IPSec Connection Management

Learn how to manage Site-to-Site VPN IPSec connections in Oracle Cloud Infrastructure.

Site-to-Site VPN uses several resources to create network communication between Compute instances in OCI and an on-premises network, including an IPSec connection and a CPE. In general, to use an IPSec connection, you must complete these minimal steps:

1. Create a VCN with one or more subnets.
2. Create a DRG.
3. Attach the DRG to one or more VCNs. You can also attach a DRG to an on-premises network using FastConnect virtual circuits and Site-to-Site VPN IPSec tunnels.
4. Create or update route tables and security lists in the VCN and DRG to allow traffic to flow from OCI to an on-premises network.
5. Create an IPSec connection.
6. Use the CPE Configuration Helper to generate configuration content that the on-premises network engineer can use to configure the CPE device.
7. Have the network engineer configure the CPE device.

Before you create an IPSec connection, review Setting Up Site-to-Site VPN and plan the Site-to-Site VPN implementation. Also, review Working with Site-to-Site VPN.

The following tasks are available for an IPSec connection and the IPSec tunnels it contains:

• Listing IPSec Connections
• Creating an IPSec Connection
• Getting IPSec Connection Details
• Updating an IPSec Connection
• Moving an IPSec Connection Between Compartments
• Deleting an IPSec Connection
• Listing IPSec Tunnels
• Getting an IPSec Tunnel's Details
• Updating an IPSec Tunnel