Document toolboxDocument toolbox

Configuring an IPSec Tunnel

Owned by Sri Raghu
Last updated: Sept 21, 2024
2 min read

You can configure IPSec tunnel between your router and NIOS-XaaS. You can use the following configuration:

  • Configure multiple IPSec tunnels with different public source IP addresses.

  • Configure multiple IPSec VPN tunnels with the same public source IP address using Network Address Translation Traversal (NAT-T) and source port randomization with Pre-Shared Key (PSK).

These are certain parameters that you used to create a service. You will need these parameters to configure your router. For more information about these parameters used while configuring NIOS-X-as-a-Service, see Creating As-a-Service.

You will need the following information to configure the tunnels.

  • WAN Address: (From ‘Location’) This is the public IP address that you will use to establish the IPSec VPN tunnel to the Infoblox Cloud. This will be the public IP address that the Infoblox Cloud sees connections coming from and is the IP address you have configured in the Managed Service configuration.

  • Peer IP:  (From ‘Service Deployment’) This is the IP of the Infoblox Cloud that you are establishing the IPSec VPN tunnel to and is found on the summary tile of the Service Deployment.

  • PSK (Pre-Shared Key): (From ‘Location’) Used to authenticate the IPSec VPN tunnel from your device to the Infoblox Cloud

  • Local ID: (From ‘Location’) This is used as part of the authentication process to establish the IPSec VPN tunnel from your device to the Infoblox Cloud. This is called the "Location Identity" in the Infoblox Portal and is found in the summary tile of the relevant "Location" object associated with the site you are establishing the VPN from (for example, your branch office).

  • Managed IP Address: (From ‘Service Deployment’) This is the private IP address inside the Infoblox Cloud that will host the DNS/DHCP service. You will route to this IP over the IPsec VPN tunnel that you establish to the Infoblox Cloud. It is set in the Service Deployment configuration in the Infoblox Portal.

The following links provide information about configuring IPSec Tunnel on various routers:

 

Â