REST API reference
Update an IPsec configuration
Suggest changes
-
PDF of this doc site
Collection of separate PDF docs
Creating your file...
PATCH /security/ipsec
Introduced In: 9.8
Updates IPsec configuration via REST APIs.
Optional properties
-
'enabled' - Enable IPsec.
-
'replay_window' - Replay window size in packets.
-
'offload_enabled' - Enable IPsec hardware offload.
Related ONTAP commands
-
'security ipsec config modify'
Request Body
| Name | Type | Description |
|---|---|---|
_links |
||
enabled |
boolean |
Indicates whether or not IPsec is enabled. |
offload_enabled |
boolean |
Indicates whether or not IPsec hardware offload is enabled. |
replay_window |
integer |
Replay window size in packets, where 0 indicates that the relay window is disabled. |
Example request
{
"_links": {
"self": {
"href": "/api/resourcelink"
}
},
"replay_window": 0
}Response
Status: 200, OkError
Status: DefaultONTAP Error Response Codes
| Error Code | Description |
|---|---|
66256898 |
Internal error. Failed to enable IPsec. |
66256899 |
Internal error. Failed to disable IPsec. |
66256913 |
Offload setting changes are not allowed when IPsec is enabled. |
66256915 |
Anti-replay protection and IPsec offload cannot be operational at the same time. |
66257007 |
Failed to update replay window size. |
66257199 |
IPsec is not supported in the current cluster version. |
66257496 |
IPsec must be enabled to support BGP peer groups with MD5. Disable MD5 first in the BGP peer group. |
Also see the table of common errors in the Response body overview section of this documentation.
| Name | Type | Description |
|---|---|---|
error |
Example error
{
"error": {
"arguments": [
{
"code": "string",
"message": "string"
}
],
"code": "4",
"message": "entry doesn't exist",
"target": "uuid"
}
}Definitions
See Definitions
href
| Name | Type | Description |
|---|---|---|
href |
string |
self_link
| Name | Type | Description |
|---|---|---|
self |
ipsec
Manages IPsec configuration via REST APIs.
| Name | Type | Description |
|---|---|---|
_links |
||
enabled |
boolean |
Indicates whether or not IPsec is enabled. |
offload_enabled |
boolean |
Indicates whether or not IPsec hardware offload is enabled. |
replay_window |
integer |
Replay window size in packets, where 0 indicates that the relay window is disabled. |
error_arguments
| Name | Type | Description |
|---|---|---|
code |
string |
Argument code |
message |
string |
Message argument |
returned_error
| Name | Type | Description |
|---|---|---|
arguments |
array[error_arguments] |
Message arguments |
code |
string |
Error code |
message |
string |
Error message |
target |
string |
The target parameter that caused the error. |
