Getting started

The authentication method chosen for this tutorial is based on certificates.

For details on operations regarding the PKI, please refer to the tutorial “IPsec VPN - authentication by certificate”.

Further on in this document, the central site will be named “Hub”, and both satellite sites will be represented by “Spoke A” and “Spoke B”. Needless to say, this type of architecture is not restricted to just two satellite sites.