Process of Setting Up a Hybrid Cloud Network Using Enterprise Router, VPN, and Direct Connect (Virtual Gateway)

Step 1: Create Cloud Resources

1. Create an enterprise router. (Only one enterprise router is required in a region.)
2. Create a service VPC with a subnet.
3. Create an ECS in the subnet of the service VPC.

Step 2: Create a Virtual Gateway Attachment to the Enterprise Router

1. Create a Direct Connect connection to connect an on-premises data center to Huawei Cloud over the line you lease from a carrier.
2. Create a virtual gateway and attach it to the enterprise router.
3. Create a virtual interface to associate the virtual gateway with the Direct Connect connection.
4. Configure routes on the network device in the on-premises data center.

Step 3: Create a VPC Attachment for the Enterprise Router

1. Attach the service VPC to the enterprise router.
2. In the VPC route table, add a route with the enterprise router as the next hop and the on-premises network CIDR block as the destination.

Step 4: Verify the Network Connectivity Over the Direct Connect Connection

Log in to the ECS and run the ping command to verify the network connectivity over the Direct Connect connection.

Step 5: Create a VPN Gateway Attachment for the Enterprise Router

1. Create a VPN gateway and attach it to the enterprise router.
2. Create a customer gateway.
3. Create two VPN connections that connect the VPN gateway and the customer gateway and work in an active/standby pair.
4. Configure routes on the network device in the on-premises data center.

Step 6: Verify the Network Connectivity Over the VPN Connection

Log in to the ECS and run the ping command to verify the network connectivity over a VPN connection.

VPN works as an alternative to Direct Connect. If you need to verify the network connectivity over a VPN connection, you need to simulate a fault on the Direct Connect connection.