Help Center> Virtual Private Network> User Guide> Enterprise Edition VPN Connection Management> Modifying a VPN Connection
Updated on 2023-10-20 GMT+08:00
View PDF

Modifying a VPN Connection

Scenarios

A VPN connection is an encrypted communications channel established between a VPN gateway in a VPC and a customer gateway in your on-premises data center. You can modify a VPN connection when required.

Procedure

  1. Log in to the management console.
  2. Click in the upper left corner and select the desired region and project.
  3. Click Service List and choose Networking > Virtual Private Network.
  4. In the navigation pane on the left, choose Virtual Private Network > Enterprise – VPN Connections.
  5. On the VPN Connections page, locate the VPN connection to modify, and click Modify VPN Connection.
  6. Modify VPN connection parameters as prompted.
  7. Click OK.

If you change the PSK or modify the IKE or IPsec policy of a VPN connection, ensure that the new configurations are consistent with those on the customer gateway. Otherwise, the VPN connection will be interrupted.

Only some of the parameters take effect immediately after being modified, as described in Table 1.

Table 1 Time when new parameter settings take effect

Item

Parameter

When New Settings Take Effect

How to Modify

-

PSK
  • When IKEv1 is used, the new setting takes effect in the next negotiation period.
  • When IKEv2 is used, the new setting takes effect after the VPN connection is re-established.
  • When IKEv1 is used:

    Locate the VPN connection to modify, choose More > Reset PSK on the right, and change the PSK as prompted.

  • When IKEv2 is used:
    1. Delete the current VPN connection.
    2. Create a new VPN connection.

IKE policy (IKEv1)

Encryption Algorithm

The new settings take effect in the next negotiation period.

Locate the VPN connection to modify, and click Modify VPN Configuration.

Authentication Algorithm

DH Algorithm

Negotiation Mode

Local ID

Customer ID

Lifetime (s)

Version

The new settings take effect immediately.

IKE policy (IKEv2)

Encryption Algorithm

The new settings take effect in the next negotiation period.

Locate the VPN connection to modify, and click Modify VPN Configuration.

Authentication Algorithm

DH Algorithm

Lifetime (s)

Version

The new settings take effect immediately.

Local ID

The new settings take effect after the VPN connection is re-established.
  1. Delete the current VPN connection.
  2. Create a new VPN connection.

Customer ID

IPsec policy

Encryption Algorithm

The new settings take effect in the next negotiation period.

Locate the VPN connection to modify, and click Modify VPN Configuration.

Authentication Algorithm

PFS

Lifetime (s)

Transfer Protocol

Currently, this parameter cannot be modified on the management console.