This topic describes how to remotely access a virtual private cloud (VPC) through SSL-VPN.
- The private CIDR block of the VPC cannot overlap with that of the client. Otherwise, the client cannot communicate with the VPC.
- The client can access the Internet.
- Create a VPN gateway
Create a VPN gateway and enable the SSL-VPN feature.
- Create an SSL server
Specify the CIDR blocks of the SSL server and client to be connected.
- Create a client certificate
Create a client certificate based on the SSL server configuration, and then download the client certificate and the configuration file.
- Configure the client
Download and install the VPN client, and then load the client certificate and the configuration file to the client.
- Configure a security group
Make sure that the rules in the security group of the Elastic Compute Service (ECS) instances allow remote access from the client.