IPsec VPN between Google Cloud Platform and DrayTek

Google Could Platform supports IPsec VPN, this allows users to link the platform to their private network with a secured connection, and add a layer of protection to the data transferring. This article demonstrates how to establish a VPN connection between Vigor Router and the Google platform.

The Configuration of Google Cloud Platform

1. Enter the Google Cloud Platform, Go to Menu > Hybrid Connectivity and click VPN.

a screenshot of Google Cloud Platform VPN

2. Click Create VPN Connection.

a screenshot of Google Cloud Platform VPN

3. Select the Region based on your location, then click IP address.

a screenshot of Google Cloud Platform VPN

4. Name the IP address and click RESERVE.

a screenshot of Google Cloud Platform VPN

5. In tunnel settings,

  1. Input Vigor Router's WAN in Remote peer IP address
  2. Select IKEv2 for IKE version
  3. Input Shared secret
  4. Select "Route-based" for Routing options
  5. Enter the LAN IP subnet of Vigor Router for Remote network IP ranges
a screenshot of Google Cloud Platform VPN

6. Click Network for the VPN interface just created.

a screenshot of Google Cloud Platform VPN

7. The network of this project will be shown, copy the IP address range of the region you select in step 3.   

a screenshot of Google Cloud Platform VPN
The Configuration of Vigor Router

8. Go to VPN and Remote Access> LAN to LAN, click on an available index.

  1. Enter the Profile name
  2. Choose "Dial-in" for Call Direction
  3. Check Enable this profile
  4. Input 0 for Idle Timeout, so this tunnel will remain connected even when there’s no traffic.
a screenshot of DrayOS VPN

9. Select "IPsec Tunnel" for Allowed Dial-In Type, and specify Remote VPN gateway of Google IP address in step 6. At TCP/IP Network Settings, input the IP and subnet mask copied from step 6 in Remote network IP and Remote Network Mask. And the IP of the local subnet you want to link to Google Cloud at Local Network IP and Local Network Mask.

a screenshot of DrayOS VPN

10.Click IKE Pre-Shared Key, enter the Pre-shared key as the same as the shared secret in step 5.

a screenshot of DrayOS VPN

11. After the configuration, VPN should be established automatically. We will see the VPN information at Remote Access >> Connection Management.

a screenshot of DrayOS VPN a screenshot of Google Cloud Platform VPN

Published On:2018-11-06 

Was this helpful?