Help Center>
Virtual Private Network>
FAQs>
Classic VPN>
VPN Negotiation and Interconnection>
What Should I Do If My Firewall Cannot Receive Response Packets from the Huawei Cloud VPN Subnet?
Updated on 2023-06-16 GMT+08:00
What Should I Do If My Firewall Cannot Receive Response Packets from the Huawei Cloud VPN Subnet?
- Check the routes, security policies, NAT configuration, interesting traffic, and negotiation policies for phase 2 negotiation on the on-premises gateway device.
- Route configurations: Route the data for accessing cloud subnets to tunnels.
- Security policies: Allow traffic from on-premises subnets to cloud subnets.
- NAT policies: Do not perform NAT when on-premises subnets access cloud subnets.
- Interesting traffic: Interesting traffic at both ends are configured in the mirrored way. The address object name cannot be used for the interesting traffic configured using IKEv2.
- Negotiation policies: Ensure the negotiations policies, especially PFS, at both ends are the same.
- After confirming that both phase 1 and phase 2 negotiations are normal, ensure that the security group rules on the cloud allow the on-premises subnets to access the cloud subnets using ICMP.
Parent topic: VPN Negotiation and Interconnection
VPN Negotiation and Interconnection FAQs
- What Devices Can Be Connected to Huawei Cloud Through a VPN?
- What Are VPN Negotiation Parameters? What Are Their Default Values?
- Will an IPsec VPN Connection Be Established Automatically?
- How Do I Configure a VPN on an On-premises Device? (Configuring the VPN on a Huawei USG6600 Series Firewall)
- How Should I Configure an On-premises Gateway When I Use a VPN to Connect to the Cloud?
- Can Huawei Cloud VPN Connect to a Remote Gateway Through a Domain Name?
- How Many Tunnels Does My VPN Connection Have?
- How Do I Allow Specific Servers to Access a VPC Subnet Through a Created VPN Connection?
- Do Huawei Cloud VPNs Have the DPD Mechanism Enabled?
- How Can I Use Security Groups to Prevent ECSs in a VPC From Being Accessed Through a VPN to Implement Security Isolation?
- Will a VPN Connection Be Reestablished After Its Configuration Is Modified?
- Why Cannot I Initiate Negotiation from Amazon Web Services to Huawei Cloud After They Are Interconnected?
- How Do I Configure DPD for Interconnecting with Huawei Cloud?
- What Should I Do If My Firewall Cannot Receive Response Packets from the Huawei Cloud VPN Gateway in the IKE Phase?
- What Should I Do If My Firewall Cannot Receive Response Packets from the Huawei Cloud VPN Subnet?
- What Are the Bits of the DH Groups Used by Huawei Cloud VPN?
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
The system is busy. Please try again later.
For any further questions, feel free to contact us through the chatbot.
Chatbotmore
