VPN Gateway is an Internet-based service that securely and reliably connects enterprise data centers, office networks, or Internet-facing terminals to Alibaba Cloud Virtual Private Cloud (VPC) networks through encrypted connections. VPN Gateway supports both IPsec-VPN connection and SSL-VPN connection.
The route-based IPsec-VPN facilitates the configuration and maintenance of VPN policies, and provides flexible traffic routing methods.
You can use IPsec-VPN to connect an on-premises data center to a VPC network or connect two VPC networks. IPsec-VPN supports IKEv1 and IKEv2 protocols. Any devices that support these two protocols can connect to Alibaba Cloud VPN Gateway, such as devices manufactured by Huawei, H3C, Hillstone, Sangfor, Cisco ASA, Juniper, SonicWall, Nokia, IBM, and Ixia.
For more information, see Establish a connection between a VPC and an on-premises data center and Establish a connection between two VPCs.
SSL-VPN is implemented based on the OpenVPN framework. You can create an SSL-VPN connection to connect a remote client to applications and services deployed in a VPC network. After the deployment is complete, you only need to import the certificate to the client to initiate the connection.
VPN Gateway offers the following benefits:
- High security: You can use the IKE and IPsec protocols to encrypt data to ensure secure and reliable data transmission.
- High availability: VPN Gateway adopts the hot-standby architecture to achieve failover of less than several seconds, session persistence, and zero service downtime.
- Low cost: The encrypted Internet-based channel of VPN Gateway is more cost-effective than a leased line.
- Ease of use: VPN Gateway is a ready-to-use service that requires no additional configuration.