Home > Armor Complete - Product User Guide > L2L VPN Tunnel

If you are an upgraded user, then any L2L VPN tunnel that you created in Generation 3 (my.armor.com) will not be displayed in the Armor Management Portal (AMP). If you need to modify a Generation 3 L2L VPN tunnel, please contact Armor Support via a support ticket.

Any L2L VPN tunnel that you create in AMP will be visible and configurable in AMP.



Create an L2L VPN tunnel with a new workload 

To create an L2L VPN tunnel, you must have an existing workload with an existing virtual machine. To learn how to create a virtual machine, see Create a virtual machine with a new workload.

  1. In the Armor Management Portal (AMP), in the left-side navigation, click Infrastructure.
  2. Click L2L VPN.
  3. In the top menu, in the drop-down menu, select the data center where the virtual machine lives. 
  4. Click the plus ( + ) icon. 
  5. In Tunnel Name, enter a descriptive name. 
  6. Use the slider to enable or disable the tunnel. 
  7. In Pre-Shared Key, enter a secure password. 
  8. In Encryption Mode, select an encryption mode:
  9. Mark a Diffie-Hellman Group option: 
  10. Enable or disable Perfect Forward Secrecy (PFD).
  11. In Remote Peer IP Address, enter your VPN peer IP address. 
  12. In Remote Host/Networks (CIDR), enter your LAN encryption domain, and then click the plus ( + ) sign. 
  13. In Local Host/Networks (CIDR), enter the Armor LAN encryption domain, and then click the plus ( + ) sign. 
  14. Click Save Changes

Edit an L2L VPN tunnel

  1. In the Armor Management Portal (AMP), in the left-side navigation, click Infrastructure
  2. Click L2L VPN.
  3. If you have virtual machines in various data centers, then click the corresponding data center. 
  4. Locate and hover over the desired virtual machine. 
  5. Click the vertical ellipses. 
  6. Click Edit
  7. Make your desired changes, and then click Save Changes

Enable, disable, or delete an L2L VPN tunnel

  1. In the Armor Management Portal (AMP), in the left-side navigation, click Infrastructure
  2. Click L2L VPN.
  3. If you have virtual machines in various data centers, then click the corresponding data center. 
  4. Locate and hover over the desired virtual machine. 
  5. Click the vertical ellipses. 
  6. Click Enable, Disable, or Delete. 
  7. Make your desired changes, and then click Save Changes

Troubleshoot L2L VPN screen

If you do not see any data in the L2L VPN screen, consider that: