My Oracle Support Banner

OCI Site-to-Site VPN - How to Upgrade Existing Connection from IKEv1 to IKEv2 (Doc ID 2915474.1)

Last updated on DECEMBER 15, 2022

Applies to:

Oracle Cloud Infrastructure Site-to-Site VPN - Version N/A to N/A
Information in this document applies to any platform.

Goal

There are 2 IKE (Internet Key Exchange) versions available in OCI - IKEv1 and IKEv2 . The newer version IKEv2 uses 4 messages while the IKEv1 uses 6 messages in the main mode. This eventually reduces the overhead making it faster for transmission.
IKEv2 also uses leading encryption algorithms and high-end chippers such has AES (Advanced Encryption Standard) making it more secure.

To support compatibility between different vendors, IKEv2 supports EAP (Extensible Authentication Protocol) authentication with a built-in NAT-T functionality in addition with the Keep-Alive option which has been enabled as a default setting. 

 

Solution

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Goal
Solution

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.