How to Manage Ipsec Site Connections?
Last updated
Last updated
To view all of your Ipsec site connections, follow the below steps:
Step 1: Login to your account.
Step 2: Navigate to Services and then click on My Services.
Step 3: Click on your project.
Step 4: Navigate to Networks and then click on VPN.
Step 5: Click on the IPsec Site Connections tab to view all of your IPsec site connections.
To create an IPsec site connection, follow the below steps:
Step 1: Click on Add IPsec Connection.
Step 2: Enter the details and click on Add.
Name
Enter the name assigned to the IPsec site connection.
Description
Enter a short explanation or notes about the IPsec site connection, providing context or purpose.
VPN service associated with this connection
Select the VPN service that this IPsec site connection will utilize.
Endpoint group for local subnet(s)
Select the group of local subnets that will be the part of this IPsec site connection.
IKE policy associated with this connection
Select the IKE policy that will be used for negotiating the security association for the connection.
IPsec policy associated with this connection
Select the IPsec policy that will dictates the encryption and authentication methods for the connection.
Peer gateway public IPv4/IPv6 Address or FQDN
Enter the public IP address or Fully Qualified Domain Name (FQDN) of the remote peer gateway.
Peer router identity for authentication (Peer ID)
Enter the identity of the remote peer router used for authentication purposes in the connection.
Endpoint group for remote peer CIDR(s)
Select the group of CIDR blocks representing the remote peer’s network.
Remote peer subnet(s)
Enter the specific subnets on the remote peer side that are accessible via this IPsec site connection.
Pre-Shared Key (PSK) string
Enter the secret key used for authenticating the connection between the local and remote peers.
Maximum Transmission Unit size for the connection
Enter the maximum size of a packet that can be transmitted over the connection, affecting performance and fragmentation.
Dead peer detection interval
Enter the interval at which the system checks if the peer is still alive (in seconds)
Dead peer detection timeout
Enter the timeout duration after which a peer is considered dead if no response is received (in seconds).
Dead peer detection actions
Select the actions to be taken when a peer is detected as dead, such as hold, clear, disabled, restart and restart-by-peer.
Initiator state
Select the current state of the connection initiator from the below option: 1. Bi-directional 2. Response-only
Admin State
Enable the administrative state to make the connection in operational state.
To edit an IPsec site connection, follow the below steps:
Step 1: Choose the IPsec site connection you want to edit, click on Select, and choose Edit connection from the drop-down menu.
Step 2: Update the details that you want to change and click on Submit.
You can delete an IPsec site connection by clicking on Select and then selecting Delete connection from the drop-down menu.
To view an overview of the IPsec site connection, follow the below steps:
Step 1: Click on the IPsec site connection name for which you want to view the overview.
Step 2: Here, you can view the overview of the selected IPsec site connection.