Oracle Cloud Infrastructure Documentation

Getting IPSec Connection Details

View the settings for a particular Site-to-Site VPN IPSec connection.

    1. On the Site-to-Site VPN list page, select the IPSec connection that you want to work with. If you need help finding the list page or the IPSec connection, see Listing IPSec Connections.

      The details page opens and displays information about the IPSec connection. Some items on the page are read-only, and other items enable you to edit and update the IPSec connection's configuration. Access the various resources associated with the IPSec connection by selecting their links or tabs. These resources include the IPSec tunnels in the IPSec connection and the DRG attachments used by the tunnels.

    2. To access the CPE Configuration Helper from this location, perform one of the following actions depending on the option that you see:
      • Select Open CPE configuration helper.
      • Select the Actions button, then select Open CPE configuration helper.

      The helper opens on the right side of the page.

      It shows basic information such as the CPE's public IP address and vendor.

    3. To enable message logging for the IPSec connection, perform one of the following actions depending on the option that you see:
      • On the Logs tab, go to the Logs section. From the Actions menu Actions Menu for the IPSec Tunnel Logs you want to enable, select Enable log.
      • Under Resources, select Logs. From the Actions menu Actions Menu for the IPSec Tunnel Logs you want to enable, select Enable log.

      The Log detail page is displayed, and the log is in the process of being created (a "Creating log" message is displayed).

    4. To view log messages, perform one of the following actions depending on the option that you see:
      • On the Logs tab, go to the Logs section. Select the Log Name of the log you're interested in. This opens a new browser tab showing the requested log.
      • Under Resources, select Logs. Select the Log Name of the log you're interested in. This opens a new browser tab showing the requested log.

      See Getting a Log's Details for details on using the log screen.

  • Use the network ip-sec-connection get command and required parameters to view the settings for a particular Site-to-Site VPN IPSec connection:

    oci network ip-sec-connection get --ipsc-id ipsec-ocid ... [OPTIONS]

    Use the network ip-sec-tunnel get command and required parameters to get information on a specified tunnel in the IPSec connection:

    oci network ip-sec-tunnel get --ipsc-id ipsec-ocid --tunnel-id tunnel-ocid ... [OPTIONS]

    For a complete list of parameters and values for CLI commands, see the CLI Command Reference.

    Use the network ip-sec-psk get command and required parameters to get the specified tunnel's shared secret (pre-shared key):

    oci network ip-sec-psk get --ipsc-id ipsec-ocid --tunnel-id tunnel-ocid ... [OPTIONS]

    For a complete list of parameters and values for CLI commands, see the CLI Command Reference.

  • Run the GetIPSecConnection operation to view the settings for a particular Site-to-Site VPN IPSec connection.

    This gets the specified IPSec connection's basic information, including the static routes for the on-premises router. If you want the status of the connection (whether it's up or down), use GetIPSecConnectionTunnel.