IPSEC Policies

The IPsec Policy specifies the authentication and encryption algorithms and encapsulation mode to use for the established VPN connection. It defines the parameters used to establish phase 2 of an IPsec tunnel. 

City Control Panel will display a list containing all IPSEC Policies in Networking > VPN Services > IPSEC Policies (Figure 1 ).


Figure 1. IPsec Policies list

Figure 1. IPsec Policies list


The user can click  to the right for more actions, as shown in the image below (Figure 2).


Figure 2. Edit or delete an IPsec Policy

Figure 2. Edit or delete an IPsec Policy


Create a new IPSEC Policy by clicking the creation button at the top of the IPSEC Policies page (Figure 3).

Figure 3. Create new IPSEC Policy - button


When creating a new IPSEC Policy the user should choose the settings for the IPSEC Policy (Figure 4).  

  1. NameName of the IPSEC policy
  2. Region: Datacenter 
  3. Authorization algorithmsAuthentication algorithm ( SHA1)
  4. Encryption algorithm: 3DS, AES-128, AES-196, AES-256
  5. Encapsulation modeEncapsulation mode for IPsec policy; Tunnel, transport
  6. Perfect Forward Secrecy (PFS):  Group 2, Group 5, Group 14
  7. Transform protocolTransform protocol for IPsec policy; ESP, AH, AH-SEP
  8. Lifetime: IPsec lifetime attributes. In seconds.


Figure 4. Create an IPsec Policy