Help Center/ Virtual Private Network/ Administrator Guide/ S2C Enterprise Edition VPN/ Interconnection with a Hillstone Firewall/ BGP Routing Mode/ Data Plan
Updated on 2025-08-19 GMT+08:00
View PDF
Share

Data Plan

Table 1 Data plan

Category

Item

Example Value

Example Value for the Huawei Cloud Side

VPC

Subnet

172.16.0.0/16

192.168.0.0/24

192.168.1.0/24

VPN gateway

Gateway IP address

1.1.1.1 (IP address of the uplink public network interface GE0/0 on the Hillstone firewall)

Active EIP: 1.1.1.2

Active EIP 2: 2.2.2.2

Interconnection subnet

-

192.168.2.0/24

BGP ASN

64515

64512

VPN connection

Tunnel interface addresses under Connection 1's Configuration
  • Local tunnel interface address: 169.254.70.1/30
  • Customer tunnel interface address: 169.254.70.2/30

Tunnel interface addresses under Connection 2's Configuration
  • Local tunnel interface address: 169.254.71.1/30
  • Customer tunnel interface address: 169.254.71.2/30

IKE policy
  • Version: v1
  • Negotiation mode: main
  • Authentication algorithm: SHA2-256
  • Encryption algorithm: AES-256
  • DH algorithm: group 15
  • Lifetime (s): 86400
  • Local ID: FQDN
  • Peer ID: FQDN

IPsec policy
  • Authentication algorithm: SHA2-256
  • Encryption algorithm: AES-256
  • PFS: DH group 15
  • Lifetime (s): 28800
Parent topic: BGP Routing Mode