Skip to main content

Netskope Help

Create a Second Tunnel on Netskope
  1. Log in to the Netskope UI.

  2. On the Home page, click Settings in the bottom left.

  3. Under Settings, click Security Cloud Platform.

  4. Under Traffic Steering, click IPSec. The IPSec page will list all your configured IPSec tunnels.

  5. Click the Add New Tunnel button at the top of the page. The Add New IPSec Tunnel page opens.

  6. Enter or select the new tunnel parameters as follows:

    Parameter

    Description

    Tunnel Name

    Enter a descriptive name for the tunnel. For example, use some combination of the appliance name and interface name.

    Source IP Address

    The public IP address of the WAN interface on the EdgeConnect appliance that will originate the IPSec tunnel.

    In Unity Orchestrator, you can determine an interface’s public IP address on the Interfaces page (Configuration > Networking > Interfaces).

    Source Identity

    Enter a unique name that will identify the EdgeConnect source for this tunnel.

    Use the source identity as the Local IKE Identifier when configuring the tunnel on the EdgeConnect appliance.

    Primary Netskope POP

    Select the same primary Netskope POP that was used for the first tunnel.

    Failover Netskope POP

    Select the same failover POP that was used for the first tunnel.

    Pre-shared Key

    Enter a complex pre-shared key that both sides of the tunnel will use to authenticate one another.

    Use the same pre-shared key when configuring the tunnel on the EdgeConnect appliance.

    Encryption Cipher

    Select AES128-CBC or AES256-CBC for encrypting the connection.

    Maximum Bandwidth

    Select the maximum bandwidth to allow on the tunnel.

  7. When the tunnel configuration is complete, click Add.

    You should see the new tunnel displayed on the Netskope IPSec page.

    image14.jpeg