Creating an IPSec VPN

Getting to the VPN configuration:

  1. Log in to your control panel.
  2. Click the “Administration” tab.
    main_nav_bar_administration
  3. Click on your VDC name.
    administation_VDC_list_click_on
  4. Click the “Edge Gateways” tab.
    VDC_administration_edge_gateways
  5. Right click on the Edge Gateway instance.
    edge_gateway_list_click_on
  6. Click on “Edge Gateway Services…”.
    vedge_right_click_services
  7. Click on the “VPN” tab.
    vedge_menubar_vpn

Adding a VPN:

  1. Click the “Add…” button.
    vpn_add_edit_delete_peer_add
  2. Add the name of the VPN into the “Name” field
    vpn_add_name
  3. Select “a remote network” in the “Establish VPN to” field.
    vpn_add_select_vpn_network
  4. Click on your local network.
    vpn_add_select_network
  5. In the “Peer Networks” field, type the CIDR for the internal network of which you are connecting to.
    vpn_add_peer_networks
  6. Inf the “Local ID” field, type in the external IP address for your local environment.
    vpn_add_local_id
  7. In the “Peer ID” field, type in the external IP address of the remote environment.
    vpn_add_peer_id
  8. In the “Peer IP” field, type int he external IP address of the remote environment.
    vpn_add_peer_ip
  9. Select the encryption type you wish to use in the “Encryption protocol” drop down.
    vpn_add_encryption
  10. Check the “Show key” check box and copy the contents in the “Shared Key” text area. You’ll use this on the remote side.
    vpn_add_show_key
  11. Click the “OK” button.
    vpn_add_ok
  12. Check the “Enable VPN” check box.
    vpn_enable
  13. Click the “OK” button.

The settings for the remote side are as follows:

  • IKE lifetime: 28800 seconds.
  • Aggressive mode: No / Off.
  • SA lifetime: 3600 seconds.
  • Key Exchange: IKE.
  • IKE Version: IKEv2 / IKEv1
  • DH Group 2
  • PFS: Yes / On  or Type 2 if you have to select a type. (You can make a request to turn it off)
  • Phase 2 ALG: (Encryption protocol)-sha1.
  • IKE: (Encryption protocol)-sha1.
  • Network info.
  • Pass phrase.

Editing VPN:

There isn’t much you can edit. You’ll need to remove the VPN connection and rebuild it.

Removing VPN:

  1. Right click on the VPN you want to delete.
  2. Click delete.

mpcloudlab.com has written 85 articles