edit-icon download-icon

Manage an SSL server

Last Updated: Apr 11, 2018

To create a point-to-site connection, you must create an SSL server to specify the network that you want to connect.

Create an SSL server

Follow these steps to create an SSL server:

  1. Log on to the VPC console.

  2. In the left-side navigation pane, click VPN > SSL Servers.

  3. On the SSL Servers page, select a region.

  4. Click Create SSL Server.

  5. Configure the SSL server according to the following information, and click OK.

    ConfigurationDescription
    Name

    The name of the SSL server.

    The name can contain 2 to 128 characters. It must begin with English letters or Chinese characters, and can contain numbers, hyphens, and underlines.

    VPN Gateway

    The associated VPN gateway.

    Make sure that you have enabled the SSL-VPN function.

    Local Network

    The local network is the IP address range to be accessed by the client through SSL-VPN.

    It can be the IP address range of a VPC, a VSwitch, a local data center connected to a VPC through a leased line, or a cloud service such as RDS or OSS.

    Click Add Local Network to add more local networks.

    Note: The subnet mask of the local network must be /16 to /29.

    Client Subnet

    The client subnet is the IP address range of which an IP address will be allocated to the virtual network card of the client. The client uses the allocated IP address to access the local network. It is not the existing intranet IP address range of the client.

    Note: Make sure that the client subnet does not conflict with the local network.

    Advanced Configuration
    Protocol

    The protocol used by the SSL connection: UDP or TCP.

    We recommend that you use the UDP protocol.

    Port The port used by the SSL connection. The default value is 1194.
    Encryption Algorithm

    The encryption algorithm used by the SSL connection:

    AES-128-CBC, AES-192-CBC, or AES-256-CBC

    Enable Compression Whether to enable compression.

Edit an SSL server

Follow these steps to edit an SSL server:

  1. Log on to the VPC console.

  2. In the left-side navigation pane, click VPN > SSL Servers.

  3. On the SSL Servers page, select the region of the target SSL server.

  4. Click Edit in the Actions column of the target SSL server.

Delete an SSL server

Follow these steps to delete an SSL server:

  1. Log on to the VPC console.

  2. In the left-side navigation pane, click VPN > SSL Servers.

  3. On the SSL Servers page, select the region of the target SSL server.

  4. Click Delete in the Actions column of the target SSL server.

  5. In the displayed dialog box, click OK.

Thank you! We've received your feedback.