Will an IPsec VPN Connection Be Established Automatically?
After you complete configurations at both ends of an IPsec VPN connection, the VPN connection will not be automatically established only after data flows between the two ends of the connection. If no data flows between the cloud and the on-premises data center, the VPN connection will always be in the down state. Any data generated by accessing servers or pinging between servers can trigger the establishment of a VPN connection.
The establishment of a VPN connection can be triggered in either of the following two conditions: The VPN gateway and the remote gateway automatically trigger negotiation. The cloud and on-premises servers access each other via the VPN connection to be established.
However, automatic establishment of a VPN connection cannot be triggered by a VPN gateway on Huawei Cloud. Verify that the establishment of your VPN connection can be triggered by the data flows between the two ends of the VPN connection. That is, check whether a VPN connection can be established after you ping a cloud server from an on-premises server, and whether a VPN connection can be established after you disconnect the connection and ping an on-premises server from a cloud server.
The source and destination addresses of the ping packets must be protected by the VPN.
Before a VPN connection is established, the gateway IP addresses at both ends can be pinged. However, pinging the gateway IP addresses does not trigger the establishment of the VPN connection.
VPN Negotiation and Interconnection FAQs
- What Devices Can Be Connected to Huawei Cloud Through a VPN?
- What Are VPN Negotiation Parameters? What Are Their Default Values?
- Will an IPsec VPN Connection Be Established Automatically?
- How Do I Configure a VPN on an On-premises Device? (Configuring the VPN on a Huawei USG6600 Series Firewall)
- How Should I Configure an On-premises Gateway When I Use a VPN to Connect to the Cloud?
- Can Huawei Cloud VPN Connect to a Remote Gateway Through a Domain Name?
- How Many Tunnels Does My VPN Connection Have?
- How Do I Allow Specific Servers to Access a VPC Subnet Through a Created VPN Connection?
- Do Huawei Cloud VPNs Have the DPD Mechanism Enabled?
- How Can I Use Security Groups to Prevent ECSs in a VPC From Being Accessed Through a VPN to Implement Security Isolation?
- Will a VPN Connection Be Reestablished After Its Configuration Is Modified?
- Why Cannot I Initiate Negotiation from Amazon Web Services to Huawei Cloud After They Are Interconnected?
- How Do I Configure DPD for Interconnecting with Huawei Cloud?
- What Should I Do If My Firewall Cannot Receive Response Packets from the Huawei Cloud VPN Gateway in the IKE Phase?
- What Should I Do If My Firewall Cannot Receive Response Packets from the Huawei Cloud VPN Subnet?
- What Are the Bits of the DH Groups Used by Huawei Cloud VPN?
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbotmore