tencent cloud

Feedback

Creating the SSL VPN Server

Last updated: 2024-01-09 14:29:29
    This document describes how to create an SSL VPN server on Tencent Cloud side to provide SSL services for clients.

    Directions

    1. Log in to the VPC console.
    2. Click VPN Connections > SSL VPN Server in the left directory to enter the admin page.
    Note:
    One VPN gateway supports only one SSL VPN server. For more information, see Use Limits.
    3. Click +New.
    4. Configure the following parameters in the pop-up window.
    Note:
    Under Windows systems, if your client OpenVPN is version 3.4.0 or above, the encryption and authentication algorithms need to be configured when configuring the SSL server. The authentication algorithm only supports SHA1.
    Parameter
    Configuration
    Name
    Enter the SSL VPN server name (up to 60 characters)
    Region
    Display the region of the SSL VPN server
    VPN gateway
    Select an existing VPN gateway
    Server IP range
    Tencent Cloud IP ranges accessed by mobile clients.
    Client IP Range
    Enter the IP range assigned to the mobile client for communication. The IP range must not conflict with the VPC CIDR block of Tencent Cloud or your local IP range.
    Protocol
    Transmission protocol of the server
    Port
    Enter the SSL VPN server port used for data forwarding
    Verification algorithm
    Supported authentication algorithms: SHA1 and MD5.
    Encryption algorithm
    Supported encryption algorithms: AES-128-CBC, AES-192-CBC, and AES-256-CBC.
    Compressed
    No
    Verification method
    Certificate authentication and Certificate authentication + Identity authentication are supported. In this example,Certificate authentication is used.
    Certificate authentication: The SSL VPN server can be accessed by SSL VPN clients.
    Certificate authentication + Identity authentication: Only connections that comply with the access policies specified in the control policy are allowed. You can configure access policies for a specific user group or all users and select the corresponding Enterprise Identity and Access Management (EIAM) applications for an enabled policy.
    
    5. Click Create.
    Contact Us

    Contact our sales team or business advisors to help your business.

    Technical Support

    Open a ticket if you're looking for further assistance. Our Ticket is 7x24 avaliable.

    7x24 Phone Support