VMware Networking Community
huchord
Enthusiast
Enthusiast
‎04-10-2018 07:11 AM

IPSEC tunnel between Edge Services Gateway and other vendor

Looking for any kind of a HOWTO to create an IPSEC tunnel between NSX ESG and 3rd party router.

Tags (1)
0 Kudos
3 Replies
Sreec
VMware Employee
VMware Employee
‎04-10-2018 12:25 PM

There are few examples in the NSX doc itself for below models and overall concept is same for all the models (Just be clear with Phase1&Phase2 values based on NSX version to match with any third party router)

topicUsing a Cisco 2821 Integrated Services Router

topicUsing a Cisco ASA 5510

topicConfiguring a WatchGuard Firebox X500

You may please refer -> NSX Edge VPN Configuration Examples  .

NSX for Newbies – Part 12: Configure IPsec VPN | blog.bertello.org

Cheers,
Sree | VCIX-5X| VCAP-5X| VExpert 7x|Cisco Certified Specialist
Please KUDO helpful posts and mark the thread as solved if answered
0 Kudos
huchord
Enthusiast
Enthusiast
‎04-10-2018 12:37 PM

Sreec,

Thank you - much appreciated.

Any idea how I can debug ISAKMP/IKE/IPSEC directly on the ESG?

0 Kudos
Sreec
VMware Employee
VMware Employee
‎04-10-2018 12:44 PM

Please go through VMware Knowledge Base  once . For VPN logging you can follow below procedure.

You can enable logging of all IPSec VPN traffic.

Procedure

1

Log in to the vSphere Web Client.

2

Click Networking & Security and then click NSX Edges.

3

Double-click an NSX Edge.

4

Click the Manage tab and then click the VPN tab.

5

Click IPSec VPN.

6

Click  next to Logging Policy and click Enable logging to log the traffic flow between the local subnet and peer subnet and select the logging level.

7

Select the log level and click Publish Changes .

Cheers,
Sree | VCIX-5X| VCAP-5X| VExpert 7x|Cisco Certified Specialist
Please KUDO helpful posts and mark the thread as solved if answered
0 Kudos