Configuration on TheGreenBow VPN Client
Prerequisites
- TheGreenBow VPN Client has been installed on a Windows host.
- A VPC and its subnets have been created.
Procedure
- Start TheGreenBow VPN Client on the Windows host.
TheGreenBow VPN Client 6.6 is used as an example. The configuration pages may vary according to the client version. For details, see the product documentation of the corresponding version.
- Choose , right-click the configuration examples tgbtestIPV4 and tgbtestIPV6, and choose Delete from the shortcut menu.
- Create a VPN gateway.
Choose , right-click IKE V2, and choose New IKE AUTH from the shortcut menu.
- Configure VPN gateway information.
Choose , and enter the required information.
Table 1 describes the key parameters. For other parameters, use their default settings.Table 1 Parameter description Tab Page
Parameter
Description
Value
Authentication
Interface
Select the public IP address of TheGreenBow VPN Client.
1.1.1.1
Remote Gateway
Select the active EIP of the Huawei Cloud VPN gateway, which is used to communicate with TheGreenBow VPN Client.
1.1.1.2
Preshared Key
Select Preshared Key.
The value must be the same as the PSK configured in Table 3.
Test@123
Encryption
The settings must be the same as those of the IKE policy configured in Table 3.
- Encryption: AES CBC 256
- Authentication: SHA2-256
- Key Group: DH15 (MODP 3072)
Authentication
Key Group
Protocol
Local ID
Select IPV4 Address, and enter the public IP address of TheGreenBow VPN Client.
The value must be the same as the customer ID configured in Table 2.
1.1.1.1
Remote ID
Select IPV4 address, and enter the active EIP of the Huawei Cloud VPN gateway.
The value must be the same as the local ID configured in Table 3.
1.1.1.2
Gateway
Redundant Gateway
Leave this parameter blank when TheGreenBow VPN Client has a single IP address.
Leave this parameter blank.
- Create a VPN connection.
Choose , right-click Ikev2Gateway, and choose New Child SA from the shortcut menu.
- Configure VPN connection information.
Choose , deselect Request configuration from the gateway, and enter related information as prompted.
Table 2 describes the key parameters. For other parameters, use their default settings.
Table 2 Parameter description Tab Page
Parameter
Description
Value
Child SA
VPN Client address
Enter the private IP address of TheGreenBow VPN Client.
172.16.1.1
Address type
Select Subnet address.
Subnet address
Remote LAN address
CIDR block of the Huawei Cloud VPC.
192.168.0.0
Subnet mask
255.255.0.0
Encryption
The settings must be the same as those of the IPsec policy configured in Table 3.
- Encryption: AES CBC 256
- Integrity: SHA2-256
- Diffie-Hellman: DH15 (MODP 3072)
- Child SA Lifetime: 3600 sec
Integrity
Diffie-Hellman
Child SA Lifetime
Automation
Automatic Open mode
-
- Select Automatically open this tunnel when VPN Client starts after logon.
- Select Automatically open this tunnel on traffic detection.
- Choose Configuration from the menu bar in the upper left corner, and then click Save.
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot
