// This is an automatically generated code sample. 
// To make this code sample work in your Oracle Cloud tenancy, 
// please replace the values for any parameters whose current values do not fit
// your use case (such as resource IDs, strings containing ‘EXAMPLE’ or ‘unique_id’, and 
// boolean, number, and enum parameters with values not fitting your use case).

import * as core from "oci-core";
import common = require("oci-common");

// Create a default authentication provider that uses the DEFAULT
// profile in the configuration file.
// Refer to <see href="https://docs.cloud.oracle.com/en-us/iaas/Content/API/Concepts/sdkconfig.htm#SDK_and_CLI_Configuration_File>the public documentation</see> on how to prepare a configuration file.

const provider: common.ConfigFileAuthenticationDetailsProvider = new common.ConfigFileAuthenticationDetailsProvider();

(async () => {
    try {
     // Create a service client
     const client = new core.VirtualNetworkClient({ authenticationDetailsProvider: provider });

     // Create a request and dependent object(s).
	const  createIPSecConnectionDetails = {
		compartmentId: "ocid1.test.oc1..<unique_ID>EXAMPLE-compartmentId-Value",
		cpeId: "ocid1.test.oc1..<unique_ID>EXAMPLE-cpeId-Value",
		definedTags: {
			EXAMPLE_KEY_PK1Xw :{
				EXAMPLE_KEY_EbI32 :"EXAMPLE--Value"
				}
			},
		displayName: "EXAMPLE-displayName-Value",
		drgId: "ocid1.test.oc1..<unique_ID>EXAMPLE-drgId-Value",
		freeformTags: {
			EXAMPLE_KEY_edbOJ :"EXAMPLE_VALUE_uvngiOGeVQqTVJdBzzf9"
			},
		cpeLocalIdentifier: "EXAMPLE-cpeLocalIdentifier-Value",
		cpeLocalIdentifierType: core.models.CreateIPSecConnectionDetails.CpeLocalIdentifierType.IpAddress,
		staticRoutes: ["EXAMPLE--Value"				],
		tunnelConfiguration: [{
				displayName: "EXAMPLE-displayName-Value",
				routing: core.models.CreateIPSecConnectionTunnelDetails.Routing.Static,
				ikeVersion: core.models.CreateIPSecConnectionTunnelDetails.IkeVersion.V2,
				sharedSecret: "EXAMPLE-sharedSecret-Value",
				bgpSessionConfig: {
					oracleInterfaceIp: "EXAMPLE-oracleInterfaceIp-Value",
					customerInterfaceIp: "EXAMPLE-customerInterfaceIp-Value",
					oracleInterfaceIpv6: "EXAMPLE-oracleInterfaceIpv6-Value",
					customerInterfaceIpv6: "EXAMPLE-customerInterfaceIpv6-Value",
					customerBgpAsn: "EXAMPLE-customerBgpAsn-Value",

					}
,
				oracleInitiation: core.models.CreateIPSecConnectionTunnelDetails.OracleInitiation.ResponderOnly,
				natTranslationEnabled: core.models.CreateIPSecConnectionTunnelDetails.NatTranslationEnabled.Disabled,
				phaseOneConfig: {
					isCustomPhaseOneConfig: true,
					authenticationAlgorithm: core.models.PhaseOneConfigDetails.AuthenticationAlgorithm.Sha2384,
					encryptionAlgorithm: core.models.PhaseOneConfigDetails.EncryptionAlgorithm.Aes192Cbc,
					diffieHelmanGroup: core.models.PhaseOneConfigDetails.DiffieHelmanGroup.Group19,
					lifetimeInSeconds: 384,

					}
,
				phaseTwoConfig: {
					isCustomPhaseTwoConfig: true,
					authenticationAlgorithm: core.models.PhaseTwoConfigDetails.AuthenticationAlgorithm.HmacSha2256128,
					encryptionAlgorithm: core.models.PhaseTwoConfigDetails.EncryptionAlgorithm.Aes192Cbc,
					lifetimeInSeconds: 448,
					isPfsEnabled: true,
					pfsDhGroup: core.models.PhaseTwoConfigDetails.PfsDhGroup.Group19,

					}
,
				dpdConfig: {
					dpdMode: core.models.DpdConfig.DpdMode.InitiateAndRespond,
					dpdTimeoutInSec: 352,

					}
,
				oracleTunnelIp: "EXAMPLE-oracleTunnelIp-Value",
				associatedVirtualCircuits: ["EXAMPLE--Value"						],
				drgRouteTableId: "ocid1.test.oc1..<unique_ID>EXAMPLE-drgRouteTableId-Value",
				encryptionDomainConfig: {
					oracleTrafficSelector: ["EXAMPLE--Value"							],
					cpeTrafficSelector: ["EXAMPLE--Value"							],

					}
,

				}
				],

		}

	const createIPSecConnectionRequest: core.requests.CreateIPSecConnectionRequest = { 
	createIPSecConnectionDetails: createIPSecConnectionDetails,
	opcRetryToken: "EXAMPLE-opcRetryToken-Value",

		}; 


     // Send request to the Client.
     const createIPSecConnectionResponse = await client.createIPSecConnection(createIPSecConnectionRequest);
     }
     catch (error) {
         console.log("createIPSecConnection Failed with error  " + error);
     }
})();