How Do I Handle a VPN or Direct Connect Connection Network Failure?
VPN Network
Figure 1 shows your network, the customer gateway, the VPN, and the VPC.
Customer Self-Check Guidance
- Provide your network information.
Obtain information listed in Table 1. This table lists example values. You can determine the actual values based on the example values. You must obtain all actual values of your project.
You can print this table and fill in your values.
Table 1 Network information Item
Description
Example
Value
VPC CIDR block
Required for customer gateway configuration
Example: 10.0.0.0/16
N/A
VPC ID
N/A
N/A
N/A
CIDR block of subnet 1 (can be the same as the VPC CIDR block)
N/A
Example: 10.0.1.0/24
N/A
ECS ID
N/A
N/A
N/A
Customer gateway type (for example, Cisco)
N/A
N/A
N/A
Public IP address used by the customer gateway
N/A
The value must be static.
N/A
- Provide your gateway configuration information.
You can check the gateway connectivity issues based on the following steps:
You must take the IKE, IPsec, ACL rules, and route selection into consideration. You can rectify the failure in any desired sequence. However, it is recommended that you check for the failure in the following sequence: IKE, IPsec, ACL rules, and route selection.
- Obtain the IKE policy used by your gateway device.
- Obtain the IPsec policy used by your gateway device.
- Obtain the ACL rule used by your gateway device.
- Check whether your gateway device can communicate with the gateway devices on the cloud.
The commands used on different gateway devices are different. You can run the commands based on your gateway device (such as Cisco, H3C, AR, or Fortinet device) to obtain the preceding required information.
O&M Operations That Require Assistance
You must send communication requests from the ECSs to the remote device.
Method:
Log in to an ECS and ping an IP address in your on-premises data center.
Connectivity FAQs
- Does a VPN Allow Communication Between Two VPCs?
- Why Are Internet or Internal Domain Names in the Cloud Inaccessible Through Domain Names When My ECS Has Multiple NICs?
- What Are the Priorities of the Custom Route and EIP If Both Are Configured for an ECS to Enable the ECS to Access the Internet?
- Why Are There Intermittent Interruptions When a Local Host Accesses a Website Built on an ECS?
- Why Do ECSs Using Private IP Addresses in the Same Subnet Only Support One-Way Communication?
- Why Does Communication Fail Between Two ECSs in the Same VPC or Packet Loss Occur When They Communicate?
- Why Can't My ECS Use Cloud-init?
- Why Can't My ECS Access the Internet Even After an EIP Is Bound?
- Why Is My ECS Unable to Communicate at a Layer 2 or Layer 3 Network?
- How Do I Handle a BMS Network Failure?
- Why Does My ECS Fail to Obtain an IP Address?
- How Do I Handle a VPN or Direct Connect Connection Network Failure?
- Why Can My Server Be Accessed from the Internet But Cannot Access the Internet?
- Why Can't I Access Websites Using IPv6 Addresses After IPv4/IPv6 Dual Stack Is Configured?
- Why Does My ECS Fail to Communicate with Other After It Has Firewall Installed?
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.
more