Skip to main content

Encryptor

Forward Enterprise provides the ability to define and add a synthetic device, called Encryptor, that can be used to simulate a device that encapsulates traffic in an IPSEC tunnel.

warning

Changes to an Encryptor will be applied to the next collected snapshot.

An Encryptor can be added via the Forward Enterprise REST APIs via the endpoint PUT: /api/snapshots/{snapshotId}/encryptors/{deviceName}

Here is an example of the request body:

{
  "encryptors": [
    {
      "name": "encryptor",
      "siteConnection": {
        "uplinkPort": {
          "device": "sjc-te-fw01",
          "port": "ethernet1/1"
        },
        "gatewayPort": {
          "device": "atl-ce01",
          "port": "ge-0/0/1"
        },
        "vlan": 100,
        "name": "VLAN-100"
      },
      "underlayConnection": {
        "uplinkPort": {
          "device": "atl-ce01",
          "port": "ge-0/0/2"
        },
        "gatewayPort": {
          "device": "atl-ce02",
          "port": "ge-0/0/2"
        },
        "vlan": 100,
        "name": "VLAN-100"
      },
      "locationId": "56",
      "tunnels": [
        {
          "source": "1.1.1.1",
          "destination": "2.2.2.2"
        }
      ],
      "subnets": [
        "10.0.0.0/8"
      ]
    }
  ]
}

For more info on Encryptors APIs please check the Synthetic Devices REST API docs.

info

Support for managing Encryptors via the Forward UI will be added in future releases.