The page has been translated by Gen AI.

VPN Tunnel

VPN Tunnel creation

You can configure IPSec Tunning with a remote site in the VPN service on the Samsung Cloud Platform Console.

To create a VPN Tunnel, follow the following procedure.

All services > Networking > VPN menu, click. It moves to the Service Home page of VPN.
Service Home page, click the VPN Tunnel creation button. It moves to the VPN Tunnel creation page.
VPN Tunnel Creation page where you enter the information required for service creation and select detailed options.

Service Information Input area, please enter the necessary information.

Classification	Mandatory	Detailed Description
VPN Tunnel name	required	Enter the VPN Tunnel name Use English uppercase and lowercase letters, numbers within 3-20 characters
VPC Gateway name	required	VPN Gateway to be selected
VPC name	default	Check VPC information connected to VPN Gateway
Public IP	Basic	Check IP information for communication with the remote site from the VPN Gateway
Peer VPN GW IP	required	enter the IP information of the remote VPN Example: 192.168.10.0
Romote Subnet(CIDR)	required	enter the subnet address of the remote site to connect click the add button after entering the IP address, up to 10 can be added example: 20.0.0.0/24
Pre-shared Key	required	Enter the shared key (PSK) to be used for IKE mutual authentication between VPN gateways Minimum 8 characters ~ Maximum 64 characters limited It is recommended to use a 32-character string of alphanumeric characters
Description	Selection	User Additional Description Up to 255 characters can be entered

Table. VPN Tunnel Service Configuration Items

Tunnel settings area where you can enter or select the required information.

Classification	Mandatory	Detailed Description
IKE 설정 > IKE Version	required	IKE version selection
IKE settings > Algorithm settings	required	Encryption Algorithm and Digest Algorithm are selected and the Add button is clicked
IKE 설정 > Diffie-Hellman	required	Diffie-Hellman group selection
IKE 설정 > SA LifeTime	required	VPN session (Security Association) valid time input
IPSec settings > Algorithm settings	required	Select Encryption Algorithm and Digest Algorithm, and click the Add button
IPSec settings > Perfect Forward Secrecy(PFS)	required	Select whether to use the PFS group
IPSec settings > Diffie-Hellman	required	Select Diffie-Hellman group
IPSec settings > SA LifeTime	required	Enter the valid time of the VPN session (Security Association)

Table. VPN Tunnel Setup Items

Additional Information Input area, please enter or select the required information.

Classification	Mandatory	Detailed Description
DPD additional settings > DPD probe interval	required	Enter the DPD inspection cycle Enter a value between 1-3,600 seconds
Tag	Selection	Add Tag Up to 50 can be added per resource Click the Add Tag button and enter or select Key, Value

Classification

Mandatory

Detailed Description

DPD additional settings > DPD probe interval

required

Enter the DPD inspection cycle

Enter a value between 1-3,600 seconds

Tag

Selection

Add Tag

Up to 50 can be added per resource

Click the Add Tag button and enter or select Key, Value

Table. Security Group Additional Information Input Items

Summary panel where you created detailed information and estimated billing amount, and click the Complete button.

Once creation is complete, check the created resource on the VPN Tunnel list page.

VPN Tunnel detailed information check

VPN Tunnel service can check and modify the entire resource list and detailed information. The VPN Tunnel details page consists of details, tags, and operation history tabs.

To check the VPN details, follow the following procedure.

All services > Networking > VPN menu, click. It moves to the Service Home page of VPN.
Service Home page, click the VPN Tunnel creation button. It moves to the VPN Tunnel list page.
VPN Tunnel list page, click on the resource to check the detailed information. It moves to the VPN Tunnel details page.

VPN Tunnel details page displays status information and additional feature information, and consists of details, tags, operation history tabs.

Classification	Detailed Description
Status	Current Status Active: Normal operation in progress Creating: Being created Editing: Information being changed Deleting: Being deleted Error: Current status cannot be confirmed If it occurs continuously, contact the registered administrator
VPN Tunnel deletion	VPN Tunnel deletion button

Classification

Detailed Description

Status

Current Status

Active: Normal operation in progress

Creating: Being created

Editing: Information being changed

Deleting: Being deleted

Error: Current status cannot be confirmed
- If it occurs continuously, contact the registered administrator

VPN Tunnel deletion

VPN Tunnel deletion button

Table. VPN Tunnel Status Information and Additional Functions

Detailed Information

VPN Tunnel list page where you can check the detailed information of the selected resource and modify the information if necessary.

Classification	Detailed Description
Service	Service Name
Resource Type	Resource Type
SRN	Unique resource ID in Samsung Cloud Platform
Resource Name	VPN Resource Name
Resource ID	Unique resource ID in the service
Creator	User who created the service
Creation Time	The time when the service was created
Modifier	User who modified the service information
Modified Time	The time when service information was modified
VPN Tunnel name	VPN Tunnel title
VPN Gateway name	VPN Gateway title
Public IP	Public IP information
Peer VPN GW IP	Peer VPN GW information Edit icon can be clicked for modification
Remote Subnet (CIDR)	Remote Subnet information Edit icon can be clicked for modification
Pre-shared Key	Pre-shared Key information Edit icon can be clicked for modification
IKE	Revision button to click and modify the setting information in bulk possible
IKE Version	IKE Version Information
Encryption Algorithm/Digest Algorithm	Algorithm Information
Diffie-Hellman	Diffie-Hellman information
SA LifeTime	SA LifeTime information
IPSec	Modify button to click and modify the setting information in bulk
Encryption Algorithm/Digest Algorithm	Algorithm Information
Diffie-Hellman	Diffie-Hellman information
SA LifeTime	SA LifeTime information
Perfect Forward Secrecy(PFS)	PFS setting information
DPD probe interval	DPD probe interval information Edit icon can be clicked for modification

Table. VPN Tunnel detailed information items

Classification	Detailed Description
Tag List	Tag List Check Key, Value information of the tag Up to 50 tags can be added per resource When entering a tag, search and select from the existing list of created Key and Value

Work History

VPN Tunnel list page where you can check the operation history of the selected resource.

Classification	Detailed Description
Work history list	Resource change history Check work time, resource name, work details, work result, and worker information

Fig. VPN Tunnel Work History Tab Detailed Information Items

VPN Tunnel deletion

You can delete unused VPC Tunnels to reduce operating costs. However, deleting a Tunnel can immediately stop services in operation, so you must consider the impact of service interruption before proceeding with the deletion work.

To cancel the VPN, follow the following procedure.

All services > Networking > VPN menu, click. It moves to the Service Home page of VPN.
Service Home page, click the VPN Tunnel creation button. It moves to the VPN Tunnel list page.
VPN Tunnel list page, click on the resource to check the detailed information. It moves to the VPN Tunnel details page.
VPN Tunnel deletion button should be clicked.
Once the cancellation is complete, please check if the resource has been deleted from the VPN Tunnel list page.

How-to guides

Release Note