Hello,
I've set up a IPsec VPN between the UTM9 and OCI. The settings that I have used are below.
The settings are based on the following recommendations from Oracle because there isn't a configuration recommendation for Sophos;
https://docs.cloud.oracle.com/iaas/Content/Network/Reference/genericCPE.htm
There aren't any IPsec configuration options at the OCI, you are only provided with the termination IP and Secret key.
The tunnel is established and routes have been configured but I get communication dropouts. During a continuous ping from a host behind the UTM to a host in OCI the following occurs.
Reply from 10.99.56.2: bytes=32 time=22ms TTL=62
Reply from 10.99.56.2: bytes=32 time=22ms TTL=62
Reply from 10.99.56.2: bytes=32 time=22ms TTL=62
Reply from 10.99.56.2: bytes=32 time=22ms TTL=62
Reply from 10.99.56.2: bytes=32 time=22ms TTL=62
Request timed out.
Request timed out.
Request timed out.
Request timed out.
Request timed out.
Request timed out.
Request timed out.
Request timed out.
Reply from 10.99.56.2: bytes=32 time=22ms TTL=62
Reply from 10.99.56.2: bytes=32 time=22ms TTL=62
Reply from 10.99.56.2: bytes=32 time=22ms TTL=62
Reply from 10.99.56.2: bytes=32 time=22ms TTL=62
Reply from 10.99.56.2: bytes=32 time=22ms TTL=62
Request timed out.
Request timed out.
Request timed out.
Request timed out.
etc.
I have also observed the following activity in the IPsec logs on the UTM
2018:12:10-20:39:55 ussawsgnputm pluto[18194]: "S_Nuf-Global-NP to OCI_Global_NP" #388013: initiating Quick Mode PSK+ENCRYPT+TUNNEL+PFS+UP to replace #388009 {using isakmp#383645}
This thread was automatically locked due to age.