Skip to main content

IPsec

Tutorial: Configure a generic IPsec tunnel from your private network to CloudConnexa

Abstract

This tutorial shows how to configure an IPsec connection to your private network that uses an IPsec-compatible router or site-to-site VPN service provided by the IaaS provider. Once configured, a site-to-site IPsec tunnel connects your private network to the configured CloudConnexa Region. On a successful connection, your CloudConnexa users and other networks connected to any of CloudConnexa's Regions can access the private network.

This tutorial shows how to configure an IPsec connection to your private network that uses an IPsec-compatible router or site-to-site VPN service provided by the IaaS provider. Once configured, a site-to-site IPsec tunnel connects your private network to the configured CloudConnexa Region. On a successful connection, your CloudConnexa users and other networks connected to any of CloudConnexa's Regions can access the private network.

Note

IPsec is in Beta.

  1. Add a Network using the Network Configuration Wizard to represent your Cisco private network and select the IPsec Tunneling Protocol option.

  2. In the Connector configuration step, select Other from the Public Cloud Providers (IAAS)section of the Platform to Connect drop-down menu. Refer to CloudConnexa Connectors and About Network Connectors.

    Instructions will appear on how to configure IPsec connectivity with CloudConnexa.

    You will see three steps:

    1. Setup CloudConnexa Tunnel: You will provide the IP address, configuration, and pre-shared key or certificate to set up the IPsec tunnel.

    2. Remote Tunnel Configuration: You must configure the router in your private network with the information needed to connect to the selected CloudConnexa Region.

    3. Verify Connectivity: After configuring the tunnel on both sides, click “Test Connection” to check that CloudConnexa can connect to your network.

  3. In the Setup CloudConnexa Tunnel section, provide your network router's public IPv4 address in the Remote Site Public IPv4 Address text field.

  4. Select either Shared Secret or Certificate-based as the authentication method and provide the necessary information.

  5. Optionally, you can expand the Advanced Configuration and change the configuration as desired.

  6. Use the information provided in the Remote Tunnel Configuration section to configure your network router. The instructions cover everything that needs to be configured: firewall, IPsec tunnel parameters, startup action and DPD parameters, static routes, and DNS server.

  7. In the Verify Connectivity section, click Test Connection to check connectivity and click View Logs to see any logs to troubleshoot failures.

  8. Continue with the network wizard instructions.