vpn tunnel-profile

Creates a VPN tunnel profile.

Configures an FQDN for the secondary VPN or IPsec endpoint.

Enables fast failover feature for VPN connections.

Configures a time period in seconds after which the Instant APs can switch to primary VPN server.

Defines the number of lost packets for VPN connection test or monitoring by theInstant AP.

Default:2

Configures a frequency interval in seconds at which the test packets are sent.

Default:5

Enables preemption to allow the VPN tunnel to switch to the primary VPN server when it becomes available after a failover.

Configures a schedule during which theInstant APcan switch from the backup VPN tunnel to the primary VPN tunnel. Associate a time range profile to this parameter for the schedule to take effect.

If absolute time is not configured, the preemption will occur based on thevpn hold-timesettings. When bothvpn hold-timeandpreemption absolute-timeare configured, the preemption will occur at thepreemption absolute-timeschedule.

Configures a FQDN for the main VPN or IPsec endpoint.

Configures an IP address or hostname used to probe connections when VIG is enabled.

This command enables automatic configuration of the GRE tunnel between theInstant APand thecontroller.

This command configures a per ap GRE tunnel.

Configures an IPsec tunnel to use a customized certificate.