PSK-AES256-GCM-SHA384 RSA-PSK-CHACHA20-POLY1305 DHE-PSK-CHACHA20-POLY1305 ECDHE-PSK-CHACHA20-POLY1305 DHE-PSK-AES256-CCM8 DHE-PSK-AES256-CCM RSA-PSK-ARIA256-GCM-SHA384 DHE-PSK-ARIA256-GCM-SHA384 AES256-GCM-SHA384 AES256-...
PSK-AES256-GCM-SHA384 RSA-PSK-CHACHA20-POLY1305 DHE-PSK-CHACHA20-POLY1305 ECDHE-PSK-CHACHA20-POLY1305 DHE-PSK-AES256-CCM8 DHE-PSK-AES256-CCM RSA-PSK-ARIA256-GCM-SHA384 DHE-PSK-ARIA256-GCM-SHA384 AES256-GCM-SHA384 AES256-...
WPA2-PSK:开启 WPA2-PSK 认证。WPA2-PSK IsEnable string 无线功能是否开启:True:是。False:否。True Channel string 信道。0 EncryptAlgorithm string 加密算法:AUTO:自动加密。TKIP:临时密钥完整性协议。AES:WiFi 授权的高效加密...
语法 {"Type":"ALIYUN:VPC:IpsecServer","Properties":{"LocalSubnet":String,"EffectImmediately":Boolean,"ClientIpPool":String,"VpnGatewayId":String,"IpsecConfig":Map,"Psk":String,"IkeConfig":Map,"IpsecServerName":String,...
认证类型 智能接入网关支持以下两种认证类型,推荐使用WPA2-PSK,安全性更高:WPA-PSK。WPA2-PSK。加密算法 智能接入网关支持以下三种加密算法:自动:自动加密算法。TKIP:为临时密钥完整性协议。AES:为Wifi授权的高效加密标准。密码 ...
1.先订阅应答 Topic,用户接收设备应答数据*/./mosquitto_sub-psk-identity linkedge-psk 12345678-p 8883-t thing/response/testApp/-v&*2.发送设备方法调用 get 请求*/./mosquitto_pub-psk-identity linkedge-psk 12345678-p 8883-t ...
如果您未使用阿里云提供的设备端SDK,则需要 下载安全通道根证书,使用对称加密自主连接物联网平台,PSK对应的加密方式如下:psk_id:"${authType}"+"|"+"${signMethod}"+"|"+"${productKey}"+"&"+"${deviceName}"+"timestamp"psk:...
gateway_id=alicloud_vpn_gateway.default.id psk_enabled=true } Argument Reference The following arguments are supported:client_ip_pool-(Required)The client CIDR block.It refers to the CIDR block that is allocated to the ...
WPA2-PSK EncryptAlgorithm string 否 加密算法。取值:AUTO:自动加密。TKIP:临时密钥完整性协议。AES:Wi-Fi 授权的高效加密标准。AUTO Password string 否 Wi-Fi 密码。密码长度为 8~32 位字符,可包含数字、大小写字母。12345678 返回...
{"RemoteId":"116.62.XX.XX","IkeLifetime":86400,"IkeEncAlg":"aes","LocalId":"139.196.XX.XX","IkeMode":"main","IkeVersion":"ikev1","IkePfs":"group2","Psk":"pgw6dy7d1i8i*","IkeAuthAlg":"sha1"},"IpsecConfig":{"IpsecAuthAlg":...
{"RemoteId":"116.62.XX.XX","IkeLifetime":86400,"IkeEncAlg":"aes","LocalId":"139.196.XX.XX","IkeMode":"main","IkeVersion":"ikev1","IkePfs":"group2","Psk":"pgw6dy7d1i8i*","IkeAuthAlg":"sha1"},"IpsecConfig":{"IpsecAuthAlg":...
ipsec.conf-strongSwan IPsec configuration file#basic configuration config setup uniqueids=never conn%default authby=psk#使用预共享密钥认证方式 type=tunnel conn tomyidc keyexchange=ikev1#IPsec连接使用的IKE协议的版本 left=59...
IPsec协议信息 配置 示例值 IKE 认证算法 sha1 加密算法 aes DH分组 group2 IKE版本 ikev1 生命周期 86400 协商模式 main PSK hillstone IPSec 认证算法 sha1 加密算法 aes DH分组 group2 IKE版本 ikev1 生命周期 86400 安全协议 esp 网络...
The pre-shared key.psk_enabled-Whether to enable the pre-shared key authentication method.The value is only true,which indicates that the pre-shared key authentication method is enabled.vpn_gateway_id-The ID of the VPN ...
config-The ike_config mapping supports the following:psk-Used for authentication between the IPsec VPN gateway and the customer gateway.ike_version-The version of the IKE protocol.ike_mode-The negotiation mode of IKE phase...
version="ikev2"ike_mode="main"psk="12345678"ike_remote_id="remoteId2"ike_pfs="group2"ike_auth_alg="sha1"ike_enc_alg="aes"} } Double tunnels Mode Usage variable"name"{ default="tf-example"} variable"spec"{ default="5"} data...
说明 如果设备使用PSK密钥交换则需要确保mbedTLS已经打开PSK密钥交换方法,同时配置PSK最大长度为64,可参考以下步骤配置:进入Component config菜单的mbedTLS子菜单,进入 TLS Key Exchange Methods 配置项。打开 Enable pre-shared-key ...
不支持指定的IPsec Pfs 400 IllegalParam.AuthMethod One authentication method(Psk or IDaaS)should be specified at least.至少有一种认证方法(Psk或者IDaas)应该被指定 400 IllegalParam.LocalSubnet The specified"LocalSubnet"(%s)...
不支持指定的IPsec Pfs 400 IllegalParam.AuthMethod One authentication method(Psk or IDaaS)should be specified at least.至少有一种认证方法(Psk或者IDaas)应该被指定 400 IllegalParam.LocalSubnet The specified"LocalSubnet"(%s)...
协议 配置 示例值 IKE 认证算法 SHA-1 加密算法 AES-128 DH 分组 group2 IKE 版本 IKEv1 生命周期 86400 协商模式 main PSK 123456 IPsec 认证算法 SHA-1 加密算法 AES-128 DH 分组 group2 IKE 版本 IKEv1 生命周期 86400 协商模式 esp ...
使用PSK:coap-psk:/s.coap.cn-shanghai.link.aliyuncs.com:5682 ,其中%s 为ProductKey。wait_time_ms CoAP收发消息的超时时间。p_devinfo 设备信息,包含Product_Key、ProductSecret、DeviceName和 DeviceSecret。返回值说明 数据类型 说明...
IkeConfig语法"IkeConfig":{"RemoteId":String,"Psk":String,"IkeVersion":String,"IkeMode":String,"IkeAuthAlg":String,"IkeEncAlg":String,"IkePfs":String,"IkeLifetime":Integer,"LocalId":String } IkeConfig属性 属性名称 类型 必须...
不支持指定的IPsec Pfs 400 IllegalParam.AuthMethod One authentication method(Psk or IDaaS)should be specified at least.至少有一种认证方法(Psk或者IDaas)应该被指定 400 IllegalParam.LocalSubnet The specified"LocalSubnet"(%s)...
不支持指定的IPsec Pfs 400 IllegalParam.AuthMethod One authentication method(Psk or IDaaS)should be specified at least.至少有一种认证方法(Psk或者IDaas)应该被指定 400 IllegalParam.LocalSubnet The specified"LocalSubnet"(%s)...
gateway.default.id network_type="public"local_subnet="0.0.0.0/0"remote_subnet="0.0.0.0/0"effect_immediately=false ike_config { ike_auth_alg="md5"ike_enc_alg="des"ike_version="ikev2"ike_mode="main"ike_lifetime=86400 psk="tf...
{"Psk":"pgw6dy7d1i8i*","IkeVersion":"ikev1","IkeMode":"main","IkeEncAlg":"aes","IkeAuthAlg":"sha1","IkePfs":"group2","IkeLifetime":86400,"LocalId":"116.64.XX.XX","RemoteId":"139.18.XX.XX"} IpsecConfig string 否 修改单隧道...
{"Psk":"pgw6dy7d1i8i*","IkeVersion":"ikev1","IkeMode":"main","IkeEncAlg":"aes","IkeAuthAlg":"sha1","IkePfs":"group2","IkeLifetime":86400,"LocalId":"116.64.XX.XX","RemoteId":"139.18.XX.XX"} IpsecConfig string 否 修改单隧道...
group2","IkeVersion":"ikev2","LocalId":"47.XX.XX.87","Psk":"123456*","RemoteId":"47.XX.XX.207"},"TunnelIpsecConfig":{"IpsecAuthAlg":"sha1","IpsecEncAlg":"aes","IpsecLifetime":86400,"IpsecPfs":"group2"},"TunnelBgpConfig":{...
group2","IkeVersion":"ikev2","LocalId":"47.XX.XX.87","Psk":"123456*","RemoteId":"47.XX.XX.207"},"TunnelIpsecConfig":{"IpsecAuthAlg":"sha1","IpsecEncAlg":"aes","IpsecLifetime":86400,"IpsecPfs":"group2"},"TunnelBgpConfig":{...
MBEDTLS配置 若用户要使用PSK作为TLS密钥交换方法,则需要 进入 Component config 菜单的 mbedTLS 子菜单,进入 TLS Key Exchange Methods 配置项。打开 Enable pre-shared-key ciphersuites 开关。同时在mbedtls组件的 component.mk 中...
group2 Psk string 预共享密钥。pgw6dy*IkeAuthAlg string IKE 阶段认证算法。sha1 IpsecConfig object 第二阶段协商的配置。IpsecAuthAlg string IPsec 阶段认证算法。sha1 IpsecLifetime long IPsec 阶段生存时间。单位:秒。86400 ...
group2 Psk string 预共享密钥。pgw6dy*IkeAuthAlg string IKE 阶段认证算法。sha1 IpsecConfig object 第二阶段协商的配置。IpsecAuthAlg string IPsec 阶段认证算法。sha1 IpsecLifetime long IPsec 阶段生存时间。单位:秒。86400 ...
116.64.XX.XX","IkeMode":"main","IkeVersion":"ikev1","IkePfs":"group2","Psk":"pgw6dy7*","IkeAuthAlg":"sha1"},"IpsecConfig":{"IpsecAuthAlg":"sha1","IpsecLifetime":86400,"IpsecEncAlg":"aes","IpsecPfs":"group2"},...
116.64.XX.XX","IkeMode":"main","IkeVersion":"ikev1","IkePfs":"group2","Psk":"pgw6dy7*","IkeAuthAlg":"sha1"},"IpsecConfig":{"IpsecAuthAlg":"sha1","IpsecLifetime":86400,"IpsecEncAlg":"aes","IpsecPfs":"group2"},...
多种安全等级 灵活组合安全载体(金融级硬件、可信计算软件)、认证机制(PSK、PKI)、颁发方式(产线烧录、动态获取)、加密算法(国际、国密),覆盖多种安全等级的需求。支持开源组件 支持设备使用开源的组件(Paho-MQTT C)接入。多种...
192.168.0.0/16,172.17.0.0/16 Psk string 预共享密钥。pgw6dy7d*RegionId string IPsec 服务端所属地域 ID。cn-hangzhou PskEnabled boolean 是否开启预共享密钥认证方式。仅取值为 true,表示开启预共享密钥认证方式。true IpsecServerId...
192.168.0.0/16,172.17.0.0/16 Psk string 预共享密钥。pgw6dy7d*RegionId string IPsec 服务端所属地域 ID。cn-hangzhou PskEnabled boolean 是否开启预共享密钥认证方式。仅取值为 true,表示开启预共享密钥认证方式。true IpsecServerId...
{"Psk":"1234*","IkeVersion":"ikev1","IkeMode":"main","IkeEncAlg":"aes","IkeAuthAlg":"sha1","IkePfs":"group2","IkeLifetime":86400,"LocalId":"47.XX.XX.1","RemoteId":"47.XX.XX.2"} IpsecConfig string 否 第二阶段协商的配置信息...
{"Psk":"1234*","IkeVersion":"ikev1","IkeMode":"main","IkeEncAlg":"aes","IkeAuthAlg":"sha1","IkePfs":"group2","IkeLifetime":86400,"LocalId":"47.XX.XX.1","RemoteId":"47.XX.XX.2"} IpsecConfig string 否 第二阶段协商的配置信息...
authentication remote pre-share/认证对端的方式为PSK(预共享密钥的方式)。authentication local pre-share/认证本端的方式为PSK。keyring local alicloud/调用密钥串。exit!在本地网关设备2中添加如下配置 crypto ikev2 profile ...