CAUSE

How to configure a site to site VPN to implement on-prem IPsec connections

 

RESOLUTION

Overview

Netstream Virtual Data Center supports the following types of site-to-site VPN:

  • Another edge gateway in the same organisation

  • An edge gateway in another organisation (Netstream Cloud or another vCloud service provider)

  • A remote network offering IPsec VPN endpoint capability

Depending on the type of connection required, you'll need to complete IP addressing for both ends, together with a shared secret, and indicate which VDC networks are allowed to connect to the VPN link.

 

Before you begin

Before you start configuring IPsec VPN settings, you'll need to make a note of the IP address of your edge gateway to use as your tunnel endpoint address. 

 

Process overview

To configure IPsec VPN, you need to follow these general steps (each of these steps in described in more detail later in this article):

  1. Configure the edge gateway IPsec VPN settings

  2. Create the second VPN gateway

  3. Configure the edge gateway firewall

  4. Configure the external datacenter gateway firewall

  5. Validate the tunnel

 

Configuring edge gateway IPsec VPN settings

  1. In the VMware Cloud Director Virtual Data Center dashboard, select the VDC in which you want to configure IPsec VPN.

  2. In the left navigation panel, under Networking, select Edges.

  3. On the Edge Gateways page, select the edge that you want to configure and click Services.
  4. On the Edge Gateway page, select the VPN tab, then the IPsec VPN tab.

  5. Select the IPsec VPN Sites tab.
  6.  
War diese Antwort hilfreich? 0 Benutzer fanden dies hilfreich (0 Stimmen)