VPN Gateway

VPN Gateway is an Internet-based service that establishes a connection between a VPC and your on-premise data center.

VPN Gateway is used to transmit encrypted traffic between Alibaba Cloud VPCs and enterprise data centers, enterprise office networks, or Internet platforms over the Internet. You can use this service to establish reliable and secure connections for data transmission. According to China’s regulations and laws, Alibaba Cloud VPN Gateway cannot be used as an Internet access service.


Supports Internet Key Exchange (IKE), IPsec, and SSL to guarantee the security and reliability of data transmission.
High availability
Adopts hot-standby architecture to achieve a failover of less than a few seconds, session continuity, and zero service downtime.
Provides secure internet-based connections to implement hybrid cloud computing, which is more cost-effective than leased lines.
Ease of use
VPN Gateway is a ready-to-use service that supports dynamic configuration for quick deployment.


  • On-premise to cloud connections

    Establishes secure connections to connect on-premise data centers and VPCs. This ensures the security and reliability of the hybrid cloud architecture.

    Standard protocols

    Supports the standard IPsec and IKE protocols to secure data transmission.

    Site-to-site connections

    Connects enterprise data centers to VPCs.

    Fast delivery

    Quickly establishes secure Internet-based VPN connections to implement hybrid cloud computing.

  • Pay-As-You-Go and efficient management

    All resources in the cloud are billed based on your actual usage. VPN Gateway provides multiple resource management methods.

    Efficient management

    Supports the Pay-As-You-Go billing method. VPN Gateway is a ready-to-use service that supports dynamic configuration for quick deployment.

    Multiple management methods

    You can call the VPN Gateway service over its API or SDK, or manage the service in the visualized console.

  • Secure Internet platform connections

    Supports SSL VPN to secure the connections established from Internet platforms to VPCs.

Customer Scenarios

  • Secure Hybrid Cloud Compute Architecture
Secure Hybrid Cloud Compute Architecture

Secure hybrid cloud compute architecture

Secure data transmission between on-premises and the cloud

In this scenario, the business system contains both on-premise data centers and cloud data centers. Business modules are created based on Alibaba Cloud VPCs to build a completely isolated cloud compute network. On-premise data centers and cloud data centers exchange business data over the Internet.


  • Hybrid cloud compute architecture

    Uses software-defined networks. This allows you to customize and manage your network. Any changes that you have made to VPN Gateway will take effect in real time.

  • Secure data transmission

    Communications between isolated VPCs are IPsec-encrypted, to secure your data on the Internet and prevent exposure.

  • Cost-effectiveness

    VPN gateways are used to interconnect on-premise data centers and the cloud to reduce costs.

Integrations and configurations

Upgraded Support For You

1 on 1 Presale Consultation, 24/7 Technical Support, Faster Response, and More Free Tickets.

1 on 1 Presale Consultation

Consulting by experienced cloud experts.Learn More

24/7 Technical Support

Extended service time from 10 hours 5 days a week to 24/7. Learn More

6 Free Tickets per Quarter

The number of free tickets doubled from 3 to 6 per quarter. Learn More

Faster Response

Shorten after-sale response time from 36 hours to 18 hours. Learn More
phone Contact Us