To use VPN Gateway in a classic network, you must:
- Create a VPN Gateway in a VPC.
- Connect a local data center or remote client to the VPC over the VPN gateway.
- Connect the ECS instances in the classic network to the VPC using the ClassicLink function.
The ECS instances in the classic network can access the applications in the local data center. Conversely, the applications in the local data center can access the ECS instances.
Before you begin, plan and prepare the network:
Determine if site-to-site connections are required (If so, enable IPsec-VPN).
Determine if point-to-site connections are required (If so, enable SSL-VPN).
The IP address ranges of the local client and offices must be subsets of the IP address range of the VPC, but cannot conflict with the VSwitch to be connected.
Plan the VPC for which a VPN gateway is created. If the ECS instances in the classic network do not need to communicate with an existing VPC, we recommend creating a new VPC.