IPSec Site-2-Site Tunnel is a security feature that allows you to create a secure communication link between two different networks located at different sites. By creating the IPSec Tunnel, you can connect your gateway to your local network or cloud services.
To create a tunnel, begin by navigating to your Network screen:
Adding a Tunnel
By pressing the three dots (…) on the right of the gateway, the “Add Tunnel” menu option will open the “IPSec Site-2-Site Tunnel” screen:
Click the "Add Tunnel" menu option.
Fill in the following details:
- Name: The name of the Tunnel you want to create.
- Shared Secret: A pre-shared key is a string of characters (like a password) that will be used by both of the tunnel parties.
- Public IP: This is the public IP address of the second end of the tunnel,
- Remote ID: In most cases, the ID of the remote tunnel is the public IP of the tunnel. However, it must be configured to the same value on both ends.
- Perimeter 81 Gateway Proposed Subnets: The IPSec network selector must be configured to the same value at both ends of the tunnel.
- Remote Gateway Proposed Subnets: The remote subnet selector must be configured to the same value on both tunnels ends. If you do not specify the subnets, you will need to do so manually using the Perimeter 81 Routes Table configuration.
NOTE: The fields for the advanced settings depend on the network configuration, such as the type of VPC (Virtual Private Cloud) or firewall. The image below is just provided as an example.
Create Tunnel Connection
Clicking “Add Tunnel” will create the tunnel connection between the Perimeter 81 gateway and your local network or cloud service. After the tunnel is created, it will be displayed on the Network diagram: