My Oracle Support Banner

Oracle Linux: How to Configure IPsec to Secure Site-to-Site Communications Using Libreswan. (Doc ID 2372172.1)

Last updated on AUGUST 15, 2021

Applies to:

Oracle Cloud Infrastructure - Version N/A and later
Linux OS - Version Oracle Linux 6.0 and later
Linux x86-64

Goal

This document describes how to configure IPsec (Internet Protocol Security) on Oracle Linux to secure site-to-site communications by using libreswan, which is a variant of openswan. In this scenario, IPsec acts as a tunnel, permitting secure accesses between private networks or sites that are otherwise invisible to one another. Site-to-site connectivity is also referred to as VPN (Virtual Private Network).

Solution

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!

In this Document
Goal
Solution
 Overview
 Prepare Environment
 Install libreswan
 Configure Basic IKE/IPsec Parameters
 leftsubnet
 rightsubnet
 Configure IPsec for Site-to-Site Connectivity using PSK
 Generate ISAKMP and IPsec SAs
 Verify Site-to-Site Connectivity
 Closing Remarks
References

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.