Abbreviations for configuration parameters in IPsec examples
Abbreviations are used for configuration parameters in the configuration examples. Replace the abbreviations with the appropriate addresses and values for your configuration.
| Parameter | Description |
|---|---|
| <supported_ipsec_algorithm> | Select an IPsec ciphers supported by the service. |
| <supported_ike_algorithm> | Select an IKE ciphers supported by the service. |
| <supported_dh_group> | Select a DH group supported by the service. |
| <primary_destination_address> | The Cloud FQDN of the Forcepoint ONE SSE data center for your
primary tunnel. Displayed for the connection in the in Forcepoint ONE SSE portal. To know the public IP address of the primary data center, you need to nslookup using the Cloud FQDN. |
| <Secondary_destination_address> | The Cloud FQDN of the Forcepoint ONE SSE data center for your
secondary tunnel. Displayed for the connection in the in Forcepoint ONE SSE. To know the public IP address of the secondary data center, you need to nslookup using the Cloud FQDN. |
| <outgoing_interface> | The name of the egress interface on your edge device. |
| <incoming_interface> | The name of the ingress interface on your edge device. |
| <pre-shared_key> | The pre-shared key configured for the tunnel. Must match the key configured for the connection and can be found under the in Forcepoint ONE SSE. |
| <local_fqdn_id> | The FQDN (DNS hostname) of the edge device. |
| <public_egress_IP> | The public egress IP address of the edge device. |
| <monitoring_address> | The tunnel monitoring IP address for the tunnel connection. Displayed for the connection under the in Forcepoint ONE SSE. |
| <client_subnet> | IP address range for the internal subnet whose traffic will be forwarded to the tunnel. |