Abbreviations for configuration parameters in IPsec examples

Abbreviations are used for configuration parameters in the configuration examples. Replace the abbreviations with the appropriate addresses and values for your configuration.

Parameter Description
<supported_ipsec_cipher> Select an IPsec cipher supported by the service.
<supported_ike_cipher> Select an IKE cipher supported by the service.
<supported_dh_group> Select a DH group supported by the service.
<primary_destination_address> The Cloud FQDN of the Forcepoint ONE SSE data center for your primary tunnel. Displayed for the connection in the Analyze > Tunnels > Setup Info in Forcepoint ONE SSE.

To know the public IP address of the primary data center, you need to nslookup using the Cloud FQDN.

<Secondary_destination_address> The Cloud FQDN of the Forcepoint ONE SSE data center for your secondary tunnel. Displayed for the connection in the Analyze > Tunnels > Setup Info in Forcepoint ONE SSE.

To know the public IP address of the secondary data center, you need to nslookup using the Cloud FQDN.

<outgoing_interface> The name of the egress interface on your edge device.
<incoming_interface> The name of the ingress interface on your edge device.
<pre-shared_key> The pre-shared key configured for the tunnel. Must match the key configured for the connection and can be found under the Analyze > Tunnels > Setup Info in Forcepoint ONE SSE.
<local_fqdn_id> The FQDN (DNS hostname) of the edge device.
<public_egress_IP> The public egress IP address of the edge device.
<primary_cloud_ike_id> The Cloud IKE ID for the Forcepoint ONE SSE primary data center. Displayed for the connection under the Analyze > Tunnels > Setup Info in Forcepoint ONE SSE portal.
<secondary_cloud_ike_id> The Cloud IKE ID for the Forcepoint ONE SSE secondary data center. Displayed for the connection under the Analyze > Tunnels > Setup Info in Forcepoint ONE SSE.
<primary_monitoring_address> The tunnel monitoring IP address for the primary tunnel connection. Displayed for the connection under the Analyze > Tunnels > Setup Info in Forcepoint ONE SSE.
<secondary_monitoring_address> The tunnel monitoring IP address for the secondary tunnel connection. Displayed for the connection under the Analyze > Tunnels > Setup Info in Forcepoint ONE SSE.
<client_subnet> IP address range for the internal subnet whose traffic will be forwarded to the tunnel.
<dummy_subnet#_ip#> Dummy private IP addresses used as the inner tunnel IP addresses for routing traffic to the tunnel interface.