Skip to main content

Site-to-Site VPN Tunnel

Site-to-Site IKEv2 encrypted tunnel to connect into MAGNET
Request via ServiceNow 

Contacts

EOTSS End User and IT Service Support

Phone

EOTSS End User IT Service Desk Call EOTSS End User and IT Service Support, EOTSS End User IT Service Desk at (844) 435-7629

Support for Commonwealth end users and IT support personnel

Online

ServiceNow Log in to ServiceNow 
Chat with us live! Log in and click "Chat now" 
Send us an email Email EOTSS End User and IT Service Support at MassGov@service-now.com
Learn more about this organization 

The Details

Overview

Site-to-Site IKEv2 tunnels to connect to hosted applications by third-party vendors back into MAGNET for agency access. This service is for state agencies as well as business partners.  

  • Must use IKEv2.
  • Must use AES256 bit encryption or higher, we do not support GCM.
  • Must use SHA256 or higher.
  • Must use Group 14 or higher.
  • Must be route-based (no policy-based VPN will be supported).
  • Must use either Static Routes or BGP as the routing protocol.
  • Must use for remote IKE Gateway IP Address 170.63.208.11/24 as the primary and 170.63.208.139/24 as a backup if redundancy is needed.

Customer must fill out and attach the VPN Tunnel Request form

Fee

N/A

How to request

Designated Security Officers ONLY - will request on behalf of Commonwealth employees and their authorized business partners, whether or not currently supported by EOTSS.

Request service via ServiceNow.

Service Level Expectation (SLE)

Site-to-Site VPN Tunnel

SLEResponsibilities/Dependencies

Fulfillment: Due to the variable nature of this request item, fulfillment time will differ on a case-to-case basis. SLE will be communicated following the finalization of customer requirements.

EOTSS expects the majority of these requests to be fulfilled within 3 months once an implementation plan and scope have been determined.

Customer

  • Responsible for adhering to the EOTSS Standard Rules of Engagement.
  • Responsible for submitting accurate information to EOTSS during the intake and discovery process.
  • Sharing complete requirements will ensure that accurate SLEs are provided and met.
  • Responsible for filling out and attaching the VPN Tunnel Request form

EOTSS

  • Responsible for coordinating with the customer to finalize their requirements. 
  • Once all requirements are collected/finalized following intake and discovery, EOTSS will determine the appropriate SLE for the request and communicate to the customer.
  • Responsible for building the Site-to-Site VPN tunnel and setting up monitoring per the customer’s requirements.

Vendor

  • When applicable, this service is dependent on vendor availability. 

More Info

To learn more about Commonwealth VPN, including how to install and use the client, please visit our Commonwealth VPN service page.

Contact

Phone
EOTSS End User IT Service Desk Call EOTSS End User and IT Service Support, EOTSS End User IT Service Desk at (844) 435-7629

Support for Commonwealth end users and IT support personnel

Online
ServiceNow Log in to ServiceNow 
Chat with us live! Log in and click "Chat now" 
Send us an email Email EOTSS End User and IT Service Support at MassGov@service-now.com
Learn more about this organization 

Help Us Improve Mass.gov  with your feedback

Please do not include personal or contact information.
Feedback