Skip to main content

Creating a Tunnel Gateway

This page explains how to create a Tunnel Gateway resource using the OCX Portal.

During the creation of a Tunnel Gateway, you will specify IPv4 addresses to connect the OCX network with the Tunnel Gateway. Because this creates a redundant IPv4 interface using VRRP, configure a Local IPv4 Address (Master), a Local IPv4 Address (Backup), and a VRRP Virtual IPv4 Address.

Preparation

Before creating a Tunnel Gateway resource, please confirm the following:

  • Your User Role is either admin or user.

Procedure for Creating a Tunnel Gateway Resource

  1. Log in to the OCX Portal.
  2. From the left navigation bar, click [Tunnel Gateways].
  3. On the Tunnel Gateways page, click [+ Create] in the upper right corner.
  4. The screen will switch to the Tunnel Gateway creation step. Configure the following items and click [Create].
    • Name
      • Enter an arbitrary name. A name that is easy to identify will simplify management.
      • Maximum length: 40 characters.
      • Leading and trailing whitespaces are automatically removed.
    • Local IPv4 Address (Master)
      • Enter the address in CIDR (IPv4/mask) format. (e.g., 192.168.0.1/24)
    • Local IPv4 Address (Backup)
      • Enter the address in CIDR (IPv4/mask) format. (e.g., 192.168.0.2/24)
    • VRRP Virtual IPv4 Address
      • Enter the virtual IPv4 address for VRRP. (e.g., 192.168.0.254)
  5. A confirmation pop-up will appear. Review the details and click [Create].
  6. The created resource will appear in the list at the top of the screen. Confirm that the status next to the resource becomes available.
    • Note: The status will show creating before becoming available. It may take some time to activate.
    • Tip: You can click the [Refresh] button in the upper right corner to update the status.

Remarks

  • Since the Tunnel Gateway configures an IPv4 interface using VRRP, please note the following:

    • In addition to the local IPv4 addresses, a VRRP Virtual IPv4 address must be set. Please use a subnet of appropriate size. (For example, if you specify a /31 subnet assuming a Point-to-Point connection, there will not be enough addresses for VRRP, and the configuration will fail.)

    • Network addresses and broadcast addresses cannot be assigned to the Local IPv4 or VRRP Virtual IPv4 addresses.

    • Only the IPv4 address family is supported. IPv6 addresses cannot be configured.

    • Communication becomes possible after the Tunnel Gateway is created and then attached to a VC (Virtual Circuit) as a Tunnel Gateway.

    • The following IPv4 address ranges cannot be used for the interface:

      Address RangeRemarks
      0.0.0.0/8RFC1122 "This network"
      127.0.0.0/8RFC1122 Localhost
      192.0.0.0/24RFC5736 IETF Protocol Assignments
      192.0.2.0/24RFC5737 TEST-NET-1
      192.88.99.0/24RFC7526 6to4 Anycast Relay
      198.18.0.0/15RFC2544 Benchmarking
      198.51.100.0/24RFC5737 TEST-NET-2
      203.0.113.0/24RFC5737 TEST-NET-3
      240.0.0.0/4Reserved / Future use
      224.0.0.0/4Multicast Address

This completes the creation of the Tunnel Gateway resource.