This is a fully ready to go Site-2-site VPN connection set-up on Oracle OCI. The project description can be found on an earlier post of mine https://guillaumesblog.net/index.php/hybrid-cloud-home-lab-to-oracle-oci/
The terraform files are available on my GitHub repo here.
- .tf files are meant to be uploaded at once in Oracle Resource Manager, so please pack them manually into a folder.
- They deploy for you the following resources
- oci_core_cpe
- oci_core_drg
- oci_core_drg_attachment
- oci_core_instance
- oci_core_internet_gateway
- oci_core_ipsec
- oci_core_ipsec_connection_tunnel_management
- oci_core_nat_gateway
- oci_core_route_table
- oci_core_security_list
- oci_core_subnet
- oci_core_vcn
- I’ve left my public key here for reference, you want to update that with yours and then update compute.tf with your correct ssh_authorized_keys path.
- Once deployed you must go on the ipsec connection on the Oracle console and retrieve the Oracle endpoint and secret and begin your router configuration below.
I’ve used a Cisco 2921 version 15.2, you can find the configuration on the router.cfg file and have to update it like so:
- update the pre-shared-key address with the secret
- change the IP at Z.Z.Z.Z with the OCI endpoint
- change the IP at X.X.X.X with your IP
Enjoy!