Configuration example for Oracle IPsec, seems common issue. Add local addresses to each IPSEC endpoint and configure the Oracle IPSEC side to have similar endpoints (they were optional).
Add local addresses to each IPSEC endpoint and configure the Oracle IPSEC side to have similar endpoints:
/interface bridge
add name=br-oci-ipsec
/ip address
...
add address=10.34.2.2/30 comment="oracle OCI ipsec - tunnel1" interface=br-oci-ipsec network=10.34.2.0
add address=10.34.2.6/30 comment="oracle OCI ipsec - tunnel2" interface=br-oci-ipsec network=10.34.2.4
/ip ipsec policy
set 0 disabled=yes
add dst-address=10.34.0.0/16 peer=tunnel-1-vcn-10-34-0-0 src-address=192.168.0.0/16 tunnel=yes # existing config
add dst-address=10.34.0.0/16 peer=tunnel-2-vcn-10-34-0-0 src-address=192.168.0.0/16 tunnel=yes # existing config
add dst-address=10.34.2.0/30 peer=tunnel-1-vcn-10-34-0-0 src-address=10.34.2.0/30 tunnel=yes # new
add dst-address=10.34.2.4/30 peer=tunnel-2-vcn-10-34-0-0 src-address=10.34.2.4/30 tunnel=yes # new
The corresponding Oracle OCI tunnel configuration with IPv4 inside tunnel interface CPE / Oracle addresses configured as 10.34.2.2/30 & 10.34.2.1/30.
You may also want to use visual panels to communicate related information, tips or things users need to be aware of. |
Related articles appear here based on the labels you select. Click to edit the macro and add or change labels.
|