Log in links for this page
- This page, Site-to-Site VPN Tunnel, is offered by
- Office of Security and Operations
Site-to-Site VPN Tunnel
Contacts
EOTSS End User and IT Service Support
Phone
Support for Commonwealth end users and IT support personnel
The Details of Site-to-Site VPN Tunnel
Overview for Site-to-Site VPN Tunnel
Site-to-Site IKEv2 tunnels to connect to hosted applications by third-party vendors back into MAGNET for agency access. This service is for state agencies as well as business partners.
- Must use IKEv2.
- Must use AES256 bit encryption or higher, we do not support GCM.
- Must use SHA256 or higher.
- Must use Group 14 or higher.
- Must be route-based (no policy-based VPN will be supported).
- Must use either Static Routes or BGP as the routing protocol.
- Must use for remote IKE Gateway IP Address 170.63.208.11/24 as the primary and 170.63.208.139/24 as a backup if redundancy is needed.
Customer must fill out and attach the VPN Tunnel Request form
Fee for Site-to-Site VPN Tunnel
N/A
How to request Site-to-Site VPN Tunnel
Note: DSO access only
Designated Security Officers ONLY - will request on behalf of Commonwealth employees and their authorized business partners, whether or not currently supported by EOTSS.
More Info for Site-to-Site VPN Tunnel
To learn more about Commonwealth VPN, including how to install and use the client, please visit our Commonwealth VPN service page.
Contact for Site-to-Site VPN Tunnel
Phone
Support for Commonwealth end users and IT support personnel