1. Features Guide
  2. Release 4.4 Features
  3. IPsec Encryption in Conduit

IPsec Encryption in Conduit

Oracle SD-WAN Edge 4.4 introduces the ability to secure Conduit user data with IPsec encapsulated by the Oracle Reliable Protocol (TRP). This is executed using a 140-2 Level 1 FIPS-certified IPsec cryptographic library using Suite B algorithms and 256-bit ECP.

INSERT ALT TEXT

Figure 3: IPsec Encryption in a Conduit To implement IPsec Encryption on a Conduit:

  1. Log into your Appliance's web console.
  2. Click on Manage Network, and then Configuration.
  3. Open Connections → Default Sets → Conduit Default Sets → [Site Name], and then IPsec Settings.
  4. Click the edit icon (INSERT ALT TEXT) and click the checkbox next to Secure Conduit User Data with IPsec to enable IPsec on the conduit.
  5. Choose ESP, ESP+Auth, or AH from the Tunnel Mode drop-down menu.
  6. If the Tunnel Mode is ESP or ESP+Auth, choose AES 128-bit or AES 256-bit from the Encryption Mode drop-down menu.
  7. If the Tunnel Mode is AH, choose SHA1 or SHA-256 from the Hash Algorithm drop-down menu.
  8. Click Apply.

INSERT ALT TEXT

Figure 4: Configure IPsec on a Conduit