VPN Gateway is an Internet-based service that allows you to connect enterprise data centers, office networks, or Internet-facing terminals to Alibaba Cloud Virtual Private Cloud (VPC) networks through secure and reliable connections. VPN Gateway supports both IPsec-VPN connections and SSL-VPN connections.


Route-based IPsec-VPN allows you to route network traffic in multiple ways, and also facilitates the configuration and maintenance of VPN policies.

You can use IPsec-VPN to connect an on-premises data center to a virtual private network (VPC) or connect two VPCs. IPsec-VPN supports the IKEv1 and IKEv2 protocols. Gateway devices that support these two protocols can connect to VPN gateways on Alibaba Cloud, such as devices from H3C, Hillstone, Sangfor, Cisco ASA, Juniper, SonicWall, Nokia, IBM, and Ixia.

IPsec-VPN can be used in different scenarios. For more information, see IPsec-VPN scenarios.


You can create an SSL-VPN connection to connect a remote client to applications and services deployed in a VPC. After the applications or services are deployed in the VPC, you only need to import the certificate to the client and initiate a connection.

SSL-VPN can be used in different scenarios. For more information, see SSL-VPN scenarios.