Create an IPsec Profile
Table of Contents
Create an IPsec Profile
Learn how to create an IPsec profile for creating a tunnel
between Prisma SD-WAN and Netskope security cloud.
Create an IPsec profile on the Prisma SD-WAN
web interface.
- Navigate to .
- ClickAdd IPsec Profile.
- On theInfotab, enter a name and an optional description.
- Configure IKE settings.
- Netskope Security Cloud supportsIKEv2configuration only.
- Netskope supports the following encryption ciphers: AES128-CBC,AES192-CBC, AES256-CBC.
- Netskope supports the following hash algorithms: SHA256, SHA384,SHA512.
- Netskope supports the following DH Groups: 14, 15, 16, 18.
- DPD must be enabled.
- ClickNext.
- ConfigureESP Groupsettings.
- Netskope supports the following encryption ciphers: AES128-CBC,AES256-CBC, AES128-GCM, AES192-GCM, AES256-GCM, Null.
- Netskope supports the following hash algorithms: SHA256, SHA384,SHA512.
- Netskope supports the following DH Groups:14, 15, 16, 18.
- ClickNext.
- On theAuthenticationtab, selectNoneforType.This is because authentication settings will be configured locally on the device using an IPsecauthentication override.
- ClickNext, review the settings of the profile and then clickSave & Exit.