the existing VPN will be modified; otherwise, a new VPN with the specified identifier will be created. If "auto" is specified for the identifier, a new VPN will be created using the next available identifier.

Examples

vpn peer 6 local-ip
vpn peer remote-ip

Last updated