...
- In the Armor Management Portal (AMP), in the left-side navigation, click Infrastructure.
- Click L2L VPN.
- In the top menu, in the drop-down menu, select the data center where the virtual machine lives.
- Click the plus ( + ) icon.
- If you do not have any tunnels in that data center, then click Create an L2L tunnel.
- In Tunnel Name, enter a descriptive name.
- Use the slider to enable or disable the tunnel.
- In Pre-Shared Key, enter a secure password.
- You will use this key to securely connect to your local endpoint.
- You can click Generate New Key to generate a password.
- You can also create own key. If you create your own key, the key must contain the following requirements:
- 16 to 96 characters
- One lower-case letter
- One upper-case letter
- One number
- In Encryption Mode, select an encryption mode:
- Advanced Encryption Standard (AES-128) or (AES-256)Data Encryption Standard (3DES) .
- Mark a Diffie-Hellman Group option:
- DH-2
- MODP with a 1024-bit modulus
- DH-5
- MODP with a 1536-bit modulus
- DH-2
- Enable or disable Perfect Forward Secrecy (PFD).
- In Remote Peer IP Address, enter your VPN peer IP address.
- In Remote Host/Networks (CIDR), enter your LAN encryption domain, and then click the plus ( + ) sign.
- In Local Host/Networks (CIDR), enter the Armor LAN encryption domain, and then click the plus ( + ) sign.
- This information is the same as your secure cloud server IP address at Armor.
- Click Save Changes.
...