Update dynamic IPSec tunnel
- 23 Jul 2025
- 1 Minute to read
- Contributors
Update dynamic IPSec tunnel
- Updated on 23 Jul 2025
- 1 Minute to read
- Contributors
Article summary
Did you find this summary helpful?
Thank you for your feedback!
Put
/v2.2/networks/enhanced/{networkId}/tunnels/ipsec/dynamic/{dynamicTunnelId}
Update a dynamic IPSec tunnel configuration
Security
HTTP
Type bearer
Path parameters
networkId
stringRequired
dynamicTunnelId
stringRequired
Body parameters
object
tunnelName
string Required
Name of the tunnel
description
string
Optional description for the tunnel
addTunnels
Array of object (DynamicTunnelDetails)
Min items0
Max items8
object
regionID
string Required
Dynamic tunnel enhanced region ID
passphrase
string Required
Pre-shared key for tunnel authentication (8-64 characters)
Min length8
Max length64
p81GWInternalIP
string (ipv4) Required
Harmony Sase gateway internal IP address
remoteGWInternalIP
string (ipv4) Required
Remote gateway internal IP address
remotePublicIP
string (ipv4) Required
Remote gateway public IP address
remoteASN
integer Required
Autonomous System Number (ASN) for BGP routing. It will be automatically assigned an ASN once creating the first dynamic tunnel in this network. The network ASN can never be changed once it is set.
OneOf
integer
integer
Minimum1
Maximum64496
integer
integer
Minimum64512
Maximum65535
integer
integer
Minimum131072
Maximum4294967295
remoteID
string Required
Remote gateway ID
routingType
string Required
Routing mode for the tunnel
Valid values[ "route", "policy" ]
Default"route"
updateTunnels
Array of object
Min items0
Max items8
object
id
string Required
passphrase
string
Pre-shared key for tunnel authentication (8-64 characters)
Min length8
Max length64
remotePublicIP
string (ipv4)
Remote gateway public IP address
remoteASN
integer
Autonomous System Number (ASN) for BGP routing. It will be automatically assigned an ASN once creating the first dynamic tunnel in this network. The network ASN can never be changed once it is set.
OneOf
integer
integer
Minimum1
Maximum64496
integer
integer
Minimum64512
Maximum65535
integer
integer
Minimum131072
Maximum4294967295
remoteID
string
Remote gateway ID
routingType
string
Routing mode for the tunnel
Valid values[ "route", "policy" ]
removeTunnels
Array of object
Min items0
Max items8
object
id
string Required
sharedSettings
object
p81GatewaySubnets
Array of string Required
Min length1
string
remoteGatewaySubnets
Array of string Required
Min length1
string
p81ASN
integer #deprecatedtemplate# #additional-property-template#
OneOf
integer
integer
Minimum1
Maximum23455
integer
integer
Minimum23457
Maximum64495
integer
integer
Minimum64512
Maximum65534
integer
integer
Minimum131072
Maximum4294967294
features
object
symmetricInnerMesh
object
enabled
boolean
Defaultfalse
advancedSettings
object (IPSecAdvancedSettings)
keyExchange
string Required
Valid values[ "ikev1", "ikev2" ]
ikeLifeTime
string Required
Pattern^((1[0-9]|[2-9][0-9]|[1-9][0-9]{2,3}|[1-7][0-9]{4}|8[0-5][0-9]{3}|86[0-3][0-9]{2}|86400)s)|(([1-9]|[1-9][0-9]|[1-9][0-9][0-9]|1[0-3][0-9][0-9]|14[0-3][0-9]|1440)m)|(([1-9]|1[0-9]|2[0-4])h)$
lifetime
string Required
Pattern^((1[0-9]|[2-9][0-9]|[1-9][0-9]{2,3}|[1-7][0-9]{4}|8[0-5][0-9]{3}|86[0-3][0-9]{2}|86400)s)|(([1-9]|[1-9][0-9]|[1-9][0-9][0-9]|1[0-3][0-9][0-9]|14[0-3][0-9]|1440)m)|(([1-9]|1[0-9]|2[0-4])h)$
dpdDelay
string Required
Pattern^([5-9]|[1-5][0-9]|60)s$
dpdTimeout
string Required
Pattern^([5-9]|[1-5][0-9]|60)s$
phase1
object Required
auth
Array of string
Min length1
string
Valid values[ "md5", "sha1", "sha384", "sha256", "sha512" ]
encryption
Array of string
Min length1
string
Valid values[ "3des", "blowfish128", "blowfish192", "blowfish256", "aes128", "aes192", "aes256" ]
dh
Array of integer Required
Diffie Helman encryption
Min length1
integer
Valid values[ 2, 5, 14, 19, 20, 21 ]
phase2
object Required
auth
Array of string
Min length1
string
Valid values[ "md5", "sha1", "sha384", "sha256", "sha512" ]
encryption
Array of string
Min length1
string
Valid values[ "3des", "blowfish128", "blowfish192", "blowfish256", "aes128", "aes192", "aes256" ]
dh
Array of integer Required
Diffie Helman encryption
Min length1
integer
Valid values[ 2, 5, 14, 19, 20, 21 ]
routingType
string
Routing mode for the tunnel
Valid values[ "route", "policy" ]
Default"route"
Responses
202
Request accepted
object
statusUrl
string
samplingTime
integer
401
Unauthorized
object
id
string
message
string
403
Forbidden
object
id
string
message
string
404
Resource not found
object
id
string
message
string
Was this article helpful?