Expand all | Collapse all
Create an IPsec Profile
Learn how to create an IPsec profile for creating a tunnel
between Prisma SD-WAN and Netskope security cloud.
Create an IPsec profile on the Prisma SD-WAN
web interface.
On the
Info
tab, enter a name
and an optional description.
Configure IKE settings.
Netskope Security Cloud supports
IKEv2
configuration
only.
Netskope supports the following encryption ciphers: AES128-CBC,AES192-CBC,
AES256-CBC.
Netskope supports the following hash algorithms: SHA256,
SHA384,SHA512.
Netskope supports the following DH Groups: 14, 15, 16, 18.
Configure
ESP Group
settings.
Netskope supports the following encryption ciphers:
AES128-CBC,AES256-CBC, AES128-GCM, AES192-GCM, AES256-GCM, Null.
Netskope supports the following hash algorithms: SHA256,
SHA384,SHA512.
Netskope supports the following DH Groups:14, 15, 16, 18.
On the
Authentication
tab, select
None
for
Type
.
This is because authentication settings will be configured
locally on the device using an IPsecauthentication override.
Click
Next
, review the settings
of the profile and then click
Save & Exit
.