Do I Need to Install IPsec Software on Each Server That Needs to Access an ECS to Establish a VPN Connection?
No.
VPN connects two LANs. Multiple servers in the on-premises data center use the same public IP address to access the cloud. If you install IPsec software on the on-premises servers, the VPN gateway on the cloud will receive negotiation packets from different servers and then the system receives a large amount of repeated negotiation information, which causes connection exceptions or even connection unavailability.
It is recommended that you use the egress firewall to configure a VPN to connect to the cloud. When creating a VPN, you can specify multiple CIDR blocks. You should only allow servers of developers to access the ECS on the cloud based on the security group rules on the cloud or the security rules of the on-premises data center.
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot
