The page has been translated by Gen AI.

VPN Tunnel

Creating a VPN Tunnel

You can configure IPSec Tunneling with remote sites in the VPN service using the Samsung Cloud Platform Console.

To create a VPN Tunnel, follow these steps:

Click the All Services > Networking > VPN menu. You will be redirected to the VPN Service Home page.
On the Service Home page, click the Create VPN Tunnel button. You will be redirected to the Create VPN Tunnel page.

On the Create VPN Tunnel page, enter the required information for service creation and select detailed options.

Enter the required information in the Service Information section.

Item	Required	Description
VPN Tunnel Name	Required	Enter the VPN Tunnel name Enter 3 to 20 characters using alphanumeric characters
VPC Gateway Name	Required	Select the VPN Gateway to connect
VPC Name	Default	VPC information connected to VPN Gateway is automatically entered
Public IP	Default	IP information for VPN Gateway to communicate with remote sites is automatically entered
Peer VPN GW IP	Required	Enter the IP information of the remote VPN Example: 192.168.10.0
Remote Subnet(CIDR)	Required	Enter the subnet address of the remote site to connect After entering the IP address, click the Add button, up to 10 can be added Example: 20.0.0.0/24
Pre-shared Key	Required	Enter the shared key (PSK) to be used for IKE mutual authentication between VPN gateways Enter 8 to 64 characters Recommended to use a 32-character alphanumeric combination string
Description	Optional	User additional description

Table. VPN Tunnel Service Information Input Items

Enter or select the required information in the Tunnel Configuration section.

Item	Required	Description
IKE Configuration > IKE Version	Required	Select IKE version
IKE Configuration > Algorithm Configuration	Required	Select Encryption Algorithm and Digest Algorithm, then click the Add button
IKE Configuration > Diffie-Hellman	Required	Select Diffie-Hellman group
IKE Configuration > SA LifeTime	Required	Enter the VPN session (Security Association) validity period
IPSec Configuration > Algorithm Configuration	Required	Select Encryption Algorithm and Digest Algorithm, then click the Add button
IPSec Configuration > Perfect Forward Secrecy(PFS)	Required	Select whether to use PFS group
IPSec Configuration > Diffie-Hellman	Required	Select Diffie-Hellman group
IPSec Configuration > SA LifeTime	Required	Enter the VPN session (Security Association) validity period

Table. VPN Tunnel Configuration Items

Enter the required information in the DPD Additional Configuration section.
Item
Required
Description
DPD Additional Configuration > DPD probe interval Required Enter the DPD check interval
Enter a value between 1 and 3,600 seconds
Table. VPN Tunnel DPD Additional Configuration Input Items
Enter or select the required information in the Additional Information section.
Item
Required
Description
Tags Optional Add tags
Add up to 50 tags per resource
Click the Add Tag button and then enter or select Key and Value values
Table. VPN Tunnel Additional Information Input Items

On the Summary panel, review the detailed information of creation and estimated charges, then click the Create button.
- After creation is complete, verify the created resource on the VPN Tunnel List page.

Item	Required	Description
DPD Additional Configuration > DPD probe interval	Required	Enter the DPD check interval Enter a value between 1 and 3,600 seconds

Item	Required	Description
Tags	Optional	Add tags Add up to 50 tags per resource Click the Add Tag button and then enter or select Key and Value values

Viewing VPN Tunnel Detailed Information

For VPN Tunnel services, you can view and modify the entire resource list and detailed information. The VPN Tunnel Detail page consists of Detailed Information, Tags, and Task History tabs.

To view VPN detailed information, follow these steps:

Click the All Services > Networking > VPN menu. You will be redirected to the VPN Service Home page.
On the Service Home page, click the Create VPN Tunnel button. You will be redirected to the VPN Tunnel List page.
On the VPN Tunnel List page, click the resource for which you want to view detailed information. You will be redirected to the VPN Tunnel Detail page.
- The VPN Tunnel Detail page displays status information and additional feature information, and consists of Detailed Information, Tags, and Task History tabs.

Item	Description
Status	Current status Active: Operating normally Creating: Creating Editing: Changing information Deleting: Deleting Error: Cannot confirm current status If this occurs continuously, contact the registered administrator
VPN Tunnel Deletion	VPN Tunnel delete button

Item

Description

Status

Current status

Active: Operating normally

Creating: Creating

Editing: Changing information

Deleting: Deleting

Error: Cannot confirm current status
- If this occurs continuously, contact the registered administrator

VPN Tunnel Deletion

VPN Tunnel delete button

Table. VPN Tunnel Status Information and Additional Features

Detailed Information

On the VPN Tunnel List page, you can view the detailed information of the selected resource and modify the information if necessary.

Item	Description
Service	Service name
Resource Type	Resource type
SRN	Unique resource ID in Samsung Cloud Platform
Resource Name	VPN resource name
Resource ID	Unique resource ID in the service
Creator	User who created the service
Creation Date/Time	Date/Time when the service was created
Modifier	User who modified the service information
Modification Date/Time	Date/Time when the service information was modified
VPN Tunnel Name	VPN Tunnel name
VPN Gateway Name	VPN Gateway name
Public IP	Public IP information
Peer VPN GW IP	Peer VPN GW information Click the Modify icon to modify
Remote Subnet (CIDR)	Remote Subnet information Click the Modify icon to modify
Pre-shared Key	Pre-shared Key information Click the Modify icon to modify
Status	Current service connection status
Description	VPN Tunnel additional description Click the Modify icon to modify
IKE	Click the Modify button to modify configuration information in bulk
IKE Version	IKE Version information
Encryption Algorithm/Digest Algorithm	Algorithm information
Diffie-Hellman	Diffie-Hellman information
SA LifeTime	SA LifeTime information
IPSec	Click the Modify button to modify configuration information in bulk
Encryption Algorithm/Digest Algorithm	Algorithm information
Diffie-Hellman	Diffie-Hellman information
SA LifeTime	SA LifeTime information
Perfect Forward Secrecy(PFS)	PFS configuration information
DPD	DPD probe interval information Click the Modify icon to modify

Table. VPN Tunnel Detailed Information Items

Item	Description
Tag List	Tag list View tag Key, Value information Add up to 50 tags per resource When entering tags, search and select from previously created Key and Value lists

Task History

You can view the task history of the resource selected on the VPN Tunnel List page.

Item	Description
Task History List	Resource change history View task date/time, resource name, task details, task results, and task performer information

Table. VPN Tunnel Task History Tab Detailed Information Items

Deleting a VPN Tunnel

You can delete unused VPC Tunnels to reduce operating costs. However, since deleting a Tunnel can immediately stop operating services, you must fully consider the impact of service interruption before proceeding with deletion.

To delete a VPN, follow these steps:

Click the All Services > Networking > VPN menu. You will be redirected to the VPN Service Home page.
On the Service Home page, click the Create VPN Tunnel button. You will be redirected to the VPN Tunnel List page.
On the VPN Tunnel List page, click the resource for which you want to view detailed information. You will be redirected to the VPN Tunnel Detail page.
Click the VPN Tunnel Delete button.
After deletion is complete, verify that the resource has been deleted on the VPN Tunnel List page.

How-to guides

Release Note