Class

NEVPNProtocolIKEv2

Settings for an IKEv2 VPN configuration.

Declaration

class NEVPNProtocolIKEv2 : NEVPNProtocolIPSec

Overview

Instances of this class are thread safe.

Topics

Accessing IKEv2 Security Association Parameters

var ikeSecurityAssociationParameters: NEVPNIKEv2SecurityAssociationParameters

An NEVPNIKEv2SecurityAssociationParameters object containing the parameters for the initial IKE security association to be negotiated with the IKEv2 server.

var childSecurityAssociationParameters: NEVPNIKEv2SecurityAssociationParameters

An NEVPNIKEv2SecurityAssociationParameters object containing the parameters for the child IPSec security associations to be negotiated for each IKEv2 policy.

class NEVPNIKEv2SecurityAssociationParameters

NEVPNIKEv2SecurityAssociationParameters contains parameters for an IKEv2 Security Association.

Accessing Other IKEv2 Properties

var deadPeerDetectionRate: NEVPNIKEv2DeadPeerDetectionRate

The frequency at which the IKEv2 client will run the dead peer detection algorithm.

var serverCertificateIssuerCommonName: String?

A string containing the value of the Subject Common Name field of the Certificate Authority certificate that issued the IKEv2 server's certificate.

var serverCertificateCommonName: String?

A string containing the value of the Subject Common Name field of the IKEv2 server’s certificate.

var certificateType: NEVPNIKEv2CertificateType

The type of the certificate in the identity configured in identityReference or identityData.

var useConfigurationAttributeInternalIPSubnet: Bool

A Boolean indicating whether or not the IKEv2 client should use the INTERNAL_IP4_SUBNET and/or INTERNAL_IP6_SUBNET attributes sent by the IKEv2 server. If this property is false, split tunnel configurations may still be communicated via Traffic Selectors during IKE negotiation.

var disableMOBIKE: Bool

A Boolean indicating whether or not MOBIKE should be disabled for the IKEv2 sessions.

var disableRedirect: Bool

A Boolean indicating whether or not IKEv2 server redirects are disabled.

var enablePFS: Bool

A Boolean indicating whether or not Perfect Forward Secrecy is enabled.

var enableRevocationCheck: Bool

Enable revocation checking of the IKEv2 server certificate.

var strictRevocationCheck: Bool

Require a "not revoked" result when checking if the certificate identifying the server is revoked.

Relationships

Inherits From

Conforms To

See Also

VPN Configuration

class NEVPNManager

An object to create and manage a Personal VPN configuration.

class NEVPNProtocolIPSec

Settings for an IPsec VPN configuration.

class NEVPNProtocol

Settings common to both IKEv2 and IPsec VPN configurations.