检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
The destination CIDR block of the access policy needs to include the private IP address of the ECS to be accessed.
Do I Need to Install IPsec Software on Each Server That Needs to Access an ECS to Establish a VPN Connection? No. VPN connects two LANs. Multiple servers in the on-premises data center use the same public IP address to access the cloud.
If an EIP is bound to an ECS, devices on a non-VPN network can access the ECS using the EIP. If the ECS can be accessed only through a VPN, unbind the EIP from the ECS after the VPN connection is active.
Why Does an ECS Have EIP Access Information After I Enable a VPN? A possible cause is that the ECS has an EIP bound before the VPN is used. In this scenario, you can access the ECS through both the VPN and the EIP.
Ping the ECS in the VPC from the cloud desktop. Ping the cloud desktop from the ECS in the VPC. The cloud desktop and the ECS in the VPC can communicate with each other successfully.
Do I Need to Add a Route for an ECS with Multiple NICs to Reach the On-premises Network? If the primary network interface card (NIC) is used to establish a VPN connection with the on-premises network, no route needs to be added.
Do I Need to Add a Route for an ECS with Multiple NICs to Reach the On-premises Network? If a primary NIC is used to establish a VPN with the on-premises network, no route needs to be added.
VPC Elastic Cloud Server (ECS) Allows you to create security groups, add security group rules, and add ECSs to the security groups, improving ECS access security.
Packet Loss Occurs Symptom Packet loss occurs when a server in an on-premises data center pings an ECS in a Huawei Cloud VPC. Packet loss occurs when an ECS in a Huawei Cloud VPC pings a server in an on-premises data center.
What Are the Changes to the Route for Accessing an ECS? When configuring a VPN, you need to perform the following operations on the gateway in your on-premises data center: Configure IKE and IPsec policies. Set the connection mode to route-based or policy-based.
For example, before a VPN is created, on-premises users access the ECS through the EIP bound to the ECS. After a VPN is created, data flows matching the ACL rules access the private IP address of the ECS through the VPN tunnel. Parent topic: General Questions
What Are the Changes to the Route for Accessing an ECS? When configuring a VPN, you need to perform the following operations on the gateway in your on-premises data center: Configure IKE and IPsec policies.
For example, before a VPN is created, on-premises users access the ECS through the EIP bound to the ECS. After a VPN is created, data flows matching the ACL rules access the private IP address of the ECS through the VPN tunnel. Parent topic: Networking and Application Scenarios
If your on-premises hosts need to access an ECS on the cloud through a VPN, you do not need to purchase any EIPs for the ECS. If an ECS needs to provide services accessible from the Internet, you need to purchase an EIP for the ECS. Parent topic: General Consulting
If your on-premises hosts need to access an ECS on the cloud through a VPN, you do not need to purchase any EIPs for the ECS. If an ECS needs to provide services accessible from the Internet, you need to purchase an EIP for the ECS. Parent topic: Public Addresses
If your on-premises server needs to access an ECS on the cloud through a VPN, you do not need to purchase an EIP. If the ECS needs to provide services accessible from the Internet, an EIP is required. Parent topic: EIPs
If your on-premises server needs to access an ECS on the cloud through a VPN, you do not need to purchase an EIP. If the ECS needs to provide services accessible from the Internet, an EIP is required. Parent topic: Product Consultation
If your on-premises server needs to access an ECS on the cloud through a VPN, you do not need to purchase an EIP. If the ECS needs to provide services accessible from the Internet, an EIP is required. Parent topic: Product Consultation
On the Elastic Cloud Server page, locate the target ECS, and view its private IP address in the IP Address column.
If the bandwidth size is large, multiple ECSs are required to test the VPN gateway bandwidth because the forwarding performance of an ECS is limited. This scenario has high requirements on ECS specifications.
