Site-to-Site IKEv2 encrypted tunnel to connect into MAGNET
Log in links for this page
- This page, Site-to-Site VPN Tunnel, is offered by
- Office of Security and Operations
Site-to-Site VPN Tunnel
Contacts
EOTSS End User and IT Service Support
Phone
EOTSS End User IT Service Desk
Call EOTSS End User and IT Service Support, EOTSS End User IT Service Desk at (844) 435-7629
Support for Commonwealth end users and IT support personnel
The Details of Site-to-Site VPN Tunnel
Overview for Site-to-Site VPN Tunnel
Site-to-Site IKEv2 tunnels to connect to hosted applications by third-party vendors back into MAGNET for agency access. This service is for state agencies as well as business partners.
- Must use IKEv2.
- Must use AES256 bit encryption or higher, we do not support GCM.
- Must use SHA256 or higher.
- Must use Group 14 or higher.
- Must be route-based (no policy-based VPN will be supported).
- Must use either Static Routes or BGP as the routing protocol.
- Must use for remote IKE Gateway IP Address 170.63.208.11/24 as the primary and 170.63.208.139/24 as a backup if redundancy is needed.
Customer must fill out and attach the VPN Tunnel Request form
Fee for Site-to-Site VPN Tunnel
N/A
How to request Site-to-Site VPN Tunnel
Note: DSO access only
Designated Security Officers ONLY - will request on behalf of Commonwealth employees and their authorized business partners, whether or not currently supported by EOTSS.
More Info for Site-to-Site VPN Tunnel
To learn more about Commonwealth VPN, including how to install and use the client, please visit our Commonwealth VPN service page.
Contact for Site-to-Site VPN Tunnel
Phone
EOTSS End User IT Service Desk
Call EOTSS End User and IT Service Support, EOTSS End User IT Service Desk at (844) 435-7629
Support for Commonwealth end users and IT support personnel