diff --git a/docs/vpn/umn/.placeholder b/docs/vpn/umn/.placeholder
deleted file mode 100644
index e69de29b..00000000
diff --git a/docs/vpn/umn/ALL_META.TXT.json b/docs/vpn/umn/ALL_META.TXT.json
index 8d6736bd..6995c1d1 100644
--- a/docs/vpn/umn/ALL_META.TXT.json
+++ b/docs/vpn/umn/ALL_META.TXT.json
@@ -1,372 +1,1981 @@
 [
 	{
-		"uri":"en-us_topic_0035391332.html",
+		"dockw":"User Guide"
+	},
+	{
+		"uri":"vpn_01_0000.html",
+		"node_id":"en-us_topic_0000001920877881.xml",
 		"product_code":"vpn",
 		"code":"1",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual",
 		"kw":"Overview",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
 		"title":"Overview",
 		"githuburl":""
 	},
 	{
 		"uri":"en-us_topic_0035391393.html",
+		"node_id":"en-us_topic_0000001937647830.xml",
 		"product_code":"vpn",
 		"code":"2",
-		"des":"A Virtual Private Network (VPN) establishes an encrypted, Internet-based communications tunnel between a user and a Virtual Private Cloud (VPC). With VPN, you can connect",
+		"des":"Virtual Private Network (VPN) establishes secure, reliable, and cost-effective encrypted connections between your on-premises network or data center and a virtual network",
 		"doc_type":"usermanual",
-		"kw":"Virtual Private Network,Overview,User Guide",
-		"title":"Virtual Private Network",
+		"kw":"What Is VPN?,Overview,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"What Is VPN?",
 		"githuburl":""
 	},
 	{
-		"uri":"en-us_topic_0160974607.html",
+		"uri":"vpn_01_0002.html",
+		"node_id":"en-us_topic_0000001937807170.xml",
 		"product_code":"vpn",
 		"code":"3",
-		"des":"The Internet Protocol Security (IPsec) VPN is an encrypted tunneling technology that uses encrypted security services to establish confidential and secure communication t",
+		"des":"Enterprise Edition VPN has the following advantages:High securityData is encrypted using IKE/IPsec, ensuring high data security.A VPN gateway is exclusive to a tenant, is",
 		"doc_type":"usermanual",
-		"kw":"IPsec VPN,Overview,User Guide",
-		"title":"IPsec VPN",
+		"kw":"Product Advantages,Overview,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Product Advantages",
 		"githuburl":""
 	},
 	{
-		"uri":"en-us_topic_0035391412.html",
+		"uri":"vpn_01_0032.html",
+		"node_id":"en-us_topic_0000001965006185.xml",
 		"product_code":"vpn",
 		"code":"4",
-		"des":"With the VPN between the VPC and your traditional data center, you can easily use the ECSs and block storage resources provided by the cloud platform.Applications can be ",
+		"des":"You can use a VPN to connect your on-premises data center to a VPC and use the elastic and fast scaling capabilities of the cloud to expand application computing capabili",
 		"doc_type":"usermanual",
 		"kw":"Application Scenarios,Overview,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
 		"title":"Application Scenarios",
 		"githuburl":""
 	},
 	{
-		"uri":"en-us_topic_0081947484.html",
+		"uri":"vpn_01_0036.html",
+		"node_id":"en-us_topic_0000001699872529.xml",
 		"product_code":"vpn",
 		"code":"5",
-		"des":"The following standards and protocols are associated with the IPsec VPN:RFC 4301: Security Architecture for the Internet ProtocolRFC 2403: The Use of HMAC-MD5-96 within E",
+		"des":"The specification of a VPN gateway can be changed between Basic and Professional 1.The specification of a VPN gateway can be changed between Professional 1 and Profession",
+		"doc_type":"usermanual",
+		"kw":"Product Specifications,Overview,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Product Specifications",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_01_0005.html",
+		"node_id":"en-us_topic_0000001542174382.xml",
+		"product_code":"vpn",
+		"code":"6",
+		"des":"By default, the maximum length of TCP packets supported by a VPN gateway is 1300 bytes.Enable NAT traversal on the customer gateway based on the networking.If the custome",
+		"doc_type":"usermanual",
+		"kw":"Quotas and Limitations,Overview,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Quotas and Limitations",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_01_0006.html",
+		"node_id":"en-us_topic_0000001964846405.xml",
+		"product_code":"vpn",
+		"code":"7",
+		"des":"The following standards and protocols are associated with VPN:RFC 2403: The Use of HMAC-MD5-96 within ESP and AHRFC 2404: The Use of HMAC-SHA-1-96 within ESP and AHRFC 24",
 		"doc_type":"usermanual",
 		"kw":"Reference Standards and Protocols,Overview,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
 		"title":"Reference Standards and Protocols",
 		"githuburl":""
 	},
 	{
-		"uri":"en-us_topic_0185622695.html",
-		"product_code":"vpn",
-		"code":"6",
-		"des":"A region and availability zone (AZ) identify the location of a data center. You can create resources in a specific region and AZ.A region is a physical data center, which",
-		"doc_type":"usermanual",
-		"kw":"Region and AZ,Overview,User Guide",
-		"title":"Region and AZ",
-		"githuburl":""
-	},
-	{
-		"uri":"en-us_topic_0035391382.html",
-		"product_code":"vpn",
-		"code":"7",
-		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
-		"doc_type":"usermanual",
-		"kw":"Getting Started",
-		"title":"Getting Started",
-		"githuburl":""
-	},
-	{
-		"uri":"en-us_topic_0122970066.html",
+		"uri":"vpn_01_0033.html",
+		"node_id":"en-us_topic_0000001937807178.xml",
 		"product_code":"vpn",
 		"code":"8",
-		"des":"A VPC provides an isolated virtual network for ECSs. You can configure and manage the network as required.Create a VPC by following the procedure provided in this section",
-		"doc_type":"usermanual",
-		"kw":"(Optional) Create a VPC,Getting Started,User Guide",
-		"title":"(Optional) Create a VPC",
-		"githuburl":""
-	},
-	{
-		"uri":"en-us_topic_0122970067.html",
-		"product_code":"vpn",
-		"code":"9",
-		"des":"You can add subnets during VPC creation. If required, you can also create subnets for an existing VPC.The created subnet is configured with DHCP by default. After an ECS ",
-		"doc_type":"usermanual",
-		"kw":"(Optional) Create a Subnet for the VPC,Getting Started,User Guide",
-		"title":"(Optional) Create a Subnet for the VPC",
-		"githuburl":""
-	},
-	{
-		"uri":"en-us_topic_0060118606.html",
-		"product_code":"vpn",
-		"code":"10",
-		"des":"By default, ECSs in a VPC cannot communicate with your data center or private network. To enable communication between them, use a VPN. You need to create a VPN in your V",
-		"doc_type":"usermanual",
-		"kw":"Creating a VPN,Getting Started,User Guide",
-		"title":"Creating a VPN",
-		"githuburl":""
-	},
-	{
-		"uri":"en-us_topic_0035634996.html",
-		"product_code":"vpn",
-		"code":"11",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual",
-		"kw":"(Optional) Configure Security Group Rules",
-		"title":"(Optional) Configure Security Group Rules",
+		"kw":"Differences between Enterprise Edition VPN and Classic VPN,Overview,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Differences between Enterprise Edition VPN and Classic VPN",
 		"githuburl":""
 	},
 	{
-		"uri":"en-us_topic_0013748715.html",
+		"uri":"vpn_08_1503.html",
+		"node_id":"en-us_topic_0000001964846401.xml",
+		"product_code":"vpn",
+		"code":"9",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"doc_type":"usermanual",
+		"kw":"Security",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Security",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_01_0020.html",
+		"node_id":"en-us_topic_0000001965006193.xml",
+		"product_code":"vpn",
+		"code":"10",
+		"des":"A VPN connection supports authentication of a customer gateway using a pre-shared key (PSK).The identity authentication succeeds and the VPN connection can be set up only",
+		"doc_type":"usermanual",
+		"kw":"Identity Authentication and Access Control,Security,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Identity Authentication and Access Control",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_01_0021.html",
+		"node_id":"en-us_topic_0000001964846421.xml",
+		"product_code":"vpn",
+		"code":"11",
+		"des":"VPN is a tunneling technology that provides IP-layer security using the IKE/IPsec protocol suite. It ensures confidentiality and integrity of IP data packets and prevents",
+		"doc_type":"usermanual",
+		"kw":"Data Protection Technologies,Security,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Data Protection Technologies",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_01_0022.html",
+		"node_id":"en-us_topic_0000001937647854.xml",
 		"product_code":"vpn",
 		"code":"12",
-		"des":"To improve ECS access security, you can create a security group, define security group rules, and add ECSs in the VPC to the security group. We recommend that you allocat",
+		"des":"VPN records the create, delete, and modify operations performed on all resources initiated by your account, and sends the records to Cloud Trace Service (CTS) in log file",
 		"doc_type":"usermanual",
-		"kw":"Creating a Security Group,(Optional) Configure Security Group Rules,User Guide",
-		"title":"Creating a Security Group",
+		"kw":"Audit and Logs,Security,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Audit and Logs",
 		"githuburl":""
 	},
 	{
-		"uri":"en-us_topic_0030969470.html",
+		"uri":"vpn_01_0023.html",
+		"node_id":"en-us_topic_0000001937807186.xml",
 		"product_code":"vpn",
 		"code":"13",
-		"des":"After a security group is created, you can add rules to the security group. A rule applies either to inbound traffic (ingress) or outbound traffic (egress). After ECSs ar",
+		"des":"VPN provides the dual-AZ disaster recovery function. You can create a VPN gateway in two AZs in the same region, and create a VPN connection between the customer gateway ",
 		"doc_type":"usermanual",
-		"kw":"Adding a Security Group Rule,(Optional) Configure Security Group Rules,User Guide",
-		"title":"Adding a Security Group Rule",
+		"kw":"Service Resilience,Security,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Service Resilience",
 		"githuburl":""
 	},
 	{
-		"uri":"en-us_topic_0030969471.html",
+		"uri":"vpn_01_0011.html",
+		"node_id":"en-us_topic_0000001965006205.xml",
 		"product_code":"vpn",
 		"code":"14",
-		"des":"If the source of an inbound security group rule or destination of an outbound security group rule needs to be changed, you need to first delete the security group rule an",
+		"des":"If you need to assign different permissions to personnel in your enterprise to access your VPN resources created on the cloud service platform, Identity and Access Manage",
 		"doc_type":"usermanual",
-		"kw":"Deleting a Security Group Rule,(Optional) Configure Security Group Rules,User Guide",
-		"title":"Deleting a Security Group Rule",
+		"kw":"Permissions Management,Overview,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Permissions Management",
 		"githuburl":""
 	},
 	{
-		"uri":"en-us_topic_0035391378.html",
+		"uri":"vpn_01_0034.html",
+		"node_id":"en-us_topic_0000001964846429.xml",
 		"product_code":"vpn",
 		"code":"15",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual",
-		"kw":"Management",
-		"title":"Management",
+		"kw":"Basic Concepts",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Basic Concepts",
 		"githuburl":""
 	},
 	{
-		"uri":"en-us_topic_0035506845.html",
+		"uri":"vpn_01_0035.html",
+		"node_id":"en-us_topic_0000001937647862.xml",
 		"product_code":"vpn",
 		"code":"16",
-		"des":"You can view details about an existing VPN.Log in to the management console.Click  in the upper left corner and select the desired region and project.On the console homep",
+		"des":"Internet Protocol Security (IPsec) VPN uses a secure network protocol suite that authenticates and encrypts the packets of data to provide secure encrypted communication ",
 		"doc_type":"usermanual",
-		"kw":"Viewing a VPN,Management,User Guide",
-		"title":"Viewing a VPN",
+		"kw":"IPsec VPN,Basic Concepts,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"IPsec VPN",
 		"githuburl":""
 	},
 	{
-		"uri":"en-us_topic_0035391295.html",
+		"uri":"vpn_08_1504.html",
+		"node_id":"en-us_topic_0000001937807198.xml",
 		"product_code":"vpn",
 		"code":"17",
-		"des":"If the VPN network information conflicts the VPC network information or you need to adjust VPN configurations, you can modify a VPN.Log in to the management console.Click",
+		"des":"SSL VPN is a virtual private network technology using the SSL protocol. It allows remote users to securely access enterprise intranet resources.",
 		"doc_type":"usermanual",
-		"kw":"Modifying a VPN,Management,User Guide",
-		"title":"Modifying a VPN",
+		"kw":"SSL VPN,Basic Concepts,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"SSL VPN",
 		"githuburl":""
 	},
 	{
-		"uri":"en-us_topic_0035616925.html",
+		"uri":"vpn_01_0012.html",
+		"node_id":"en-us_topic_0000001965006209.xml",
 		"product_code":"vpn",
 		"code":"18",
-		"des":"You can delete a VPN to release network resources if the VPN is no longer required.Log in to the management console.Click  in the upper left corner and select a region an",
+		"des":"A VPN gateway is a virtual gateway of VPN on the cloud. It establishes secure private connections with a customer gateway in your on-premises network or data center.A VPN",
 		"doc_type":"usermanual",
-		"kw":"Deleting a VPN,Management,User Guide",
-		"title":"Deleting a VPN",
+		"kw":"VPN Gateway,Basic Concepts,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"VPN Gateway",
 		"githuburl":""
 	},
 	{
-		"uri":"en-us_topic_0107396413.html",
+		"uri":"vpn_01_0013.html",
+		"node_id":"en-us_topic_0000001964846441.xml",
 		"product_code":"vpn",
 		"code":"19",
-		"des":"A VPN tag identifies a VPN. Tags can be added to VPNs to facilitate VPN identification and administration. You can add a tag to a VPN when creating the VPN. Alternatively",
+		"des":"A VPN connection is a secure channel between a VPN gateway and a customer gateway. VPN connections use the IKE and IPsec protocols to encrypt the transmitted data.A VPN c",
 		"doc_type":"usermanual",
-		"kw":"Managing VPN Tags,Management,User Guide",
-		"title":"Managing VPN Tags",
+		"kw":"VPN Connection,Basic Concepts,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"VPN Connection",
 		"githuburl":""
 	},
 	{
-		"uri":"en-us_topic_0114174493.html",
+		"uri":"vpn_01_0014.html",
+		"node_id":"en-us_topic_0000001937647870.xml",
 		"product_code":"vpn",
 		"code":"20",
-		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"des":"The bandwidth you purchased for a VPN gateway refers to outbound bandwidth, that is, bandwidth for traffic sent from a VPC on the cloud to a customer gateway in an on-pre",
 		"doc_type":"usermanual",
-		"kw":"VPN Best Practice",
-		"title":"VPN Best Practice",
+		"kw":"VPN Gateway Bandwidth,Basic Concepts,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"VPN Gateway Bandwidth",
 		"githuburl":""
 	},
 	{
-		"uri":"en-us_topic_0066871940.html",
+		"uri":"vpn_01_0015.html",
+		"node_id":"en-us_topic_0000001937807218.xml",
 		"product_code":"vpn",
 		"code":"21",
-		"des":"By default, ECSs in a VPC cannot communicate with your data center or private network. To enable communication between them, use a VPN. After a VPN is created, configure ",
+		"des":"Local subnets are VPC subnets that need to communicate with an on-premises network through VPN. When you buy a VPN gateway, you can set Local Subnet to either of the foll",
 		"doc_type":"usermanual",
-		"kw":"Connecting to a VPC Through a VPN,VPN Best Practice,User Guide",
-		"title":"Connecting to a VPC Through a VPN",
+		"kw":"Local Subnet,Basic Concepts,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Local Subnet",
 		"githuburl":""
 	},
 	{
-		"uri":"en-us_topic_0035391365.html",
+		"uri":"vpn_01_0016.html",
+		"node_id":"en-us_topic_0000001965006217.xml",
 		"product_code":"vpn",
 		"code":"22",
-		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"des":"A customer gateway is a resource that provides information on the console about your customer gateway device, which can be a physical device or software application in yo",
 		"doc_type":"usermanual",
-		"kw":"FAQs",
-		"title":"FAQs",
+		"kw":"Customer Gateway,Basic Concepts,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Customer Gateway",
 		"githuburl":""
 	},
 	{
-		"uri":"vpn_faq_0021.html",
+		"uri":"vpn_01_0017.html",
+		"node_id":"en-us_topic_0000001964846449.xml",
 		"product_code":"vpn",
 		"code":"23",
-		"des":"By default, a user can have a maximum of five IPsec VPNs. If your quota cannot fulfill your service requirements, submit a service ticket to increase the quota.",
+		"des":"Customer subnets are subnets in an on-premises data center that access a VPC on the cloud through a VPN. You need to enter subnets using CIDR notation (example: 192.168.0",
 		"doc_type":"usermanual",
-		"kw":"How Many IPsec VPNs Can I Have?,FAQs,User Guide",
-		"title":"How Many IPsec VPNs Can I Have?",
+		"kw":"Customer Subnet,Basic Concepts,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Customer Subnet",
 		"githuburl":""
 	},
 	{
-		"uri":"en-us_topic_0036149069.html",
+		"uri":"vpn_01_0018.html",
+		"node_id":"en-us_topic_0000001937647878.xml",
 		"product_code":"vpn",
 		"code":"24",
-		"des":"The IPsec VPN tunnel works in passive mode, which triggers automatic negotiation only when traffic sent by the local end passes through the tunnel.",
+		"des":"A pre-shared key (PSK) is a key configured for a VPN connection on the cloud. It is used for IKE negotiation between VPN devices at both ends of a VPN connection. Ensure ",
 		"doc_type":"usermanual",
-		"kw":"Do IPsec VPNs Support Automatic Negotiation?,FAQs,User Guide",
-		"title":"Do IPsec VPNs Support Automatic Negotiation?",
+		"kw":"PSK,Basic Concepts,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"PSK",
 		"githuburl":""
 	},
 	{
-		"uri":"vpn_faq_0055.html",
+		"uri":"vpn_01_0027.html",
+		"node_id":"en-us_topic_0000001937807222.xml",
 		"product_code":"vpn",
 		"code":"25",
-		"des":"Log in to the management console and click Virtual Private Network.In the VPN list, locate the target VPN and click View Policyin the Operationcolumn to view IKE and IPse",
+		"des":"Regions and availability zones (AZs) identify the locations of data centers. You can create resources in regions and AZs.A region is a physical data center location. Each",
 		"doc_type":"usermanual",
-		"kw":"What Do I Do If VPN Setup Fails?,FAQs,User Guide",
-		"title":"What Do I Do If VPN Setup Fails?",
+		"kw":"Region and AZ,Basic Concepts,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Region and AZ",
 		"githuburl":""
 	},
 	{
-		"uri":"vpn_faq_0056.html",
+		"uri":"vpn_03_0000.html",
+		"node_id":"en-us_topic_0000001875078390.xml",
 		"product_code":"vpn",
 		"code":"26",
-		"des":"The security group denies the access from all sources by default. If you want to access your ECSs, modify the security group configuration and allow the access from the r",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual",
-		"kw":"How Can I Handle the Failure in Accessing the ECSs from My Data Center or LAN Even If the VPN Has Be",
-		"title":"How Can I Handle the Failure in Accessing the ECSs from My Data Center or LAN Even If the VPN Has Been Set Up?",
+		"kw":"Getting Started",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Getting Started",
 		"githuburl":""
 	},
 	{
-		"uri":"vpn_faq_0057.html",
+		"uri":"vpn_08_1505.html",
+		"node_id":"en-us_topic_0000001920890921.xml",
 		"product_code":"vpn",
 		"code":"27",
-		"des":"Check whether you have properly configured the firewall policies for the access from the public IP address of the cloud VPN to the public IP address of your data center o",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual",
-		"kw":"What Do I Do If I Cannot Access My Data Center or LAN from the ECSs After a VPN Connection Has Been ",
-		"title":"What Do I Do If I Cannot Access My Data Center or LAN from the ECSs After a VPN Connection Has Been Set Up?",
+		"kw":"Enterprise Edition VPN",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Enterprise Edition VPN",
 		"githuburl":""
 	},
 	{
-		"uri":"vpn_faq_0058.html",
+		"uri":"vpn_qs_00003.html",
+		"node_id":"en-us_topic_0000002000327309.xml",
 		"product_code":"vpn",
 		"code":"28",
-		"des":"If the two VPCs are in the same region, you can use a VPC peering connection to enable communication between them.If the two VPCs are in different regions, you can use a ",
+		"des":"The supported regions are subject to those available on the console.To meet business development requirements, enterprise A needs to implement communication between its o",
 		"doc_type":"usermanual",
-		"kw":"Does a VPN Allow for Communication Between Two VPCs?,FAQs,User Guide",
-		"title":"Does a VPN Allow for Communication Between Two VPCs?",
+		"kw":"Overview,Enterprise Edition VPN,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Overview",
 		"githuburl":""
 	},
 	{
-		"uri":"en-us_topic_0044789110.html",
+		"uri":"vpn_03_0204.html",
+		"node_id":"en-us_topic_0000001963686660.xml",
 		"product_code":"vpn",
 		"code":"29",
-		"des":"The maximum number obtained by multiplying the number of local subnets and that of remote subnets cannot exceed 2500.",
+		"des":"A VPC has been created. For details about how to create a VPC, see the Virtual Private Cloud User Guide.Security group rules have been configured for ECSs in the VPC, and",
 		"doc_type":"usermanual",
-		"kw":"What Is the Limitation on the Number of Local and Remote Subnets of a VPN?,FAQs,User Guide",
-		"title":"What Is the Limitation on the Number of Local and Remote Subnets of a VPN?",
+		"kw":"Step 1: Creating a VPN Gateway,Enterprise Edition VPN,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Step 1: Creating a VPN Gateway",
 		"githuburl":""
 	},
 	{
-		"uri":"en-us_topic_0045305370.html",
+		"uri":"vpn_qs_00007.html",
+		"node_id":"en-us_topic_0000002000246717.xml",
 		"product_code":"vpn",
 		"code":"30",
-		"des":"After a VPN is created, its status changes to Normalonly after the VMs or physical servers on the two sides of the VPN communicate with each other.IKE v1:If no traffic go",
+		"des":"The following describes only key parameters.Check the created customer gateway on the Customer Gateways page.",
 		"doc_type":"usermanual",
-		"kw":"Why Is Not Connected Displayed as the Status for a Successfully Created VPN?,FAQs,User Guide",
-		"title":"Why Is Not Connected Displayed as the Status for a Successfully Created VPN?",
+		"kw":"Step 2: Creating a Customer Gateway,Enterprise Edition VPN,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Step 2: Creating a Customer Gateway",
 		"githuburl":""
 	},
 	{
-		"uri":"en-us_topic_0051518174.html",
+		"uri":"vpn_qs_00008.html",
+		"node_id":"en-us_topic_0000001963846432.xml",
 		"product_code":"vpn",
 		"code":"31",
-		"des":"The time required for VPN configurations to take effect increases linearly with the number obtained by multiplying the number of local subnets and that of remote subnets.",
+		"des":"The following describes only key parameters.Check the created VPN connection on the VPN Connections page. The initial state of the VPN connection is Creating. As the cust",
 		"doc_type":"usermanual",
-		"kw":"How Long Is Required for Issued VPN Configurations to Take Effect?,FAQs,User Guide",
-		"title":"How Long Is Required for Issued VPN Configurations to Take Effect?",
+		"kw":"Step 3: Creating VPN Connection 1,Enterprise Edition VPN,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Step 3: Creating VPN Connection 1",
 		"githuburl":""
 	},
 	{
-		"uri":"en-us_topic_0109312453.html",
+		"uri":"vpn_03_0335.html",
+		"node_id":"en-us_topic_0000002000327313.xml",
 		"product_code":"vpn",
 		"code":"32",
-		"des":"Due to the symmetry of the tunnel, the VPN parameters configured on the cloud must be the same as those configured in your own data center. If they are different, a VPN c",
+		"des":"For VPN connection 2, you are advised to use the same settings as VPN connection 1, except the connection name, gateway IP address, local tunnel interface IP address, and",
 		"doc_type":"usermanual",
-		"kw":"How Do I Configure a Remote Device for a VPN?,FAQs,User Guide",
-		"title":"How Do I Configure a Remote Device for a VPN?",
+		"kw":"Step 4: Creating VPN Connection 2,Enterprise Edition VPN,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Step 4: Creating VPN Connection 2",
 		"githuburl":""
 	},
 	{
-		"uri":"en-us_topic_0109676043.html",
+		"uri":"vpn_03_0336.html",
+		"node_id":"en-us_topic_0000001963686664.xml",
 		"product_code":"vpn",
 		"code":"33",
-		"des":"Most devices that meet IPsec VPN standard and reference protocol requirements can be used as the remote VPN devices, for example, Cisco ASA firewalls, Huawei USG6xxxxseri",
+		"des":"In this example, the customer gateway device is an AR router.In this command, 22.xx.xx.1 is the gateway address of the AR router's public IP address. Replace it with the ",
 		"doc_type":"usermanual",
-		"kw":"Which Remote VPN Devices Are Supported?,FAQs,User Guide",
-		"title":"Which Remote VPN Devices Are Supported?",
+		"kw":"Step 5: Configuring the Customer Gateway Device,Enterprise Edition VPN,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Step 5: Configuring the Customer Gateway Device",
 		"githuburl":""
 	},
 	{
-		"uri":"en-us_topic_0142368417.html",
+		"uri":"vpn_03_0337.html",
+		"node_id":"en-us_topic_0000002000246725.xml",
 		"product_code":"vpn",
 		"code":"34",
-		"des":"You can perform the following steps to handle the issues:Check the ECS specifications. Rate limiting is not performed for the VPN ingress on the cloud, so the issue may b",
+		"des":"In this example, use VNC provided on the management console to log in to an ECS.ping 172.16.0.100172.16.0.100 is the IP address of a server in the on-premises data center",
 		"doc_type":"usermanual",
-		"kw":"What Can I Do If the VPN Fails or the Network Speed of the VPN Is Slow?,FAQs,User Guide",
-		"title":"What Can I Do If the VPN Fails or the Network Speed of the VPN Is Slow?",
+		"kw":"Step 6: Verifying Network Connectivity,Enterprise Edition VPN,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Step 6: Verifying Network Connectivity",
 		"githuburl":""
 	},
 	{
-		"uri":"en-us_topic_0142373840.html",
+		"uri":"vpn_08_1507.html",
+		"node_id":"en-us_topic_0000001875091418.xml",
 		"product_code":"vpn",
 		"code":"35",
-		"des":"Currently, the VPN service does not support the SSL VPNs.",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual",
-		"kw":"Are SSL VPNs Supported?,FAQs,User Guide",
-		"title":"Are SSL VPNs Supported?",
+		"kw":"Classic VPN",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Classic VPN",
 		"githuburl":""
 	},
 	{
-		"uri":"en-us_topic_0035391366.html",
+		"uri":"vpn_03_0004.html",
+		"node_id":"en-us_topic_0000001963846436.xml",
 		"product_code":"vpn",
 		"code":"36",
-		"des":"Quotas are enforced for service resources on the platform to prevent unforeseen spikes in resource usage. Quotas can limit the number or amount of resources available to ",
+		"des":"By default, ECSs in a VPC cannot communicate with devices in your on-premises data center or private network. To enable communication between them, you can use a VPN by c",
 		"doc_type":"usermanual",
-		"kw":"What Is the VPN Quota?,FAQs,User Guide",
-		"title":"What Is the VPN Quota?",
+		"kw":"Creating a VPN,Classic VPN,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Creating a VPN",
 		"githuburl":""
 	},
 	{
-		"uri":"en-us_topic_0041174633.html",
+		"uri":"vpn_04_0000.html",
+		"node_id":"en-us_topic_0000001920877885.xml",
 		"product_code":"vpn",
 		"code":"37",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual",
-		"kw":"A Change History,User Guide",
-		"title":"A Change History",
+		"kw":"Management",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Management",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_08_1509.html",
+		"node_id":"en-us_topic_0000001921050589.xml",
+		"product_code":"vpn",
+		"code":"38",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"doc_type":"usermanual",
+		"kw":"Enterprise Edition VPN",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Enterprise Edition VPN",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_ug_00001.html",
+		"node_id":"en-us_topic_0000001592573629.xml",
+		"product_code":"vpn",
+		"code":"39",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"doc_type":"usermanual",
+		"kw":"Enterprise Edition VPN Gateway Management",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Enterprise Edition VPN Gateway Management",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_04_0421.html",
+		"node_id":"en-us_topic_0000001542174206.xml",
+		"product_code":"vpn",
+		"code":"40",
+		"des":"To connect your on-premises data center or private network to your ECSs in a VPC, you need to create a VPN gateway before creating a VPN connection.The recommended networ",
+		"doc_type":"usermanual",
+		"kw":"Creating a VPN Gateway,Enterprise Edition VPN Gateway Management,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Creating a VPN Gateway",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_ug_00002.html",
+		"node_id":"en-us_topic_0000001542333958.xml",
+		"product_code":"vpn",
+		"code":"41",
+		"des":"After creating a VPN gateway, you can view its details.Log in to the management console.Click  in the upper left corner and select the desired region and project.Click  i",
+		"doc_type":"usermanual",
+		"kw":"Viewing a VPN Gateway,Enterprise Edition VPN Gateway Management,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Viewing a VPN Gateway",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_ug_00003.html",
+		"node_id":"en-us_topic_0000001542014738.xml",
+		"product_code":"vpn",
+		"code":"42",
+		"des":"You can modify basic information about a VPN gateway, including the name and local subnet.Log in to the management console.Click  in the upper left corner and select the ",
+		"doc_type":"usermanual",
+		"kw":"Modifying a VPN Gateway,Enterprise Edition VPN Gateway Management,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Modifying a VPN Gateway",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_ug_00004.html",
+		"node_id":"en-us_topic_0000001592573533.xml",
+		"product_code":"vpn",
+		"code":"43",
+		"des":"You can bind EIPs to a VPN gateway that has been created.Log in to the management console.Click  in the upper left corner and select the desired region and project.Click ",
+		"doc_type":"usermanual",
+		"kw":"Binding an EIP to a VPN Gateway,Enterprise Edition VPN Gateway Management,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Binding an EIP to a VPN Gateway",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_04_0807.html",
+		"node_id":"en-us_topic_0000001592573841.xml",
+		"product_code":"vpn",
+		"code":"44",
+		"des":"After a VPN gateway is created, you can unbind an EIP from it.An EIP that is in use by a VPN connection cannot be unbound from a VPN gateway.Log in to the management cons",
+		"doc_type":"usermanual",
+		"kw":"Unbinding an EIP from a VPN Gateway,Enterprise Edition VPN Gateway Management,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Unbinding an EIP from a VPN Gateway",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_ug_00007.html",
+		"node_id":"en-us_topic_0000001592773781.xml",
+		"product_code":"vpn",
+		"code":"45",
+		"des":"You can delete a VPN gateway that is no longer required.The delete operation is not supported for a VPN gateway that is being created, updated, or deleted.If a VPN gatewa",
+		"doc_type":"usermanual",
+		"kw":"Deleting a VPN Gateway,Enterprise Edition VPN Gateway Management,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Deleting a VPN Gateway",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_ug_00008.html",
+		"node_id":"en-us_topic_0000001542173998.xml",
+		"product_code":"vpn",
+		"code":"46",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"doc_type":"usermanual",
+		"kw":"Customer Gateway Management of Enterprise Edition VPN",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Customer Gateway Management of Enterprise Edition VPN",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_04_0431.html",
+		"node_id":"en-us_topic_0000001542014850.xml",
+		"product_code":"vpn",
+		"code":"47",
+		"des":"To connect your on-premises data center or private network to your ECSs in a VPC, you need to create a customer gateway before creating a VPN connection.Log in to the man",
+		"doc_type":"usermanual",
+		"kw":"Creating a Customer Gateway,Customer Gateway Management of Enterprise Edition VPN,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Creating a Customer Gateway",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_ug_00009.html",
+		"node_id":"en-us_topic_0000001542174362.xml",
+		"product_code":"vpn",
+		"code":"48",
+		"des":"After creating a customer gateway, you can view its details.Log in to the management console.Click  in the upper left corner and select the desired region and project.Cli",
+		"doc_type":"usermanual",
+		"kw":"Viewing a Customer Gateway,Customer Gateway Management of Enterprise Edition VPN,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Viewing a Customer Gateway",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_ug_00010.html",
+		"node_id":"en-us_topic_0000001592773721.xml",
+		"product_code":"vpn",
+		"code":"49",
+		"des":"After creating a customer gateway, you can modify its name.Log in to the management console.Click  in the upper left corner and select the desired region and project.Clic",
+		"doc_type":"usermanual",
+		"kw":"Modifying a Customer Gateway,Customer Gateway Management of Enterprise Edition VPN,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Modifying a Customer Gateway",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_ug_00011.html",
+		"node_id":"en-us_topic_0000001592694113.xml",
+		"product_code":"vpn",
+		"code":"50",
+		"des":"You can delete a customer gateway that you have created.Before deleting a customer gateway associated with a VPN connection, remove the customer gateway from the VPN conn",
+		"doc_type":"usermanual",
+		"kw":"Deleting a Customer Gateway,Customer Gateway Management of Enterprise Edition VPN,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Deleting a Customer Gateway",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_ug_00012.html",
+		"node_id":"en-us_topic_0000001542334078.xml",
+		"product_code":"vpn",
+		"code":"51",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"doc_type":"usermanual",
+		"kw":"Enterprise Edition VPN Connection Management",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Enterprise Edition VPN Connection Management",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_04_0441.html",
+		"node_id":"en-us_topic_0000001592573765.xml",
+		"product_code":"vpn",
+		"code":"52",
+		"des":"To connect your on-premises data center or private network to your ECSs in a VPC, you need to create VPN connections after creating a VPN gateway and a customer gateway.W",
+		"doc_type":"usermanual",
+		"kw":"Creating a VPN Connection,Enterprise Edition VPN Connection Management,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Creating a VPN Connection",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_ug_00023.html",
+		"node_id":"en-us_topic_0000001671018948.xml",
+		"product_code":"vpn",
+		"code":"53",
+		"des":"After VPN connections are created, you can configure health check to enable the VPN gateway to send probe packets to the customer gateway to collect statistics about the ",
+		"doc_type":"usermanual",
+		"kw":"Configuring Health Check,Enterprise Edition VPN Connection Management,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Configuring Health Check",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_ug_00013.html",
+		"node_id":"en-us_topic_0000001542333826.xml",
+		"product_code":"vpn",
+		"code":"54",
+		"des":"After creating a VPN connection, you can view its details.Log in to the management console.Click  in the upper left corner and select the desired region and project.Click",
+		"doc_type":"usermanual",
+		"kw":"Viewing a VPN Connection,Enterprise Edition VPN Connection Management,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Viewing a VPN Connection",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_ug_00014.html",
+		"node_id":"en-us_topic_0000001592773861.xml",
+		"product_code":"vpn",
+		"code":"55",
+		"des":"A VPN connection is an encrypted communications channel established between a VPN gateway in a VPC and a customer gateway in your on-premises data center. You can modify ",
+		"doc_type":"usermanual",
+		"kw":"Modifying a VPN Connection,Enterprise Edition VPN Connection Management,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Modifying a VPN Connection",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_04_1003.html",
+		"node_id":"en-us_topic_0000001542174334.xml",
+		"product_code":"vpn",
+		"code":"56",
+		"des":"If a VPN connection is no longer required, you can delete it to release network resources.Log in to the management console.Click  in the upper left corner and select the ",
+		"doc_type":"usermanual",
+		"kw":"Deleting a VPN Connection,Enterprise Edition VPN Connection Management,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Deleting a VPN Connection",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_08_1511.html",
+		"node_id":"en-us_topic_0000001874931578.xml",
+		"product_code":"vpn",
+		"code":"57",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"doc_type":"usermanual",
+		"kw":"Classic VPN",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Classic VPN",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_04_0470.html",
+		"node_id":"en-us_topic_0000001542493834.xml",
+		"product_code":"vpn",
+		"code":"58",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"doc_type":"usermanual",
+		"kw":"Classic VPN Management",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Classic VPN Management",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_04_0002.html",
+		"node_id":"en-us_topic_0000001542494026.xml",
+		"product_code":"vpn",
+		"code":"59",
+		"des":"You can view details about an existing VPN.Log in to the management console.Click  in the upper left corner and select the desired region and project.Click Service List a",
+		"doc_type":"usermanual",
+		"kw":"Viewing Created VPNs,Classic VPN Management,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Viewing Created VPNs",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_04_0003.html",
+		"node_id":"en-us_topic_0000001592573553.xml",
+		"product_code":"vpn",
+		"code":"60",
+		"des":"If VPN network information conflicts with VPC network information or needs to be adjusted based on the latest network environment, you can modify the VPN.Log in to the ma",
+		"doc_type":"usermanual",
+		"kw":"Modifying a Created VPN,Classic VPN Management,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Modifying a Created VPN",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_04_0004.html",
+		"node_id":"en-us_topic_0000001592773709.xml",
+		"product_code":"vpn",
+		"code":"61",
+		"des":"You can delete a VPN if it is no longer required.Log in to the management console.Click  in the upper left corner and select the desired region and project.Click Service ",
+		"doc_type":"usermanual",
+		"kw":"Deleting a VPN,Classic VPN Management,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Deleting a VPN",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_04_0700.html",
+		"node_id":"en-us_topic_0000001875296738.xml",
+		"product_code":"vpn",
+		"code":"62",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"doc_type":"usermanual",
+		"kw":"Monitoring",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Monitoring",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_04_0701.html",
+		"node_id":"en-us_topic_0000001875136910.xml",
+		"product_code":"vpn",
+		"code":"63",
+		"des":"Cloud Eye lets you keep a close eye on the performance and resource utilization of VPNs, ensuring VPN reliability and availability. You can use Cloud Eye to automatically",
+		"doc_type":"usermanual",
+		"kw":"Monitoring VPN,Monitoring,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Monitoring VPN",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_04_0702.html",
+		"node_id":"en-us_topic_0000001921096257.xml",
+		"product_code":"vpn",
+		"code":"64",
+		"des":"This section describes monitored metrics reported by VPN to Cloud Eye as well as their namespaces and dimensions. You can use the Cloud Eye management console to query th",
+		"doc_type":"usermanual",
+		"kw":"Metrics (Enterprise Edition VPN),Monitoring,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Metrics (Enterprise Edition VPN)",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_04_0705.html",
+		"node_id":"en-us_topic_0000001921215905.xml",
+		"product_code":"vpn",
+		"code":"65",
+		"des":"This section describes monitored metrics reported by VPN to Cloud Eye as well as their namespaces and dimensions. You can use the Cloud Eye management console to query th",
+		"doc_type":"usermanual",
+		"kw":"Metrics (Classic VPN),Monitoring,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Metrics (Classic VPN)",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_04_0704.html",
+		"node_id":"en-us_topic_0000001875296742.xml",
+		"product_code":"vpn",
+		"code":"66",
+		"des":"View the VPN connection status and usages of bandwidth and EIP. You can view data of the last 1, 3, 12, or 24 hours, or last 7 days.Viewing metrics on the Cloud Eye conso",
+		"doc_type":"usermanual",
+		"kw":"Viewing Metrics,Monitoring,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Viewing Metrics",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_04_0703.html",
+		"node_id":"en-us_topic_0000001875136914.xml",
+		"product_code":"vpn",
+		"code":"67",
+		"des":"You can configure alarm rules on the Cloud Eye console to keep track of your VPN status at any time.Log in to the management console.Click  in the upper left corner and s",
+		"doc_type":"usermanual",
+		"kw":"Creating Alarm Rules,Monitoring,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Creating Alarm Rules",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_ug_00016.html",
+		"node_id":"en-us_topic_0000001921096261.xml",
+		"product_code":"vpn",
+		"code":"68",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"doc_type":"usermanual",
+		"kw":"Audit",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Audit",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_ug_00017.html",
+		"node_id":"en-us_topic_0000001921215913.xml",
+		"product_code":"vpn",
+		"code":"69",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"doc_type":"usermanual",
+		"kw":"VPN Operations That Can Be Recorded by CTS,Audit,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"VPN Operations That Can Be Recorded by CTS",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_ug_00018.html",
+		"node_id":"en-us_topic_0000001875296746.xml",
+		"product_code":"vpn",
+		"code":"70",
+		"des":"After you enable CTS and the management tracker is created, CTS starts recording operations performed on VPN resources. You can view the operation records in the last sev",
+		"doc_type":"usermanual",
+		"kw":"Querying CTS Traces,Audit,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Querying CTS Traces",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_04_1200.html",
+		"node_id":"en-us_topic_0000001875136918.xml",
+		"product_code":"vpn",
+		"code":"71",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"doc_type":"usermanual",
+		"kw":"Permissions Management",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Permissions Management",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_04_1201.html",
+		"node_id":"en-us_topic_0000001921096265.xml",
+		"product_code":"vpn",
+		"code":"72",
+		"des":"Use the Identity and Access Management (IAM) service to implement fine-grained permissions control over your VPN resources. With IAM, you can:Create IAM users for employe",
+		"doc_type":"usermanual",
+		"kw":"Creating a User and Granting VPN Permissions,Permissions Management,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Creating a User and Granting VPN Permissions",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_04_1202.html",
+		"node_id":"en-us_topic_0000001921215917.xml",
+		"product_code":"vpn",
+		"code":"73",
+		"des":"Custom policies can be created to supplement the system-defined policies of VPN.You can create custom policies in either of the following ways:Visual editor: Select cloud",
+		"doc_type":"usermanual",
+		"kw":"VPN Custom Policies,Permissions Management,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"VPN Custom Policies",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_08_1513.html",
+		"node_id":"en-us_topic_0000001917855174.xml",
+		"product_code":"vpn",
+		"code":"74",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"doc_type":"usermanual",
+		"kw":"Tag Management",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Tag Management",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_08_1514.html",
+		"node_id":"en-us_topic_0000001917695266.xml",
+		"product_code":"vpn",
+		"code":"75",
+		"des":"VPN tags are used to identify VPN resources, facilitating VPN resource identification and management. You can add tags for a VPN resource when you create the VPN resource",
+		"doc_type":"usermanual",
+		"kw":"Scenario,Tag Management,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Scenario",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_08_1515.html",
+		"node_id":"en-us_topic_0000001947814261.xml",
+		"product_code":"vpn",
+		"code":"76",
+		"des":"You can search for VPN gateways, customer gateways, and VPN connections based on the tag keys and values that have been added for these VPN resources.Searching for Enterp",
+		"doc_type":"usermanual",
+		"kw":"Searching for Resources by Tag,Tag Management,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Searching for Resources by Tag",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_08_1516.html",
+		"node_id":"en-us_topic_0000001917855182.xml",
+		"product_code":"vpn",
+		"code":"77",
+		"des":"You can add, delete, modify, and view tags of VPN gateways.Managing tags of Enterprise Edition VPN gatewaysLog in to the management console.Click  in the upper left corne",
+		"doc_type":"usermanual",
+		"kw":"Managing Tags,Tag Management,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Managing Tags",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_04_0411.html",
+		"node_id":"en-us_topic_0000001875296754.xml",
+		"product_code":"vpn",
+		"code":"78",
+		"des":"VPN resources include VPN gateways, VPN connection groups, and customer gateways.The total quota of each resource type varies according to regions.",
+		"doc_type":"usermanual",
+		"kw":"Quotas,Management,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Quotas",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_09_0000.html",
+		"node_id":"en-us_topic_0000001990602386.xml",
+		"product_code":"vpn",
+		"code":"79",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"doc_type":"usermanual",
+		"kw":"Administrator Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Administrator Guide",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_admin_0016.html",
+		"node_id":"en-us_topic_0000001990762094.xml",
+		"product_code":"vpn",
+		"code":"80",
+		"des":"This section describes how to create a VPN gateway and VPN connections to connect your on-premises network to a VPC subnet if your local data center uses FortiGate firewa",
+		"doc_type":"usermanual",
+		"kw":"Configuring VPN When Fortinet FortiGate Firewall Is Used,Administrator Guide,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Configuring VPN When Fortinet FortiGate Firewall Is Used",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_08_0000.html",
+		"node_id":"en-us_topic_0000001921037529.xml",
+		"product_code":"vpn",
+		"code":"81",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"doc_type":"usermanual",
+		"kw":"FAQs",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"FAQs",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_08_1517.html",
+		"node_id":"en-us_topic_0000001921050593.xml",
+		"product_code":"vpn",
+		"code":"82",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"doc_type":"usermanual",
+		"kw":"Enterprise Edition VPN",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Enterprise Edition VPN",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_faq_00031.html",
+		"node_id":"en-us_topic_0000001956631549.xml",
+		"product_code":"vpn",
+		"code":"83",
+		"des":"A VPN is a point-to-point connection that implements private network access between two points.Applicable scenarios:A VPN is created between different regions to enable c",
+		"doc_type":"usermanual",
+		"kw":"What Are the Typical Scenarios of IPsec VPN?,Enterprise Edition VPN,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"What Are the Typical Scenarios of IPsec VPN?",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_faq_00032.html",
+		"node_id":"en-us_topic_0000001956471773.xml",
+		"product_code":"vpn",
+		"code":"84",
+		"des":"VPC enables you to create private, isolated virtual networks. You can use VPN to securely access ECSs in VPCs.A VPN gateway is an egress gateway for a VPC. With a VPN gat",
+		"doc_type":"usermanual",
+		"kw":"What Are a VPC, a VPN Gateway, and a VPN Connection?,Enterprise Edition VPN,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"What Are a VPC, a VPN Gateway, and a VPN Connection?",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_faq_00036.html",
+		"node_id":"en-us_topic_0000001929312950.xml",
+		"product_code":"vpn",
+		"code":"85",
+		"des":"The CIDR blocks of a VPC cannot conflict with on-premises CIDR blocks.To avoid conflicts with cloud service addresses, do not use 127.0.0.0/8, 169.254.0.0/16, 224.0.0.0/3",
+		"doc_type":"usermanual",
+		"kw":"How Do I Plan CIDR Blocks for Access to a VPC Through a VPN Connection?,Enterprise Edition VPN,User ",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"How Do I Plan CIDR Blocks for Access to a VPC Through a VPN Connection?",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_faq_00037.html",
+		"node_id":"en-us_topic_0000001929472290.xml",
+		"product_code":"vpn",
+		"code":"86",
+		"des":"Yes. An IPsec VPN connection is automatically established.",
+		"doc_type":"usermanual",
+		"kw":"Is an IPsec VPN Connection Automatically Established?,Enterprise Edition VPN,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Is an IPsec VPN Connection Automatically Established?",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_faq_00040.html",
+		"node_id":"en-us_topic_0000001956631553.xml",
+		"product_code":"vpn",
+		"code":"87",
+		"des":"Perfect Forward Secrecy (PFS) is a security feature.IKE negotiation has two phases, phase one and phase two. The key of phase two (IPsec SA) is derived from the key gener",
+		"doc_type":"usermanual",
+		"kw":"What Are VPN Negotiation Parameters? What Are Their Default Values?,Enterprise Edition VPN,User Guid",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"What Are VPN Negotiation Parameters? What Are Their Default Values?",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_faq_00041.html",
+		"node_id":"en-us_topic_0000001956471777.xml",
+		"product_code":"vpn",
+		"code":"88",
+		"des":"No. IPsec VPN uses a pre-shared key (PSK) for authentication. The PSK is configured on a VPN gateway, and a connection will be established after VPN negotiation is comple",
+		"doc_type":"usermanual",
+		"kw":"Are a Username and Password Required for Creating an IPsec VPN Connection?,Enterprise Edition VPN,Us",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Are a Username and Password Required for Creating an IPsec VPN Connection?",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_faq_00043.html",
+		"node_id":"en-us_topic_0000001929312954.xml",
+		"product_code":"vpn",
+		"code":"89",
+		"des":"VPN gatewayThe following bandwidth information of a VPN gateway IP address can be monitored: inbound traffic, inbound bandwidth, outbound traffic, outbound bandwidth, and",
+		"doc_type":"usermanual",
+		"kw":"What VPN Resources Can Be Monitored?,Enterprise Edition VPN,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"What VPN Resources Can Be Monitored?",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_faq_00044.html",
+		"node_id":"en-us_topic_0000001929472294.xml",
+		"product_code":"vpn",
+		"code":"90",
+		"des":"Yes.When creating a VPN gateway, you can bind EIPs as the gateway IP addresses.",
+		"doc_type":"usermanual",
+		"kw":"Can EIPs Be Used as VPN Gateway IP Addresses?,Enterprise Edition VPN,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Can EIPs Be Used as VPN Gateway IP Addresses?",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_faq_00051.html",
+		"node_id":"en-us_topic_0000001956631557.xml",
+		"product_code":"vpn",
+		"code":"91",
+		"des":"IKEv2 is recommended because IKEv1 is not secure. In addition, IKEv2 outperforms IKEv1 in connection negotiation and establishment, authentication methods, dead peer dete",
+		"doc_type":"usermanual",
+		"kw":"Which IKE Version Should I Select When I Create a VPN Connection?,Enterprise Edition VPN,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Which IKE Version Should I Select When I Create a VPN Connection?",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_faq_00144.html",
+		"node_id":"en-us_topic_0000001956471781.xml",
+		"product_code":"vpn",
+		"code":"92",
+		"des":"Log in to the management console and choose Virtual Private Network > Enterprise – VPN Connections.In the VPN connection list, locate the target VPN connection, and choos",
+		"doc_type":"usermanual",
+		"kw":"What Do I Do If a VPN Connection Fails to Be Established?,Enterprise Edition VPN,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"What Do I Do If a VPN Connection Fails to Be Established?",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_08_1518.html",
+		"node_id":"en-us_topic_0000001874931582.xml",
+		"product_code":"vpn",
+		"code":"93",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"doc_type":"usermanual",
+		"kw":"Classic VPN",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Classic VPN",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_08_0305.html",
+		"node_id":"en-us_topic_0000001929312958.xml",
+		"product_code":"vpn",
+		"code":"94",
+		"des":"IPsec VPN connects two LANs, such as a branch and its headquarters (or a VPC), or an on-premises data center and a VPC.SSL VPN connects a client to a LAN. For example, th",
+		"doc_type":"usermanual",
+		"kw":"What Are the Differences Between the Application Scenarios and Connection Modes of IPsec and SSL VPN",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"What Are the Differences Between the Application Scenarios and Connection Modes of IPsec and SSL VPNs?",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_08_0232.html",
+		"node_id":"en-us_topic_0000001929472298.xml",
+		"product_code":"vpn",
+		"code":"95",
+		"des":"When a VPN connection is created, routes are automatically delivered to reach the remote subnets.",
+		"doc_type":"usermanual",
+		"kw":"Where Can I Add Routes on the VPN Console to Reach the Remote Subnets?,Classic VPN,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Where Can I Add Routes on the VPN Console to Reach the Remote Subnets?",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_08_0233.html",
+		"node_id":"en-us_topic_0000001956631561.xml",
+		"product_code":"vpn",
+		"code":"96",
+		"des":"The VPN connection status can be monitored. After a VPN connection is created, the VPN service reports the connection status information to Cloud Eye, but does not automa",
+		"doc_type":"usermanual",
+		"kw":"Will I Be Notified If a VPN Connection Is Interrupted?,Classic VPN,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Will I Be Notified If a VPN Connection Is Interrupted?",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_08_0323.html",
+		"node_id":"en-us_topic_0000001956471785.xml",
+		"product_code":"vpn",
+		"code":"97",
+		"des":"VPN uses the IPsec technology to connect your on-premises data center to a VPC on the cloud. As such, the number of VPN connections is related to the number of data cente",
+		"doc_type":"usermanual",
+		"kw":"How Many VPN Connections Do I Need to Connect to Multiple On-premises Servers?,Classic VPN,User Guid",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"How Many VPN Connections Do I Need to Connect to Multiple On-premises Servers?",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_08_0325.html",
+		"node_id":"en-us_topic_0000001929472302.xml",
+		"product_code":"vpn",
+		"code":"98",
+		"des":"When you configure a VPN, perform the following operations on the on-premises gateway:Configure IKE and IPsec policies.Specify the to-be-protected traffic (firewall).Chec",
+		"doc_type":"usermanual",
+		"kw":"What Are the Impacts of a VPN on an On-premises Network? What Are the Changes to the Route for Acces",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"What Are the Impacts of a VPN on an On-premises Network? What Are the Changes to the Route for Accessing an ECS?",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_08_0312.html",
+		"node_id":"en-us_topic_0000001956631565.xml",
+		"product_code":"vpn",
+		"code":"99",
+		"des":"Ensure that the on-premises gateway supports IPsec VPN.Create a VPN gateway and a VPN connection on the cloud. Select the VPC to which the Direct Connect connection uses ",
+		"doc_type":"usermanual",
+		"kw":"How Do I Replace a Direct Connect Connection with a VPN?,Classic VPN,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"How Do I Replace a Direct Connect Connection with a VPN?",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_08_0318.html",
+		"node_id":"en-us_topic_0000001956471789.xml",
+		"product_code":"vpn",
+		"code":"100",
+		"des":"A VPN connects a VPC on the cloud and an on-premises local area network (LAN).The home network is not a part of the LAN of your enterprise and cannot be directly connecte",
+		"doc_type":"usermanual",
+		"kw":"How Do I Access ECSs at Home When My Enterprise Network Has Been Connected to the Cloud Through a VP",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"How Do I Access ECSs at Home When My Enterprise Network Has Been Connected to the Cloud Through a VPN?",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_08_0614.html",
+		"node_id":"en-us_topic_0000001929472306.xml",
+		"product_code":"vpn",
+		"code":"101",
+		"des":"By default, DPD is enabled on the cloud side and cannot be disabled.Configure DPD as follows:DPD-type: on-demandDPD idle-time: 30sDPD retransmit-interval: 15sDPD retry-li",
+		"doc_type":"usermanual",
+		"kw":"How Do I Configure DPD for Interconnection with the Cloud?,Classic VPN,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"How Do I Configure DPD for Interconnection with the Cloud?",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_08_1501.html",
+		"node_id":"en-us_topic_0000001979423939.xml",
+		"product_code":"vpn",
+		"code":"102",
+		"des":"Quotas can limit the number or amount of resources available to users, such as the maximum number of ECSs or EVS disks that can be created.If the existing resource quota ",
+		"doc_type":"usermanual",
+		"kw":"What Is the VPN Quota?,Classic VPN,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"What Is the VPN Quota?",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_08_0713.html",
+		"node_id":"en-us_topic_0000001986263977.xml",
+		"product_code":"vpn",
+		"code":"103",
+		"des":"After a VPN connection is created, its status changes to Normal only after servers at both ends of the VPN connection communicate with each other.IKE v1:If no traffic goe",
+		"doc_type":"usermanual",
+		"kw":"Why Is Not Connected Displayed as the Status for a Successfully Created VPN Connection?,Classic VPN,",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Why Is Not Connected Displayed as the Status for a Successfully Created VPN Connection?",
+		"githuburl":""
+	},
+	{
+		"uri":"vpn_08_1519.html",
+		"node_id":"en-us_topic_0000001874918542.xml",
+		"product_code":"vpn",
+		"code":"104",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"doc_type":"usermanual",
+		"kw":"Change History,User Guide",
+		"search_title":"",
+		"metedata":[
+			{
+				"documenttype":"usermanual",
+				"prodname":"vpn",
+				"opensource":"true"
+			}
+		],
+		"title":"Change History",
 		"githuburl":""
 	}
 ]
\ No newline at end of file
diff --git a/docs/vpn/umn/CLASS.TXT.json b/docs/vpn/umn/CLASS.TXT.json
index 07b96ae3..eaea4736 100644
--- a/docs/vpn/umn/CLASS.TXT.json
+++ b/docs/vpn/umn/CLASS.TXT.json
@@ -3,333 +3,936 @@
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"product_code":"vpn",
 		"title":"Overview",
-		"uri":"en-us_topic_0035391332.html",
+		"uri":"vpn_01_0000.html",
 		"doc_type":"usermanual",
 		"p_code":"",
 		"code":"1"
 	},
 	{
-		"desc":"A Virtual Private Network (VPN) establishes an encrypted, Internet-based communications tunnel between a user and a Virtual Private Cloud (VPC). With VPN, you can connect",
+		"desc":"Virtual Private Network (VPN) establishes secure, reliable, and cost-effective encrypted connections between your on-premises network or data center and a virtual network",
 		"product_code":"vpn",
-		"title":"Virtual Private Network",
+		"title":"What Is VPN?",
 		"uri":"en-us_topic_0035391393.html",
 		"doc_type":"usermanual",
 		"p_code":"1",
 		"code":"2"
 	},
 	{
-		"desc":"The Internet Protocol Security (IPsec) VPN is an encrypted tunneling technology that uses encrypted security services to establish confidential and secure communication t",
+		"desc":"Enterprise Edition VPN has the following advantages:High securityData is encrypted using IKE/IPsec, ensuring high data security.A VPN gateway is exclusive to a tenant, is",
 		"product_code":"vpn",
-		"title":"IPsec VPN",
-		"uri":"en-us_topic_0160974607.html",
+		"title":"Product Advantages",
+		"uri":"vpn_01_0002.html",
 		"doc_type":"usermanual",
 		"p_code":"1",
 		"code":"3"
 	},
 	{
-		"desc":"With the VPN between the VPC and your traditional data center, you can easily use the ECSs and block storage resources provided by the cloud platform.Applications can be ",
+		"desc":"You can use a VPN to connect your on-premises data center to a VPC and use the elastic and fast scaling capabilities of the cloud to expand application computing capabili",
 		"product_code":"vpn",
 		"title":"Application Scenarios",
-		"uri":"en-us_topic_0035391412.html",
+		"uri":"vpn_01_0032.html",
 		"doc_type":"usermanual",
 		"p_code":"1",
 		"code":"4"
 	},
 	{
-		"desc":"The following standards and protocols are associated with the IPsec VPN:RFC 4301: Security Architecture for the Internet ProtocolRFC 2403: The Use of HMAC-MD5-96 within E",
+		"desc":"The specification of a VPN gateway can be changed between Basic and Professional 1.The specification of a VPN gateway can be changed between Professional 1 and Profession",
 		"product_code":"vpn",
-		"title":"Reference Standards and Protocols",
-		"uri":"en-us_topic_0081947484.html",
+		"title":"Product Specifications",
+		"uri":"vpn_01_0036.html",
 		"doc_type":"usermanual",
 		"p_code":"1",
 		"code":"5"
 	},
 	{
-		"desc":"A region and availability zone (AZ) identify the location of a data center. You can create resources in a specific region and AZ.A region is a physical data center, which",
+		"desc":"By default, the maximum length of TCP packets supported by a VPN gateway is 1300 bytes.Enable NAT traversal on the customer gateway based on the networking.If the custome",
 		"product_code":"vpn",
-		"title":"Region and AZ",
-		"uri":"en-us_topic_0185622695.html",
+		"title":"Quotas and Limitations",
+		"uri":"vpn_01_0005.html",
 		"doc_type":"usermanual",
 		"p_code":"1",
 		"code":"6"
 	},
 	{
-		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"desc":"The following standards and protocols are associated with VPN:RFC 2403: The Use of HMAC-MD5-96 within ESP and AHRFC 2404: The Use of HMAC-SHA-1-96 within ESP and AHRFC 24",
 		"product_code":"vpn",
-		"title":"Getting Started",
-		"uri":"en-us_topic_0035391382.html",
+		"title":"Reference Standards and Protocols",
+		"uri":"vpn_01_0006.html",
 		"doc_type":"usermanual",
-		"p_code":"",
+		"p_code":"1",
 		"code":"7"
 	},
 	{
-		"desc":"A VPC provides an isolated virtual network for ECSs. You can configure and manage the network as required.Create a VPC by following the procedure provided in this section",
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"product_code":"vpn",
-		"title":"(Optional) Create a VPC",
-		"uri":"en-us_topic_0122970066.html",
+		"title":"Differences between Enterprise Edition VPN and Classic VPN",
+		"uri":"vpn_01_0033.html",
 		"doc_type":"usermanual",
-		"p_code":"7",
+		"p_code":"1",
 		"code":"8"
 	},
-	{
-		"desc":"You can add subnets during VPC creation. If required, you can also create subnets for an existing VPC.The created subnet is configured with DHCP by default. After an ECS ",
-		"product_code":"vpn",
-		"title":"(Optional) Create a Subnet for the VPC",
-		"uri":"en-us_topic_0122970067.html",
-		"doc_type":"usermanual",
-		"p_code":"7",
-		"code":"9"
-	},
-	{
-		"desc":"By default, ECSs in a VPC cannot communicate with your data center or private network. To enable communication between them, use a VPN. You need to create a VPN in your V",
-		"product_code":"vpn",
-		"title":"Creating a VPN",
-		"uri":"en-us_topic_0060118606.html",
-		"doc_type":"usermanual",
-		"p_code":"7",
-		"code":"10"
-	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"product_code":"vpn",
-		"title":"(Optional) Configure Security Group Rules",
-		"uri":"en-us_topic_0035634996.html",
+		"title":"Security",
+		"uri":"vpn_08_1503.html",
 		"doc_type":"usermanual",
-		"p_code":"7",
+		"p_code":"1",
+		"code":"9"
+	},
+	{
+		"desc":"A VPN connection supports authentication of a customer gateway using a pre-shared key (PSK).The identity authentication succeeds and the VPN connection can be set up only",
+		"product_code":"vpn",
+		"title":"Identity Authentication and Access Control",
+		"uri":"vpn_01_0020.html",
+		"doc_type":"usermanual",
+		"p_code":"9",
+		"code":"10"
+	},
+	{
+		"desc":"VPN is a tunneling technology that provides IP-layer security using the IKE/IPsec protocol suite. It ensures confidentiality and integrity of IP data packets and prevents",
+		"product_code":"vpn",
+		"title":"Data Protection Technologies",
+		"uri":"vpn_01_0021.html",
+		"doc_type":"usermanual",
+		"p_code":"9",
 		"code":"11"
 	},
 	{
-		"desc":"To improve ECS access security, you can create a security group, define security group rules, and add ECSs in the VPC to the security group. We recommend that you allocat",
+		"desc":"VPN records the create, delete, and modify operations performed on all resources initiated by your account, and sends the records to Cloud Trace Service (CTS) in log file",
 		"product_code":"vpn",
-		"title":"Creating a Security Group",
-		"uri":"en-us_topic_0013748715.html",
+		"title":"Audit and Logs",
+		"uri":"vpn_01_0022.html",
 		"doc_type":"usermanual",
-		"p_code":"11",
+		"p_code":"9",
 		"code":"12"
 	},
 	{
-		"desc":"After a security group is created, you can add rules to the security group. A rule applies either to inbound traffic (ingress) or outbound traffic (egress). After ECSs ar",
+		"desc":"VPN provides the dual-AZ disaster recovery function. You can create a VPN gateway in two AZs in the same region, and create a VPN connection between the customer gateway ",
 		"product_code":"vpn",
-		"title":"Adding a Security Group Rule",
-		"uri":"en-us_topic_0030969470.html",
+		"title":"Service Resilience",
+		"uri":"vpn_01_0023.html",
 		"doc_type":"usermanual",
-		"p_code":"11",
+		"p_code":"9",
 		"code":"13"
 	},
 	{
-		"desc":"If the source of an inbound security group rule or destination of an outbound security group rule needs to be changed, you need to first delete the security group rule an",
+		"desc":"If you need to assign different permissions to personnel in your enterprise to access your VPN resources created on the cloud service platform, Identity and Access Manage",
 		"product_code":"vpn",
-		"title":"Deleting a Security Group Rule",
-		"uri":"en-us_topic_0030969471.html",
+		"title":"Permissions Management",
+		"uri":"vpn_01_0011.html",
 		"doc_type":"usermanual",
-		"p_code":"11",
+		"p_code":"1",
 		"code":"14"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"product_code":"vpn",
-		"title":"Management",
-		"uri":"en-us_topic_0035391378.html",
+		"title":"Basic Concepts",
+		"uri":"vpn_01_0034.html",
 		"doc_type":"usermanual",
-		"p_code":"",
+		"p_code":"1",
 		"code":"15"
 	},
 	{
-		"desc":"You can view details about an existing VPN.Log in to the management console.Click  in the upper left corner and select the desired region and project.On the console homep",
+		"desc":"Internet Protocol Security (IPsec) VPN uses a secure network protocol suite that authenticates and encrypts the packets of data to provide secure encrypted communication ",
 		"product_code":"vpn",
-		"title":"Viewing a VPN",
-		"uri":"en-us_topic_0035506845.html",
+		"title":"IPsec VPN",
+		"uri":"vpn_01_0035.html",
 		"doc_type":"usermanual",
 		"p_code":"15",
 		"code":"16"
 	},
 	{
-		"desc":"If the VPN network information conflicts the VPC network information or you need to adjust VPN configurations, you can modify a VPN.Log in to the management console.Click",
+		"desc":"SSL VPN is a virtual private network technology using the SSL protocol. It allows remote users to securely access enterprise intranet resources.",
 		"product_code":"vpn",
-		"title":"Modifying a VPN",
-		"uri":"en-us_topic_0035391295.html",
+		"title":"SSL VPN",
+		"uri":"vpn_08_1504.html",
 		"doc_type":"usermanual",
 		"p_code":"15",
 		"code":"17"
 	},
 	{
-		"desc":"You can delete a VPN to release network resources if the VPN is no longer required.Log in to the management console.Click  in the upper left corner and select a region an",
+		"desc":"A VPN gateway is a virtual gateway of VPN on the cloud. It establishes secure private connections with a customer gateway in your on-premises network or data center.A VPN",
 		"product_code":"vpn",
-		"title":"Deleting a VPN",
-		"uri":"en-us_topic_0035616925.html",
+		"title":"VPN Gateway",
+		"uri":"vpn_01_0012.html",
 		"doc_type":"usermanual",
 		"p_code":"15",
 		"code":"18"
 	},
 	{
-		"desc":"A VPN tag identifies a VPN. Tags can be added to VPNs to facilitate VPN identification and administration. You can add a tag to a VPN when creating the VPN. Alternatively",
+		"desc":"A VPN connection is a secure channel between a VPN gateway and a customer gateway. VPN connections use the IKE and IPsec protocols to encrypt the transmitted data.A VPN c",
 		"product_code":"vpn",
-		"title":"Managing VPN Tags",
-		"uri":"en-us_topic_0107396413.html",
+		"title":"VPN Connection",
+		"uri":"vpn_01_0013.html",
 		"doc_type":"usermanual",
 		"p_code":"15",
 		"code":"19"
 	},
 	{
-		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"desc":"The bandwidth you purchased for a VPN gateway refers to outbound bandwidth, that is, bandwidth for traffic sent from a VPC on the cloud to a customer gateway in an on-pre",
 		"product_code":"vpn",
-		"title":"VPN Best Practice",
-		"uri":"en-us_topic_0114174493.html",
+		"title":"VPN Gateway Bandwidth",
+		"uri":"vpn_01_0014.html",
 		"doc_type":"usermanual",
-		"p_code":"",
+		"p_code":"15",
 		"code":"20"
 	},
 	{
-		"desc":"By default, ECSs in a VPC cannot communicate with your data center or private network. To enable communication between them, use a VPN. After a VPN is created, configure ",
+		"desc":"Local subnets are VPC subnets that need to communicate with an on-premises network through VPN. When you buy a VPN gateway, you can set Local Subnet to either of the foll",
 		"product_code":"vpn",
-		"title":"Connecting to a VPC Through a VPN",
-		"uri":"en-us_topic_0066871940.html",
+		"title":"Local Subnet",
+		"uri":"vpn_01_0015.html",
 		"doc_type":"usermanual",
-		"p_code":"20",
+		"p_code":"15",
 		"code":"21"
 	},
+	{
+		"desc":"A customer gateway is a resource that provides information on the console about your customer gateway device, which can be a physical device or software application in yo",
+		"product_code":"vpn",
+		"title":"Customer Gateway",
+		"uri":"vpn_01_0016.html",
+		"doc_type":"usermanual",
+		"p_code":"15",
+		"code":"22"
+	},
+	{
+		"desc":"Customer subnets are subnets in an on-premises data center that access a VPC on the cloud through a VPN. You need to enter subnets using CIDR notation (example: 192.168.0",
+		"product_code":"vpn",
+		"title":"Customer Subnet",
+		"uri":"vpn_01_0017.html",
+		"doc_type":"usermanual",
+		"p_code":"15",
+		"code":"23"
+	},
+	{
+		"desc":"A pre-shared key (PSK) is a key configured for a VPN connection on the cloud. It is used for IKE negotiation between VPN devices at both ends of a VPN connection. Ensure ",
+		"product_code":"vpn",
+		"title":"PSK",
+		"uri":"vpn_01_0018.html",
+		"doc_type":"usermanual",
+		"p_code":"15",
+		"code":"24"
+	},
+	{
+		"desc":"Regions and availability zones (AZs) identify the locations of data centers. You can create resources in regions and AZs.A region is a physical data center location. Each",
+		"product_code":"vpn",
+		"title":"Region and AZ",
+		"uri":"vpn_01_0027.html",
+		"doc_type":"usermanual",
+		"p_code":"15",
+		"code":"25"
+	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"product_code":"vpn",
-		"title":"FAQs",
-		"uri":"en-us_topic_0035391365.html",
+		"title":"Getting Started",
+		"uri":"vpn_03_0000.html",
 		"doc_type":"usermanual",
 		"p_code":"",
-		"code":"22"
-	},
-	{
-		"desc":"By default, a user can have a maximum of five IPsec VPNs. If your quota cannot fulfill your service requirements, submit a service ticket to increase the quota.",
-		"product_code":"vpn",
-		"title":"How Many IPsec VPNs Can I Have?",
-		"uri":"vpn_faq_0021.html",
-		"doc_type":"usermanual",
-		"p_code":"22",
-		"code":"23"
-	},
-	{
-		"desc":"The IPsec VPN tunnel works in passive mode, which triggers automatic negotiation only when traffic sent by the local end passes through the tunnel.",
-		"product_code":"vpn",
-		"title":"Do IPsec VPNs Support Automatic Negotiation?",
-		"uri":"en-us_topic_0036149069.html",
-		"doc_type":"usermanual",
-		"p_code":"22",
-		"code":"24"
-	},
-	{
-		"desc":"Log in to the management console and click Virtual Private Network.In the VPN list, locate the target VPN and click View Policyin the Operationcolumn to view IKE and IPse",
-		"product_code":"vpn",
-		"title":"What Do I Do If VPN Setup Fails?",
-		"uri":"vpn_faq_0055.html",
-		"doc_type":"usermanual",
-		"p_code":"22",
-		"code":"25"
-	},
-	{
-		"desc":"The security group denies the access from all sources by default. If you want to access your ECSs, modify the security group configuration and allow the access from the r",
-		"product_code":"vpn",
-		"title":"How Can I Handle the Failure in Accessing the ECSs from My Data Center or LAN Even If the VPN Has Been Set Up?",
-		"uri":"vpn_faq_0056.html",
-		"doc_type":"usermanual",
-		"p_code":"22",
 		"code":"26"
 	},
 	{
-		"desc":"Check whether you have properly configured the firewall policies for the access from the public IP address of the cloud VPN to the public IP address of your data center o",
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"product_code":"vpn",
-		"title":"What Do I Do If I Cannot Access My Data Center or LAN from the ECSs After a VPN Connection Has Been Set Up?",
-		"uri":"vpn_faq_0057.html",
+		"title":"Enterprise Edition VPN",
+		"uri":"vpn_08_1505.html",
 		"doc_type":"usermanual",
-		"p_code":"22",
+		"p_code":"26",
 		"code":"27"
 	},
 	{
-		"desc":"If the two VPCs are in the same region, you can use a VPC peering connection to enable communication between them.If the two VPCs are in different regions, you can use a ",
+		"desc":"The supported regions are subject to those available on the console.To meet business development requirements, enterprise A needs to implement communication between its o",
 		"product_code":"vpn",
-		"title":"Does a VPN Allow for Communication Between Two VPCs?",
-		"uri":"vpn_faq_0058.html",
+		"title":"Overview",
+		"uri":"vpn_qs_00003.html",
 		"doc_type":"usermanual",
-		"p_code":"22",
+		"p_code":"27",
 		"code":"28"
 	},
 	{
-		"desc":"The maximum number obtained by multiplying the number of local subnets and that of remote subnets cannot exceed 2500.",
+		"desc":"A VPC has been created. For details about how to create a VPC, see the Virtual Private Cloud User Guide.Security group rules have been configured for ECSs in the VPC, and",
 		"product_code":"vpn",
-		"title":"What Is the Limitation on the Number of Local and Remote Subnets of a VPN?",
-		"uri":"en-us_topic_0044789110.html",
+		"title":"Step 1: Creating a VPN Gateway",
+		"uri":"vpn_03_0204.html",
 		"doc_type":"usermanual",
-		"p_code":"22",
+		"p_code":"27",
 		"code":"29"
 	},
 	{
-		"desc":"After a VPN is created, its status changes to Normalonly after the VMs or physical servers on the two sides of the VPN communicate with each other.IKE v1:If no traffic go",
+		"desc":"The following describes only key parameters.Check the created customer gateway on the Customer Gateways page.",
 		"product_code":"vpn",
-		"title":"Why Is Not Connected Displayed as the Status for a Successfully Created VPN?",
-		"uri":"en-us_topic_0045305370.html",
+		"title":"Step 2: Creating a Customer Gateway",
+		"uri":"vpn_qs_00007.html",
 		"doc_type":"usermanual",
-		"p_code":"22",
+		"p_code":"27",
 		"code":"30"
 	},
 	{
-		"desc":"The time required for VPN configurations to take effect increases linearly with the number obtained by multiplying the number of local subnets and that of remote subnets.",
+		"desc":"The following describes only key parameters.Check the created VPN connection on the VPN Connections page. The initial state of the VPN connection is Creating. As the cust",
 		"product_code":"vpn",
-		"title":"How Long Is Required for Issued VPN Configurations to Take Effect?",
-		"uri":"en-us_topic_0051518174.html",
+		"title":"Step 3: Creating VPN Connection 1",
+		"uri":"vpn_qs_00008.html",
 		"doc_type":"usermanual",
-		"p_code":"22",
+		"p_code":"27",
 		"code":"31"
 	},
 	{
-		"desc":"Due to the symmetry of the tunnel, the VPN parameters configured on the cloud must be the same as those configured in your own data center. If they are different, a VPN c",
+		"desc":"For VPN connection 2, you are advised to use the same settings as VPN connection 1, except the connection name, gateway IP address, local tunnel interface IP address, and",
 		"product_code":"vpn",
-		"title":"How Do I Configure a Remote Device for a VPN?",
-		"uri":"en-us_topic_0109312453.html",
+		"title":"Step 4: Creating VPN Connection 2",
+		"uri":"vpn_03_0335.html",
 		"doc_type":"usermanual",
-		"p_code":"22",
+		"p_code":"27",
 		"code":"32"
 	},
 	{
-		"desc":"Most devices that meet IPsec VPN standard and reference protocol requirements can be used as the remote VPN devices, for example, Cisco ASA firewalls, Huawei USG6xxxxseri",
+		"desc":"In this example, the customer gateway device is an AR router.In this command, 22.xx.xx.1 is the gateway address of the AR router's public IP address. Replace it with the ",
 		"product_code":"vpn",
-		"title":"Which Remote VPN Devices Are Supported?",
-		"uri":"en-us_topic_0109676043.html",
+		"title":"Step 5: Configuring the Customer Gateway Device",
+		"uri":"vpn_03_0336.html",
 		"doc_type":"usermanual",
-		"p_code":"22",
+		"p_code":"27",
 		"code":"33"
 	},
 	{
-		"desc":"You can perform the following steps to handle the issues:Check the ECS specifications. Rate limiting is not performed for the VPN ingress on the cloud, so the issue may b",
+		"desc":"In this example, use VNC provided on the management console to log in to an ECS.ping 172.16.0.100172.16.0.100 is the IP address of a server in the on-premises data center",
 		"product_code":"vpn",
-		"title":"What Can I Do If the VPN Fails or the Network Speed of the VPN Is Slow?",
-		"uri":"en-us_topic_0142368417.html",
+		"title":"Step 6: Verifying Network Connectivity",
+		"uri":"vpn_03_0337.html",
 		"doc_type":"usermanual",
-		"p_code":"22",
+		"p_code":"27",
 		"code":"34"
 	},
 	{
-		"desc":"Currently, the VPN service does not support the SSL VPNs.",
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"product_code":"vpn",
-		"title":"Are SSL VPNs Supported?",
-		"uri":"en-us_topic_0142373840.html",
+		"title":"Classic VPN",
+		"uri":"vpn_08_1507.html",
 		"doc_type":"usermanual",
-		"p_code":"22",
+		"p_code":"26",
 		"code":"35"
 	},
 	{
-		"desc":"Quotas are enforced for service resources on the platform to prevent unforeseen spikes in resource usage. Quotas can limit the number or amount of resources available to ",
+		"desc":"By default, ECSs in a VPC cannot communicate with devices in your on-premises data center or private network. To enable communication between them, you can use a VPN by c",
 		"product_code":"vpn",
-		"title":"What Is the VPN Quota?",
-		"uri":"en-us_topic_0035391366.html",
+		"title":"Creating a VPN",
+		"uri":"vpn_03_0004.html",
 		"doc_type":"usermanual",
-		"p_code":"22",
+		"p_code":"35",
 		"code":"36"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"product_code":"vpn",
-		"title":"A Change History",
-		"uri":"en-us_topic_0041174633.html",
+		"title":"Management",
+		"uri":"vpn_04_0000.html",
 		"doc_type":"usermanual",
 		"p_code":"",
 		"code":"37"
+	},
+	{
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"product_code":"vpn",
+		"title":"Enterprise Edition VPN",
+		"uri":"vpn_08_1509.html",
+		"doc_type":"usermanual",
+		"p_code":"37",
+		"code":"38"
+	},
+	{
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"product_code":"vpn",
+		"title":"Enterprise Edition VPN Gateway Management",
+		"uri":"vpn_ug_00001.html",
+		"doc_type":"usermanual",
+		"p_code":"38",
+		"code":"39"
+	},
+	{
+		"desc":"To connect your on-premises data center or private network to your ECSs in a VPC, you need to create a VPN gateway before creating a VPN connection.The recommended networ",
+		"product_code":"vpn",
+		"title":"Creating a VPN Gateway",
+		"uri":"vpn_04_0421.html",
+		"doc_type":"usermanual",
+		"p_code":"39",
+		"code":"40"
+	},
+	{
+		"desc":"After creating a VPN gateway, you can view its details.Log in to the management console.Click  in the upper left corner and select the desired region and project.Click  i",
+		"product_code":"vpn",
+		"title":"Viewing a VPN Gateway",
+		"uri":"vpn_ug_00002.html",
+		"doc_type":"usermanual",
+		"p_code":"39",
+		"code":"41"
+	},
+	{
+		"desc":"You can modify basic information about a VPN gateway, including the name and local subnet.Log in to the management console.Click  in the upper left corner and select the ",
+		"product_code":"vpn",
+		"title":"Modifying a VPN Gateway",
+		"uri":"vpn_ug_00003.html",
+		"doc_type":"usermanual",
+		"p_code":"39",
+		"code":"42"
+	},
+	{
+		"desc":"You can bind EIPs to a VPN gateway that has been created.Log in to the management console.Click  in the upper left corner and select the desired region and project.Click ",
+		"product_code":"vpn",
+		"title":"Binding an EIP to a VPN Gateway",
+		"uri":"vpn_ug_00004.html",
+		"doc_type":"usermanual",
+		"p_code":"39",
+		"code":"43"
+	},
+	{
+		"desc":"After a VPN gateway is created, you can unbind an EIP from it.An EIP that is in use by a VPN connection cannot be unbound from a VPN gateway.Log in to the management cons",
+		"product_code":"vpn",
+		"title":"Unbinding an EIP from a VPN Gateway",
+		"uri":"vpn_04_0807.html",
+		"doc_type":"usermanual",
+		"p_code":"39",
+		"code":"44"
+	},
+	{
+		"desc":"You can delete a VPN gateway that is no longer required.The delete operation is not supported for a VPN gateway that is being created, updated, or deleted.If a VPN gatewa",
+		"product_code":"vpn",
+		"title":"Deleting a VPN Gateway",
+		"uri":"vpn_ug_00007.html",
+		"doc_type":"usermanual",
+		"p_code":"39",
+		"code":"45"
+	},
+	{
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"product_code":"vpn",
+		"title":"Customer Gateway Management of Enterprise Edition VPN",
+		"uri":"vpn_ug_00008.html",
+		"doc_type":"usermanual",
+		"p_code":"38",
+		"code":"46"
+	},
+	{
+		"desc":"To connect your on-premises data center or private network to your ECSs in a VPC, you need to create a customer gateway before creating a VPN connection.Log in to the man",
+		"product_code":"vpn",
+		"title":"Creating a Customer Gateway",
+		"uri":"vpn_04_0431.html",
+		"doc_type":"usermanual",
+		"p_code":"46",
+		"code":"47"
+	},
+	{
+		"desc":"After creating a customer gateway, you can view its details.Log in to the management console.Click  in the upper left corner and select the desired region and project.Cli",
+		"product_code":"vpn",
+		"title":"Viewing a Customer Gateway",
+		"uri":"vpn_ug_00009.html",
+		"doc_type":"usermanual",
+		"p_code":"46",
+		"code":"48"
+	},
+	{
+		"desc":"After creating a customer gateway, you can modify its name.Log in to the management console.Click  in the upper left corner and select the desired region and project.Clic",
+		"product_code":"vpn",
+		"title":"Modifying a Customer Gateway",
+		"uri":"vpn_ug_00010.html",
+		"doc_type":"usermanual",
+		"p_code":"46",
+		"code":"49"
+	},
+	{
+		"desc":"You can delete a customer gateway that you have created.Before deleting a customer gateway associated with a VPN connection, remove the customer gateway from the VPN conn",
+		"product_code":"vpn",
+		"title":"Deleting a Customer Gateway",
+		"uri":"vpn_ug_00011.html",
+		"doc_type":"usermanual",
+		"p_code":"46",
+		"code":"50"
+	},
+	{
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"product_code":"vpn",
+		"title":"Enterprise Edition VPN Connection Management",
+		"uri":"vpn_ug_00012.html",
+		"doc_type":"usermanual",
+		"p_code":"38",
+		"code":"51"
+	},
+	{
+		"desc":"To connect your on-premises data center or private network to your ECSs in a VPC, you need to create VPN connections after creating a VPN gateway and a customer gateway.W",
+		"product_code":"vpn",
+		"title":"Creating a VPN Connection",
+		"uri":"vpn_04_0441.html",
+		"doc_type":"usermanual",
+		"p_code":"51",
+		"code":"52"
+	},
+	{
+		"desc":"After VPN connections are created, you can configure health check to enable the VPN gateway to send probe packets to the customer gateway to collect statistics about the ",
+		"product_code":"vpn",
+		"title":"Configuring Health Check",
+		"uri":"vpn_ug_00023.html",
+		"doc_type":"usermanual",
+		"p_code":"51",
+		"code":"53"
+	},
+	{
+		"desc":"After creating a VPN connection, you can view its details.Log in to the management console.Click  in the upper left corner and select the desired region and project.Click",
+		"product_code":"vpn",
+		"title":"Viewing a VPN Connection",
+		"uri":"vpn_ug_00013.html",
+		"doc_type":"usermanual",
+		"p_code":"51",
+		"code":"54"
+	},
+	{
+		"desc":"A VPN connection is an encrypted communications channel established between a VPN gateway in a VPC and a customer gateway in your on-premises data center. You can modify ",
+		"product_code":"vpn",
+		"title":"Modifying a VPN Connection",
+		"uri":"vpn_ug_00014.html",
+		"doc_type":"usermanual",
+		"p_code":"51",
+		"code":"55"
+	},
+	{
+		"desc":"If a VPN connection is no longer required, you can delete it to release network resources.Log in to the management console.Click  in the upper left corner and select the ",
+		"product_code":"vpn",
+		"title":"Deleting a VPN Connection",
+		"uri":"vpn_04_1003.html",
+		"doc_type":"usermanual",
+		"p_code":"51",
+		"code":"56"
+	},
+	{
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"product_code":"vpn",
+		"title":"Classic VPN",
+		"uri":"vpn_08_1511.html",
+		"doc_type":"usermanual",
+		"p_code":"37",
+		"code":"57"
+	},
+	{
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"product_code":"vpn",
+		"title":"Classic VPN Management",
+		"uri":"vpn_04_0470.html",
+		"doc_type":"usermanual",
+		"p_code":"57",
+		"code":"58"
+	},
+	{
+		"desc":"You can view details about an existing VPN.Log in to the management console.Click  in the upper left corner and select the desired region and project.Click Service List a",
+		"product_code":"vpn",
+		"title":"Viewing Created VPNs",
+		"uri":"vpn_04_0002.html",
+		"doc_type":"usermanual",
+		"p_code":"58",
+		"code":"59"
+	},
+	{
+		"desc":"If VPN network information conflicts with VPC network information or needs to be adjusted based on the latest network environment, you can modify the VPN.Log in to the ma",
+		"product_code":"vpn",
+		"title":"Modifying a Created VPN",
+		"uri":"vpn_04_0003.html",
+		"doc_type":"usermanual",
+		"p_code":"58",
+		"code":"60"
+	},
+	{
+		"desc":"You can delete a VPN if it is no longer required.Log in to the management console.Click  in the upper left corner and select the desired region and project.Click Service ",
+		"product_code":"vpn",
+		"title":"Deleting a VPN",
+		"uri":"vpn_04_0004.html",
+		"doc_type":"usermanual",
+		"p_code":"58",
+		"code":"61"
+	},
+	{
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"product_code":"vpn",
+		"title":"Monitoring",
+		"uri":"vpn_04_0700.html",
+		"doc_type":"usermanual",
+		"p_code":"37",
+		"code":"62"
+	},
+	{
+		"desc":"Cloud Eye lets you keep a close eye on the performance and resource utilization of VPNs, ensuring VPN reliability and availability. You can use Cloud Eye to automatically",
+		"product_code":"vpn",
+		"title":"Monitoring VPN",
+		"uri":"vpn_04_0701.html",
+		"doc_type":"usermanual",
+		"p_code":"62",
+		"code":"63"
+	},
+	{
+		"desc":"This section describes monitored metrics reported by VPN to Cloud Eye as well as their namespaces and dimensions. You can use the Cloud Eye management console to query th",
+		"product_code":"vpn",
+		"title":"Metrics (Enterprise Edition VPN)",
+		"uri":"vpn_04_0702.html",
+		"doc_type":"usermanual",
+		"p_code":"62",
+		"code":"64"
+	},
+	{
+		"desc":"This section describes monitored metrics reported by VPN to Cloud Eye as well as their namespaces and dimensions. You can use the Cloud Eye management console to query th",
+		"product_code":"vpn",
+		"title":"Metrics (Classic VPN)",
+		"uri":"vpn_04_0705.html",
+		"doc_type":"usermanual",
+		"p_code":"62",
+		"code":"65"
+	},
+	{
+		"desc":"View the VPN connection status and usages of bandwidth and EIP. You can view data of the last 1, 3, 12, or 24 hours, or last 7 days.Viewing metrics on the Cloud Eye conso",
+		"product_code":"vpn",
+		"title":"Viewing Metrics",
+		"uri":"vpn_04_0704.html",
+		"doc_type":"usermanual",
+		"p_code":"62",
+		"code":"66"
+	},
+	{
+		"desc":"You can configure alarm rules on the Cloud Eye console to keep track of your VPN status at any time.Log in to the management console.Click  in the upper left corner and s",
+		"product_code":"vpn",
+		"title":"Creating Alarm Rules",
+		"uri":"vpn_04_0703.html",
+		"doc_type":"usermanual",
+		"p_code":"62",
+		"code":"67"
+	},
+	{
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"product_code":"vpn",
+		"title":"Audit",
+		"uri":"vpn_ug_00016.html",
+		"doc_type":"usermanual",
+		"p_code":"37",
+		"code":"68"
+	},
+	{
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"product_code":"vpn",
+		"title":"VPN Operations That Can Be Recorded by CTS",
+		"uri":"vpn_ug_00017.html",
+		"doc_type":"usermanual",
+		"p_code":"68",
+		"code":"69"
+	},
+	{
+		"desc":"After you enable CTS and the management tracker is created, CTS starts recording operations performed on VPN resources. You can view the operation records in the last sev",
+		"product_code":"vpn",
+		"title":"Querying CTS Traces",
+		"uri":"vpn_ug_00018.html",
+		"doc_type":"usermanual",
+		"p_code":"68",
+		"code":"70"
+	},
+	{
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"product_code":"vpn",
+		"title":"Permissions Management",
+		"uri":"vpn_04_1200.html",
+		"doc_type":"usermanual",
+		"p_code":"37",
+		"code":"71"
+	},
+	{
+		"desc":"Use the Identity and Access Management (IAM) service to implement fine-grained permissions control over your VPN resources. With IAM, you can:Create IAM users for employe",
+		"product_code":"vpn",
+		"title":"Creating a User and Granting VPN Permissions",
+		"uri":"vpn_04_1201.html",
+		"doc_type":"usermanual",
+		"p_code":"71",
+		"code":"72"
+	},
+	{
+		"desc":"Custom policies can be created to supplement the system-defined policies of VPN.You can create custom policies in either of the following ways:Visual editor: Select cloud",
+		"product_code":"vpn",
+		"title":"VPN Custom Policies",
+		"uri":"vpn_04_1202.html",
+		"doc_type":"usermanual",
+		"p_code":"71",
+		"code":"73"
+	},
+	{
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"product_code":"vpn",
+		"title":"Tag Management",
+		"uri":"vpn_08_1513.html",
+		"doc_type":"usermanual",
+		"p_code":"37",
+		"code":"74"
+	},
+	{
+		"desc":"VPN tags are used to identify VPN resources, facilitating VPN resource identification and management. You can add tags for a VPN resource when you create the VPN resource",
+		"product_code":"vpn",
+		"title":"Scenario",
+		"uri":"vpn_08_1514.html",
+		"doc_type":"usermanual",
+		"p_code":"74",
+		"code":"75"
+	},
+	{
+		"desc":"You can search for VPN gateways, customer gateways, and VPN connections based on the tag keys and values that have been added for these VPN resources.Searching for Enterp",
+		"product_code":"vpn",
+		"title":"Searching for Resources by Tag",
+		"uri":"vpn_08_1515.html",
+		"doc_type":"usermanual",
+		"p_code":"74",
+		"code":"76"
+	},
+	{
+		"desc":"You can add, delete, modify, and view tags of VPN gateways.Managing tags of Enterprise Edition VPN gatewaysLog in to the management console.Click  in the upper left corne",
+		"product_code":"vpn",
+		"title":"Managing Tags",
+		"uri":"vpn_08_1516.html",
+		"doc_type":"usermanual",
+		"p_code":"74",
+		"code":"77"
+	},
+	{
+		"desc":"VPN resources include VPN gateways, VPN connection groups, and customer gateways.The total quota of each resource type varies according to regions.",
+		"product_code":"vpn",
+		"title":"Quotas",
+		"uri":"vpn_04_0411.html",
+		"doc_type":"usermanual",
+		"p_code":"37",
+		"code":"78"
+	},
+	{
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"product_code":"vpn",
+		"title":"Administrator Guide",
+		"uri":"vpn_09_0000.html",
+		"doc_type":"usermanual",
+		"p_code":"",
+		"code":"79"
+	},
+	{
+		"desc":"This section describes how to create a VPN gateway and VPN connections to connect your on-premises network to a VPC subnet if your local data center uses FortiGate firewa",
+		"product_code":"vpn",
+		"title":"Configuring VPN When Fortinet FortiGate Firewall Is Used",
+		"uri":"vpn_admin_0016.html",
+		"doc_type":"usermanual",
+		"p_code":"79",
+		"code":"80"
+	},
+	{
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"product_code":"vpn",
+		"title":"FAQs",
+		"uri":"vpn_08_0000.html",
+		"doc_type":"usermanual",
+		"p_code":"",
+		"code":"81"
+	},
+	{
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"product_code":"vpn",
+		"title":"Enterprise Edition VPN",
+		"uri":"vpn_08_1517.html",
+		"doc_type":"usermanual",
+		"p_code":"81",
+		"code":"82"
+	},
+	{
+		"desc":"A VPN is a point-to-point connection that implements private network access between two points.Applicable scenarios:A VPN is created between different regions to enable c",
+		"product_code":"vpn",
+		"title":"What Are the Typical Scenarios of IPsec VPN?",
+		"uri":"vpn_faq_00031.html",
+		"doc_type":"usermanual",
+		"p_code":"82",
+		"code":"83"
+	},
+	{
+		"desc":"VPC enables you to create private, isolated virtual networks. You can use VPN to securely access ECSs in VPCs.A VPN gateway is an egress gateway for a VPC. With a VPN gat",
+		"product_code":"vpn",
+		"title":"What Are a VPC, a VPN Gateway, and a VPN Connection?",
+		"uri":"vpn_faq_00032.html",
+		"doc_type":"usermanual",
+		"p_code":"82",
+		"code":"84"
+	},
+	{
+		"desc":"The CIDR blocks of a VPC cannot conflict with on-premises CIDR blocks.To avoid conflicts with cloud service addresses, do not use 127.0.0.0/8, 169.254.0.0/16, 224.0.0.0/3",
+		"product_code":"vpn",
+		"title":"How Do I Plan CIDR Blocks for Access to a VPC Through a VPN Connection?",
+		"uri":"vpn_faq_00036.html",
+		"doc_type":"usermanual",
+		"p_code":"82",
+		"code":"85"
+	},
+	{
+		"desc":"Yes. An IPsec VPN connection is automatically established.",
+		"product_code":"vpn",
+		"title":"Is an IPsec VPN Connection Automatically Established?",
+		"uri":"vpn_faq_00037.html",
+		"doc_type":"usermanual",
+		"p_code":"82",
+		"code":"86"
+	},
+	{
+		"desc":"Perfect Forward Secrecy (PFS) is a security feature.IKE negotiation has two phases, phase one and phase two. The key of phase two (IPsec SA) is derived from the key gener",
+		"product_code":"vpn",
+		"title":"What Are VPN Negotiation Parameters? What Are Their Default Values?",
+		"uri":"vpn_faq_00040.html",
+		"doc_type":"usermanual",
+		"p_code":"82",
+		"code":"87"
+	},
+	{
+		"desc":"No. IPsec VPN uses a pre-shared key (PSK) for authentication. The PSK is configured on a VPN gateway, and a connection will be established after VPN negotiation is comple",
+		"product_code":"vpn",
+		"title":"Are a Username and Password Required for Creating an IPsec VPN Connection?",
+		"uri":"vpn_faq_00041.html",
+		"doc_type":"usermanual",
+		"p_code":"82",
+		"code":"88"
+	},
+	{
+		"desc":"VPN gatewayThe following bandwidth information of a VPN gateway IP address can be monitored: inbound traffic, inbound bandwidth, outbound traffic, outbound bandwidth, and",
+		"product_code":"vpn",
+		"title":"What VPN Resources Can Be Monitored?",
+		"uri":"vpn_faq_00043.html",
+		"doc_type":"usermanual",
+		"p_code":"82",
+		"code":"89"
+	},
+	{
+		"desc":"Yes.When creating a VPN gateway, you can bind EIPs as the gateway IP addresses.",
+		"product_code":"vpn",
+		"title":"Can EIPs Be Used as VPN Gateway IP Addresses?",
+		"uri":"vpn_faq_00044.html",
+		"doc_type":"usermanual",
+		"p_code":"82",
+		"code":"90"
+	},
+	{
+		"desc":"IKEv2 is recommended because IKEv1 is not secure. In addition, IKEv2 outperforms IKEv1 in connection negotiation and establishment, authentication methods, dead peer dete",
+		"product_code":"vpn",
+		"title":"Which IKE Version Should I Select When I Create a VPN Connection?",
+		"uri":"vpn_faq_00051.html",
+		"doc_type":"usermanual",
+		"p_code":"82",
+		"code":"91"
+	},
+	{
+		"desc":"Log in to the management console and choose Virtual Private Network > Enterprise – VPN Connections.In the VPN connection list, locate the target VPN connection, and choos",
+		"product_code":"vpn",
+		"title":"What Do I Do If a VPN Connection Fails to Be Established?",
+		"uri":"vpn_faq_00144.html",
+		"doc_type":"usermanual",
+		"p_code":"82",
+		"code":"92"
+	},
+	{
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"product_code":"vpn",
+		"title":"Classic VPN",
+		"uri":"vpn_08_1518.html",
+		"doc_type":"usermanual",
+		"p_code":"81",
+		"code":"93"
+	},
+	{
+		"desc":"IPsec VPN connects two LANs, such as a branch and its headquarters (or a VPC), or an on-premises data center and a VPC.SSL VPN connects a client to a LAN. For example, th",
+		"product_code":"vpn",
+		"title":"What Are the Differences Between the Application Scenarios and Connection Modes of IPsec and SSL VPNs?",
+		"uri":"vpn_08_0305.html",
+		"doc_type":"usermanual",
+		"p_code":"93",
+		"code":"94"
+	},
+	{
+		"desc":"When a VPN connection is created, routes are automatically delivered to reach the remote subnets.",
+		"product_code":"vpn",
+		"title":"Where Can I Add Routes on the VPN Console to Reach the Remote Subnets?",
+		"uri":"vpn_08_0232.html",
+		"doc_type":"usermanual",
+		"p_code":"93",
+		"code":"95"
+	},
+	{
+		"desc":"The VPN connection status can be monitored. After a VPN connection is created, the VPN service reports the connection status information to Cloud Eye, but does not automa",
+		"product_code":"vpn",
+		"title":"Will I Be Notified If a VPN Connection Is Interrupted?",
+		"uri":"vpn_08_0233.html",
+		"doc_type":"usermanual",
+		"p_code":"93",
+		"code":"96"
+	},
+	{
+		"desc":"VPN uses the IPsec technology to connect your on-premises data center to a VPC on the cloud. As such, the number of VPN connections is related to the number of data cente",
+		"product_code":"vpn",
+		"title":"How Many VPN Connections Do I Need to Connect to Multiple On-premises Servers?",
+		"uri":"vpn_08_0323.html",
+		"doc_type":"usermanual",
+		"p_code":"93",
+		"code":"97"
+	},
+	{
+		"desc":"When you configure a VPN, perform the following operations on the on-premises gateway:Configure IKE and IPsec policies.Specify the to-be-protected traffic (firewall).Chec",
+		"product_code":"vpn",
+		"title":"What Are the Impacts of a VPN on an On-premises Network? What Are the Changes to the Route for Accessing an ECS?",
+		"uri":"vpn_08_0325.html",
+		"doc_type":"usermanual",
+		"p_code":"93",
+		"code":"98"
+	},
+	{
+		"desc":"Ensure that the on-premises gateway supports IPsec VPN.Create a VPN gateway and a VPN connection on the cloud. Select the VPC to which the Direct Connect connection uses ",
+		"product_code":"vpn",
+		"title":"How Do I Replace a Direct Connect Connection with a VPN?",
+		"uri":"vpn_08_0312.html",
+		"doc_type":"usermanual",
+		"p_code":"93",
+		"code":"99"
+	},
+	{
+		"desc":"A VPN connects a VPC on the cloud and an on-premises local area network (LAN).The home network is not a part of the LAN of your enterprise and cannot be directly connecte",
+		"product_code":"vpn",
+		"title":"How Do I Access ECSs at Home When My Enterprise Network Has Been Connected to the Cloud Through a VPN?",
+		"uri":"vpn_08_0318.html",
+		"doc_type":"usermanual",
+		"p_code":"93",
+		"code":"100"
+	},
+	{
+		"desc":"By default, DPD is enabled on the cloud side and cannot be disabled.Configure DPD as follows:DPD-type: on-demandDPD idle-time: 30sDPD retransmit-interval: 15sDPD retry-li",
+		"product_code":"vpn",
+		"title":"How Do I Configure DPD for Interconnection with the Cloud?",
+		"uri":"vpn_08_0614.html",
+		"doc_type":"usermanual",
+		"p_code":"93",
+		"code":"101"
+	},
+	{
+		"desc":"Quotas can limit the number or amount of resources available to users, such as the maximum number of ECSs or EVS disks that can be created.If the existing resource quota ",
+		"product_code":"vpn",
+		"title":"What Is the VPN Quota?",
+		"uri":"vpn_08_1501.html",
+		"doc_type":"usermanual",
+		"p_code":"93",
+		"code":"102"
+	},
+	{
+		"desc":"After a VPN connection is created, its status changes to Normal only after servers at both ends of the VPN connection communicate with each other.IKE v1:If no traffic goe",
+		"product_code":"vpn",
+		"title":"Why Is Not Connected Displayed as the Status for a Successfully Created VPN Connection?",
+		"uri":"vpn_08_0713.html",
+		"doc_type":"usermanual",
+		"p_code":"93",
+		"code":"103"
+	},
+	{
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"product_code":"vpn",
+		"title":"Change History",
+		"uri":"vpn_08_1519.html",
+		"doc_type":"usermanual",
+		"p_code":"",
+		"code":"104"
 	}
 ]
\ No newline at end of file
diff --git a/docs/vpn/umn/en-us_image_0000001404528466.png b/docs/vpn/umn/en-us_image_0000001404528466.png
deleted file mode 100644
index daf53fd4..00000000
Binary files a/docs/vpn/umn/en-us_image_0000001404528466.png and /dev/null differ
diff --git a/docs/vpn/umn/en-us_image_0000001404848230.jpg b/docs/vpn/umn/en-us_image_0000001404848230.jpg
deleted file mode 100644
index b02afe63..00000000
Binary files a/docs/vpn/umn/en-us_image_0000001404848230.jpg and /dev/null differ
diff --git a/docs/vpn/umn/en-us_image_0000001405148354.jpg b/docs/vpn/umn/en-us_image_0000001405148354.jpg
deleted file mode 100644
index 28092c10..00000000
Binary files a/docs/vpn/umn/en-us_image_0000001405148354.jpg and /dev/null differ
diff --git a/docs/vpn/umn/en-us_image_0000001405148570.png b/docs/vpn/umn/en-us_image_0000001405148570.png
deleted file mode 100644
index fcd4cf4b..00000000
Binary files a/docs/vpn/umn/en-us_image_0000001405148570.png and /dev/null differ
diff --git a/docs/vpn/umn/en-us_image_0000001405151706.png b/docs/vpn/umn/en-us_image_0000001405151706.png
deleted file mode 100644
index a06a2136..00000000
Binary files a/docs/vpn/umn/en-us_image_0000001405151706.png and /dev/null differ
diff --git a/docs/vpn/umn/en-us_image_0000001405171846.png b/docs/vpn/umn/en-us_image_0000001405171846.png
deleted file mode 100644
index 1a8fd5bd..00000000
Binary files a/docs/vpn/umn/en-us_image_0000001405171846.png and /dev/null differ
diff --git a/docs/vpn/umn/en-us_image_0000001405176804.png b/docs/vpn/umn/en-us_image_0000001405176804.png
deleted file mode 100644
index 28a39f44..00000000
Binary files a/docs/vpn/umn/en-us_image_0000001405176804.png and /dev/null differ
diff --git a/docs/vpn/umn/en-us_image_0000001405314402.jpg b/docs/vpn/umn/en-us_image_0000001405314402.jpg
deleted file mode 100644
index 949fed3e..00000000
Binary files a/docs/vpn/umn/en-us_image_0000001405314402.jpg and /dev/null differ
diff --git a/docs/vpn/umn/en-us_image_0000001405317654.png b/docs/vpn/umn/en-us_image_0000001405317654.png
deleted file mode 100644
index 9e0a935f..00000000
Binary files a/docs/vpn/umn/en-us_image_0000001405317654.png and /dev/null differ
diff --git a/docs/vpn/umn/en-us_image_0000001405485434.png b/docs/vpn/umn/en-us_image_0000001405485434.png
deleted file mode 100644
index a06a2136..00000000
Binary files a/docs/vpn/umn/en-us_image_0000001405485434.png and /dev/null differ
diff --git a/docs/vpn/umn/en-us_image_0000001405496560.png b/docs/vpn/umn/en-us_image_0000001405496560.png
deleted file mode 100644
index a06a2136..00000000
Binary files a/docs/vpn/umn/en-us_image_0000001405496560.png and /dev/null differ
diff --git a/docs/vpn/umn/en-us_image_0000001405630570.png b/docs/vpn/umn/en-us_image_0000001405630570.png
deleted file mode 100644
index 10e3a9d7..00000000
Binary files a/docs/vpn/umn/en-us_image_0000001405630570.png and /dev/null differ
diff --git a/docs/vpn/umn/en-us_image_0000001405640430.png b/docs/vpn/umn/en-us_image_0000001405640430.png
deleted file mode 100644
index 3880d33d..00000000
Binary files a/docs/vpn/umn/en-us_image_0000001405640430.png and /dev/null differ
diff --git a/docs/vpn/umn/en-us_image_0000001405646142.png b/docs/vpn/umn/en-us_image_0000001405646142.png
deleted file mode 100644
index e2b98462..00000000
Binary files a/docs/vpn/umn/en-us_image_0000001405646142.png and /dev/null differ
diff --git a/docs/vpn/umn/en-us_image_0000001405650458.png b/docs/vpn/umn/en-us_image_0000001405650458.png
deleted file mode 100644
index a06a2136..00000000
Binary files a/docs/vpn/umn/en-us_image_0000001405650458.png and /dev/null differ
diff --git a/docs/vpn/umn/en-us_image_0000001405655248.png b/docs/vpn/umn/en-us_image_0000001405655248.png
deleted file mode 100644
index 8530092e..00000000
Binary files a/docs/vpn/umn/en-us_image_0000001405655248.png and /dev/null differ
diff --git a/docs/vpn/umn/en-us_image_0000001455555929.png b/docs/vpn/umn/en-us_image_0000001455555929.png
deleted file mode 100644
index 5ac6e2e6..00000000
Binary files a/docs/vpn/umn/en-us_image_0000001455555929.png and /dev/null differ
diff --git a/docs/vpn/umn/en-us_image_0000001455557817.png b/docs/vpn/umn/en-us_image_0000001455557817.png
deleted file mode 100644
index e65a9f18..00000000
Binary files a/docs/vpn/umn/en-us_image_0000001455557817.png and /dev/null differ
diff --git a/docs/vpn/umn/en-us_image_0000001455569161.png b/docs/vpn/umn/en-us_image_0000001455569161.png
deleted file mode 100644
index a06a2136..00000000
Binary files a/docs/vpn/umn/en-us_image_0000001455569161.png and /dev/null differ
diff --git a/docs/vpn/umn/en-us_image_0000001455570241.png b/docs/vpn/umn/en-us_image_0000001455570241.png
deleted file mode 100644
index a06a2136..00000000
Binary files a/docs/vpn/umn/en-us_image_0000001455570241.png and /dev/null differ
diff --git a/docs/vpn/umn/en-us_image_0000001455711269.jpg b/docs/vpn/umn/en-us_image_0000001455711269.jpg
deleted file mode 100644
index 49464ad5..00000000
Binary files a/docs/vpn/umn/en-us_image_0000001455711269.jpg and /dev/null differ
diff --git a/docs/vpn/umn/en-us_image_0000001455717309.png b/docs/vpn/umn/en-us_image_0000001455717309.png
deleted file mode 100644
index 3880d33d..00000000
Binary files a/docs/vpn/umn/en-us_image_0000001455717309.png and /dev/null differ
diff --git a/docs/vpn/umn/en-us_image_0000001455827749.jpg b/docs/vpn/umn/en-us_image_0000001455827749.jpg
deleted file mode 100644
index 50d93d43..00000000
Binary files a/docs/vpn/umn/en-us_image_0000001455827749.jpg and /dev/null differ
diff --git a/docs/vpn/umn/en-us_image_0000001455829029.png b/docs/vpn/umn/en-us_image_0000001455829029.png
deleted file mode 100644
index 3880d33d..00000000
Binary files a/docs/vpn/umn/en-us_image_0000001455829029.png and /dev/null differ
diff --git a/docs/vpn/umn/en-us_image_0000001455829553.jpg b/docs/vpn/umn/en-us_image_0000001455829553.jpg
deleted file mode 100644
index 6c709cff..00000000
Binary files a/docs/vpn/umn/en-us_image_0000001455829553.jpg and /dev/null differ
diff --git a/docs/vpn/umn/en-us_image_0000001455845961.png b/docs/vpn/umn/en-us_image_0000001455845961.png
deleted file mode 100644
index a06a2136..00000000
Binary files a/docs/vpn/umn/en-us_image_0000001455845961.png and /dev/null differ
diff --git a/docs/vpn/umn/en-us_image_0000001455909921.png b/docs/vpn/umn/en-us_image_0000001455909921.png
deleted file mode 100644
index 3880d33d..00000000
Binary files a/docs/vpn/umn/en-us_image_0000001455909921.png and /dev/null differ
diff --git a/docs/vpn/umn/en-us_image_0000001455916097.png b/docs/vpn/umn/en-us_image_0000001455916097.png
deleted file mode 100644
index 3880d33d..00000000
Binary files a/docs/vpn/umn/en-us_image_0000001455916097.png and /dev/null differ
diff --git a/docs/vpn/umn/en-us_image_0109860229.png b/docs/vpn/umn/en-us_image_0109860229.png
deleted file mode 100644
index 32d225a3..00000000
Binary files a/docs/vpn/umn/en-us_image_0109860229.png and /dev/null differ
diff --git a/docs/vpn/umn/en-us_image_0118534037.png b/docs/vpn/umn/en-us_image_0118534037.png
deleted file mode 100644
index 595a9b05..00000000
Binary files a/docs/vpn/umn/en-us_image_0118534037.png and /dev/null differ
diff --git a/docs/vpn/umn/en-us_image_0147165026.png b/docs/vpn/umn/en-us_image_0147165026.png
deleted file mode 100644
index 1909444d..00000000
Binary files a/docs/vpn/umn/en-us_image_0147165026.png and /dev/null differ
diff --git a/docs/vpn/umn/en-us_image_0154037992.png b/docs/vpn/umn/en-us_image_0154037992.png
deleted file mode 100644
index 13e196ca..00000000
Binary files a/docs/vpn/umn/en-us_image_0154037992.png and /dev/null differ
diff --git a/docs/vpn/umn/en-us_image_0155717676.png b/docs/vpn/umn/en-us_image_0155717676.png
deleted file mode 100644
index 12f0d879..00000000
Binary files a/docs/vpn/umn/en-us_image_0155717676.png and /dev/null differ
diff --git a/docs/vpn/umn/en-us_image_0155784843.png b/docs/vpn/umn/en-us_image_0155784843.png
deleted file mode 100644
index cbb48915..00000000
Binary files a/docs/vpn/umn/en-us_image_0155784843.png and /dev/null differ
diff --git a/docs/vpn/umn/en-us_image_0159197475.png b/docs/vpn/umn/en-us_image_0159197475.png
deleted file mode 100644
index 33c84403..00000000
Binary files a/docs/vpn/umn/en-us_image_0159197475.png and /dev/null differ
diff --git a/docs/vpn/umn/en-us_image_0159201188.png b/docs/vpn/umn/en-us_image_0159201188.png
deleted file mode 100644
index 8e09bc61..00000000
Binary files a/docs/vpn/umn/en-us_image_0159201188.png and /dev/null differ
diff --git a/docs/vpn/umn/en-us_image_0159206951.png b/docs/vpn/umn/en-us_image_0159206951.png
deleted file mode 100644
index 1466ed0b..00000000
Binary files a/docs/vpn/umn/en-us_image_0159206951.png and /dev/null differ
diff --git a/docs/vpn/umn/en-us_image_0160993816.png b/docs/vpn/umn/en-us_image_0160993816.png
deleted file mode 100644
index 8f203989..00000000
Binary files a/docs/vpn/umn/en-us_image_0160993816.png and /dev/null differ
diff --git a/docs/vpn/umn/en-us_image_0161052507.png b/docs/vpn/umn/en-us_image_0161052507.png
deleted file mode 100644
index 1909444d..00000000
Binary files a/docs/vpn/umn/en-us_image_0161052507.png and /dev/null differ
diff --git a/docs/vpn/umn/en-us_image_0161052509.png b/docs/vpn/umn/en-us_image_0161052509.png
deleted file mode 100644
index 3322328b..00000000
Binary files a/docs/vpn/umn/en-us_image_0161052509.png and /dev/null differ
diff --git a/docs/vpn/umn/en-us_image_0170041086.png b/docs/vpn/umn/en-us_image_0170041086.png
deleted file mode 100644
index e6ce3d56..00000000
Binary files a/docs/vpn/umn/en-us_image_0170041086.png and /dev/null differ
diff --git a/docs/vpn/umn/en-us_image_0210485645.png b/docs/vpn/umn/en-us_image_0210485645.png
deleted file mode 100644
index 5666bb1f..00000000
Binary files a/docs/vpn/umn/en-us_image_0210485645.png and /dev/null differ
diff --git a/docs/vpn/umn/en-us_image_0210486152.png b/docs/vpn/umn/en-us_image_0210486152.png
deleted file mode 100644
index d36739fd..00000000
Binary files a/docs/vpn/umn/en-us_image_0210486152.png and /dev/null differ
diff --git a/docs/vpn/umn/en-us_topic_0013748715.html b/docs/vpn/umn/en-us_topic_0013748715.html
deleted file mode 100644
index 2bcbe330..00000000
--- a/docs/vpn/umn/en-us_topic_0013748715.html
+++ /dev/null
@@ -1,45 +0,0 @@
-<a name="en-us_topic_0013748715"></a><a name="en-us_topic_0013748715"></a>
-
-<h1 class="topictitle1">Creating a Security Group</h1>
-<div id="body1172mcpsimp"><div class="section" id="en-us_topic_0013748715__section134709912516"><h4 class="sectiontitle">Scenarios</h4><p id="en-us_topic_0013748715__p1174mcpsimp">To improve ECS access security, you can create a security group, define security group rules, and add ECSs in the VPC to the security group. We recommend that you allocate ECSs that have different Internet access policies to different security groups.</p>
-</div>
-<div class="section" id="en-us_topic_0013748715__section184621259517"><h4 class="sectiontitle">Procedure</h4><ol id="en-us_topic_0013748715__ol1176mcpsimp"><li id="en-us_topic_0013748715__li1177mcpsimp">Log in to the management console.</li><li class="msonormal" id="en-us_topic_0013748715__li1178mcpsimp">Click <span><img id="en-us_topic_0013748715__image128" src="en-us_image_0000001455916097.png"></span> in the upper left corner and select the desired region and project.</li><li id="en-us_topic_0013748715__li1179mcpsimp">On the console homepage, under <strong id="en-us_topic_0013748715__b1180mcpsimp">Network</strong>, click <strong id="en-us_topic_0013748715__b1181mcpsimp">Virtual Private Cloud</strong>.</li><li id="en-us_topic_0013748715__li1182mcpsimp">In the navigation pane on the left, choose <strong id="en-us_topic_0013748715__b1183mcpsimp">Access Control </strong>&gt; <strong id="en-us_topic_0013748715__b1184mcpsimp">Security Groups</strong>.</li><li id="en-us_topic_0013748715__li1185mcpsimp">On the <strong id="en-us_topic_0013748715__b1186mcpsimp">Security Groups </strong>page, click <strong id="en-us_topic_0013748715__b1187mcpsimp">Create Security Group</strong>.</li><li id="en-us_topic_0013748715__li1188mcpsimp">In the <strong id="en-us_topic_0013748715__b1189mcpsimp">Create Security Group </strong>area, set the parameters as prompted. <a href="#en-us_topic_0013748715__table1200mcpsimp">Table 1</a> lists the parameters to be configured.<div class="fignone" id="en-us_topic_0013748715__fig551360969"><span class="figcap"><b>Figure 1 </b>Create Security Group</span><br><span><img id="en-us_topic_0013748715__image129" src="en-us_image_0000001455555929.png"></span></div>
-
-<div class="tablenoborder"><a name="en-us_topic_0013748715__table1200mcpsimp"></a><a name="table1200mcpsimp"></a><table cellpadding="4" cellspacing="0" summary="" id="en-us_topic_0013748715__table1200mcpsimp" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Parameter description</caption><thead align="left"><tr id="en-us_topic_0013748715__row1206mcpsimp"><th align="left" class="cellrowborder" valign="top" width="18.18%" id="mcps1.3.2.2.6.4.2.4.1.1"><p id="en-us_topic_0013748715__p1208mcpsimp"><strong id="en-us_topic_0013748715__b1209mcpsimp">Parameter</strong></p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="61.62%" id="mcps1.3.2.2.6.4.2.4.1.2"><p id="en-us_topic_0013748715__p1211mcpsimp"><strong id="en-us_topic_0013748715__b1212mcpsimp">Description</strong></p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="20.200000000000003%" id="mcps1.3.2.2.6.4.2.4.1.3"><p id="en-us_topic_0013748715__p1214mcpsimp"><strong id="en-us_topic_0013748715__b1215mcpsimp">Example Value</strong></p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="en-us_topic_0013748715__row1216mcpsimp"><td class="cellrowborder" valign="top" width="18.18%" headers="mcps1.3.2.2.6.4.2.4.1.1 "><p id="en-us_topic_0013748715__p1218mcpsimp">Name</p>
-</td>
-<td class="cellrowborder" valign="top" width="61.62%" headers="mcps1.3.2.2.6.4.2.4.1.2 "><p id="en-us_topic_0013748715__p1220mcpsimp">Specifies the security group name. This parameter is mandatory.</p>
-<p id="en-us_topic_0013748715__p1221mcpsimp">The security group name can contain a maximum of 64 characters, which may consist of letters, digits, underscores (_), hyphens (-), and periods (.). The name cannot contain spaces.</p>
-<div class="note" id="en-us_topic_0013748715__note751718261777"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="en-us_topic_0013748715__p1224mcpsimp">You can change the security group name after a security group is created. It is recommended that you use different names for different security groups.</p>
-</div></div>
-</td>
-<td class="cellrowborder" valign="top" width="20.200000000000003%" headers="mcps1.3.2.2.6.4.2.4.1.3 "><p id="en-us_topic_0013748715__p1226mcpsimp">sg-318b</p>
-</td>
-</tr>
-<tr id="en-us_topic_0013748715__row1227mcpsimp"><td class="cellrowborder" valign="top" width="18.18%" headers="mcps1.3.2.2.6.4.2.4.1.1 "><p id="en-us_topic_0013748715__p1229mcpsimp">Description</p>
-</td>
-<td class="cellrowborder" valign="top" width="61.62%" headers="mcps1.3.2.2.6.4.2.4.1.2 "><p id="en-us_topic_0013748715__p1231mcpsimp">Provides supplementary information about the security group. This parameter is optional.</p>
-<p id="en-us_topic_0013748715__p1232mcpsimp">The security group description can contain a maximum of 255 characters and cannot contain angle brackets (&lt; or &gt;).</p>
-</td>
-<td class="cellrowborder" valign="top" width="20.200000000000003%" headers="mcps1.3.2.2.6.4.2.4.1.3 "><p id="en-us_topic_0013748715__p1234mcpsimp">N/A</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</li><li id="en-us_topic_0013748715__li14648630764">Click <strong id="en-us_topic_0013748715__b1237mcpsimp">OK</strong>.</li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="en-us_topic_0035634996.html">(Optional) Configure Security Group Rules</a></div>
-</div>
-</div>
-
diff --git a/docs/vpn/umn/en-us_topic_0030969470.html b/docs/vpn/umn/en-us_topic_0030969470.html
deleted file mode 100644
index 693f1487..00000000
--- a/docs/vpn/umn/en-us_topic_0030969470.html
+++ /dev/null
@@ -1,101 +0,0 @@
-<a name="en-us_topic_0030969470"></a><a name="en-us_topic_0030969470"></a>
-
-<h1 class="topictitle1">Adding a Security Group Rule</h1>
-<div id="body1238mcpsimp"><div class="section" id="en-us_topic_0030969470__section12545639885"><h4 class="sectiontitle">Scenarios</h4><p id="en-us_topic_0030969470__p196807407816">After a security group is created, you can add rules to the security group. A rule applies either to inbound traffic (ingress) or outbound traffic (egress). After ECSs are added to the security group, they are protected by the rules of that group.</p>
-<ul id="en-us_topic_0030969470__ul1241mcpsimp"><li id="en-us_topic_0030969470__li3762165299">Inbound rules control incoming traffic to ECSs associated with the security group.</li><li id="en-us_topic_0030969470__li1242mcpsimp">Outbound rules control outgoing traffic from ECSs associated with the security group.</li></ul>
-</div>
-<div class="section" id="en-us_topic_0030969470__section116893218916"><h4 class="sectiontitle">Procedure</h4><ol id="en-us_topic_0030969470__ol1245mcpsimp"><li id="en-us_topic_0030969470__li1246mcpsimp">Log in to the management console.</li><li class="msonormal" id="en-us_topic_0030969470__li1247mcpsimp">Click <span><img id="en-us_topic_0030969470__image133" src="en-us_image_0000001455717309.png"></span> in the upper left corner and select the desired region and project.</li><li id="en-us_topic_0030969470__li1248mcpsimp">On the console homepage, under <strong id="en-us_topic_0030969470__b1249mcpsimp">Network</strong>, click <strong id="en-us_topic_0030969470__b1250mcpsimp">Virtual Private Cloud</strong>.</li><li id="en-us_topic_0030969470__li1251mcpsimp">In the navigation pane on the left, choose <strong id="en-us_topic_0030969470__b1252mcpsimp">Access Control </strong>&gt; <strong id="en-us_topic_0030969470__b1253mcpsimp">Security Groups</strong>.</li><li id="en-us_topic_0030969470__li1254mcpsimp">On the <strong id="en-us_topic_0030969470__b1255mcpsimp">Security Groups </strong>page, locate the target security group and click <strong id="en-us_topic_0030969470__b1256mcpsimp">Manage Rule </strong>in the <strong id="en-us_topic_0030969470__b1257mcpsimp">Operation </strong>column to switch to the page for managing inbound and outbound rules.</li><li id="en-us_topic_0030969470__li1258mcpsimp">On the inbound rule tab, click <strong id="en-us_topic_0030969470__b1259mcpsimp">Add Rule</strong>. In the displayed dialog box, set required parameters to add an inbound rule.<p id="en-us_topic_0030969470__p1260mcpsimp">You can click <strong id="en-us_topic_0030969470__b1261mcpsimp">+ </strong>to add more inbound rules.</p>
-<div class="fignone" id="en-us_topic_0030969470__fig1419855814917"><span class="figcap"><b>Figure 1 </b>Add Inbound Rule</span><br><span><img id="en-us_topic_0030969470__image134" src="en-us_image_0000001405317654.png"></span></div>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="en-us_topic_0030969470__table1267mcpsimp" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Inbound rule parameter description</caption><thead align="left"><tr id="en-us_topic_0030969470__row1273mcpsimp"><th align="left" class="cellrowborder" valign="top" width="28.000000000000004%" id="mcps1.3.2.2.6.4.2.4.1.1"><p id="en-us_topic_0030969470__p1275mcpsimp"><strong id="en-us_topic_0030969470__b1276mcpsimp">Parameter</strong></p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="54%" id="mcps1.3.2.2.6.4.2.4.1.2"><p id="en-us_topic_0030969470__p1278mcpsimp"><strong id="en-us_topic_0030969470__b1279mcpsimp">Description</strong></p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="18%" id="mcps1.3.2.2.6.4.2.4.1.3"><p id="en-us_topic_0030969470__p1281mcpsimp"><strong id="en-us_topic_0030969470__b1282mcpsimp">Example Value</strong></p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="en-us_topic_0030969470__row1283mcpsimp"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.2.2.6.4.2.4.1.1 "><p id="en-us_topic_0030969470__p1285mcpsimp">Protocol/ Application</p>
-</td>
-<td class="cellrowborder" valign="top" width="54%" headers="mcps1.3.2.2.6.4.2.4.1.2 "><p id="en-us_topic_0030969470__p1287mcpsimp">Specifies the network protocol. Currently, the value can be <strong id="en-us_topic_0030969470__b1288mcpsimp">All</strong>, <strong id="en-us_topic_0030969470__b1289mcpsimp">TCP</strong>, <strong id="en-us_topic_0030969470__b1290mcpsimp">UDP</strong>, <strong id="en-us_topic_0030969470__b1291mcpsimp">ICMP</strong>, <strong id="en-us_topic_0030969470__b1292mcpsimp">GRE</strong>, or others.</p>
-</td>
-<td class="cellrowborder" valign="top" width="18%" headers="mcps1.3.2.2.6.4.2.4.1.3 "><p id="en-us_topic_0030969470__p1294mcpsimp">TCP</p>
-</td>
-</tr>
-<tr id="en-us_topic_0030969470__row2285235117"><td class="cellrowborder" rowspan="2" valign="top" width="28.000000000000004%" headers="mcps1.3.2.2.6.4.2.4.1.1 "><p id="en-us_topic_0030969470__p1313mcpsimp">Port &amp; Source</p>
-</td>
-<td class="cellrowborder" valign="top" width="54%" headers="mcps1.3.2.2.6.4.2.4.1.2 "><p id="en-us_topic_0030969470__p1315mcpsimp"><strong id="en-us_topic_0030969470__b1316mcpsimp">Port</strong>: specifies the port or port range over which the traffic can reach your ECS. The value ranges from 1 to 65535.</p>
-</td>
-<td class="cellrowborder" valign="top" width="18%" headers="mcps1.3.2.2.6.4.2.4.1.3 "><p id="en-us_topic_0030969470__p1318mcpsimp">22 or 22-30</p>
-</td>
-</tr>
-<tr id="en-us_topic_0030969470__row756012514113"><td class="cellrowborder" valign="top" headers="mcps1.3.2.2.6.4.2.4.1.1 "><p id="en-us_topic_0030969470__p1321mcpsimp"><strong id="en-us_topic_0030969470__b1322mcpsimp">Source</strong>: specifies the source of the security group rule. The value can be another security group, a CIDR block, or a single IP address. For example:</p>
-<ul id="en-us_topic_0030969470__ul1323mcpsimp"><li id="en-us_topic_0030969470__li1324mcpsimp">xxx.xxx.xxx.xxx/32 (IPv4 address)</li><li id="en-us_topic_0030969470__li1325mcpsimp">xxx.xxx.xxx.0/24 (subnet CIDR block)</li><li id="en-us_topic_0030969470__li1326mcpsimp">0.0.0.0/0 (any IP address)</li></ul>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.6.4.2.4.1.2 "><p id="en-us_topic_0030969470__p1328mcpsimp">0.0.0.0/0</p>
-<p id="en-us_topic_0030969470__p1329mcpsimp">default</p>
-</td>
-</tr>
-<tr id="en-us_topic_0030969470__row129136574119"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.2.2.6.4.2.4.1.1 "><p id="en-us_topic_0030969470__p1332mcpsimp">Description</p>
-</td>
-<td class="cellrowborder" valign="top" width="54%" headers="mcps1.3.2.2.6.4.2.4.1.2 "><p id="en-us_topic_0030969470__p1334mcpsimp">Provides supplementary information about the security group rule. This parameter is optional.</p>
-<p id="en-us_topic_0030969470__p1335mcpsimp">The security group rule description can contain a maximum of 255 characters and cannot contain angle brackets (&lt; or &gt;).</p>
-</td>
-<td class="cellrowborder" valign="top" width="18%" headers="mcps1.3.2.2.6.4.2.4.1.3 "><p id="en-us_topic_0030969470__p1337mcpsimp">N/A</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</li><li id="en-us_topic_0030969470__li2862193511128">On the outbound rule tab, click <strong id="en-us_topic_0030969470__b1340mcpsimp">Add Rule</strong>. In the displayed dialog box, set required parameters to add an outbound rule.<p id="en-us_topic_0030969470__p1341mcpsimp">You can click <strong id="en-us_topic_0030969470__b1342mcpsimp">+ </strong>to add more outbound rules.</p>
-<div class="fignone" id="en-us_topic_0030969470__fig11111534134"><span class="figcap"><b>Figure 2 </b>Add Outbound Rule</span><br><span><img id="en-us_topic_0030969470__image135" src="en-us_image_0000001455557817.png"></span></div>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="en-us_topic_0030969470__table1376mcpsimp" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Outbound rule parameter description</caption><thead align="left"><tr id="en-us_topic_0030969470__row1382mcpsimp"><th align="left" class="cellrowborder" valign="top" width="28.000000000000004%" id="mcps1.3.2.2.7.4.2.4.1.1"><p id="en-us_topic_0030969470__p1384mcpsimp"><strong id="en-us_topic_0030969470__b1385mcpsimp">Parameter</strong></p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="54%" id="mcps1.3.2.2.7.4.2.4.1.2"><p id="en-us_topic_0030969470__p1387mcpsimp"><strong id="en-us_topic_0030969470__b1388mcpsimp">Description</strong></p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="18%" id="mcps1.3.2.2.7.4.2.4.1.3"><p id="en-us_topic_0030969470__p1390mcpsimp"><strong id="en-us_topic_0030969470__b1391mcpsimp">Example Value</strong></p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="en-us_topic_0030969470__row1361163251319"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.2.2.7.4.2.4.1.1 "><p id="en-us_topic_0030969470__p1366mcpsimp">Protocol/ Application</p>
-</td>
-<td class="cellrowborder" valign="top" width="54%" headers="mcps1.3.2.2.7.4.2.4.1.2 "><p id="en-us_topic_0030969470__p1368mcpsimp">Specifies the network protocol. Currently, the value can be <strong id="en-us_topic_0030969470__b1369mcpsimp">All</strong>, <strong id="en-us_topic_0030969470__b1370mcpsimp">TCP</strong>, <strong id="en-us_topic_0030969470__b1371mcpsimp">UDP</strong>, <strong id="en-us_topic_0030969470__b1372mcpsimp">ICMP</strong>, <strong id="en-us_topic_0030969470__b1373mcpsimp">GRE</strong>, or others.</p>
-</td>
-<td class="cellrowborder" valign="top" width="18%" headers="mcps1.3.2.2.7.4.2.4.1.3 "><p id="en-us_topic_0030969470__p1375mcpsimp">TCP</p>
-</td>
-</tr>
-<tr id="en-us_topic_0030969470__row1392mcpsimp"><td class="cellrowborder" rowspan="2" valign="top" width="28.000000000000004%" headers="mcps1.3.2.2.7.4.2.4.1.1 "><p id="en-us_topic_0030969470__p1394mcpsimp">Port &amp; Destination</p>
-</td>
-<td class="cellrowborder" valign="top" width="54%" headers="mcps1.3.2.2.7.4.2.4.1.2 "><p id="en-us_topic_0030969470__p1396mcpsimp"><strong id="en-us_topic_0030969470__b1397mcpsimp">Port</strong>: specifies the port or port range over which the traffic can leave your ECS. The value ranges from 1 to 65535.</p>
-</td>
-<td class="cellrowborder" valign="top" width="18%" headers="mcps1.3.2.2.7.4.2.4.1.3 "><p id="en-us_topic_0030969470__p1399mcpsimp">22 or 22-30</p>
-</td>
-</tr>
-<tr id="en-us_topic_0030969470__row1400mcpsimp"><td class="cellrowborder" valign="top" headers="mcps1.3.2.2.7.4.2.4.1.1 "><p id="en-us_topic_0030969470__p1402mcpsimp"><strong id="en-us_topic_0030969470__b1403mcpsimp">Destination</strong>: specifies the destination of the security group rule. The value can be another security group, a CIDR block, or a single IP address. For example:</p>
-<ul id="en-us_topic_0030969470__ul1404mcpsimp"><li id="en-us_topic_0030969470__li1405mcpsimp">xxx.xxx.xxx.xxx/32 (IPv4 address)</li><li id="en-us_topic_0030969470__li1406mcpsimp">xxx.xxx.xxx.0/24 (subnet CIDR block)</li><li id="en-us_topic_0030969470__li1407mcpsimp">0.0.0.0/0 (any IP address)</li></ul>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.7.4.2.4.1.2 "><p id="en-us_topic_0030969470__p1409mcpsimp">0.0.0.0/0</p>
-<p id="en-us_topic_0030969470__p1410mcpsimp">default</p>
-</td>
-</tr>
-<tr id="en-us_topic_0030969470__row1411mcpsimp"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.2.2.7.4.2.4.1.1 "><p id="en-us_topic_0030969470__p1413mcpsimp">Description</p>
-</td>
-<td class="cellrowborder" valign="top" width="54%" headers="mcps1.3.2.2.7.4.2.4.1.2 "><p id="en-us_topic_0030969470__p1415mcpsimp">Provides supplementary information about the security group rule. This parameter is optional.</p>
-<p id="en-us_topic_0030969470__p1416mcpsimp">The security group rule description can contain a maximum of 255 characters and cannot contain angle brackets (&lt; or &gt;).</p>
-</td>
-<td class="cellrowborder" valign="top" width="18%" headers="mcps1.3.2.2.7.4.2.4.1.3 "><p id="en-us_topic_0030969470__p1418mcpsimp">N/A</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</li><li id="en-us_topic_0030969470__li134017577135">Click <strong id="en-us_topic_0030969470__b1420mcpsimp">OK</strong>.</li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="en-us_topic_0035634996.html">(Optional) Configure Security Group Rules</a></div>
-</div>
-</div>
-
diff --git a/docs/vpn/umn/en-us_topic_0030969471.html b/docs/vpn/umn/en-us_topic_0030969471.html
deleted file mode 100644
index b1668542..00000000
--- a/docs/vpn/umn/en-us_topic_0030969471.html
+++ /dev/null
@@ -1,18 +0,0 @@
-<a name="en-us_topic_0030969471"></a><a name="en-us_topic_0030969471"></a>
-
-<h1 class="topictitle1">Deleting a Security Group Rule</h1>
-<div id="body1421mcpsimp"><div class="section" id="en-us_topic_0030969471__section1518885551420"><h4 class="sectiontitle">Scenarios</h4><p id="en-us_topic_0030969471__p1423mcpsimp">If the source of an inbound security group rule or destination of an outbound security group rule needs to be changed, you need to first delete the security group rule and add a new one.</p>
-<div class="note" id="en-us_topic_0030969471__note58289814157"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="en-us_topic_0030969471__p128280891520">Security group rules use whitelists. Deleting a security group rule may result in ECS access failures. Exercise caution when deleting security group rules.</p>
-</div></div>
-</div>
-<div class="section" id="en-us_topic_0030969471__section155091121111519"><h4 class="sectiontitle">Procedure</h4><ol id="en-us_topic_0030969471__ol1427mcpsimp"><li id="en-us_topic_0030969471__li1428mcpsimp">Log in to the management console.</li><li class="msonormal" id="en-us_topic_0030969471__li1429mcpsimp">Click <span><img id="en-us_topic_0030969471__image141" src="en-us_image_0000001405640430.png"></span> in the upper left corner and select the desired region and project.</li><li id="en-us_topic_0030969471__li1430mcpsimp">On the console homepage, under <strong id="en-us_topic_0030969471__b1431mcpsimp">Network</strong>, click <strong id="en-us_topic_0030969471__b1432mcpsimp">Virtual Private Cloud</strong>.</li><li id="en-us_topic_0030969471__li1433mcpsimp">In the navigation pane on the left, choose <strong id="en-us_topic_0030969471__b1434mcpsimp">Access Control </strong>&gt; <strong id="en-us_topic_0030969471__b1435mcpsimp">Security Groups</strong>.</li><li id="en-us_topic_0030969471__li1436mcpsimp">On the <strong id="en-us_topic_0030969471__b1437mcpsimp">Security Groups </strong>page, click the security group name.</li><li id="en-us_topic_0030969471__li1438mcpsimp">If you do not need a security group rule, locate the row that contains the target rule, and click <strong id="en-us_topic_0030969471__b1439mcpsimp">Delete</strong>.</li><li id="en-us_topic_0030969471__li1440mcpsimp">Click <strong id="en-us_topic_0030969471__b1441mcpsimp">Yes </strong>in the displayed dialog box.</li></ol>
-<p id="en-us_topic_0030969471__p1662622110163"><strong id="en-us_topic_0030969471__b1935712713164">Deleting Multiple Security Group Rules at Once.</strong></p>
-<p id="en-us_topic_0030969471__p1443mcpsimp">You can also select multiple security group rules and click <strong id="en-us_topic_0030969471__b1444mcpsimp">Delete </strong>above the security group rule list to delete multiple rules at a time.</p>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="en-us_topic_0035634996.html">(Optional) Configure Security Group Rules</a></div>
-</div>
-</div>
-
diff --git a/docs/vpn/umn/en-us_topic_0035391295.html b/docs/vpn/umn/en-us_topic_0035391295.html
deleted file mode 100644
index 0b70fea5..00000000
--- a/docs/vpn/umn/en-us_topic_0035391295.html
+++ /dev/null
@@ -1,15 +0,0 @@
-<a name="en-us_topic_0035391295"></a><a name="en-us_topic_0035391295"></a>
-
-<h1 class="topictitle1">Modifying a VPN</h1>
-<div id="body1512mcpsimp"><div class="section" id="en-us_topic_0035391295__section313595152013"><h4 class="sectiontitle">Scenarios</h4><p id="en-us_topic_0035391295__p1514mcpsimp">If the VPN network information conflicts the VPC network information or you need to adjust VPN configurations, you can modify a VPN.</p>
-</div>
-<div class="section" id="en-us_topic_0035391295__section5347177218"><h4 class="sectiontitle">Procedure</h4><ol id="en-us_topic_0035391295__ol1516mcpsimp"><li id="en-us_topic_0035391295__li1517mcpsimp">Log in to the management console.</li><li class="msonormal" id="en-us_topic_0035391295__li1518mcpsimp">Click <span><img id="en-us_topic_0035391295__image151" src="en-us_image_0000001455845961.png"></span> in the upper left corner and select a region and project.</li><li id="en-us_topic_0035391295__li1519mcpsimp">On the console homepage, under <strong id="en-us_topic_0035391295__b1520mcpsimp">Network</strong>, click <strong id="en-us_topic_0035391295__b1521mcpsimp">Virtual Private Network</strong>.</li><li id="en-us_topic_0035391295__li1522mcpsimp">On the <strong id="en-us_topic_0035391295__b1523mcpsimp">Virtual Private Network </strong>page, locate the target VPN and click <strong id="en-us_topic_0035391295__b72506428210">Modify.</strong></li><li id="en-us_topic_0035391295___bookmark43">In the displayed dialog box, set parameters as prompted.<div class="fignone" id="en-us_topic_0035391295__fig32988302218"><a name="en-us_topic_0035391295__fig32988302218"></a><a name="fig32988302218"></a><span class="figcap"><b>Figure 1 </b>Modifying a VPN</span><br><span><img id="en-us_topic_0035391295__image153" src="en-us_image_0000001405646142.png"></span></div>
-</li><li id="en-us_topic_0035391295__li293815148227">Click <strong id="en-us_topic_0035391295__b1530mcpsimp">OK</strong>.</li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="en-us_topic_0035391378.html">Management</a></div>
-</div>
-</div>
-
diff --git a/docs/vpn/umn/en-us_topic_0035391332.html b/docs/vpn/umn/en-us_topic_0035391332.html
deleted file mode 100644
index bc6608a4..00000000
--- a/docs/vpn/umn/en-us_topic_0035391332.html
+++ /dev/null
@@ -1,19 +0,0 @@
-<a name="en-us_topic_0035391332"></a><a name="en-us_topic_0035391332"></a>
-
-<h1 class="topictitle1">Overview</h1>
-<div id="body2146mcpsimp"></div>
-<div>
-<ul class="ullinks">
-<li class="ulchildlink"><strong><a href="en-us_topic_0035391393.html">Virtual Private Network</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="en-us_topic_0160974607.html">IPsec VPN</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="en-us_topic_0035391412.html">Application Scenarios</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="en-us_topic_0081947484.html">Reference Standards and Protocols</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="en-us_topic_0185622695.html">Region and AZ</a></strong><br>
-</li>
-</ul>
-</div>
-
diff --git a/docs/vpn/umn/en-us_topic_0035391365.html b/docs/vpn/umn/en-us_topic_0035391365.html
deleted file mode 100644
index 16d31754..00000000
--- a/docs/vpn/umn/en-us_topic_0035391365.html
+++ /dev/null
@@ -1,37 +0,0 @@
-<a name="en-us_topic_0035391365"></a><a name="en-us_topic_0035391365"></a>
-
-<h1 class="topictitle1">FAQs</h1>
-<div id="body1688mcpsimp"></div>
-<div>
-<ul class="ullinks">
-<li class="ulchildlink"><strong><a href="vpn_faq_0021.html">How Many IPsec VPNs Can I Have?</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="en-us_topic_0036149069.html">Do IPsec VPNs Support Automatic Negotiation?</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="vpn_faq_0055.html">What Do I Do If VPN Setup Fails?</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="vpn_faq_0056.html">How Can I Handle the Failure in Accessing the ECSs from My Data Center or LAN Even If the VPN Has Been Set Up?</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="vpn_faq_0057.html">What Do I Do If I Cannot Access My Data Center or LAN from the ECSs After a VPN Connection Has Been Set Up?</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="vpn_faq_0058.html">Does a VPN Allow for Communication Between Two VPCs?</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="en-us_topic_0044789110.html">What Is the Limitation on the Number of Local and Remote Subnets of a VPN?</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="en-us_topic_0045305370.html">Why Is Not Connected Displayed as the Status for a Successfully Created VPN?</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="en-us_topic_0051518174.html">How Long Is Required for Issued VPN Configurations to Take Effect?</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="en-us_topic_0109312453.html">How Do I Configure a Remote Device for a VPN?</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="en-us_topic_0109676043.html">Which Remote VPN Devices Are Supported?</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="en-us_topic_0142368417.html">What Can I Do If the VPN Fails or the Network Speed of the VPN Is Slow?</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="en-us_topic_0142373840.html">Are SSL VPNs Supported?</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="en-us_topic_0035391366.html">What Is the VPN Quota?</a></strong><br>
-</li>
-</ul>
-</div>
-
diff --git a/docs/vpn/umn/en-us_topic_0035391366.html b/docs/vpn/umn/en-us_topic_0035391366.html
deleted file mode 100644
index a7e13cae..00000000
--- a/docs/vpn/umn/en-us_topic_0035391366.html
+++ /dev/null
@@ -1,24 +0,0 @@
-<a name="en-us_topic_0035391366"></a><a name="en-us_topic_0035391366"></a>
-
-<h1 class="topictitle1">What Is the VPN Quota?</h1>
-<div id="body1839mcpsimp"><div class="section" id="en-us_topic_0035391366__section1199610409496"><h4 class="sectiontitle">What Is a Quota?</h4><p id="en-us_topic_0035391366__p1841mcpsimp">Quotas are enforced for service resources on the platform to prevent unforeseen spikes in resource usage. Quotas can limit the number or amount of resources available to users. For example, the VPN quota limits the number of VPNs that you can create. You can also request more quotas if you need them.</p>
-<p id="en-us_topic_0035391366__p1842mcpsimp">This section describes how to view the VPN resource usage and the total quotas in a specified region.</p>
-</div>
-<div class="section" id="en-us_topic_0035391366__section12448165716495"><h4 class="sectiontitle">How Do I View My Quotas?</h4><ol id="en-us_topic_0035391366__ol1844mcpsimp"><li id="en-us_topic_0035391366__li1845mcpsimp">Log in to the management console.</li><li class="msonormal" id="en-us_topic_0035391366__li1846mcpsimp">Click <span><img id="en-us_topic_0035391366__image191" src="en-us_image_0000001405496560.png"></span> in the upper left corner and select the desired region and project.</li><li class="msonormal" id="en-us_topic_0035391366__li14216104815517">In the upper right corner of the page, click <span><img id="en-us_topic_0035391366__image16217848125117" src="en-us_image_0000001405176804.png"></span>.<p class="msonormal" id="en-us_topic_0035391366__p979104912511">The <strong id="en-us_topic_0035391366__b1848mcpsimp">Service Quota </strong>page is displayed.</p>
-</li><li id="en-us_topic_0035391366__li1849mcpsimp">View the used and total quota of each type of resources on the displayed page.<p id="en-us_topic_0035391366__p1850mcpsimp"><a name="en-us_topic_0035391366__li1849mcpsimp"></a><a name="li1849mcpsimp"></a>If a quota cannot meet service requirements, click <strong id="en-us_topic_0035391366__b1851mcpsimp">Increase Quota </strong>to adjust it.</p>
-</li></ol>
-</div>
-<div class="section" id="en-us_topic_0035391366__section154681674521"><h4 class="sectiontitle">How Do I Apply for a Higher Quota?</h4><p id="en-us_topic_0035391366__p1853mcpsimp">The system does not support online quota adjustment. If you need to adjust a quota, call the hotline or send an email to the customer service mailbox. Customer service personnel will timely process your request for quota adjustment and inform you of the real-time progress by making a call or sending an email.</p>
-<p id="en-us_topic_0035391366__p1854mcpsimp">You need to prepare the following information before dialing the hotline number or sending an email:</p>
-<ul id="en-us_topic_0035391366__ul1855mcpsimp"><li id="en-us_topic_0035391366__li1856mcpsimp">Domain name, project name, and project ID, which can be obtained by performing the following operations:<p id="en-us_topic_0035391366__p1857mcpsimp"><a name="en-us_topic_0035391366__li1856mcpsimp"></a><a name="li1856mcpsimp"></a>Log in to the management console using the cloud account, click the username in the upper right corner, select <strong id="en-us_topic_0035391366__b1858mcpsimp">My Credential </strong>from the drop-down list, and obtain the domain name, project name, and project ID on the <strong id="en-us_topic_0035391366__b1859mcpsimp">My Credential </strong>page.</p>
-</li><li id="en-us_topic_0035391366__li1860mcpsimp">Quota information, which includes:<ul id="en-us_topic_0035391366__ul1861mcpsimp"><li id="en-us_topic_0035391366__li1862mcpsimp">Service name</li><li id="en-us_topic_0035391366__li1863mcpsimp">Quota type</li><li id="en-us_topic_0035391366__li1864mcpsimp">Required quota</li></ul>
-</li></ul>
-<p id="en-us_topic_0035391366__p5965175645219"><a href="https://docs.otc.t-systems.com/en-us/public/learnmore.html" target="_blank" rel="noopener noreferrer">Learn how to obtain the service hotline and email address.</a></p>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="en-us_topic_0035391365.html">FAQs</a></div>
-</div>
-</div>
-
diff --git a/docs/vpn/umn/en-us_topic_0035391378.html b/docs/vpn/umn/en-us_topic_0035391378.html
deleted file mode 100644
index 9768b593..00000000
--- a/docs/vpn/umn/en-us_topic_0035391378.html
+++ /dev/null
@@ -1,17 +0,0 @@
-<a name="en-us_topic_0035391378"></a><a name="en-us_topic_0035391378"></a>
-
-<h1 class="topictitle1">Management</h1>
-<div id="body1445mcpsimp"></div>
-<div>
-<ul class="ullinks">
-<li class="ulchildlink"><strong><a href="en-us_topic_0035506845.html">Viewing a VPN</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="en-us_topic_0035391295.html">Modifying a VPN</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="en-us_topic_0035616925.html">Deleting a VPN</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="en-us_topic_0107396413.html">Managing VPN Tags</a></strong><br>
-</li>
-</ul>
-</div>
-
diff --git a/docs/vpn/umn/en-us_topic_0035391382.html b/docs/vpn/umn/en-us_topic_0035391382.html
deleted file mode 100644
index cce24f1f..00000000
--- a/docs/vpn/umn/en-us_topic_0035391382.html
+++ /dev/null
@@ -1,17 +0,0 @@
-<a name="en-us_topic_0035391382"></a><a name="en-us_topic_0035391382"></a>
-
-<h1 class="topictitle1">Getting Started</h1>
-<div id="body105mcpsimp"></div>
-<div>
-<ul class="ullinks">
-<li class="ulchildlink"><strong><a href="en-us_topic_0122970066.html">(Optional) Create a VPC</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="en-us_topic_0122970067.html">(Optional) Create a Subnet for the VPC</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="en-us_topic_0060118606.html">Creating a VPN</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="en-us_topic_0035634996.html">(Optional) Configure Security Group Rules</a></strong><br>
-</li>
-</ul>
-</div>
-
diff --git a/docs/vpn/umn/en-us_topic_0035391393.html b/docs/vpn/umn/en-us_topic_0035391393.html
index 9107166b..748f212a 100644
--- a/docs/vpn/umn/en-us_topic_0035391393.html
+++ b/docs/vpn/umn/en-us_topic_0035391393.html
@@ -1,15 +1,26 @@
-<a name="en-us_topic_0035391393"></a><a name="en-us_topic_0035391393"></a>
+<a name="EN-US_TOPIC_0000001937647830"></a><a name="EN-US_TOPIC_0000001937647830"></a>
 
-<h1 class="topictitle1">Virtual Private Network</h1>
-<div id="body2147mcpsimp"><p id="en-us_topic_0035391393__p2148mcpsimp">A Virtual Private Network (VPN) establishes an encrypted, Internet-based communications tunnel between a user and a Virtual Private Cloud (VPC). With VPN, you can connect to a VPC and access service resources in it.</p>
-<p id="en-us_topic_0035391393__p2149mcpsimp">By default, ECSs in a VPC cannot communicate with your data center or private network. To enable communication between them, use a VPN.</p>
-<p id="en-us_topic_0035391393__p2150mcpsimp">A VPN consists of a VPN gateway and one or more VPN connections. A VPN gateway provides an Internet egress for a VPC and works together with the remote gateway in the local data center. A VPN connection uses the Internet- based encryption technology to connect the VPN gateway and the remote gateway to enable communication between the local data center and VPC. The VPN connection allows you to quickly build secure hybrid cloud environment.</p>
-<p id="en-us_topic_0035391393___bookmark2"><a href="#en-us_topic_0035391393__fig192921773417">Figure 1</a> shows the VPN networking.</p>
-<div class="fignone" id="en-us_topic_0035391393__fig192921773417"><a name="en-us_topic_0035391393__fig192921773417"></a><a name="fig192921773417"></a><span class="figcap"><b>Figure 1 </b>VPN networking</span><br><span><img id="en-us_topic_0035391393__image201" src="en-us_image_0000001404848230.jpg"></span></div>
+<h1 class="topictitle1">What Is <span id="en-us_topic_0000001923184333_ph113762488123">VPN</span>?</h1>
+<div id="body8662426"><div class="section" id="EN-US_TOPIC_0000001937647830__en-us_topic_0000001923184333_section12537193919345"><h4 class="sectiontitle">Overview</h4><p id="EN-US_TOPIC_0000001937647830__en-us_topic_0000001923184333_p17251602153148">Virtual Private Network (<span id="EN-US_TOPIC_0000001937647830__en-us_topic_0000001923184333_ph54292439913">VPN</span>) establishes secure, reliable, and cost-effective encrypted connections between your on-premises network or data center and a virtual network on the cloud.</p>
+<div class="note" id="EN-US_TOPIC_0000001937647830__en-us_topic_0000001923184333_note12230751176"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="EN-US_TOPIC_0000001937647830__en-us_topic_0000001923184333_p4230951377">VPN supports only non-cross-border connections.</p>
+</div></div>
+<ul id="EN-US_TOPIC_0000001937647830__en-us_topic_0000001923184333_ul138661432172913"><li id="EN-US_TOPIC_0000001937647830__en-us_topic_0000001923184333_li344703582920">A VPN gateway provides an Internet egress for a Virtual Private Cloud (VPC) to connect to a customer gateway in your on-premises data center.</li><li id="EN-US_TOPIC_0000001937647830__en-us_topic_0000001923184333_li3866232122914">A VPN connection connects a VPN gateway to a customer gateway through encrypted tunnels, enabling communication between a VPC and your on-premises data center. This helps quickly establish a secure hybrid cloud environment.</li></ul>
+<p id="EN-US_TOPIC_0000001937647830__en-us_topic_0000001923184333_p146831843182220"><a href="#EN-US_TOPIC_0000001937647830__en-us_topic_0000001923184333_fig1268374311223">Figure 1</a> shows the VPN networking.</p>
+<div class="fignone" id="EN-US_TOPIC_0000001937647830__en-us_topic_0000001923184333_fig1268374311223"><a name="EN-US_TOPIC_0000001937647830__en-us_topic_0000001923184333_fig1268374311223"></a><a name="en-us_topic_0000001923184333_fig1268374311223"></a><span class="figcap"><b>Figure 1 </b>VPN networking</span><br><span><img class="imgResize" id="EN-US_TOPIC_0000001937647830__en-us_topic_0000001923184333_image5683043142219" src="figure/en-us_image_0000001877145402.png" width="478.8" height="117.57203325" title="Click to enlarge"></span></div>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001937647830__en-us_topic_0000001923184333_section201592036133515"><h4 class="sectiontitle">Components</h4><ul id="EN-US_TOPIC_0000001937647830__en-us_topic_0000001923184333_ul1487682713388"><li id="EN-US_TOPIC_0000001937647830__en-us_topic_0000001923184333_li487612723820"><strong id="EN-US_TOPIC_0000001937647830__en-us_topic_0000001923184333_b172581248175017">VPN gateway</strong>: a virtual gateway of <span id="EN-US_TOPIC_0000001937647830__en-us_topic_0000001923184333_ph989955541219">VPN</span> on the cloud. It establishes secure private connections with a customer gateway in your on-premises network or data center.</li><li class="msonormal" id="EN-US_TOPIC_0000001937647830__en-us_topic_0000001923184333_li34461413154012"><strong id="EN-US_TOPIC_0000001937647830__en-us_topic_0000001923184333_b12217156165112">Customer gateway</strong>: a resource that provides information to the cloud about your customer gateway device. It can be a physical device or software application in your on-premises data center.</li><li id="EN-US_TOPIC_0000001937647830__en-us_topic_0000001923184333_li147124910384"><strong id="EN-US_TOPIC_0000001937647830__en-us_topic_0000001923184333_b97715805115">VPN connection</strong>: a secure channel between a VPN gateway and a customer gateway. VPN connections use the Internet Key Exchange (IKE) and IPsec protocols to encrypt the transmitted data.</li></ul>
+</div>
 </div>
 <div>
 <div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="en-us_topic_0035391332.html">Overview</a></div>
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_01_0000.html">Overview</a></div>
 </div>
 </div>
 
+
+<script language="JavaScript">
+<!--
+image_size('.imgResize');
+var msg_imageMax = "view original image";
+var msg_imageClose = "close";
+//--></script>
\ No newline at end of file
diff --git a/docs/vpn/umn/en-us_topic_0035391412.html b/docs/vpn/umn/en-us_topic_0035391412.html
deleted file mode 100644
index 525c3e6a..00000000
--- a/docs/vpn/umn/en-us_topic_0035391412.html
+++ /dev/null
@@ -1,21 +0,0 @@
-<a name="en-us_topic_0035391412"></a><a name="en-us_topic_0035391412"></a>
-
-<h1 class="topictitle1">Application Scenarios</h1>
-<div id="body2208mcpsimp"><p id="en-us_topic_0035391412__p2209mcpsimp">With the VPN between the VPC and your traditional data center, you can easily use the ECSs and block storage resources provided by the cloud platform.</p>
-<p id="en-us_topic_0035391412__p2210mcpsimp">Applications can be migrated to the cloud and additional web servers can be deployed to increase the computing capacity on a network. In this way, a hybrid cloud is built, which reduces IT O&amp;M costs and protects enterprise core data from being leaked.</p>
-<p id="en-us_topic_0035391412__p2211mcpsimp">The VPN service allows you to set up site-to-site VPN connections or VPN connections from one site to multiple sites.</p>
-<div class="section" id="en-us_topic_0035391412__section322618585344"><h4 class="sectiontitle">Site-to-site VPN connection</h4><p id="en-us_topic_0035391412___bookmark7">You can set up a VPN to connect a local data center to a VPC, thus building a hybrid cloud. <strong id="en-us_topic_0035391412__b84591855123516"><a href="#en-us_topic_0035391412__fig516915575018">Figure 1</a></strong> shows a site-to-site VPN connection.</p>
-<div class="fignone" id="en-us_topic_0035391412__fig516915575018"><a name="en-us_topic_0035391412__fig516915575018"></a><a name="fig516915575018"></a><span class="figcap"><b>Figure 1 </b>Site-to-site VPN connection</span><br><span><img id="en-us_topic_0035391412__image206" src="en-us_image_0000001455827749.jpg"></span></div>
-</div>
-<div class="section" id="en-us_topic_0035391412__section6288098365"><h4 class="sectiontitle">VPN connection from one site to multiple sites</h4><p id="en-us_topic_0035391412__p2220mcpsimp">You can also set up a VPN to connect multiple local data centers to a VPC, thus building a hybrid cloud. <strong id="en-us_topic_0035391412__b316844311361"><a href="#en-us_topic_0035391412__fig7205025310">Figure 2</a></strong> shows a VPN connection from one site to multiple sites.</p>
-<div class="note" id="en-us_topic_0035391412__note9259537336"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="en-us_topic_0035391412__p15259113716313">The subnet CIDR blocks of each site involved in the VPN connection cannot overlap.</p>
-</div></div>
-<div class="fignone" id="en-us_topic_0035391412__fig7205025310"><a name="en-us_topic_0035391412__fig7205025310"></a><a name="fig7205025310"></a><span class="figcap"><b>Figure 2 </b>VPN connection from one site to multiple sites</span><br><span><img id="en-us_topic_0035391412__image210" src="en-us_image_0000001405148354.jpg"></span></div>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="en-us_topic_0035391332.html">Overview</a></div>
-</div>
-</div>
-
diff --git a/docs/vpn/umn/en-us_topic_0035506845.html b/docs/vpn/umn/en-us_topic_0035506845.html
deleted file mode 100644
index 6c6bdabf..00000000
--- a/docs/vpn/umn/en-us_topic_0035506845.html
+++ /dev/null
@@ -1,59 +0,0 @@
-<a name="en-us_topic_0035506845"></a><a name="en-us_topic_0035506845"></a>
-
-<h1 class="topictitle1">Viewing a VPN</h1>
-<div id="body1446mcpsimp"><div class="section" id="en-us_topic_0035506845__section1763346151714"><h4 class="sectiontitle">Scenarios</h4><p id="en-us_topic_0035506845__p10703247121713">You can view details about an existing VPN.</p>
-</div>
-<div class="section" id="en-us_topic_0035506845__section035481510191"><h4 class="sectiontitle">Procedure</h4><ol id="en-us_topic_0035506845__ol1450mcpsimp"><li id="en-us_topic_0035506845__li1451mcpsimp">Log in to the management console.</li><li class="msonormal" id="en-us_topic_0035506845__li1452mcpsimp">Click <span><img id="en-us_topic_0035506845__image147" src="en-us_image_0000001405485434.png"></span> in the upper left corner and select the desired region and project.</li><li id="en-us_topic_0035506845__li1453mcpsimp">On the console homepage, under <strong id="en-us_topic_0035506845__b1454mcpsimp">Network</strong>, click <strong id="en-us_topic_0035506845__b1455mcpsimp">Virtual Private Network</strong>.</li><li id="en-us_topic_0035506845___bookmark40">On the displayed <strong id="en-us_topic_0035506845__b1456mcpsimp">Virtual Private Network </strong>page, view the target VPN. <a href="#en-us_topic_0035506845__table1465mcpsimp">Table 1</a> describes the VPN status.
-<div class="tablenoborder"><a name="en-us_topic_0035506845__table1465mcpsimp"></a><a name="table1465mcpsimp"></a><table cellpadding="4" cellspacing="0" summary="" id="en-us_topic_0035506845__table1465mcpsimp" frame="border" border="1" rules="all"><caption><b>Table 1 </b>VPN status</caption><thead align="left"><tr id="en-us_topic_0035506845__row1470mcpsimp"><th align="left" class="cellrowborder" valign="top" width="25%" id="mcps1.3.2.2.4.3.2.3.1.1"><p id="en-us_topic_0035506845__p1472mcpsimp"><strong id="en-us_topic_0035506845__b1473mcpsimp">Status</strong></p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="75%" id="mcps1.3.2.2.4.3.2.3.1.2"><p id="en-us_topic_0035506845__p1475mcpsimp"><strong id="en-us_topic_0035506845__b1476mcpsimp">Description</strong></p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="en-us_topic_0035506845__row1477mcpsimp"><td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.2.2.4.3.2.3.1.1 "><p id="en-us_topic_0035506845__p1479mcpsimp">Normal</p>
-</td>
-<td class="cellrowborder" valign="top" width="75%" headers="mcps1.3.2.2.4.3.2.3.1.2 "><p id="en-us_topic_0035506845__p1481mcpsimp">Indicates that the VPN is successfully created and communication with the local data center through the VPN is normal.</p>
-</td>
-</tr>
-<tr id="en-us_topic_0035506845__row1482mcpsimp"><td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.2.2.4.3.2.3.1.1 "><p id="en-us_topic_0035506845__p1484mcpsimp">Not connected</p>
-</td>
-<td class="cellrowborder" valign="top" width="75%" headers="mcps1.3.2.2.4.3.2.3.1.2 "><p id="en-us_topic_0035506845__p1486mcpsimp">Indicates that the VPN is successfully created but has not been used for communication with the local data center.</p>
-</td>
-</tr>
-<tr id="en-us_topic_0035506845__row1487mcpsimp"><td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.2.2.4.3.2.3.1.1 "><p id="en-us_topic_0035506845__p1489mcpsimp">Creating</p>
-</td>
-<td class="cellrowborder" valign="top" width="75%" headers="mcps1.3.2.2.4.3.2.3.1.2 "><p id="en-us_topic_0035506845__p1491mcpsimp">Indicates that the VPN is being created.</p>
-</td>
-</tr>
-<tr id="en-us_topic_0035506845__row1492mcpsimp"><td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.2.2.4.3.2.3.1.1 "><p id="en-us_topic_0035506845__p1494mcpsimp">Updating</p>
-</td>
-<td class="cellrowborder" valign="top" width="75%" headers="mcps1.3.2.2.4.3.2.3.1.2 "><p id="en-us_topic_0035506845__p1496mcpsimp">Indicates that VPN information is being updated.</p>
-</td>
-</tr>
-<tr id="en-us_topic_0035506845__row1497mcpsimp"><td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.2.2.4.3.2.3.1.1 "><p id="en-us_topic_0035506845__p1499mcpsimp">Deleting</p>
-</td>
-<td class="cellrowborder" valign="top" width="75%" headers="mcps1.3.2.2.4.3.2.3.1.2 "><p id="en-us_topic_0035506845__p1501mcpsimp">Indicates that the VPN is being deleted.</p>
-</td>
-</tr>
-<tr id="en-us_topic_0035506845__row1502mcpsimp"><td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.2.2.4.3.2.3.1.1 "><p id="en-us_topic_0035506845__p1504mcpsimp">Abnormal</p>
-</td>
-<td class="cellrowborder" valign="top" width="75%" headers="mcps1.3.2.2.4.3.2.3.1.2 "><p id="en-us_topic_0035506845__p1506mcpsimp">Indicates that the VPN is abnormal.</p>
-</td>
-</tr>
-<tr id="en-us_topic_0035506845__row1507mcpsimp"><td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.2.2.4.3.2.3.1.1 "><p id="en-us_topic_0035506845__p1509mcpsimp">Frozen</p>
-</td>
-<td class="cellrowborder" valign="top" width="75%" headers="mcps1.3.2.2.4.3.2.3.1.2 "><p id="en-us_topic_0035506845__p1511mcpsimp">Indicates that the VPN is frozen.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="en-us_topic_0035391378.html">Management</a></div>
-</div>
-</div>
-
diff --git a/docs/vpn/umn/en-us_topic_0035616925.html b/docs/vpn/umn/en-us_topic_0035616925.html
deleted file mode 100644
index 47bc74b7..00000000
--- a/docs/vpn/umn/en-us_topic_0035616925.html
+++ /dev/null
@@ -1,14 +0,0 @@
-<a name="en-us_topic_0035616925"></a><a name="en-us_topic_0035616925"></a>
-
-<h1 class="topictitle1">Deleting a VPN</h1>
-<div id="body1531mcpsimp"><div class="section" id="en-us_topic_0035616925__section15959819192311"><h4 class="sectiontitle">Scenarios</h4><p id="en-us_topic_0035616925__p148201218237">You can delete a VPN to release network resources if the VPN is no longer required.</p>
-</div>
-<div class="section" id="en-us_topic_0035616925__section815103514230"><h4 class="sectiontitle">Procedure</h4><ol id="en-us_topic_0035616925__ol1535mcpsimp"><li id="en-us_topic_0035616925__li1536mcpsimp">Log in to the management console.</li><li class="msonormal" id="en-us_topic_0035616925__li1537mcpsimp">Click <span><img id="en-us_topic_0035616925__image157" src="en-us_image_0000001455569161.png"></span> in the upper left corner and select a region and project.</li><li id="en-us_topic_0035616925__li1538mcpsimp">On the console homepage, under <strong id="en-us_topic_0035616925__b1539mcpsimp">Network</strong>, click <strong id="en-us_topic_0035616925__b1540mcpsimp">Virtual Private Network</strong>.</li><li id="en-us_topic_0035616925__li1541mcpsimp">On the <strong id="en-us_topic_0035616925__b1542mcpsimp">Virtual Private Network </strong>page, locate the target VPN and click <strong id="en-us_topic_0035616925__b389116119246">Delete</strong>.</li><li id="en-us_topic_0035616925__li1937915320246">Click <strong id="en-us_topic_0035616925__b1546mcpsimp">Yes </strong>in the displayed dialog box.</li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="en-us_topic_0035391378.html">Management</a></div>
-</div>
-</div>
-
diff --git a/docs/vpn/umn/en-us_topic_0035634996.html b/docs/vpn/umn/en-us_topic_0035634996.html
deleted file mode 100644
index 003c5969..00000000
--- a/docs/vpn/umn/en-us_topic_0035634996.html
+++ /dev/null
@@ -1,19 +0,0 @@
-<a name="en-us_topic_0035634996"></a><a name="en-us_topic_0035634996"></a>
-
-<h1 class="topictitle1">(Optional) Configure Security Group Rules</h1>
-<div id="body1171mcpsimp"></div>
-<div>
-<ul class="ullinks">
-<li class="ulchildlink"><strong><a href="en-us_topic_0013748715.html">Creating a Security Group</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="en-us_topic_0030969470.html">Adding a Security Group Rule</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="en-us_topic_0030969471.html">Deleting a Security Group Rule</a></strong><br>
-</li>
-</ul>
-
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="en-us_topic_0035391382.html">Getting Started</a></div>
-</div>
-</div>
-
diff --git a/docs/vpn/umn/en-us_topic_0036149069.html b/docs/vpn/umn/en-us_topic_0036149069.html
deleted file mode 100644
index fd3a0e42..00000000
--- a/docs/vpn/umn/en-us_topic_0036149069.html
+++ /dev/null
@@ -1,11 +0,0 @@
-<a name="en-us_topic_0036149069"></a><a name="en-us_topic_0036149069"></a>
-
-<h1 class="topictitle1">Do IPsec VPNs Support Automatic Negotiation?</h1>
-<div id="body1690mcpsimp"><p id="en-us_topic_0036149069__5.3_What_Do_I_Do_If_VPN_Setup_Fails_">The IPsec VPN tunnel works in passive mode, which triggers automatic negotiation only when traffic sent by the local end passes through the tunnel.</p>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="en-us_topic_0035391365.html">FAQs</a></div>
-</div>
-</div>
-
diff --git a/docs/vpn/umn/en-us_topic_0041174633.html b/docs/vpn/umn/en-us_topic_0041174633.html
deleted file mode 100644
index 8d76a307..00000000
--- a/docs/vpn/umn/en-us_topic_0041174633.html
+++ /dev/null
@@ -1,106 +0,0 @@
-<a name="en-us_topic_0041174633"></a><a name="en-us_topic_0041174633"></a>
-
-<h1 class="topictitle1">A Change History</h1>
-<div id="body1868mcpsimp">
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="en-us_topic_0041174633__table1869mcpsimp" frame="border" border="1" rules="all"><thead align="left"><tr id="en-us_topic_0041174633__row1874mcpsimp"><th align="left" class="cellrowborder" valign="top" width="30%" id="mcps1.3.1.1.3.1.1"><p id="en-us_topic_0041174633__p1876mcpsimp"><strong id="en-us_topic_0041174633__b1877mcpsimp">Release Date</strong></p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="70%" id="mcps1.3.1.1.3.1.2"><p id="en-us_topic_0041174633__p1879mcpsimp"><strong id="en-us_topic_0041174633__b1880mcpsimp">What's New</strong></p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="en-us_topic_0041174633__row1881mcpsimp"><td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.1.1.3.1.1 "><p id="en-us_topic_0041174633__p1883mcpsimp">2019-02-22</p>
-</td>
-<td class="cellrowborder" valign="top" width="70%" headers="mcps1.3.1.1.3.1.2 "><p id="en-us_topic_0041174633__p1885mcpsimp">This release incorporates the following changes: Updated the region description in <a href="en-us_topic_0060118606.html#en-us_topic_0060118606__table737mcpsimp">Table 2</a>.</p>
-</td>
-</tr>
-<tr id="en-us_topic_0041174633__row1888mcpsimp"><td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.1.1.3.1.1 "><p id="en-us_topic_0041174633__p1890mcpsimp">2019-02-18</p>
-</td>
-<td class="cellrowborder" valign="top" width="70%" headers="mcps1.3.1.1.3.1.2 "><p id="en-us_topic_0041174633__p1892mcpsimp">Accepted in OTC-4.0/Agile-02.2019</p>
-</td>
-</tr>
-<tr id="en-us_topic_0041174633__row1893mcpsimp"><td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.1.1.3.1.1 "><p id="en-us_topic_0041174633__p1895mcpsimp">2019-02-11</p>
-</td>
-<td class="cellrowborder" valign="top" width="70%" headers="mcps1.3.1.1.3.1.2 "><p id="en-us_topic_0041174633__p1897mcpsimp">This release incorporates the following changes:</p>
-<ul id="en-us_topic_0041174633__ul1898mcpsimp"><li id="en-us_topic_0041174633__li1899mcpsimp">Deleted content about the firewall version from section <a href="en-us_topic_0060118606.html">Creating a VPN</a>.</li><li id="en-us_topic_0041174633__li1902mcpsimp">Added <a href="en-us_topic_0035506845.html#en-us_topic_0035506845__table1465mcpsimp">Table 1</a>.</li><li id="en-us_topic_0041174633__li1905mcpsimp">Updated the tag key and value requirements in<p id="en-us_topic_0041174633__p1906mcpsimp"><a name="en-us_topic_0041174633__li1905mcpsimp"></a><a name="li1905mcpsimp"></a><a href="en-us_topic_0060118606.html#en-us_topic_0060118606__table880mcpsimp">Table 3</a> and <a href="en-us_topic_0107396413.html#en-us_topic_0107396413__table1555mcpsimp">Table 1</a>.</p>
-</li><li id="en-us_topic_0041174633__li1912mcpsimp">Updated content about searching for VPNs by tag key and value in section <a href="en-us_topic_0107396413.html">Managing VPN Tags</a>.</li><li id="en-us_topic_0041174633__li1915mcpsimp">Adjusted the column width.</li></ul>
-</td>
-</tr>
-<tr id="en-us_topic_0041174633__row1916mcpsimp"><td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.1.1.3.1.1 "><p id="en-us_topic_0041174633__p1918mcpsimp">2019-02-02</p>
-</td>
-<td class="cellrowborder" valign="top" width="70%" headers="mcps1.3.1.1.3.1.2 "><p id="en-us_topic_0041174633__p1920mcpsimp">This release incorporates the following changes:</p>
-<ul id="en-us_topic_0041174633__ul1921mcpsimp"><li id="en-us_topic_0041174633__li1922mcpsimp">Updated a figure in section <a href="en-us_topic_0035391295.html">Modifying a VPN</a>.</li><li id="en-us_topic_0041174633__li1925mcpsimp">Updated the content in section <a href="en-us_topic_0107396413.html">Managing VPN Tags</a> based on the latest console page.</li><li id="en-us_topic_0041174633__li1932mcpsimp">Updated section <strong id="en-us_topic_0041174633__b181216571324"><a href="en-us_topic_0035634996.html">(Optional) Configure Security Group Rules</a></strong>.</li><li id="en-us_topic_0041174633__li1938mcpsimp">Updated sections <a href="en-us_topic_0045305370.html">Why Is Not Connected Displayed as the Status for a Successfully Created VPN?</a> and <strong id="en-us_topic_0041174633__b186831328844"><a href="en-us_topic_0109312453.html">How Do I Configure a Remote Device for a VPN?</a></strong>.</li><li id="en-us_topic_0041174633__li1953mcpsimp">Added the negotiation mode in section <a href="en-us_topic_0060118606.html#en-us_topic_0060118606__table927mcpsimp">Table 4</a>.</li></ul>
-</td>
-</tr>
-<tr id="en-us_topic_0041174633__row116251925952"><td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.1.1.3.1.1 "><p id="en-us_topic_0041174633__p93511846152">2019-01-30</p>
-</td>
-<td class="cellrowborder" valign="top" width="70%" headers="mcps1.3.1.1.3.1.2 "><p id="en-us_topic_0041174633__p135184613513">This release incorporates the following changes:</p>
-<ul id="en-us_topic_0041174633__ul11351346051"><li id="en-us_topic_0041174633__li135117461850">Added parameter <strong id="en-us_topic_0041174633__b635110461850">NTP Server Address </strong>to section<p id="en-us_topic_0041174633__p2035113461956"><a href="en-us_topic_0122970066.html#en-us_topic_0122970066__table125mcpsimp">Table 1</a>.</p>
-</li><li id="en-us_topic_0041174633__li1335194616519">Sorted the DH algorithm values to display them in order in section <a href="en-us_topic_0060118606.html#en-us_topic_0060118606__table927mcpsimp">Table 4</a>.</li><li id="en-us_topic_0041174633__li535154612511">Sorted the PFS values to display them in order in section <a href="en-us_topic_0060118606.html#en-us_topic_0060118606__table1043mcpsimp">Table 5</a>.</li><li id="en-us_topic_0041174633__li4351164612511">Added description to show how to query the firewall version in section <a href="en-us_topic_0060118606.html#en-us_topic_0060118606___bookmark24"><strong id="en-us_topic_0041174633__b1135164614520">5</strong></a>.</li><li id="en-us_topic_0041174633__li53516469512">Added the supported network protocols to the tables listing inbound and outbound rules in section<p id="en-us_topic_0041174633__p1351546851"><a name="en-us_topic_0041174633__li53516469512"></a><a name="li53516469512"></a><a href="en-us_topic_0030969470.html">Adding a Security Group Rule</a>.</p>
-</li><li id="en-us_topic_0041174633__li1635110461058">Modified the description of parameter <strong id="en-us_topic_0041174633__b83513461257">Port &amp; Source </strong>in the tables listing inbound and outbound rules in section <a href="en-us_topic_0030969470.html">Adding a Security Group Rule</a> <a href="en-us_topic_0030969470.html"><strong id="en-us_topic_0041174633__b4352246852">Rule</strong></a>.</li><li id="en-us_topic_0041174633__li0352114613514">Added section <a href="en-us_topic_0109312453.html">How Do I Configure a Remote Device for a VPN?</a> .</li></ul>
-</td>
-</tr>
-<tr id="en-us_topic_0041174633__row14394173812520"><td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.1.1.3.1.1 "><p id="en-us_topic_0041174633__p23521646250">2019-01-23</p>
-</td>
-<td class="cellrowborder" valign="top" width="70%" headers="mcps1.3.1.1.3.1.2 "><p id="en-us_topic_0041174633__p93520469513">This release incorporates the following changes:</p>
-<ul id="en-us_topic_0041174633__ul1035254615518"><li id="en-us_topic_0041174633__li1135219465518">Changed <strong id="en-us_topic_0041174633__b163521467512">VPN connection </strong>to <strong id="en-us_topic_0041174633__b10352046252">VPN</strong>.</li><li id="en-us_topic_0041174633__li335264614516">Changed <strong id="en-us_topic_0041174633__b1352246959">OK </strong>to <strong id="en-us_topic_0041174633__b123528462512">Yes </strong>in section <a href="en-us_topic_0035616925.html">Deleting a VPN</a>.</li><li id="en-us_topic_0041174633__li193522461655">Updated figures in sections <a href="en-us_topic_0060118606.html#en-us_topic_0060118606__fig14932184511499">Figure 2</a>, <a href="en-us_topic_0060118606.html#en-us_topic_0060118606__fig127973462014">Figure 3</a>, and <a href="en-us_topic_0035391295.html#en-us_topic_0035391295__fig32988302218">Figure 1</a>.</li><li id="en-us_topic_0041174633__li53524461759">Modified the title in sections <a href="en-us_topic_0035506845.html">Viewing a VPN</a><p id="en-us_topic_0041174633__p03521466512">and <a href="en-us_topic_0035391295.html">Modifying a VPN</a>.</p>
-</li><li id="en-us_topic_0041174633__li2035274613517">Added parameter <strong id="en-us_topic_0041174633__b335215466512">Region </strong>and option <strong id="en-us_topic_0041174633__b19352134619519">Specify CIDR block </strong>to parameter <strong id="en-us_topic_0041174633__b435213469515">Local Subnet </strong>in section <a href="en-us_topic_0060118606.html#en-us_topic_0060118606__table737mcpsimp">Table 2</a>.</li><li id="en-us_topic_0041174633__li1635254616517">Added description about the DH group security level and description about the supported DH groups when the firewall version is <strong id="en-us_topic_0041174633__b735274614510">V1 </strong>or <strong id="en-us_topic_0041174633__b23528461758">V5 </strong>to section <a href="en-us_topic_0060118606.html#en-us_topic_0060118606__table927mcpsimp">Table 4</a>.</li><li id="en-us_topic_0041174633__li103521646456">Added description about the PFS group security level and description about the supported DH groups when the firewall version is <strong id="en-us_topic_0041174633__b735214614510">V1 </strong>or <strong id="en-us_topic_0041174633__b4352746454">V5 </strong>to section <a href="en-us_topic_0060118606.html#en-us_topic_0060118606__table1043mcpsimp">Table 5</a>.</li><li id="en-us_topic_0041174633__li235224611516">Updated section <a href="vpn_faq_0055.html">What Do I Do If VPN Setup Fails?</a>.</li><li id="en-us_topic_0041174633__li1835213460511">Added sections <strong id="en-us_topic_0041174633__b438720201914"><a href="en-us_topic_0142368417.html">What Can I Do If the VPN Fails or the Network Speed of the VPN Is Slow?</a></strong> and <a href="en-us_topic_0142373840.html">Are SSL VPNs Supported?</a>.</li></ul>
-</td>
-</tr>
-<tr id="en-us_topic_0041174633__row9973192717510"><td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.1.1.3.1.1 "><p id="en-us_topic_0041174633__p12353114613511">2019-01-02</p>
-</td>
-<td class="cellrowborder" valign="top" width="70%" headers="mcps1.3.1.1.3.1.2 "><p id="en-us_topic_0041174633__p10353546551">This release incorporates the following change:</p>
-<p id="en-us_topic_0041174633__p1335374615513">Added description about the PFS function to the section for configuring the IPsec policy of a VPN.</p>
-</td>
-</tr>
-<tr id="en-us_topic_0041174633__row588481615612"><td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.1.1.3.1.1 "><p id="en-us_topic_0041174633__p2086mcpsimp">2018-04-30</p>
-</td>
-<td class="cellrowborder" valign="top" width="70%" headers="mcps1.3.1.1.3.1.2 "><p id="en-us_topic_0041174633__p2088mcpsimp">This issue is the eighth official release, which incorporates the following change:</p>
-<p id="en-us_topic_0041174633__p2089mcpsimp">Added description about how to add tags during VPN creation.</p>
-</td>
-</tr>
-<tr id="en-us_topic_0041174633__row146019441467"><td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.1.1.3.1.1 "><p id="en-us_topic_0041174633__p2092mcpsimp">2017-08-30</p>
-</td>
-<td class="cellrowborder" valign="top" width="70%" headers="mcps1.3.1.1.3.1.2 "><p id="en-us_topic_0041174633__p2094mcpsimp">This issue is the seventh official release, which incorporates the following change:</p>
-<p id="en-us_topic_0041174633__p2095mcpsimp">Added description about VPC and subnet tags.</p>
-</td>
-</tr>
-<tr id="en-us_topic_0041174633__row1438311434620"><td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.1.1.3.1.1 "><p id="en-us_topic_0041174633__p2098mcpsimp">2017-07-30</p>
-</td>
-<td class="cellrowborder" valign="top" width="70%" headers="mcps1.3.1.1.3.1.2 "><p id="en-us_topic_0041174633__p2100mcpsimp">This issue is the sixth official release, which incorporates the following change:</p>
-<ul id="en-us_topic_0041174633__ul2101mcpsimp"><li id="en-us_topic_0041174633__li2102mcpsimp">Added the best practice.</li><li id="en-us_topic_0041174633__li2103mcpsimp">Added description about the multi-project feature.</li></ul>
-</td>
-</tr>
-<tr id="en-us_topic_0041174633__row16149442362"><td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.1.1.3.1.1 "><p id="en-us_topic_0041174633__p2106mcpsimp">2017-04-28</p>
-</td>
-<td class="cellrowborder" valign="top" width="70%" headers="mcps1.3.1.1.3.1.2 "><p id="en-us_topic_0041174633__p2108mcpsimp">This issue is the fifth official release, which incorporates the following change:</p>
-<ul id="en-us_topic_0041174633__ul2109mcpsimp"><li id="en-us_topic_0041174633__li2110mcpsimp">Changed the maximum number obtained by multiplying the number of local subnets and that of remote subnets of a VPN to <strong id="en-us_topic_0041174633__b2111mcpsimp">2500</strong>.</li></ul>
-</td>
-</tr>
-<tr id="en-us_topic_0041174633__row152029195612"><td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.1.1.3.1.1 "><p id="en-us_topic_0041174633__p2114mcpsimp">2017-03-30</p>
-</td>
-<td class="cellrowborder" valign="top" width="70%" headers="mcps1.3.1.1.3.1.2 "><p id="en-us_topic_0041174633__p2116mcpsimp">This issue is the fourth official release, which incorporates the following change:</p>
-<ul id="en-us_topic_0041174633__ul2117mcpsimp"><li id="en-us_topic_0041174633__li2118mcpsimp">Added an example illustrating how to configure the remote device of a VPN.</li></ul>
-</td>
-</tr>
-<tr id="en-us_topic_0041174633__row102404211262"><td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.1.1.3.1.1 "><p id="en-us_topic_0041174633__p2121mcpsimp">2017-01-20</p>
-</td>
-<td class="cellrowborder" valign="top" width="70%" headers="mcps1.3.1.1.3.1.2 "><p id="en-us_topic_0041174633__p2123mcpsimp">This issue is the third official release, which incorporates the following change:</p>
-<ul id="en-us_topic_0041174633__ul2124mcpsimp"><li id="en-us_topic_0041174633__li2125mcpsimp">Added description about the IPsec VPN created between multiple local gateways in different VPCs and the same remote gateway</li></ul>
-</td>
-</tr>
-<tr id="en-us_topic_0041174633__row27898401961"><td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.1.1.3.1.1 "><p id="en-us_topic_0041174633__p2128mcpsimp">2016-12-30</p>
-</td>
-<td class="cellrowborder" valign="top" width="70%" headers="mcps1.3.1.1.3.1.2 "><p id="en-us_topic_0041174633__p2130mcpsimp">This issue is the second official release, which incorporates the following change:</p>
-<ul id="en-us_topic_0041174633__ul2131mcpsimp"><li id="en-us_topic_0041174633__li2132mcpsimp">Added FAQs.</li></ul>
-</td>
-</tr>
-<tr id="en-us_topic_0041174633__row137041291065"><td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.1.1.3.1.1 "><p id="en-us_topic_0041174633__p2135mcpsimp">2016-10-19</p>
-</td>
-<td class="cellrowborder" valign="top" width="70%" headers="mcps1.3.1.1.3.1.2 "><p id="en-us_topic_0041174633__p2137mcpsimp">This issue is the first official release.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-
diff --git a/docs/vpn/umn/en-us_topic_0044789110.html b/docs/vpn/umn/en-us_topic_0044789110.html
deleted file mode 100644
index 3756c14f..00000000
--- a/docs/vpn/umn/en-us_topic_0044789110.html
+++ /dev/null
@@ -1,11 +0,0 @@
-<a name="en-us_topic_0044789110"></a><a name="en-us_topic_0044789110"></a>
-
-<h1 class="topictitle1">What Is the Limitation on the Number of Local and Remote Subnets of a VPN?</h1>
-<div id="body1716mcpsimp"><p id="en-us_topic_0044789110__5.8_Why_Is_Not_Connected_Displayed_as_th">The maximum number obtained by multiplying the number of local subnets and that of remote subnets cannot exceed 2500.</p>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="en-us_topic_0035391365.html">FAQs</a></div>
-</div>
-</div>
-
diff --git a/docs/vpn/umn/en-us_topic_0045305370.html b/docs/vpn/umn/en-us_topic_0045305370.html
deleted file mode 100644
index 5602b7c0..00000000
--- a/docs/vpn/umn/en-us_topic_0045305370.html
+++ /dev/null
@@ -1,13 +0,0 @@
-<a name="en-us_topic_0045305370"></a><a name="en-us_topic_0045305370"></a>
-
-<h1 class="topictitle1">Why Is Not Connected Displayed as the Status for a Successfully Created VPN?</h1>
-<div id="body1717mcpsimp"><p id="en-us_topic_0045305370__p1718mcpsimp">After a VPN is created, its status changes to <strong id="en-us_topic_0045305370__b1719mcpsimp">Normal </strong>only after the VMs or physical servers on the two sides of the VPN communicate with each other.</p>
-<ul id="en-us_topic_0045305370__ul1720mcpsimp"><li id="en-us_topic_0045305370__li1721mcpsimp">IKE v1:<p id="en-us_topic_0045305370__p5825102483917"><a name="en-us_topic_0045305370__li1721mcpsimp"></a><a name="li1721mcpsimp"></a>If no traffic goes through the VPN for a period of time, the VPN needs to be renegotiated. The negotiation time depends on the value of <strong id="en-us_topic_0045305370__b382552416395">Lifecycle (s) </strong>in the IPsec policy. Generally, the value of <strong id="en-us_topic_0045305370__b8825524103913">Lifecycle (s) </strong>is <strong id="en-us_topic_0045305370__b138254243391">3600 </strong>(1 hour), indicating that the negotiation will be initiated in the fifty-fourth minute. If the negotiation succeeds, the connection remains to the next round of negotiation. If the negotiation fails, the status is set to be disconnected within one hour. The connection can be restored after the two sides of the VPN communicates with each other. The disconnection can be avoided by using a network monitoring tool, such as IP SLA, to generate packets.</p>
-</li><li id="en-us_topic_0045305370__li125851436123910">IKE v2: If no traffic goes through the VPN for a period of time, the VPN remains in the connected status.</li></ul>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="en-us_topic_0035391365.html">FAQs</a></div>
-</div>
-</div>
-
diff --git a/docs/vpn/umn/en-us_topic_0051518174.html b/docs/vpn/umn/en-us_topic_0051518174.html
deleted file mode 100644
index 8e72032d..00000000
--- a/docs/vpn/umn/en-us_topic_0051518174.html
+++ /dev/null
@@ -1,11 +0,0 @@
-<a name="en-us_topic_0051518174"></a><a name="en-us_topic_0051518174"></a>
-
-<h1 class="topictitle1">How Long Is Required for Issued VPN Configurations to Take Effect?</h1>
-<div id="body1726mcpsimp"><p id="en-us_topic_0051518174__5.10_How_Do_I_Configure_a_Remote_Device_">The time required for VPN configurations to take effect increases linearly with the number obtained by multiplying the number of local subnets and that of remote subnets.</p>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="en-us_topic_0035391365.html">FAQs</a></div>
-</div>
-</div>
-
diff --git a/docs/vpn/umn/en-us_topic_0060118606.html b/docs/vpn/umn/en-us_topic_0060118606.html
deleted file mode 100644
index 1b9c9d47..00000000
--- a/docs/vpn/umn/en-us_topic_0060118606.html
+++ /dev/null
@@ -1,290 +0,0 @@
-<a name="en-us_topic_0060118606"></a><a name="en-us_topic_0060118606"></a>
-
-<h1 class="topictitle1">Creating a VPN</h1>
-<div id="body652mcpsimp"><div class="section" id="en-us_topic_0060118606__section1360175984513"><h4 class="sectiontitle">Overview</h4><p id="en-us_topic_0060118606__p654mcpsimp">By default, ECSs in a VPC cannot communicate with your data center or private network. To enable communication between them, use a VPN. You need to create a VPN in your VPC and update the security group rules.</p>
-</div>
-<div class="section" id="en-us_topic_0060118606__section168512014194615"><h4 class="sectiontitle">Description of a Simple IPsec VPN Intranet Topology</h4><p id="en-us_topic_0060118606___bookmark22">In <a href="#en-us_topic_0060118606__fig117516381468">Figure 1</a>, a VPC has two subnets: 192.168.1.0/24 and 192.168.2.0/24. On your router deployed in your physical data center, you also have two subnets: 192.168.3.0/24 and 192.168.4.0/24. You can create a VPN to enable subnets in your VPC to communicate with those in your data center.</p>
-<div class="fignone" id="en-us_topic_0060118606__fig117516381468"><a name="en-us_topic_0060118606__fig117516381468"></a><a name="fig117516381468"></a><span class="figcap"><b>Figure 1 </b>IPsec VPN</span><br><span><img id="en-us_topic_0060118606__image116" src="en-us_image_0000001405630570.png"></span></div>
-<p id="en-us_topic_0060118606__p661mcpsimp">Currently, the site-to-site VPN and hub-spoke VPN are supported. You need to set up VPNs in both your data center and the VPC to establish the VPN connection.</p>
-<p id="en-us_topic_0060118606___bookmark23">Ensure that the VPN in your VPC and that in your data center use the same Internet Key Exchange (IKE) and IPsec policy configurations. Before creating a VPN, familiarize yourself with the protocols described in <a href="#en-us_topic_0060118606__table667mcpsimp">Table 1</a> and ensure that your device meets the requirements and configuration constraints of the involved protocols.</p>
-
-<div class="tablenoborder"><a name="en-us_topic_0060118606__table667mcpsimp"></a><a name="table667mcpsimp"></a><table cellpadding="4" cellspacing="0" summary="" id="en-us_topic_0060118606__table667mcpsimp" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Involved protocols</caption><thead align="left"><tr id="en-us_topic_0060118606__row673mcpsimp"><th align="left" class="cellrowborder" valign="top" width="16%" id="mcps1.3.2.6.2.4.1.1"><p id="en-us_topic_0060118606__p675mcpsimp"><strong id="en-us_topic_0060118606__b676mcpsimp">Parameter</strong></p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="49%" id="mcps1.3.2.6.2.4.1.2"><p id="en-us_topic_0060118606__p678mcpsimp"><strong id="en-us_topic_0060118606__b679mcpsimp">Description</strong></p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="35%" id="mcps1.3.2.6.2.4.1.3"><p id="en-us_topic_0060118606__p681mcpsimp"><strong id="en-us_topic_0060118606__b682mcpsimp">Constraint</strong></p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="en-us_topic_0060118606__row683mcpsimp"><td class="cellrowborder" valign="top" width="16%" headers="mcps1.3.2.6.2.4.1.1 "><p id="en-us_topic_0060118606__p685mcpsimp">RFC 2409</p>
-</td>
-<td class="cellrowborder" valign="top" width="49%" headers="mcps1.3.2.6.2.4.1.2 "><p id="en-us_topic_0060118606__p687mcpsimp">Defines the IKE protocol, which negotiates and verifies key information to safeguard VPNs.</p>
-</td>
-<td class="cellrowborder" valign="top" width="35%" headers="mcps1.3.2.6.2.4.1.3 "><ul id="en-us_topic_0060118606__ul689mcpsimp"><li id="en-us_topic_0060118606__li45291726165117">Use the pre-shared key (PSK) to reach an IKE peer agreement.</li><li id="en-us_topic_0060118606__li690mcpsimp">Use the main mode and aggressive mode for negotiation.</li></ul>
-</td>
-</tr>
-<tr id="en-us_topic_0060118606__row4403191094810"><td class="cellrowborder" valign="top" width="16%" headers="mcps1.3.2.6.2.4.1.1 "><p id="en-us_topic_0060118606__p11404171064810">RFC 4301</p>
-</td>
-<td class="cellrowborder" valign="top" width="49%" headers="mcps1.3.2.6.2.4.1.2 "><p id="en-us_topic_0060118606__p717mcpsimp">Defines the IPsec architecture, the security services that IPsec offers, and the collaboration between components.</p>
-</td>
-<td class="cellrowborder" valign="top" width="35%" headers="mcps1.3.2.6.2.4.1.3 "><p id="en-us_topic_0060118606__p719mcpsimp">Use the IPsec tunnel to set up a VPN connection.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-<div class="section" id="en-us_topic_0060118606__section481434274813"><h4 class="sectiontitle">Scenarios</h4><p id="en-us_topic_0060118606__p637984411486">Perform the following procedure to create a VPN that sets up a secure, isolated communication tunnel between your data center and cloud services.</p>
-</div>
-<div class="section" id="en-us_topic_0060118606__section0665107124914"><h4 class="sectiontitle">Procedure</h4><ol id="en-us_topic_0060118606__ol723mcpsimp"><li id="en-us_topic_0060118606__li724mcpsimp">Log in to the management console.</li><li class="msonormal" id="en-us_topic_0060118606__li725mcpsimp">Click <span><img id="en-us_topic_0060118606__image119" src="en-us_image_0000001405151706.png"></span> in the upper left corner and select the desired region and project.</li><li id="en-us_topic_0060118606__li726mcpsimp">On the console homepage, under <strong id="en-us_topic_0060118606__b727mcpsimp">Network</strong>, click <strong id="en-us_topic_0060118606__b728mcpsimp">Virtual Private Network</strong>.</li><li id="en-us_topic_0060118606__li729mcpsimp">On the <strong id="en-us_topic_0060118606__b730mcpsimp">Virtual Private Network </strong>page, click <strong id="en-us_topic_0060118606__b731mcpsimp">Create VPN</strong>.</li><li id="en-us_topic_0060118606___bookmark24"><a name="en-us_topic_0060118606___bookmark24"></a><a name="_bookmark24"></a>Set the parameters as prompted and click <strong id="en-us_topic_0060118606__b732mcpsimp">Create Now</strong>.<div class="fignone" id="en-us_topic_0060118606__fig14932184511499"><a name="en-us_topic_0060118606__fig14932184511499"></a><a name="fig14932184511499"></a><span class="figcap"><b>Figure 2 </b>Creating a VPN</span><br><span><img id="en-us_topic_0060118606__image120" src="en-us_image_0000001455711269.jpg"></span></div>
-
-<div class="tablenoborder"><a name="en-us_topic_0060118606__table737mcpsimp"></a><a name="table737mcpsimp"></a><table cellpadding="4" cellspacing="0" summary="" id="en-us_topic_0060118606__table737mcpsimp" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Basic parameters</caption><thead align="left"><tr id="en-us_topic_0060118606__row743mcpsimp"><th align="left" class="cellrowborder" valign="top" width="25.742574257425744%" id="mcps1.3.4.2.5.3.2.4.1.1"><p id="en-us_topic_0060118606__p745mcpsimp"><strong id="en-us_topic_0060118606__b746mcpsimp">Parameter</strong></p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="45.54455445544554%" id="mcps1.3.4.2.5.3.2.4.1.2"><p id="en-us_topic_0060118606__p748mcpsimp"><strong id="en-us_topic_0060118606__b749mcpsimp">Description</strong></p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="28.71287128712871%" id="mcps1.3.4.2.5.3.2.4.1.3"><p id="en-us_topic_0060118606__p751mcpsimp"><strong id="en-us_topic_0060118606__b752mcpsimp">Example Value</strong></p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="en-us_topic_0060118606__row753mcpsimp"><td class="cellrowborder" valign="top" width="25.742574257425744%" headers="mcps1.3.4.2.5.3.2.4.1.1 "><p id="en-us_topic_0060118606__p755mcpsimp">Region</p>
-</td>
-<td class="cellrowborder" valign="top" width="45.54455445544554%" headers="mcps1.3.4.2.5.3.2.4.1.2 "><p id="en-us_topic_0060118606__p757mcpsimp">Specifies the desired region. Regions are geographic areas isolated from each other.</p>
-<p id="en-us_topic_0060118606__p758mcpsimp">Resources are region-specific and cannot be used across regions through internal network connections. For low network latency and quick resource access, select the nearest region.</p>
-</td>
-<td class="cellrowborder" valign="top" width="28.71287128712871%" headers="mcps1.3.4.2.5.3.2.4.1.3 "><p id="en-us_topic_0060118606__p760mcpsimp">eu-de</p>
-</td>
-</tr>
-<tr id="en-us_topic_0060118606__row761mcpsimp"><td class="cellrowborder" valign="top" width="25.742574257425744%" headers="mcps1.3.4.2.5.3.2.4.1.1 "><p id="en-us_topic_0060118606__p763mcpsimp">Name</p>
-</td>
-<td class="cellrowborder" valign="top" width="45.54455445544554%" headers="mcps1.3.4.2.5.3.2.4.1.2 "><p id="en-us_topic_0060118606__p765mcpsimp">Specifies the VPN name.</p>
-</td>
-<td class="cellrowborder" valign="top" width="28.71287128712871%" headers="mcps1.3.4.2.5.3.2.4.1.3 "><p id="en-us_topic_0060118606__p767mcpsimp">VPN-001</p>
-</td>
-</tr>
-<tr id="en-us_topic_0060118606__row768mcpsimp"><td class="cellrowborder" valign="top" width="25.742574257425744%" headers="mcps1.3.4.2.5.3.2.4.1.1 "><p id="en-us_topic_0060118606__p770mcpsimp">VPC</p>
-</td>
-<td class="cellrowborder" valign="top" width="45.54455445544554%" headers="mcps1.3.4.2.5.3.2.4.1.2 "><p id="en-us_topic_0060118606__p772mcpsimp">Specifies the VPC name.</p>
-</td>
-<td class="cellrowborder" valign="top" width="28.71287128712871%" headers="mcps1.3.4.2.5.3.2.4.1.3 "><p id="en-us_topic_0060118606__p774mcpsimp">VPC-001</p>
-</td>
-</tr>
-<tr id="en-us_topic_0060118606__row775mcpsimp"><td class="cellrowborder" valign="top" width="25.742574257425744%" headers="mcps1.3.4.2.5.3.2.4.1.1 "><p id="en-us_topic_0060118606__p777mcpsimp">Local Subnet</p>
-</td>
-<td class="cellrowborder" valign="top" width="45.54455445544554%" headers="mcps1.3.4.2.5.3.2.4.1.2 "><p id="en-us_topic_0060118606__p779mcpsimp">A local subnet is a VPC subnet that accesses a customer network through a VPN.</p>
-<ul id="en-us_topic_0060118606__ul786mcpsimp"><li id="en-us_topic_0060118606__li787mcpsimp"><strong id="en-us_topic_0060118606__b788mcpsimp">Select subnet</strong>: If you select this option, you can then select the subnets that need to communicate with your data center.</li><li id="en-us_topic_0060118606__li1830357135112"><strong id="en-us_topic_0060118606__b795mcpsimp">Specify CIDR block</strong>: If you select this option, you can then enter the CIDR blocks that need to communicate with your data center.</li></ul>
-</td>
-<td class="cellrowborder" valign="top" width="28.71287128712871%" headers="mcps1.3.4.2.5.3.2.4.1.3 "><p id="en-us_topic_0060118606__p781mcpsimp">192.168.1.0/24,192.168.2.0/24</p>
-</td>
-</tr>
-<tr id="en-us_topic_0060118606__row797mcpsimp"><td class="cellrowborder" valign="top" width="25.742574257425744%" headers="mcps1.3.4.2.5.3.2.4.1.1 "><p id="en-us_topic_0060118606__p799mcpsimp">Remote Gateway</p>
-</td>
-<td class="cellrowborder" valign="top" width="45.54455445544554%" headers="mcps1.3.4.2.5.3.2.4.1.2 "><p id="en-us_topic_0060118606__p801mcpsimp">Specifies the public IP address of the VPN in your data center or on the private network. This IP address is used for communicating with the VPN in the VPC.</p>
-</td>
-<td class="cellrowborder" valign="top" width="28.71287128712871%" headers="mcps1.3.4.2.5.3.2.4.1.3 "><p id="en-us_topic_0060118606__p803mcpsimp">N/A</p>
-</td>
-</tr>
-<tr id="en-us_topic_0060118606__row804mcpsimp"><td class="cellrowborder" valign="top" width="25.742574257425744%" headers="mcps1.3.4.2.5.3.2.4.1.1 "><p id="en-us_topic_0060118606__p806mcpsimp">Remote Subnet</p>
-</td>
-<td class="cellrowborder" valign="top" width="45.54455445544554%" headers="mcps1.3.4.2.5.3.2.4.1.2 "><p id="en-us_topic_0060118606__p808mcpsimp">A remote subnet is a subnet in the customer data center that accesses a VPC through a VPN. The remote and local subnets cannot have overlapping or matching CIDR blocks. The remote subnet CIDR block cannot overlap with CIDR blocks involved in existing VPC peering connections created for the local VPC.</p>
-</td>
-<td class="cellrowborder" valign="top" width="28.71287128712871%" headers="mcps1.3.4.2.5.3.2.4.1.3 "><p id="en-us_topic_0060118606__p810mcpsimp">192.168.3.0/24,192.168.4.0/24</p>
-</td>
-</tr>
-<tr id="en-us_topic_0060118606__row483744675414"><td class="cellrowborder" valign="top" width="25.742574257425744%" headers="mcps1.3.4.2.5.3.2.4.1.1 "><p id="en-us_topic_0060118606__p830mcpsimp">PSK</p>
-</td>
-<td class="cellrowborder" valign="top" width="45.54455445544554%" headers="mcps1.3.4.2.5.3.2.4.1.2 "><p id="en-us_topic_0060118606__p832mcpsimp">Specifies the pre-shared key, which is a private key shared by two ends of a VPN connection. The PSK configurations for both ends of a VPN connection must be the same. This key is used for VPN connection negotiation.</p>
-<p id="en-us_topic_0060118606__p833mcpsimp">The value is a string of 6 to 128 characters.</p>
-</td>
-<td class="cellrowborder" valign="top" width="28.71287128712871%" headers="mcps1.3.4.2.5.3.2.4.1.3 "><p id="en-us_topic_0060118606__p835mcpsimp">Test@123</p>
-</td>
-</tr>
-<tr id="en-us_topic_0060118606__row2774165265414"><td class="cellrowborder" valign="top" width="25.742574257425744%" headers="mcps1.3.4.2.5.3.2.4.1.1 "><p id="en-us_topic_0060118606__p838mcpsimp">Confirm PSK</p>
-</td>
-<td class="cellrowborder" valign="top" width="45.54455445544554%" headers="mcps1.3.4.2.5.3.2.4.1.2 "><p id="en-us_topic_0060118606__p840mcpsimp">Specifies the confirm pre-shared key.</p>
-</td>
-<td class="cellrowborder" valign="top" width="28.71287128712871%" headers="mcps1.3.4.2.5.3.2.4.1.3 "><p id="en-us_topic_0060118606__p842mcpsimp">Test@123</p>
-</td>
-</tr>
-<tr id="en-us_topic_0060118606__row10688135475415"><td class="cellrowborder" valign="top" width="25.742574257425744%" headers="mcps1.3.4.2.5.3.2.4.1.1 "><p id="en-us_topic_0060118606__p845mcpsimp">Tag</p>
-</td>
-<td class="cellrowborder" valign="top" width="45.54455445544554%" headers="mcps1.3.4.2.5.3.2.4.1.2 "><p id="en-us_topic_0060118606__p847mcpsimp">Specifies the VPN tag, which consists of a key and value pair. You can add a maximum of ten tags to each VPN.</p>
-<p id="en-us_topic_0060118606__p848mcpsimp">The tag key and value must meet the requirements listed in <a href="#en-us_topic_0060118606__table880mcpsimp">Table 3</a>.</p>
-</td>
-<td class="cellrowborder" valign="top" width="28.71287128712871%" headers="mcps1.3.4.2.5.3.2.4.1.3 "><ul id="en-us_topic_0060118606__ul855mcpsimp"><li id="en-us_topic_0060118606__li914575514559">Key: vpn_key1</li><li id="en-us_topic_0060118606__li856mcpsimp">Value: vpn-01</li></ul>
-</td>
-</tr>
-<tr id="en-us_topic_0060118606__row164501357105415"><td class="cellrowborder" valign="top" width="25.742574257425744%" headers="mcps1.3.4.2.5.3.2.4.1.1 "><p id="en-us_topic_0060118606__p860mcpsimp">Advanced Settings</p>
-</td>
-<td class="cellrowborder" valign="top" width="45.54455445544554%" headers="mcps1.3.4.2.5.3.2.4.1.2 "><ul id="en-us_topic_0060118606__ul862mcpsimp"><li id="en-us_topic_0060118606__li76635215561"><strong id="en-us_topic_0060118606__b1166310210562">Default</strong>: uses default IKE and IPsec policies.</li><li id="en-us_topic_0060118606__li10964462561"><strong id="en-us_topic_0060118606__b596415645614">Existing</strong>: uses existing IKE and IPsec policies. This option is available only after you have created IKE and IPsec policies.</li><li id="en-us_topic_0060118606__li863mcpsimp"><strong id="en-us_topic_0060118606__b868mcpsimp">Custom</strong>: uses custom IKE and IPsec policies. For details about the policies, see <a href="#en-us_topic_0060118606__table927mcpsimp">Table 4</a> and <a href="#en-us_topic_0060118606__table1043mcpsimp">Table 5</a>.</li></ul>
-</td>
-<td class="cellrowborder" valign="top" width="28.71287128712871%" headers="mcps1.3.4.2.5.3.2.4.1.3 "><p id="en-us_topic_0060118606__p878mcpsimp">Custom</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-
-<div class="tablenoborder"><a name="en-us_topic_0060118606__table880mcpsimp"></a><a name="table880mcpsimp"></a><table cellpadding="4" cellspacing="0" summary="" id="en-us_topic_0060118606__table880mcpsimp" frame="border" border="1" rules="all"><caption><b>Table 3 </b>VPN tag key and value requirements</caption><thead align="left"><tr id="en-us_topic_0060118606__row886mcpsimp"><th align="left" class="cellrowborder" valign="top" width="19%" id="mcps1.3.4.2.5.4.2.4.1.1"><p id="en-us_topic_0060118606__p888mcpsimp"><strong id="en-us_topic_0060118606__b889mcpsimp">Parameter</strong></p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="53%" id="mcps1.3.4.2.5.4.2.4.1.2"><p id="en-us_topic_0060118606__p891mcpsimp"><strong id="en-us_topic_0060118606__b892mcpsimp">Requirement</strong></p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="28.000000000000004%" id="mcps1.3.4.2.5.4.2.4.1.3"><p id="en-us_topic_0060118606__p894mcpsimp"><strong id="en-us_topic_0060118606__b895mcpsimp">Example Value</strong></p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="en-us_topic_0060118606__row896mcpsimp"><td class="cellrowborder" valign="top" width="19%" headers="mcps1.3.4.2.5.4.2.4.1.1 "><p id="en-us_topic_0060118606__p898mcpsimp">Key</p>
-</td>
-<td class="cellrowborder" valign="top" width="53%" headers="mcps1.3.4.2.5.4.2.4.1.2 "><ul id="en-us_topic_0060118606__ul900mcpsimp"><li id="en-us_topic_0060118606__li901mcpsimp">Cannot be left blank.</li><li id="en-us_topic_0060118606__li902mcpsimp">Must be unique for the same VPN and can be the same for different VPNs.</li><li id="en-us_topic_0060118606__li903mcpsimp">Contains a maximum of 36 characters.</li><li id="en-us_topic_0060118606__li904mcpsimp">Can contain only the following character types:<ul id="en-us_topic_0060118606__ul905mcpsimp"><li id="en-us_topic_0060118606__li906mcpsimp">Uppercase letters</li><li id="en-us_topic_0060118606__li907mcpsimp">Lowercase letters</li><li id="en-us_topic_0060118606__li908mcpsimp">Digits</li><li id="en-us_topic_0060118606__li909mcpsimp">Special characters, including hyphens (-) and underscores (_)</li></ul>
-</li></ul>
-</td>
-<td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.4.2.5.4.2.4.1.3 "><p id="en-us_topic_0060118606__p911mcpsimp">vpn_key1</p>
-</td>
-</tr>
-<tr id="en-us_topic_0060118606__row912mcpsimp"><td class="cellrowborder" valign="top" width="19%" headers="mcps1.3.4.2.5.4.2.4.1.1 "><p id="en-us_topic_0060118606__p914mcpsimp">Value</p>
-</td>
-<td class="cellrowborder" valign="top" width="53%" headers="mcps1.3.4.2.5.4.2.4.1.2 "><ul id="en-us_topic_0060118606__ul916mcpsimp"><li id="en-us_topic_0060118606__li917mcpsimp">Can contain a maximum of 43 characters.</li><li id="en-us_topic_0060118606__li918mcpsimp">Can contain only the following character types:<ul id="en-us_topic_0060118606__ul919mcpsimp"><li id="en-us_topic_0060118606__li920mcpsimp">Uppercase letters</li><li id="en-us_topic_0060118606__li921mcpsimp">Lowercase letters</li><li id="en-us_topic_0060118606__li922mcpsimp">Digits</li><li id="en-us_topic_0060118606__li923mcpsimp">Special characters, including hyphens (-) and underscores (_)</li></ul>
-</li></ul>
-</td>
-<td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.4.2.5.4.2.4.1.3 "><p id="en-us_topic_0060118606__p925mcpsimp">vpn-01</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-
-<div class="tablenoborder"><a name="en-us_topic_0060118606__table927mcpsimp"></a><a name="table927mcpsimp"></a><table cellpadding="4" cellspacing="0" summary="" id="en-us_topic_0060118606__table927mcpsimp" frame="border" border="1" rules="all"><caption><b>Table 4 </b>IKE policy</caption><thead align="left"><tr id="en-us_topic_0060118606__row933mcpsimp"><th align="left" class="cellrowborder" valign="top" width="28.000000000000004%" id="mcps1.3.4.2.5.5.2.4.1.1"><p id="en-us_topic_0060118606__p935mcpsimp"><strong id="en-us_topic_0060118606__b936mcpsimp">Parameter</strong></p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="55.00000000000001%" id="mcps1.3.4.2.5.5.2.4.1.2"><p id="en-us_topic_0060118606__p938mcpsimp"><strong id="en-us_topic_0060118606__b939mcpsimp">Description</strong></p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="17%" id="mcps1.3.4.2.5.5.2.4.1.3"><p id="en-us_topic_0060118606__p941mcpsimp"><strong id="en-us_topic_0060118606__b942mcpsimp">Example Value</strong></p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="en-us_topic_0060118606__row943mcpsimp"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.4.2.5.5.2.4.1.1 "><p id="en-us_topic_0060118606__p945mcpsimp">Authentication Algorithm</p>
-</td>
-<td class="cellrowborder" valign="top" width="55.00000000000001%" headers="mcps1.3.4.2.5.5.2.4.1.2 "><p id="en-us_topic_0060118606__p947mcpsimp">Specifies the authentication hash algorithm. The value can be <strong id="en-us_topic_0060118606__b948mcpsimp">SHA1</strong>, <strong id="en-us_topic_0060118606__b949mcpsimp">SHA2-256</strong>, <strong id="en-us_topic_0060118606__b950mcpsimp">SHA2-384</strong>, <strong id="en-us_topic_0060118606__b951mcpsimp">SHA2-512</strong>, or <strong id="en-us_topic_0060118606__b952mcpsimp">MD5</strong>.</p>
-<p id="en-us_topic_0060118606__p953mcpsimp">The default value is <strong id="en-us_topic_0060118606__b954mcpsimp">SHA1</strong>.</p>
-</td>
-<td class="cellrowborder" valign="top" width="17%" headers="mcps1.3.4.2.5.5.2.4.1.3 "><p id="en-us_topic_0060118606__p956mcpsimp">SHA1</p>
-</td>
-</tr>
-<tr id="en-us_topic_0060118606__row957mcpsimp"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.4.2.5.5.2.4.1.1 "><p id="en-us_topic_0060118606__p959mcpsimp">Encryption Algorithm</p>
-</td>
-<td class="cellrowborder" valign="top" width="55.00000000000001%" headers="mcps1.3.4.2.5.5.2.4.1.2 "><p id="en-us_topic_0060118606__p961mcpsimp">Specifies the encryption algorithm. The value can be <strong id="en-us_topic_0060118606__b962mcpsimp">AES-128</strong>, <strong id="en-us_topic_0060118606__b963mcpsimp">AES-192</strong>,</p>
-<p id="en-us_topic_0060118606__p964mcpsimp"><strong id="en-us_topic_0060118606__b965mcpsimp">AES-256</strong>, or <strong id="en-us_topic_0060118606__b966mcpsimp">3DES</strong>. The 3DES algorithm is not recommended because it is risky.</p>
-<p id="en-us_topic_0060118606__p967mcpsimp">The default value is <strong id="en-us_topic_0060118606__b968mcpsimp">AES-128</strong>.</p>
-</td>
-<td class="cellrowborder" valign="top" width="17%" headers="mcps1.3.4.2.5.5.2.4.1.3 "><p id="en-us_topic_0060118606__p970mcpsimp">AES-128</p>
-</td>
-</tr>
-<tr id="en-us_topic_0060118606__row1579094785711"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.4.2.5.5.2.4.1.1 "><p id="en-us_topic_0060118606__p989mcpsimp">DH Algorithm</p>
-</td>
-<td class="cellrowborder" valign="top" width="55.00000000000001%" headers="mcps1.3.4.2.5.5.2.4.1.2 "><p id="en-us_topic_0060118606__p991mcpsimp">Specifies the Diffie-Hellman key exchange algorithm. The value can be <strong id="en-us_topic_0060118606__b992mcpsimp">Group 1</strong>, <strong id="en-us_topic_0060118606__b993mcpsimp">Group 2</strong>, <strong id="en-us_topic_0060118606__b994mcpsimp">Group 5</strong>, <strong id="en-us_topic_0060118606__b995mcpsimp">Group 14</strong>,</p>
-<p id="en-us_topic_0060118606__p996mcpsimp"><strong id="en-us_topic_0060118606__b997mcpsimp">Group 15</strong>, <strong id="en-us_topic_0060118606__b998mcpsimp">Group 16</strong>, <strong id="en-us_topic_0060118606__b999mcpsimp">Group 19</strong>, <strong id="en-us_topic_0060118606__b1000mcpsimp">Group</strong></p>
-<p id="en-us_topic_0060118606__p1001mcpsimp"><strong id="en-us_topic_0060118606__b1002mcpsimp">20</strong>, or <strong id="en-us_topic_0060118606__b1003mcpsimp">Group 21</strong>.</p>
-<p id="en-us_topic_0060118606__p1004mcpsimp">The DH group security level from the highest to lowest is as follows: Group 21&gt; Group 20 &gt; Group 19 &gt; Group 16 &gt; Group 15 &gt; Group 14 &gt; Group 5 &gt; Group 2 &gt; Group 1.</p>
-<p id="en-us_topic_0060118606__p1006mcpsimp">The default value is <strong id="en-us_topic_0060118606__b1007mcpsimp">Group 5</strong>.</p>
-</td>
-<td class="cellrowborder" valign="top" width="17%" headers="mcps1.3.4.2.5.5.2.4.1.3 "><p id="en-us_topic_0060118606__p1009mcpsimp">Group 5</p>
-</td>
-</tr>
-<tr id="en-us_topic_0060118606__row46391500576"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.4.2.5.5.2.4.1.1 "><p id="en-us_topic_0060118606__p1012mcpsimp">Version</p>
-</td>
-<td class="cellrowborder" valign="top" width="55.00000000000001%" headers="mcps1.3.4.2.5.5.2.4.1.2 "><p id="en-us_topic_0060118606__p1014mcpsimp">Specifies the version of the IKE protocol. The value can be <strong id="en-us_topic_0060118606__b1015mcpsimp">v1 </strong>or <strong id="en-us_topic_0060118606__b1016mcpsimp">v2</strong>.</p>
-<p id="en-us_topic_0060118606__p1017mcpsimp">The default value is <strong id="en-us_topic_0060118606__b1018mcpsimp">v1</strong>.</p>
-</td>
-<td class="cellrowborder" valign="top" width="17%" headers="mcps1.3.4.2.5.5.2.4.1.3 "><p id="en-us_topic_0060118606__p1020mcpsimp">v1</p>
-</td>
-</tr>
-<tr id="en-us_topic_0060118606__row1355695212579"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.4.2.5.5.2.4.1.1 "><p id="en-us_topic_0060118606__p1023mcpsimp">Lifecycle (s)</p>
-</td>
-<td class="cellrowborder" valign="top" width="55.00000000000001%" headers="mcps1.3.4.2.5.5.2.4.1.2 "><p id="en-us_topic_0060118606__p1025mcpsimp">Specifies the lifetime of the security association (SA), in seconds.</p>
-<p id="en-us_topic_0060118606__p1026mcpsimp">The SA will be renegotiated if its lifetime expires.</p>
-<p id="en-us_topic_0060118606__p1027mcpsimp">The default value is <strong id="en-us_topic_0060118606__b1028mcpsimp">86400</strong>.</p>
-</td>
-<td class="cellrowborder" valign="top" width="17%" headers="mcps1.3.4.2.5.5.2.4.1.3 "><p id="en-us_topic_0060118606__p1030mcpsimp">86400</p>
-</td>
-</tr>
-<tr id="en-us_topic_0060118606__row65039549575"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.4.2.5.5.2.4.1.1 "><p id="en-us_topic_0060118606__p1033mcpsimp">Negotiation Mode</p>
-</td>
-<td class="cellrowborder" valign="top" width="55.00000000000001%" headers="mcps1.3.4.2.5.5.2.4.1.2 "><p id="en-us_topic_0060118606__p1035mcpsimp">If the IKE policy version is <strong id="en-us_topic_0060118606__b1036mcpsimp">v1</strong>, the negotiation mode can be configured. The value can only be <strong id="en-us_topic_0060118606__b1037mcpsimp">Main</strong>.</p>
-<p id="en-us_topic_0060118606__p1038mcpsimp">The default value is <strong id="en-us_topic_0060118606__b1039mcpsimp">Main</strong>.</p>
-</td>
-<td class="cellrowborder" valign="top" width="17%" headers="mcps1.3.4.2.5.5.2.4.1.3 "><p id="en-us_topic_0060118606__p1041mcpsimp">Main</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-
-<div class="tablenoborder"><a name="en-us_topic_0060118606__table1043mcpsimp"></a><a name="table1043mcpsimp"></a><table cellpadding="4" cellspacing="0" summary="" id="en-us_topic_0060118606__table1043mcpsimp" frame="border" border="1" rules="all"><caption><b>Table 5 </b>IPsec policy</caption><thead align="left"><tr id="en-us_topic_0060118606__row1049mcpsimp"><th align="left" class="cellrowborder" valign="top" width="33%" id="mcps1.3.4.2.5.6.2.4.1.1"><p id="en-us_topic_0060118606__p1051mcpsimp"><strong id="en-us_topic_0060118606__b1052mcpsimp">Parameter</strong></p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="50%" id="mcps1.3.4.2.5.6.2.4.1.2"><p id="en-us_topic_0060118606__p1054mcpsimp"><strong id="en-us_topic_0060118606__b1055mcpsimp">Description</strong></p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="17%" id="mcps1.3.4.2.5.6.2.4.1.3"><p id="en-us_topic_0060118606__p1057mcpsimp"><strong id="en-us_topic_0060118606__b1058mcpsimp">Example Value</strong></p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="en-us_topic_0060118606__row1059mcpsimp"><td class="cellrowborder" valign="top" width="33%" headers="mcps1.3.4.2.5.6.2.4.1.1 "><p id="en-us_topic_0060118606__p1061mcpsimp">Authentication Algorithm</p>
-</td>
-<td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.4.2.5.6.2.4.1.2 "><p id="en-us_topic_0060118606__p1063mcpsimp">Specifies the authentication hash algorithm. The value can be <strong id="en-us_topic_0060118606__b1064mcpsimp">SHA1</strong>, <strong id="en-us_topic_0060118606__b1065mcpsimp">SHA2-256</strong>, <strong id="en-us_topic_0060118606__b1066mcpsimp">SHA2-384</strong>, <strong id="en-us_topic_0060118606__b1067mcpsimp">SHA2-512</strong>, or <strong id="en-us_topic_0060118606__b1068mcpsimp">MD5</strong>.</p>
-<p id="en-us_topic_0060118606__p1069mcpsimp">The default value is <strong id="en-us_topic_0060118606__b1070mcpsimp">SHA1</strong>.</p>
-</td>
-<td class="cellrowborder" valign="top" width="17%" headers="mcps1.3.4.2.5.6.2.4.1.3 "><p id="en-us_topic_0060118606__p1072mcpsimp">SHA1</p>
-</td>
-</tr>
-<tr id="en-us_topic_0060118606__row1073mcpsimp"><td class="cellrowborder" valign="top" width="33%" headers="mcps1.3.4.2.5.6.2.4.1.1 "><p id="en-us_topic_0060118606__p1075mcpsimp">Encryption Algorithm</p>
-</td>
-<td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.4.2.5.6.2.4.1.2 "><p id="en-us_topic_0060118606__p1077mcpsimp">Specifies the encryption algorithm. The value can be <strong id="en-us_topic_0060118606__b1078mcpsimp">AES-128</strong>, <strong id="en-us_topic_0060118606__b1079mcpsimp">AES-192</strong>, <strong id="en-us_topic_0060118606__b1080mcpsimp">AES-256</strong>, or <strong id="en-us_topic_0060118606__b1081mcpsimp">3DES</strong>. The 3DES algorithm is not recommended because it is risky.</p>
-<p id="en-us_topic_0060118606__p1083mcpsimp">The default value is <strong id="en-us_topic_0060118606__b1084mcpsimp">AES-128</strong>.</p>
-</td>
-<td class="cellrowborder" valign="top" width="17%" headers="mcps1.3.4.2.5.6.2.4.1.3 "><p id="en-us_topic_0060118606__p1086mcpsimp">AES-128</p>
-</td>
-</tr>
-<tr id="en-us_topic_0060118606__row159328171598"><td class="cellrowborder" valign="top" width="33%" headers="mcps1.3.4.2.5.6.2.4.1.1 "><p id="en-us_topic_0060118606__p1105mcpsimp">PFS</p>
-</td>
-<td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.4.2.5.6.2.4.1.2 "><p id="en-us_topic_0060118606__p1107mcpsimp">Specifies the perfect forward secrecy (PFS), which is used to configure the IPsec tunnel negotiation.</p>
-<p id="en-us_topic_0060118606__p1108mcpsimp">This function enables two parties to exchange the DH keys during the phase-two negotiation, improving key security. It is recommended that you enable this function.</p>
-<p id="en-us_topic_0060118606__p1109mcpsimp">You can disable this function by selecting <strong id="en-us_topic_0060118606__b1110mcpsimp">Disable </strong>from the drop- down list.</p>
-<p id="en-us_topic_0060118606__p1111mcpsimp">The PFS used at the two sides of a VPN must be the same. Otherwise, the negotiation will fail. If you disable this function on the console, you also need to disable it at the customer side of the VPN.</p>
-<p id="en-us_topic_0060118606__p1112mcpsimp">The value can be <strong id="en-us_topic_0060118606__b1113mcpsimp">DH group 1</strong>, <strong id="en-us_topic_0060118606__b1114mcpsimp">DH group 2</strong>, <strong id="en-us_topic_0060118606__b1115mcpsimp">DH group 5</strong>, <strong id="en-us_topic_0060118606__b1116mcpsimp">DH group 14</strong>, <strong id="en-us_topic_0060118606__b1117mcpsimp">DH group 15</strong>, <strong id="en-us_topic_0060118606__b1118mcpsimp">DH group 16</strong>, <strong id="en-us_topic_0060118606__b1119mcpsimp">DH group 19</strong>, <strong id="en-us_topic_0060118606__b1120mcpsimp">DH group 20</strong>, or <strong id="en-us_topic_0060118606__b1121mcpsimp">DH group 21</strong>.</p>
-<p id="en-us_topic_0060118606__p1122mcpsimp">The PFS group security level from the highest to lowest is as follows: DH group 21 &gt; DH group 20 &gt; DH group 19 &gt; DH group 16 &gt; DH group 15 &gt; DH group 14 &gt; DH group 5 &gt; DH group 2 &gt; DH group 1.</p>
-<p id="en-us_topic_0060118606__p1123mcpsimp">The default value is <strong id="en-us_topic_0060118606__b1124mcpsimp">DH group 5</strong>.</p>
-</td>
-<td class="cellrowborder" valign="top" width="17%" headers="mcps1.3.4.2.5.6.2.4.1.3 "><p id="en-us_topic_0060118606__p1126mcpsimp">DH group 5</p>
-</td>
-</tr>
-<tr id="en-us_topic_0060118606__row31991120115912"><td class="cellrowborder" valign="top" width="33%" headers="mcps1.3.4.2.5.6.2.4.1.1 "><p id="en-us_topic_0060118606__p1129mcpsimp">Transfer Protocol</p>
-</td>
-<td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.4.2.5.6.2.4.1.2 "><p id="en-us_topic_0060118606__p1131mcpsimp">Specifies the security protocol used for IPsec to transmit and encapsulate user data. The value can be <strong id="en-us_topic_0060118606__b1132mcpsimp">AH</strong>, <strong id="en-us_topic_0060118606__b1133mcpsimp">ESP</strong>, or <strong id="en-us_topic_0060118606__b1134mcpsimp">AH-ESP</strong>.</p>
-<p id="en-us_topic_0060118606__p1135mcpsimp">The default value is <strong id="en-us_topic_0060118606__b1136mcpsimp">ESP</strong>.</p>
-</td>
-<td class="cellrowborder" valign="top" width="17%" headers="mcps1.3.4.2.5.6.2.4.1.3 "><p id="en-us_topic_0060118606__p1138mcpsimp">ESP</p>
-</td>
-</tr>
-<tr id="en-us_topic_0060118606__row1812252275919"><td class="cellrowborder" valign="top" width="33%" headers="mcps1.3.4.2.5.6.2.4.1.1 "><p id="en-us_topic_0060118606__p1141mcpsimp">Lifecycle (s)</p>
-</td>
-<td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.4.2.5.6.2.4.1.2 "><p id="en-us_topic_0060118606__p1143mcpsimp">Specifies the lifetime of the SA, in seconds.</p>
-<p id="en-us_topic_0060118606__p1144mcpsimp">The SA will be renegotiated if its lifetime expires.</p>
-<p id="en-us_topic_0060118606__p1145mcpsimp">The default value is <strong id="en-us_topic_0060118606__b1146mcpsimp">3600</strong>.</p>
-</td>
-<td class="cellrowborder" valign="top" width="17%" headers="mcps1.3.4.2.5.6.2.4.1.3 "><p id="en-us_topic_0060118606__p1148mcpsimp">3600</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-<div class="note" id="en-us_topic_0060118606__note1119516466593"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="en-us_topic_0060118606__p1150mcpsimp">The IKE policy specifies the encryption and authentication algorithms to use in the negotiation phase of an IPsec tunnel. The IPsec policy specifies the protocol, encryption algorithm, and authentication algorithm to use in the data transmission phase of an IPsec tunnel. These parameters must be the same between the VPN in your VPC and that in your data center. If they are different, the VPN cannot be set up.</p>
-</div></div>
-</li><li id="en-us_topic_0060118606__li189834126015">Click <strong id="en-us_topic_0060118606__b1153mcpsimp">Submit</strong>.<p id="en-us_topic_0060118606___bookmark30">After the IPsec VPN is created, a public network egress IP address is assigned to the IPsec VPN. The IP address is the local gateway address of a created VPN on the network console. When configuring the remote tunnel in your data center, you must set the remote gateway address to this IP address.</p>
-<div class="fignone" id="en-us_topic_0060118606__fig127973462014"><a name="en-us_topic_0060118606__fig127973462014"></a><a name="fig127973462014"></a><span class="figcap"><b>Figure 3 </b>Gateway egress IP address</span><br><span><img id="en-us_topic_0060118606__image123" src="en-us_image_0000001405314402.jpg"></span></div>
-</li><li id="en-us_topic_0060118606__li1158mcpsimp">Due to the symmetry of the tunnel, you also need to configure the IPsec VPN on your router or firewall in the data center.<ul id="en-us_topic_0060118606__ul1159mcpsimp"><li id="en-us_topic_0060118606__li128984226211">For the protocols supported by VPN connections, see section <a href="en-us_topic_0081947484.html">Reference Standards and Protocols</a>.</li><li id="en-us_topic_0060118606__li1160mcpsimp">For a list of supported VPN devices, see <a href="en-us_topic_0109676043.html">Which Remote VPN Devices Are Supported?</a>.</li></ul>
-</li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="en-us_topic_0035391382.html">Getting Started</a></div>
-</div>
-</div>
-
diff --git a/docs/vpn/umn/en-us_topic_0066871940.html b/docs/vpn/umn/en-us_topic_0066871940.html
deleted file mode 100644
index f6ca2d46..00000000
--- a/docs/vpn/umn/en-us_topic_0066871940.html
+++ /dev/null
@@ -1,24 +0,0 @@
-<a name="en-us_topic_0066871940"></a><a name="en-us_topic_0066871940"></a>
-
-<h1 class="topictitle1">Connecting to a VPC Through a VPN</h1>
-<div id="body1654mcpsimp"><div class="section" id="en-us_topic_0066871940__section20992223103118"><h4 class="sectiontitle">Scenarios</h4><p id="en-us_topic_0066871940__p1656mcpsimp">By default, ECSs in a VPC cannot communicate with your data center or private network. To enable communication between them, use a VPN. After a VPN is created, configure the security group and check the connectivity between the local and remote networks to ensure that the VPN is available. VPNs can be classified into the following two types:</p>
-<ul id="en-us_topic_0066871940__ul1657mcpsimp"><li id="en-us_topic_0066871940__li1658mcpsimp">Site-to-site VPN: The local side is a VPC on the cloud service platform, and the remote side is a user data center. A site-to-site VPN is a communication tunnel between a user data center and a single VPC.</li><li id="en-us_topic_0066871940__li1659mcpsimp">Hub-and-spoke VPN: The local side is a VPC on the cloud service platform, and the remote side is user data centers. A hub-and-spoke VPN is a communication tunnel between user data centers and a VPC.</li></ul>
-<p id="en-us_topic_0066871940__p1660mcpsimp">Ensure that the following requirements are met when configuring a VPN:</p>
-<ul id="en-us_topic_0066871940__ul1661mcpsimp"><li id="en-us_topic_0066871940__li1662mcpsimp">The local and remote subnets cannot overlap.</li><li id="en-us_topic_0066871940__li1663mcpsimp">Different local subnets cannot overlap.</li><li id="en-us_topic_0066871940__li1664mcpsimp">The local and remote sides use the same IKE and IPsec policies and PSK.</li><li id="en-us_topic_0066871940__li1665mcpsimp">The local and remote subnet and gateway parameters must be symmetric.</li><li id="en-us_topic_0066871940__li1666mcpsimp">The security group used by ECSs in the VPC allows traffic from and to the remote side.</li><li id="en-us_topic_0066871940__li1667mcpsimp">After a VPN is created, its status changes to <strong id="en-us_topic_0066871940__b1668mcpsimp">Normal </strong>only after the VMs or physical servers on the two sides of the VPN communicate with each other.</li></ul>
-</div>
-<div class="section" id="en-us_topic_0066871940__section18353114718314"><h4 class="sectiontitle">Prerequisites</h4><p id="en-us_topic_0066871940__p1670mcpsimp">You have created the VPC and subnet required by the VPN.</p>
-</div>
-<div class="section" id="en-us_topic_0066871940__section26691219203218"><h4 class="sectiontitle">Procedure</h4><ol id="en-us_topic_0066871940__ol1672mcpsimp"><li id="en-us_topic_0066871940__li1673mcpsimp">On the management console, select the appropriate IKE and IPsec policies to create a VPN.</li><li id="en-us_topic_0066871940__li1674mcpsimp">Check the IP address pools for the local and remote subnets.<p id="en-us_topic_0066871940___bookmark51"><a name="en-us_topic_0066871940__li1674mcpsimp"></a><a name="li1674mcpsimp"></a>In <a href="#en-us_topic_0066871940__fig5552133883219">Figure 1</a>, a VPC has two subnets: 192.168.1.0/24 and 192.168.2.0/24. On your router deployed in your physical data center, you also have two subnets: 192.168.3.0/24 and 192.168.4.0/24. You can create a VPN to enable subnets in your VPC to communicate with those in your data center.</p>
-<div class="fignone" id="en-us_topic_0066871940__fig5552133883219"><a name="en-us_topic_0066871940__fig5552133883219"></a><a name="fig5552133883219"></a><span class="figcap"><b>Figure 1 </b>IPsec VPN</span><br><span><img id="en-us_topic_0066871940__image171" src="en-us_image_0000001405171846.png"></span></div>
-<p id="en-us_topic_0066871940__p1680mcpsimp">The IP address pools for the local and remote subnets cannot overlap with each other. For example, if the local VPC has two subnets, 192.168.1.0/24 and 192.168.2.0/24, the IP address pool for the remote subnets cannot contain these two subnets.</p>
-</li><li id="en-us_topic_0066871940__li1682mcpsimp">Configure security group rules for the VPC.</li><li id="en-us_topic_0066871940__li1683mcpsimp">Check the security group of the VPC.<p id="en-us_topic_0066871940__p1684mcpsimp"><a name="en-us_topic_0066871940__li1683mcpsimp"></a><a name="li1683mcpsimp"></a>The security group must allow packets from the VPN to pass. You can run the <strong id="en-us_topic_0066871940__b1685mcpsimp">ping </strong>command to check whether the security group of the VPC allows packets from the VPN to pass.</p>
-</li><li id="en-us_topic_0066871940__li1686mcpsimp">Check the remote LAN configuration (network configuration of the remote data center).<p id="en-us_topic_0066871940__p1687mcpsimp"><a name="en-us_topic_0066871940__li1686mcpsimp"></a><a name="li1686mcpsimp"></a>A route must be configured for the remote LAN to enable VPN traffic to be forwarded to network devices on the LAN. If the VPN traffic cannot be forwarded to the network devices, check whether the remote LAN has policies configured to refuse the traffic.</p>
-</li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="en-us_topic_0114174493.html">VPN Best Practice</a></div>
-</div>
-</div>
-
diff --git a/docs/vpn/umn/en-us_topic_0081947484.html b/docs/vpn/umn/en-us_topic_0081947484.html
deleted file mode 100644
index fc845e45..00000000
--- a/docs/vpn/umn/en-us_topic_0081947484.html
+++ /dev/null
@@ -1,12 +0,0 @@
-<a name="en-us_topic_0081947484"></a><a name="en-us_topic_0081947484"></a>
-
-<h1 class="topictitle1">Reference Standards and Protocols</h1>
-<div id="body2228mcpsimp"><p id="en-us_topic_0081947484__p2229mcpsimp">The following standards and protocols are associated with the IPsec VPN:</p>
-<ul id="en-us_topic_0081947484__ul2230mcpsimp"><li id="en-us_topic_0081947484__li2231mcpsimp">RFC 4301: Security Architecture for the Internet Protocol</li><li id="en-us_topic_0081947484__li2232mcpsimp">RFC 2403: The Use of HMAC-MD5-96 within ESP and AH</li><li id="en-us_topic_0081947484__li2233mcpsimp">RFC 2409: The Internet Key Exchange (IKE)</li><li id="en-us_topic_0081947484__li2234mcpsimp">RFC 2857: The Use of HMAC-RIPEMD-160-96 within ESP and AH</li><li id="en-us_topic_0081947484__li2235mcpsimp">RFC 3566: The AES-XCBC-MAC-96 Algorithm and its use with IPsec</li><li id="en-us_topic_0081947484__li2236mcpsimp">RFC 3625: More Modular Exponential (MODP) Diffie-Hellman groups for Internet Key Exchange (IKE)</li><li id="en-us_topic_0081947484__li2237mcpsimp">RFC 3664: The AES-XCBC-PRF-128 Algorithm for the Internet Key Exchange Protocol (IKE)</li><li id="en-us_topic_0081947484__li2238mcpsimp">RFC 3706: A Traffic-Based Method of Detecting Dead Internet Key Exchange (IKE) Peers</li><li id="en-us_topic_0081947484__li2239mcpsimp">RFC 3748: Extensible Authentication Protocol (EAP)</li><li id="en-us_topic_0081947484__li2240mcpsimp">RFC 3947: Negotiation of NAT-Traversal in the IKE</li><li id="en-us_topic_0081947484__li2241mcpsimp">RFC 4109: Algorithms for Internet Key Exchange version 1 (IKEv1)</li><li id="en-us_topic_0081947484__li2242mcpsimp">RFC 3948: UDP Encapsulation of IPsec ESP Packets</li><li id="en-us_topic_0081947484__li2243mcpsimp">RFC 4305: Cryptographic Algorithm Implementation Requirements for Encapsulating Security Payload (ESP) and Authentication Header (AH)</li><li id="en-us_topic_0081947484__li2244mcpsimp">RFC 4306: Internet Key Exchange (IKEv2) Protocol</li><li id="en-us_topic_0081947484__li2245mcpsimp">RFC 4307: Cryptographic Algorithms for Use in the Internet Key Exchange Version 2 (IKEv2)</li><li id="en-us_topic_0081947484__li2246mcpsimp">RFC 4322: Opportunistic Encryption using the Internet Key Exchange (IKE)</li><li id="en-us_topic_0081947484__li2247mcpsimp">RFC 4359: The Use of RSA/SHA-1 Signatures within Encapsulating Security Payload (ESP) and Authentication Header (AH)</li><li id="en-us_topic_0081947484__li2248mcpsimp">RFC 4434: The AES-XCBC-PRF-128 Algorithm for the Internet Key Exchange Protocol (IKE)</li><li id="en-us_topic_0081947484__li2249mcpsimp">RFC 4478: Repeated Authentication in Internet Key Exchange (IKEv2)</li><li id="en-us_topic_0081947484__1.5_Region_and_AZ">RFC 5996: Internet Key Exchange Protocol Version 2 (IKEv2)</li></ul>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="en-us_topic_0035391332.html">Overview</a></div>
-</div>
-</div>
-
diff --git a/docs/vpn/umn/en-us_topic_0107396413.html b/docs/vpn/umn/en-us_topic_0107396413.html
deleted file mode 100644
index 447026b9..00000000
--- a/docs/vpn/umn/en-us_topic_0107396413.html
+++ /dev/null
@@ -1,55 +0,0 @@
-<a name="en-us_topic_0107396413"></a><a name="en-us_topic_0107396413"></a>
-
-<h1 class="topictitle1">Managing VPN Tags</h1>
-<div id="body1547mcpsimp"><div class="section" id="en-us_topic_0107396413__section1024161672513"><h4 class="sectiontitle">Application Scenarios</h4><p id="en-us_topic_0107396413__p1549mcpsimp">A VPN tag identifies a VPN. Tags can be added to VPNs to facilitate VPN identification and administration. You can add a tag to a VPN when creating the VPN. Alternatively, you can add a tag to a created VPN on the VPN details page. A maximum of ten tags can be added to each VPN.</p>
-<p id="en-us_topic_0107396413___bookmark48">A tag consists of a key and value pair. <a href="#en-us_topic_0107396413__table1555mcpsimp">Table 1</a> lists the tag key and value requirements.</p>
-
-<div class="tablenoborder"><a name="en-us_topic_0107396413__table1555mcpsimp"></a><a name="table1555mcpsimp"></a><table cellpadding="4" cellspacing="0" summary="" id="en-us_topic_0107396413__table1555mcpsimp" frame="border" border="1" rules="all"><caption><b>Table 1 </b>VPN tag key and value requirements</caption><thead align="left"><tr id="en-us_topic_0107396413__row1561mcpsimp"><th align="left" class="cellrowborder" valign="top" width="19%" id="mcps1.3.1.4.2.4.1.1"><p id="en-us_topic_0107396413__p1563mcpsimp"><strong id="en-us_topic_0107396413__b1564mcpsimp">Parameter</strong></p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="53%" id="mcps1.3.1.4.2.4.1.2"><p id="en-us_topic_0107396413__p1566mcpsimp"><strong id="en-us_topic_0107396413__b1567mcpsimp">Requirement</strong></p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="28.000000000000004%" id="mcps1.3.1.4.2.4.1.3"><p id="en-us_topic_0107396413__p1569mcpsimp"><strong id="en-us_topic_0107396413__b1570mcpsimp">Example Value</strong></p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="en-us_topic_0107396413__row1571mcpsimp"><td class="cellrowborder" valign="top" width="19%" headers="mcps1.3.1.4.2.4.1.1 "><p id="en-us_topic_0107396413__p1573mcpsimp">Key</p>
-</td>
-<td class="cellrowborder" valign="top" width="53%" headers="mcps1.3.1.4.2.4.1.2 "><ul id="en-us_topic_0107396413__ul1575mcpsimp"><li id="en-us_topic_0107396413__li1576mcpsimp">Cannot be left blank.</li><li id="en-us_topic_0107396413__li1577mcpsimp">Must be unique for the same VPN and can be the same for different VPNs.</li><li id="en-us_topic_0107396413__li1578mcpsimp">Contains a maximum of 36 characters.</li><li id="en-us_topic_0107396413__li1579mcpsimp">Can contain only the following character types:<ul id="en-us_topic_0107396413__ul1580mcpsimp"><li id="en-us_topic_0107396413__li1581mcpsimp">Uppercase letters</li><li id="en-us_topic_0107396413__li1582mcpsimp">Lowercase letters</li><li id="en-us_topic_0107396413__li1583mcpsimp">Digits</li><li id="en-us_topic_0107396413__li1584mcpsimp">Special characters, including hyphens (-) and underscores (_)</li></ul>
-</li></ul>
-</td>
-<td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.1.4.2.4.1.3 "><p id="en-us_topic_0107396413__p1586mcpsimp">vpn_key1</p>
-</td>
-</tr>
-<tr id="en-us_topic_0107396413__row1587mcpsimp"><td class="cellrowborder" valign="top" width="19%" headers="mcps1.3.1.4.2.4.1.1 "><p id="en-us_topic_0107396413__p1589mcpsimp">Value</p>
-</td>
-<td class="cellrowborder" valign="top" width="53%" headers="mcps1.3.1.4.2.4.1.2 "><ul id="en-us_topic_0107396413__ul1591mcpsimp"><li id="en-us_topic_0107396413__li1592mcpsimp">Can contain a maximum of 43 characters.</li><li id="en-us_topic_0107396413__li1593mcpsimp">Can contain only the following character types:<ul id="en-us_topic_0107396413__ul1594mcpsimp"><li id="en-us_topic_0107396413__li1595mcpsimp">Uppercase letters</li><li id="en-us_topic_0107396413__li1596mcpsimp">Lowercase letters</li><li id="en-us_topic_0107396413__li1597mcpsimp">Digits</li><li id="en-us_topic_0107396413__li1598mcpsimp">Special characters, including hyphens (-) and underscores (_)</li></ul>
-</li></ul>
-</td>
-<td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.1.4.2.4.1.3 "><p id="en-us_topic_0107396413__p1600mcpsimp">vpn-01</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-<div class="section" id="en-us_topic_0107396413__section576742216268"><h4 class="sectiontitle">Procedure</h4><p id="en-us_topic_0107396413__p5721737152612"><strong id="en-us_topic_0107396413__b1539304112267">Search for VPNs by Tag Key and Value on the Page Showing the VPN List.</strong></p>
-<ol id="en-us_topic_0107396413__ol1603mcpsimp"><li id="en-us_topic_0107396413__li1604mcpsimp">Log in to the management console.</li><li class="msonormal" id="en-us_topic_0107396413__li1605mcpsimp">Click <span><img id="en-us_topic_0107396413__image163" src="en-us_image_0000001455570241.png"></span> in the upper left corner and select a region and project.</li><li id="en-us_topic_0107396413__li1606mcpsimp">On the console homepage, under <strong id="en-us_topic_0107396413__b1607mcpsimp">Network</strong>, click <strong id="en-us_topic_0107396413__b1608mcpsimp">Virtual Private Network</strong>.</li><li id="en-us_topic_0107396413__li1280314115274">In the upper right corner of the VPN list, click <strong id="en-us_topic_0107396413__b3803171182713">Search by Tag</strong>.</li><li id="en-us_topic_0107396413__li1925720305274">In the displayed area, enter the tag key and value of the VPN you are looking for.<p id="en-us_topic_0107396413__p1728739102713"><a name="en-us_topic_0107396413__li1925720305274"></a><a name="li1925720305274"></a>Both the tag key and value must be specified.</p>
-</li><li id="en-us_topic_0107396413__li26251336202720">Click <strong id="en-us_topic_0107396413__b1616mcpsimp">+ </strong>to add the entered tag key and value.<p id="en-us_topic_0107396413__p115811186282">You can add multiple tag keys and values to refine your search results. If you add more than one tag to search for VPCs, the VPCs containing all specified tags will be displayed.</p>
-</li><li id="en-us_topic_0107396413__li16575560286">Click <strong id="en-us_topic_0107396413__b1620mcpsimp">Search</strong>.<p id="en-us_topic_0107396413__p112742722810">The system displays the VPNs you are looking for based on the entered tag keys and values.</p>
-</li></ol>
-<p id="en-us_topic_0107396413__p2676551202820"><strong id="en-us_topic_0107396413__b17803205662816">Add, Delete, Edit, and View Tags on the Tags Tab of a VPN.</strong></p>
-<ol id="en-us_topic_0107396413__ol1623mcpsimp"><li id="en-us_topic_0107396413__li1624mcpsimp">Log in to the management console.</li><li class="msonormal" id="en-us_topic_0107396413__li1625mcpsimp">Click <span><img id="en-us_topic_0107396413__image165" src="en-us_image_0000001405650458.png"></span> in the upper left corner and select a region and project.</li><li id="en-us_topic_0107396413__li1626mcpsimp">On the console homepage, under <strong id="en-us_topic_0107396413__b1627mcpsimp">Network</strong>, click <strong id="en-us_topic_0107396413__b1628mcpsimp">Virtual Private Network</strong>.</li><li id="en-us_topic_0107396413__li2537112042919">On the <strong id="en-us_topic_0107396413__b3537820202913">Virtual Private Network </strong>page, locate the VPN whose tags are to be managed and click the VPN name.<p id="en-us_topic_0107396413__p12855122813296">The page showing details about the particular VPN is displayed.</p>
-</li><li id="en-us_topic_0107396413__li164951037172914">Click the <strong id="en-us_topic_0107396413__b11495837142915">Tags </strong>tab and perform desired operations on tags.<ul id="en-us_topic_0107396413__ul2156154712918"><li id="en-us_topic_0107396413__li11156847152911">View tags.<p id="en-us_topic_0107396413__p9704145512291"><a name="en-us_topic_0107396413__li11156847152911"></a><a name="li11156847152911"></a>On the <strong id="en-us_topic_0107396413__b1635mcpsimp">Tags </strong>tab, you can view details about tags added to the current VPN, including the number of tags and the key and value of each tag.</p>
-</li><li id="en-us_topic_0107396413__li1637mcpsimp">Add a tag.<p id="en-us_topic_0107396413__p1638mcpsimp"><a name="en-us_topic_0107396413__li1637mcpsimp"></a><a name="li1637mcpsimp"></a>Click <strong id="en-us_topic_0107396413__b1639mcpsimp">Add Tag </strong>in the upper left corner. In the displayed dialog box, enter the key and value of the tag to be added, and click <strong id="en-us_topic_0107396413__b1640mcpsimp">OK</strong>.</p>
-</li><li id="en-us_topic_0107396413__li1641mcpsimp">Edit a tag.<p id="en-us_topic_0107396413__p1642mcpsimp"><a name="en-us_topic_0107396413__li1641mcpsimp"></a><a name="li1641mcpsimp"></a>Locate the row that contains the tag to be edited and click <strong id="en-us_topic_0107396413__b1643mcpsimp">Edit </strong>in the <strong id="en-us_topic_0107396413__b1644mcpsimp">Operation </strong>column. In the <strong id="en-us_topic_0107396413__b1645mcpsimp">Edit Tag </strong>dialog box, change the tag value and click <strong id="en-us_topic_0107396413__b1646mcpsimp">OK</strong>.</p>
-</li><li id="en-us_topic_0107396413__li1647mcpsimp">Delete a tag.<p id="en-us_topic_0107396413__p1648mcpsimp"><a name="en-us_topic_0107396413__li1647mcpsimp"></a><a name="li1647mcpsimp"></a>Locate the row that contains the tag to be deleted, and click <strong id="en-us_topic_0107396413__b1649mcpsimp">Delete </strong>in the <strong id="en-us_topic_0107396413__b1650mcpsimp">Operation </strong>column. In the displayed <strong id="en-us_topic_0107396413__b1651mcpsimp">Delete Tag </strong>dialog box, click <strong id="en-us_topic_0107396413__b1652mcpsimp">Yes</strong>.</p>
-</li></ul>
-</li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="en-us_topic_0035391378.html">Management</a></div>
-</div>
-</div>
-
diff --git a/docs/vpn/umn/en-us_topic_0109312453.html b/docs/vpn/umn/en-us_topic_0109312453.html
deleted file mode 100644
index 481ffea3..00000000
--- a/docs/vpn/umn/en-us_topic_0109312453.html
+++ /dev/null
@@ -1,54 +0,0 @@
-<a name="en-us_topic_0109312453"></a><a name="en-us_topic_0109312453"></a>
-
-<h1 class="topictitle1">How Do I Configure a Remote Device for a VPN?</h1>
-<div id="body1727mcpsimp"><p id="en-us_topic_0109312453__p1728mcpsimp">Due to the symmetry of the tunnel, the VPN parameters configured on the cloud must be the same as those configured in your own data center. If they are different, a VPN cannot be established.</p>
-<p id="en-us_topic_0109312453__p1729mcpsimp">To set up a VPN, you also need to configure the IPsec VPN on the router or firewall in your own data center. The configuration method may vary depending on your network device in use. For details, see the configuration guide of your network device.</p>
-<p id="en-us_topic_0109312453__p1730mcpsimp">This section describes how to configure the IPsec VPN on a Huawei USG6600 series V100R001C30SPC300 firewall for your reference.</p>
-<p id="en-us_topic_0109312453__p1731mcpsimp">For example, the subnets of the data center are 192.168.3.0/24 and 192.168.4.0/24, the subnets of the VPC are 192.168.1.0/24 and 192.168.2.0/24, and the public IP address of the IPsec tunnel egress in the VPC is <em id="en-us_topic_0109312453__i1732mcpsimp">XXX.XXX.XX.XX</em>, which can be obtained from the local gateway parameters of the IPsec VPN in the VPC.</p>
-<div class="section" id="en-us_topic_0109312453__section177911911144015"><h4 class="sectiontitle">Procedure</h4><ol id="en-us_topic_0109312453__ol1734mcpsimp"><li id="en-us_topic_0109312453__li1735mcpsimp">Log in to the CLI of the firewall.</li><li id="en-us_topic_0109312453__li1736mcpsimp">Check firewall version information.<pre class="screen" id="en-us_topic_0109312453__screen5806132164115">display version 17:20:502017/03/09
-Huawei Versatile Security Platform Software
-Software Version: USG6600 V100R001C30SPC300 (VRP (R) Software, Version 5.30)</pre>
-</li><li id="en-us_topic_0109312453__li988315388407">Create an access control list (ACL) and bind it to the target VPN instance.<pre class="screen" id="en-us_topic_0109312453__screen3435974111">acl number 3065 vpn-instance vpn64
-rule 1 permit ip source 192.168.3.0 0.0.0.255 destination 192.168.1.0 0.0.0.255
-rule 2 permit ip source 192.168.3.0 0.0.0.255 destination 192.168.2.0 0.0.0.255
-rule 3 permit ip source 192.168.4.0 0.0.0.255 destination 192.168.1.0 0.0.0.255
-rule 4 permit ip source 192.168.4.0 0.0.0.255 destination 192.168.2.0 0.0.0.255 
-q</pre>
-</li><li id="en-us_topic_0109312453__li1748mcpsimp">Create an IKE proposal.<pre class="screen" id="en-us_topic_0109312453__screen11510153644214">ike proposal 64 
-dh group5
-authentication-algorithm sha1 
-integrity-algorithm hmac-sha2-256 
-sa duration 3600
-q</pre>
-</li><li id="en-us_topic_0109312453__li107446234318">Create an IKE peer and reference the created IKE proposal. The peer IP address is 93.188.242.110.<pre class="screen" id="en-us_topic_0109312453__screen143297349437">ike peer vpnikepeer_64
-pre-shared-key ******** (<strong id="en-us_topic_0109312453__b1635013416445">******** </strong>specifies the pre-shared key.)
-ike-proposal 64
-undo version 2
-remote-address vpn-instance vpn64 93.188.242.110 
-sa binding vpn-instance vpn64
-q</pre>
-</li><li id="en-us_topic_0109312453__li1761mcpsimp">Create an IPsec protocol.<pre class="screen" id="en-us_topic_0109312453__screen0441740174413">ipsec proposal ipsecpro64
-encapsulation-mode tunnel
-esp authentication-algorithm sha1 
-q</pre>
-</li><li id="en-us_topic_0109312453__li16410142834417">Create an IPsec policy and reference the IKE policy and IPsec proposal.<pre class="screen" id="en-us_topic_0109312453__screen2741131584518">ipsec policy vpnipsec64 1 isakmp 
-security acl 3065
-pfs dh-group5
-ike-peer vpnikepeer_64 
-proposal ipsecpro64 
-local-address xx.xx.xx.xx 
-q</pre>
-</li><li id="en-us_topic_0109312453__li1723619503458">Apply the IPsec policy to the subinterface.<pre class="screen" id="en-us_topic_0109312453__screen1676513954617">interface GigabitEthernet0/0/2.64 
-ipsec policy vpnipsec64
-q</pre>
-</li><li id="en-us_topic_0109312453__li12158113214468">Test the connectivity.<p id="en-us_topic_0109312453__p94317305010"><a name="en-us_topic_0109312453__li12158113214468"></a><a name="li12158113214468"></a>After you perform the preceding operations, you can test the connectivity between your ECSs in the cloud and the hosts in your data center. For details, see the following figure.</p>
-<p id="en-us_topic_0109312453__p2126174984614"><span><img id="en-us_topic_0109312453__image184" src="en-us_image_0000001405655248.png"></span></p>
-</li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="en-us_topic_0035391365.html">FAQs</a></div>
-</div>
-</div>
-
diff --git a/docs/vpn/umn/en-us_topic_0109676043.html b/docs/vpn/umn/en-us_topic_0109676043.html
deleted file mode 100644
index 0aaf8011..00000000
--- a/docs/vpn/umn/en-us_topic_0109676043.html
+++ /dev/null
@@ -1,34 +0,0 @@
-<a name="en-us_topic_0109676043"></a><a name="en-us_topic_0109676043"></a>
-
-<h1 class="topictitle1">Which Remote VPN Devices Are Supported?</h1>
-<div id="body1777mcpsimp"><p id="en-us_topic_0109676043___bookmark68">Most devices that meet IPsec VPN standard and reference protocol requirements can be used as the remote VPN devices, for example, Cisco ASA firewalls, Huawei USG6<em id="en-us_topic_0109676043__i1778mcpsimp">xxxx </em>series firewalls, USG9<em id="en-us_topic_0109676043__i1779mcpsimp">xxxx </em>series firewalls, Hillstone firewalls, and Cisco ISR routers. <a href="#en-us_topic_0109676043__table1787mcpsimp">Table 1</a> lists the supported Huawei USG6<em id="en-us_topic_0109676043__i1783mcpsimp">xxxx </em>and USG9<em id="en-us_topic_0109676043__i1784mcpsimp">xxxx </em>firewalls.</p>
-
-<div class="tablenoborder"><a name="en-us_topic_0109676043__table1787mcpsimp"></a><a name="table1787mcpsimp"></a><table cellpadding="4" cellspacing="0" summary="" id="en-us_topic_0109676043__table1787mcpsimp" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Huawei VPN devices</caption><thead align="left"><tr id="en-us_topic_0109676043__row1792mcpsimp"><th align="left" class="cellrowborder" valign="top" width="28.999999999999996%" id="mcps1.3.2.2.3.1.1"><p id="en-us_topic_0109676043__p1794mcpsimp"><strong id="en-us_topic_0109676043__b1795mcpsimp">Supported Remote VPN Device</strong></p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="71%" id="mcps1.3.2.2.3.1.2"><p id="en-us_topic_0109676043__p1797mcpsimp"><strong id="en-us_topic_0109676043__b1798mcpsimp">Description</strong></p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="en-us_topic_0109676043__row1799mcpsimp"><td class="cellrowborder" valign="top" width="28.999999999999996%" headers="mcps1.3.2.2.3.1.1 "><p id="en-us_topic_0109676043__p1801mcpsimp">Huawei USG6000 series</p>
-</td>
-<td class="cellrowborder" valign="top" width="71%" headers="mcps1.3.2.2.3.1.2 "><p id="en-us_topic_0109676043__p1803mcpsimp">USG6320/6310/6510-SJJ</p>
-<p id="en-us_topic_0109676043__p21549380503">USG6306/6308/6330/6350/6360/6370/6380/6390/6507/6530/6550/6570:2048</p>
-<p id="en-us_topic_0109676043__p89876410504">USG6620/6630/6650/6660/6670/6680</p>
-</td>
-</tr>
-<tr id="en-us_topic_0109676043__row1817mcpsimp"><td class="cellrowborder" valign="top" width="28.999999999999996%" headers="mcps1.3.2.2.3.1.1 "><p id="en-us_topic_0109676043__p1819mcpsimp">Huawei USG9000 series</p>
-</td>
-<td class="cellrowborder" valign="top" width="71%" headers="mcps1.3.2.2.3.1.2 "><p id="en-us_topic_0109676043__p1821mcpsimp">USG9520/USG9560/USG9580</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-<p id="en-us_topic_0109676043__5.12_What_Can_I_Do_If_the_VPN_Fails_or_t">Other devices that meet the requirements in the reference protocols described in section <a href="en-us_topic_0081947484.html">Reference Standards and Protocols</a> can also be deployed. However, some devices may fail to add because of inconsistent protocol implementation methods of these devices. If the connection setup fails, rectify the fault by following the instructions provided in section <a href="vpn_faq_0055.html">What Do I Do If VPN Setup Fails?</a>  or contact customer service.</p>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="en-us_topic_0035391365.html">FAQs</a></div>
-</div>
-</div>
-
diff --git a/docs/vpn/umn/en-us_topic_0114174493.html b/docs/vpn/umn/en-us_topic_0114174493.html
deleted file mode 100644
index 8d6df130..00000000
--- a/docs/vpn/umn/en-us_topic_0114174493.html
+++ /dev/null
@@ -1,11 +0,0 @@
-<a name="en-us_topic_0114174493"></a><a name="en-us_topic_0114174493"></a>
-
-<h1 class="topictitle1">VPN Best Practice</h1>
-<div id="body1653mcpsimp"></div>
-<div>
-<ul class="ullinks">
-<li class="ulchildlink"><strong><a href="en-us_topic_0066871940.html">Connecting to a VPC Through a VPN</a></strong><br>
-</li>
-</ul>
-</div>
-
diff --git a/docs/vpn/umn/en-us_topic_0122970066.html b/docs/vpn/umn/en-us_topic_0122970066.html
deleted file mode 100644
index 48f8840a..00000000
--- a/docs/vpn/umn/en-us_topic_0122970066.html
+++ /dev/null
@@ -1,183 +0,0 @@
-<a name="en-us_topic_0122970066"></a><a name="en-us_topic_0122970066"></a>
-
-<h1 class="topictitle1">(Optional) Create a VPC</h1>
-<div id="body106mcpsimp"><div class="section" id="en-us_topic_0122970066__section954143734011"><h4 class="sectiontitle">Scenarios</h4><p id="en-us_topic_0122970066__p108mcpsimp">A VPC provides an isolated virtual network for ECSs. You can configure and manage the network as required.</p>
-<p id="en-us_topic_0122970066__p109mcpsimp">Create a VPC by following the procedure provided in this section. Then, create subnets, security groups, and VPNs, and assign EIPs by following the procedure provided in subsequent sections based on your actual network requirements.</p>
-</div>
-<div class="section" id="en-us_topic_0122970066__section18348195411405"><h4 class="sectiontitle">Procedure</h4><ol id="en-us_topic_0122970066__ol111mcpsimp"><li id="en-us_topic_0122970066__li112mcpsimp">Log in to the management console.</li><li class="msonormal" id="en-us_topic_0122970066__li113mcpsimp">Click <span><img id="en-us_topic_0122970066__image106" src="en-us_image_0000001455829029.png"></span> in the upper left corner and select the desired region and project.</li><li id="en-us_topic_0122970066__li114mcpsimp">On the console homepage, under <strong id="en-us_topic_0122970066__b115mcpsimp">Network</strong>, click <strong id="en-us_topic_0122970066__b116mcpsimp">Virtual Private Cloud</strong>.</li><li id="en-us_topic_0122970066__li117mcpsimp">Click <strong id="en-us_topic_0122970066__b118mcpsimp">Create VPC</strong>.</li><li id="en-us_topic_0122970066__li119mcpsimp">On the <strong id="en-us_topic_0122970066__b120mcpsimp">Create VPC </strong>page, set parameters as prompted.<p id="en-us_topic_0122970066__p121mcpsimp">During VPC creation, a default subnet will be created and you can also click <strong id="en-us_topic_0122970066__b123mcpsimp">Add Subnet </strong>to create more subnets for the VPC.</p>
-
-<div class="tablenoborder"><a name="en-us_topic_0122970066__table125mcpsimp"></a><a name="table125mcpsimp"></a><table cellpadding="4" cellspacing="0" summary="" id="en-us_topic_0122970066__table125mcpsimp" frame="border" border="1" rules="all"><caption><b>Table 1 </b>VPC parameter description</caption><thead align="left"><tr id="en-us_topic_0122970066__row132mcpsimp"><th align="left" class="cellrowborder" valign="top" width="16.001600160016004%" id="mcps1.3.2.2.5.3.2.5.1.1"><p id="en-us_topic_0122970066__p134mcpsimp"><strong id="en-us_topic_0122970066__b135mcpsimp">Catego ry</strong></p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="12.711271127112711%" id="mcps1.3.2.2.5.3.2.5.1.2"><p id="en-us_topic_0122970066__p137mcpsimp"><strong id="en-us_topic_0122970066__b138mcpsimp">Parameter</strong></p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="37.62376237623762%" id="mcps1.3.2.2.5.3.2.5.1.3"><p id="en-us_topic_0122970066__p140mcpsimp"><strong id="en-us_topic_0122970066__b141mcpsimp">Description</strong></p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="33.663366336633665%" id="mcps1.3.2.2.5.3.2.5.1.4"><p id="en-us_topic_0122970066__p143mcpsimp"><strong id="en-us_topic_0122970066__b144mcpsimp">Example Value</strong></p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="en-us_topic_0122970066__row145mcpsimp"><td class="cellrowborder" valign="top" width="16.001600160016004%" headers="mcps1.3.2.2.5.3.2.5.1.1 "><p id="en-us_topic_0122970066__p147mcpsimp">Basic Information</p>
-</td>
-<td class="cellrowborder" valign="top" width="12.711271127112711%" headers="mcps1.3.2.2.5.3.2.5.1.2 "><p id="en-us_topic_0122970066__p149mcpsimp">Region</p>
-</td>
-<td class="cellrowborder" valign="top" width="37.62376237623762%" headers="mcps1.3.2.2.5.3.2.5.1.3 "><p id="en-us_topic_0122970066__p151mcpsimp">Specifies the desired region. Regions are geographic areas isolated from each other. Resources are region-specific and cannot be used across regions through internal network connections. For low network latency and quick resource access, select the nearest region.</p>
-</td>
-<td class="cellrowborder" valign="top" width="33.663366336633665%" headers="mcps1.3.2.2.5.3.2.5.1.4 "><p id="en-us_topic_0122970066__p153mcpsimp">eu-de</p>
-</td>
-</tr>
-<tr id="en-us_topic_0122970066__row154mcpsimp"><td class="cellrowborder" valign="top" width="16.001600160016004%" headers="mcps1.3.2.2.5.3.2.5.1.1 "><p id="en-us_topic_0122970066__p156mcpsimp">Basic Information</p>
-</td>
-<td class="cellrowborder" valign="top" width="12.711271127112711%" headers="mcps1.3.2.2.5.3.2.5.1.2 "><p id="en-us_topic_0122970066__p158mcpsimp">Name</p>
-</td>
-<td class="cellrowborder" valign="top" width="37.62376237623762%" headers="mcps1.3.2.2.5.3.2.5.1.3 "><p id="en-us_topic_0122970066__p160mcpsimp">Specifies the VPC name.</p>
-</td>
-<td class="cellrowborder" valign="top" width="33.663366336633665%" headers="mcps1.3.2.2.5.3.2.5.1.4 "><p id="en-us_topic_0122970066__p162mcpsimp">VPC-001</p>
-</td>
-</tr>
-<tr id="en-us_topic_0122970066__row163mcpsimp"><td class="cellrowborder" valign="top" width="16.001600160016004%" headers="mcps1.3.2.2.5.3.2.5.1.1 "><p id="en-us_topic_0122970066__p165mcpsimp">Basic Information</p>
-</td>
-<td class="cellrowborder" valign="top" width="12.711271127112711%" headers="mcps1.3.2.2.5.3.2.5.1.2 "><p id="en-us_topic_0122970066__p167mcpsimp">CIDR Block</p>
-</td>
-<td class="cellrowborder" valign="top" width="37.62376237623762%" headers="mcps1.3.2.2.5.3.2.5.1.3 "><p id="en-us_topic_0122970066__p169mcpsimp">Specifies the CIDR block for the VPC. The CIDR block of a subnet can be the same as the CIDR block for the VPC (for a single subnet in the VPC) or a subset (for multiple subnets in the VPC).</p>
-<p id="en-us_topic_0122970066__p222mcpsimp">The following CIDR blocks are supported:</p>
-<p id="en-us_topic_0122970066__p234mcpsimp">10.0.0.0 – 10.255.255.255</p>
-<p id="en-us_topic_0122970066__p240mcpsimp">172.16.0.0 –172.31.255.255</p>
-<p id="en-us_topic_0122970066__p252mcpsimp">192.168.0.0 –192.168.255.255</p>
-</td>
-<td class="cellrowborder" valign="top" width="33.663366336633665%" headers="mcps1.3.2.2.5.3.2.5.1.4 "><p id="en-us_topic_0122970066__p171mcpsimp">192.168.0.0/16</p>
-</td>
-</tr>
-<tr id="en-us_topic_0122970066__row260mcpsimp"><td class="cellrowborder" valign="top" width="16.001600160016004%" headers="mcps1.3.2.2.5.3.2.5.1.1 "><p id="en-us_topic_0122970066__p262mcpsimp">Basic Information</p>
-</td>
-<td class="cellrowborder" valign="top" width="12.711271127112711%" headers="mcps1.3.2.2.5.3.2.5.1.2 "><p id="en-us_topic_0122970066__p264mcpsimp">Tag</p>
-</td>
-<td class="cellrowborder" valign="top" width="37.62376237623762%" headers="mcps1.3.2.2.5.3.2.5.1.3 "><p id="en-us_topic_0122970066__p266mcpsimp">Specifies the VPC tag, which consists of a key and value pair. You can add a maximum of ten tags to each VPC.</p>
-<p id="en-us_topic_0122970066__p275mcpsimp">The tag key and value must meet the requirements listed in <a href="#en-us_topic_0122970066__table385mcpsimp">Table 2</a>.</p>
-</td>
-<td class="cellrowborder" valign="top" width="33.663366336633665%" headers="mcps1.3.2.2.5.3.2.5.1.4 "><ul id="en-us_topic_0122970066__ul268mcpsimp"><li id="en-us_topic_0122970066__li269mcpsimp">Key: vpc_key1</li><li id="en-us_topic_0122970066__li270mcpsimp">Value: vpc-01</li></ul>
-</td>
-</tr>
-<tr id="en-us_topic_0122970066__row14285172581513"><td class="cellrowborder" valign="top" width="16.001600160016004%" headers="mcps1.3.2.2.5.3.2.5.1.1 "><p id="en-us_topic_0122970066__p02131798164">Subnet Settings</p>
-</td>
-<td class="cellrowborder" valign="top" width="12.711271127112711%" headers="mcps1.3.2.2.5.3.2.5.1.2 "><p id="en-us_topic_0122970066__p132131391165">Name</p>
-</td>
-<td class="cellrowborder" valign="top" width="37.62376237623762%" headers="mcps1.3.2.2.5.3.2.5.1.3 "><p id="en-us_topic_0122970066__p172139914166">Specifies the subnet name.</p>
-</td>
-<td class="cellrowborder" valign="top" width="33.663366336633665%" headers="mcps1.3.2.2.5.3.2.5.1.4 "><p id="en-us_topic_0122970066__p112131993161">Subnet</p>
-</td>
-</tr>
-<tr id="en-us_topic_0122970066__row810120275150"><td class="cellrowborder" valign="top" width="16.001600160016004%" headers="mcps1.3.2.2.5.3.2.5.1.1 "><p id="en-us_topic_0122970066__p12101112711156">Subnet Settings</p>
-</td>
-<td class="cellrowborder" valign="top" width="12.711271127112711%" headers="mcps1.3.2.2.5.3.2.5.1.2 "><p id="en-us_topic_0122970066__p7101102712156">CIDR Block</p>
-</td>
-<td class="cellrowborder" valign="top" width="37.62376237623762%" headers="mcps1.3.2.2.5.3.2.5.1.3 "><p id="en-us_topic_0122970066__p15177136111718">Specifies the CIDR block for the subnet. This value</p>
-<p id="en-us_topic_0122970066__p11570185016172">must be within the VPC CIDR range.</p>
-</td>
-<td class="cellrowborder" valign="top" width="33.663366336633665%" headers="mcps1.3.2.2.5.3.2.5.1.4 "><p id="en-us_topic_0122970066__p15686546185">192.168.0.0/24</p>
-</td>
-</tr>
-<tr id="en-us_topic_0122970066__row1320752951510"><td class="cellrowborder" valign="top" width="16.001600160016004%" headers="mcps1.3.2.2.5.3.2.5.1.1 "><p id="en-us_topic_0122970066__p15401184541819">Subnet Settings</p>
-</td>
-<td class="cellrowborder" valign="top" width="12.711271127112711%" headers="mcps1.3.2.2.5.3.2.5.1.2 "><p id="en-us_topic_0122970066__p840118459183">Gateway</p>
-</td>
-<td class="cellrowborder" valign="top" width="37.62376237623762%" headers="mcps1.3.2.2.5.3.2.5.1.3 "><p id="en-us_topic_0122970066__p64012453182">Specifies the gateway address of the subnet.</p>
-</td>
-<td class="cellrowborder" valign="top" width="33.663366336633665%" headers="mcps1.3.2.2.5.3.2.5.1.4 "><p id="en-us_topic_0122970066__p104012454181">192.168.0.1</p>
-</td>
-</tr>
-<tr id="en-us_topic_0122970066__row1692163110157"><td class="cellrowborder" valign="top" width="16.001600160016004%" headers="mcps1.3.2.2.5.3.2.5.1.1 "><p id="en-us_topic_0122970066__p55321524196">Subnet Settings</p>
-</td>
-<td class="cellrowborder" valign="top" width="12.711271127112711%" headers="mcps1.3.2.2.5.3.2.5.1.2 "><p id="en-us_topic_0122970066__p185321023199">DNS Server Address</p>
-</td>
-<td class="cellrowborder" valign="top" width="37.62376237623762%" headers="mcps1.3.2.2.5.3.2.5.1.3 "><p id="en-us_topic_0122970066__p7532522192">The external DNS server address is used by default. If you need to change the DNS server address, ensure that the configured DNS server address is available.</p>
-</td>
-<td class="cellrowborder" valign="top" width="33.663366336633665%" headers="mcps1.3.2.2.5.3.2.5.1.4 "><p id="en-us_topic_0122970066__p13532327194">192.168.1.0</p>
-</td>
-</tr>
-<tr id="en-us_topic_0122970066__row114751523111917"><td class="cellrowborder" valign="top" width="16.001600160016004%" headers="mcps1.3.2.2.5.3.2.5.1.1 "><p id="en-us_topic_0122970066__p144755237192">Subnet Settings</p>
-</td>
-<td class="cellrowborder" valign="top" width="12.711271127112711%" headers="mcps1.3.2.2.5.3.2.5.1.2 "><p id="en-us_topic_0122970066__p1178914475191">NTP Server Address</p>
-</td>
-<td class="cellrowborder" valign="top" width="37.62376237623762%" headers="mcps1.3.2.2.5.3.2.5.1.3 "><p id="en-us_topic_0122970066__p10792953141918">Specifies the NTP server IP address. A maximum of four IP addresses can be configured. Multiple IP addresses must be separated using commas (,).</p>
-</td>
-<td class="cellrowborder" valign="top" width="33.663366336633665%" headers="mcps1.3.2.2.5.3.2.5.1.4 "><p id="en-us_topic_0122970066__p147562317194">192.168.2.1</p>
-</td>
-</tr>
-<tr id="en-us_topic_0122970066__row10800112591919"><td class="cellrowborder" valign="top" width="16.001600160016004%" headers="mcps1.3.2.2.5.3.2.5.1.1 "><p id="en-us_topic_0122970066__p1180022517190">Subnet Settings</p>
-</td>
-<td class="cellrowborder" valign="top" width="12.711271127112711%" headers="mcps1.3.2.2.5.3.2.5.1.2 "><p id="en-us_topic_0122970066__p1321151214208">Tag</p>
-</td>
-<td class="cellrowborder" valign="top" width="37.62376237623762%" headers="mcps1.3.2.2.5.3.2.5.1.3 "><p id="en-us_topic_0122970066__p14541715102019">Specifies the subnet tag, which consists of a key and value pair. You can add a maximum of ten tags to each subnet.</p>
-<p id="en-us_topic_0122970066__p363631102014">The tag key and value must meet the requirements listed in <a href="#en-us_topic_0122970066__table432mcpsimp">Table 3</a>.</p>
-</td>
-<td class="cellrowborder" valign="top" width="33.663366336633665%" headers="mcps1.3.2.2.5.3.2.5.1.4 "><ul id="en-us_topic_0122970066__ul1110192132019"><li id="en-us_topic_0122970066__li5110821192019">Key: subnet_key1</li><li id="en-us_topic_0122970066__li191101721172010">Value: subnet-01</li></ul>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-
-<div class="tablenoborder"><a name="en-us_topic_0122970066__table385mcpsimp"></a><a name="table385mcpsimp"></a><table cellpadding="4" cellspacing="0" summary="" id="en-us_topic_0122970066__table385mcpsimp" frame="border" border="1" rules="all"><caption><b>Table 2 </b>VPC tag key and value requirements</caption><thead align="left"><tr id="en-us_topic_0122970066__row391mcpsimp"><th align="left" class="cellrowborder" valign="top" width="18%" id="mcps1.3.2.2.5.4.2.4.1.1"><p id="en-us_topic_0122970066__p393mcpsimp"><strong id="en-us_topic_0122970066__b394mcpsimp">Parameter</strong></p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="65%" id="mcps1.3.2.2.5.4.2.4.1.2"><p id="en-us_topic_0122970066__p396mcpsimp"><strong id="en-us_topic_0122970066__b397mcpsimp">Requirements</strong></p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="17%" id="mcps1.3.2.2.5.4.2.4.1.3"><p id="en-us_topic_0122970066__p399mcpsimp"><strong id="en-us_topic_0122970066__b400mcpsimp">Example Value</strong></p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="en-us_topic_0122970066__row401mcpsimp"><td class="cellrowborder" valign="top" width="18%" headers="mcps1.3.2.2.5.4.2.4.1.1 "><p id="en-us_topic_0122970066__p403mcpsimp">Key</p>
-</td>
-<td class="cellrowborder" valign="top" width="65%" headers="mcps1.3.2.2.5.4.2.4.1.2 "><ul id="en-us_topic_0122970066__ul405mcpsimp"><li id="en-us_topic_0122970066__li406mcpsimp">Cannot be left blank.</li><li id="en-us_topic_0122970066__li407mcpsimp">Must be unique for the same VPC and can be the same for different VPCs.</li><li id="en-us_topic_0122970066__li408mcpsimp">Can contain a maximum of 36 characters.</li><li id="en-us_topic_0122970066__li409mcpsimp">Can contain only the following character types:<ul id="en-us_topic_0122970066__ul410mcpsimp"><li id="en-us_topic_0122970066__li411mcpsimp">Uppercase letters</li><li id="en-us_topic_0122970066__li412mcpsimp">Lowercase letters</li><li id="en-us_topic_0122970066__li413mcpsimp">Digits</li><li id="en-us_topic_0122970066__li414mcpsimp">Special characters, including hyphens (-) and underscores (_)</li></ul>
-</li></ul>
-</td>
-<td class="cellrowborder" valign="top" width="17%" headers="mcps1.3.2.2.5.4.2.4.1.3 "><p id="en-us_topic_0122970066__p416mcpsimp">vpc_key1</p>
-</td>
-</tr>
-<tr id="en-us_topic_0122970066__row417mcpsimp"><td class="cellrowborder" valign="top" width="18%" headers="mcps1.3.2.2.5.4.2.4.1.1 "><p id="en-us_topic_0122970066__p419mcpsimp">Value</p>
-</td>
-<td class="cellrowborder" valign="top" width="65%" headers="mcps1.3.2.2.5.4.2.4.1.2 "><ul id="en-us_topic_0122970066__ul421mcpsimp"><li id="en-us_topic_0122970066__li422mcpsimp">Can contain a maximum of 43 characters.</li><li id="en-us_topic_0122970066__li423mcpsimp">Can contain only the following character types:<ul id="en-us_topic_0122970066__ul424mcpsimp"><li id="en-us_topic_0122970066__li425mcpsimp">Uppercase letters</li><li id="en-us_topic_0122970066__li426mcpsimp">Lowercase letters</li><li id="en-us_topic_0122970066__li427mcpsimp">Digits</li><li id="en-us_topic_0122970066__li428mcpsimp">Special characters, including hyphens (-) and underscores (_)</li></ul>
-</li></ul>
-</td>
-<td class="cellrowborder" valign="top" width="17%" headers="mcps1.3.2.2.5.4.2.4.1.3 "><p id="en-us_topic_0122970066__p430mcpsimp">vpc-01</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-
-<div class="tablenoborder"><a name="en-us_topic_0122970066__table432mcpsimp"></a><a name="table432mcpsimp"></a><table cellpadding="4" cellspacing="0" summary="" id="en-us_topic_0122970066__table432mcpsimp" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Subnet tag key and value requirements</caption><thead align="left"><tr id="en-us_topic_0122970066__row438mcpsimp"><th align="left" class="cellrowborder" valign="top" width="19%" id="mcps1.3.2.2.5.5.2.4.1.1"><p id="en-us_topic_0122970066__p440mcpsimp"><strong id="en-us_topic_0122970066__b441mcpsimp">Parameter</strong></p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="53%" id="mcps1.3.2.2.5.5.2.4.1.2"><p id="en-us_topic_0122970066__p443mcpsimp"><strong id="en-us_topic_0122970066__b444mcpsimp">Requirements</strong></p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="28.000000000000004%" id="mcps1.3.2.2.5.5.2.4.1.3"><p id="en-us_topic_0122970066__p446mcpsimp"><strong id="en-us_topic_0122970066__b447mcpsimp">Example Value</strong></p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="en-us_topic_0122970066__row448mcpsimp"><td class="cellrowborder" valign="top" width="19%" headers="mcps1.3.2.2.5.5.2.4.1.1 "><p id="en-us_topic_0122970066__p450mcpsimp">Key</p>
-</td>
-<td class="cellrowborder" valign="top" width="53%" headers="mcps1.3.2.2.5.5.2.4.1.2 "><ul id="en-us_topic_0122970066__ul452mcpsimp"><li id="en-us_topic_0122970066__li453mcpsimp">Cannot be left blank.</li><li id="en-us_topic_0122970066__li454mcpsimp">Must be unique for each subnet.</li><li id="en-us_topic_0122970066__li455mcpsimp">Can contain a maximum of 36 characters.</li><li id="en-us_topic_0122970066__li456mcpsimp">Can contain only the following character types:<ul id="en-us_topic_0122970066__ul457mcpsimp"><li id="en-us_topic_0122970066__li458mcpsimp">Uppercase letters</li><li id="en-us_topic_0122970066__li459mcpsimp">Lowercase letters</li><li id="en-us_topic_0122970066__li460mcpsimp">Digits</li><li id="en-us_topic_0122970066__li461mcpsimp">Special characters, including hyphens (-) and underscores (_)</li></ul>
-</li></ul>
-</td>
-<td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.2.2.5.5.2.4.1.3 "><p id="en-us_topic_0122970066__p463mcpsimp">subnet_key1</p>
-</td>
-</tr>
-<tr id="en-us_topic_0122970066__row1671841212211"><td class="cellrowborder" valign="top" width="19%" headers="mcps1.3.2.2.5.5.2.4.1.1 "><p id="en-us_topic_0122970066__p1871814128223">Value</p>
-</td>
-<td class="cellrowborder" valign="top" width="53%" headers="mcps1.3.2.2.5.5.2.4.1.2 "><ul id="en-us_topic_0122970066__ul1053817233228"><li id="en-us_topic_0122970066__li55381923162216">Can contain a maximum of 43 characters.</li><li id="en-us_topic_0122970066__li10538142382212">Can contain only the following character types:<ul id="en-us_topic_0122970066__ul15538192315227"><li id="en-us_topic_0122970066__li25381723162218">Uppercase letters</li><li id="en-us_topic_0122970066__li85381323112218">Lowercase letters</li><li id="en-us_topic_0122970066__li185384233226">Digits</li><li id="en-us_topic_0122970066__li353842315228">Special characters, including hyphens (-) and underscores (_)</li></ul>
-</li></ul>
-</td>
-<td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.2.2.5.5.2.4.1.3 "><p id="en-us_topic_0122970066__p14357132816220">subnet-01</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</li><li id="en-us_topic_0122970066__li495mcpsimp">The external DNS server address is used by default. If you need to change the DNS server address, select <strong id="en-us_topic_0122970066__b496mcpsimp">Custom </strong>for <strong id="en-us_topic_0122970066__b497mcpsimp">Advanced Settings </strong>and configure the DNS server addresses. You must ensure that the configured DNS server addresses are available.</li><li id="en-us_topic_0122970066__2.2_Optional_Create_a_Subnet_for_the_V">Click <strong id="en-us_topic_0122970066__b498mcpsimp">Create Now</strong>.</li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="en-us_topic_0035391382.html">Getting Started</a></div>
-</div>
-</div>
-
diff --git a/docs/vpn/umn/en-us_topic_0122970067.html b/docs/vpn/umn/en-us_topic_0122970067.html
deleted file mode 100644
index e2b5766d..00000000
--- a/docs/vpn/umn/en-us_topic_0122970067.html
+++ /dev/null
@@ -1,104 +0,0 @@
-<a name="en-us_topic_0122970067"></a><a name="en-us_topic_0122970067"></a>
-
-<h1 class="topictitle1">(Optional) Create a Subnet for the VPC</h1>
-<div id="body499mcpsimp"><div class="section" id="en-us_topic_0122970067__section1128961134313"><h4 class="sectiontitle">Scenarios</h4><p id="en-us_topic_0122970067__p501mcpsimp">You can add subnets during VPC creation. If required, you can also create subnets for an existing VPC.</p>
-<p id="en-us_topic_0122970067__p502mcpsimp">The created subnet is configured with DHCP by default. After an ECS using this VPC starts, the ECS automatically obtains an IP address using DHCP.</p>
-</div>
-<div class="section" id="en-us_topic_0122970067__section1070572011439"><h4 class="sectiontitle">Procedure</h4><ol id="en-us_topic_0122970067__ol504mcpsimp"><li id="en-us_topic_0122970067__li505mcpsimp">Log in to the management console.</li><li class="msonormal" id="en-us_topic_0122970067__li506mcpsimp">Click <span><img id="en-us_topic_0122970067__image110" src="en-us_image_0000001455909921.png"></span> in the upper left corner and select the desired region and project.</li><li id="en-us_topic_0122970067__li507mcpsimp">On the console homepage, under <strong id="en-us_topic_0122970067__b508mcpsimp">Network</strong>, click <strong id="en-us_topic_0122970067__b509mcpsimp">Virtual Private Cloud</strong>.</li><li id="en-us_topic_0122970067__li510mcpsimp">In the navigation pane on the left, click <strong id="en-us_topic_0122970067__b511mcpsimp">Virtual Private Cloud</strong>.</li><li id="en-us_topic_0122970067__li512mcpsimp">On the <strong id="en-us_topic_0122970067__b513mcpsimp">Virtual Private Cloud </strong>page, locate the VPC for which a subnet is to be created and click the VPC name.</li><li id="en-us_topic_0122970067__li514mcpsimp">On the displayed <strong id="en-us_topic_0122970067__b515mcpsimp">Subnets </strong>tab, click <strong id="en-us_topic_0122970067__b516mcpsimp">Create Subnet</strong>.</li><li id="en-us_topic_0122970067__li517mcpsimp">In the <strong id="en-us_topic_0122970067__b518mcpsimp">Create Subnet </strong>area, set parameters as prompted.<div class="fignone" id="en-us_topic_0122970067__fig52751558182314"><span class="figcap"><b>Figure 1 </b>Create Subnet</span><br><span><img id="en-us_topic_0122970067__image111" src="en-us_image_0000001455829553.jpg"></span></div>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="en-us_topic_0122970067__table192116135254" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Parameter description</caption><thead align="left"><tr id="en-us_topic_0122970067__row4211313112519"><th align="left" class="cellrowborder" valign="top" width="19%" id="mcps1.3.2.2.7.3.2.4.1.1"><p id="en-us_topic_0122970067__p2211113142518"><strong id="en-us_topic_0122970067__b6211191392519">Parameter</strong></p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="56.00000000000001%" id="mcps1.3.2.2.7.3.2.4.1.2"><p id="en-us_topic_0122970067__p321111302511"><strong id="en-us_topic_0122970067__b10211213132517">Description</strong></p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="25%" id="mcps1.3.2.2.7.3.2.4.1.3"><p id="en-us_topic_0122970067__p17211151362510"><strong id="en-us_topic_0122970067__b1211413152510">Example Value</strong></p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="en-us_topic_0122970067__row1321111312516"><td class="cellrowborder" valign="top" width="19%" headers="mcps1.3.2.2.7.3.2.4.1.1 "><p id="en-us_topic_0122970067__p721121310255">Name</p>
-</td>
-<td class="cellrowborder" valign="top" width="56.00000000000001%" headers="mcps1.3.2.2.7.3.2.4.1.2 "><p id="en-us_topic_0122970067__p321112135259">Specifies the subnet name.</p>
-</td>
-<td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.2.2.7.3.2.4.1.3 "><p id="en-us_topic_0122970067__p22118137256">Subnet</p>
-</td>
-</tr>
-<tr id="en-us_topic_0122970067__row7211131317254"><td class="cellrowborder" valign="top" width="19%" headers="mcps1.3.2.2.7.3.2.4.1.1 "><p id="en-us_topic_0122970067__p1921141302516">CIDR Block</p>
-</td>
-<td class="cellrowborder" valign="top" width="56.00000000000001%" headers="mcps1.3.2.2.7.3.2.4.1.2 "><p id="en-us_topic_0122970067__p1821115134258">Specifies the CIDR block for the subnet. This value must be within the VPC CIDR range.</p>
-</td>
-<td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.2.2.7.3.2.4.1.3 "><p id="en-us_topic_0122970067__p9211313202512">192.168.0.0/24</p>
-</td>
-</tr>
-<tr id="en-us_topic_0122970067__row1721171310258"><td class="cellrowborder" valign="top" width="19%" headers="mcps1.3.2.2.7.3.2.4.1.1 "><p id="en-us_topic_0122970067__p72114133253">Gateway</p>
-</td>
-<td class="cellrowborder" valign="top" width="56.00000000000001%" headers="mcps1.3.2.2.7.3.2.4.1.2 "><p id="en-us_topic_0122970067__p9211613172511">Specifies the gateway address of the subnet.</p>
-</td>
-<td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.2.2.7.3.2.4.1.3 "><p id="en-us_topic_0122970067__p17211613182517">192.168.0.1</p>
-</td>
-</tr>
-<tr id="en-us_topic_0122970067__row221161312516"><td class="cellrowborder" valign="top" width="19%" headers="mcps1.3.2.2.7.3.2.4.1.1 "><p id="en-us_topic_0122970067__p3212613142512">NTP Server Address</p>
-</td>
-<td class="cellrowborder" valign="top" width="56.00000000000001%" headers="mcps1.3.2.2.7.3.2.4.1.2 "><p id="en-us_topic_0122970067__p3212131342511">Specifies the NTP server IP address. A maximum of four IP addresses can be configured. Multiple IP addresses must be separated using commas (,).</p>
-</td>
-<td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.2.2.7.3.2.4.1.3 "><p id="en-us_topic_0122970067__p19212101362517">192.168.2.1</p>
-</td>
-</tr>
-<tr id="en-us_topic_0122970067__row16212191311251"><td class="cellrowborder" valign="top" width="19%" headers="mcps1.3.2.2.7.3.2.4.1.1 "><p id="en-us_topic_0122970067__p321251352517">Tag</p>
-</td>
-<td class="cellrowborder" valign="top" width="56.00000000000001%" headers="mcps1.3.2.2.7.3.2.4.1.2 "><p id="en-us_topic_0122970067__p22124135259">Specifies the subnet tag, which consists of a key and value pair. You can add a maximum of ten tags to each subnet.</p>
-<p id="en-us_topic_0122970067__p42121513162516">The tag key and value must meet the requirements listed in <a href="#en-us_topic_0122970067__table0144625182519">Table 2</a>.</p>
-</td>
-<td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.2.2.7.3.2.4.1.3 "><ul id="en-us_topic_0122970067__ul17212813172510"><li id="en-us_topic_0122970067__li1821210135253">Key: subnet_key1</li><li id="en-us_topic_0122970067__li1721231332517">Value:<p id="en-us_topic_0122970067__p142125135259"><a name="en-us_topic_0122970067__li1721231332517"></a><a name="li1721231332517"></a>subnet-01</p>
-</li></ul>
-</td>
-</tr>
-<tr id="en-us_topic_0122970067__row9212413142512"><td class="cellrowborder" valign="top" width="19%" headers="mcps1.3.2.2.7.3.2.4.1.1 "><p id="en-us_topic_0122970067__p15212131322515">DNS Server Address</p>
-</td>
-<td class="cellrowborder" valign="top" width="56.00000000000001%" headers="mcps1.3.2.2.7.3.2.4.1.2 "><p id="en-us_topic_0122970067__p6212191392513">The external DNS server address is used by default. If you need to change the DNS server address, ensure that the configured DNS server address is available.</p>
-</td>
-<td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.2.2.7.3.2.4.1.3 "><p id="en-us_topic_0122970067__p1221241313253">-</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-
-<div class="tablenoborder"><a name="en-us_topic_0122970067__table0144625182519"></a><a name="table0144625182519"></a><table cellpadding="4" cellspacing="0" summary="" id="en-us_topic_0122970067__table0144625182519" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Subnet tag key and value requirements</caption><thead align="left"><tr id="en-us_topic_0122970067__row131441525162520"><th align="left" class="cellrowborder" valign="top" width="19%" id="mcps1.3.2.2.7.4.2.4.1.1"><p id="en-us_topic_0122970067__p4144172522518"><strong id="en-us_topic_0122970067__b3144112592520">Parameter</strong></p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="53%" id="mcps1.3.2.2.7.4.2.4.1.2"><p id="en-us_topic_0122970067__p1414442517254"><strong id="en-us_topic_0122970067__b17144192514254">Requirements</strong></p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="28.000000000000004%" id="mcps1.3.2.2.7.4.2.4.1.3"><p id="en-us_topic_0122970067__p101448257252"><strong id="en-us_topic_0122970067__b15144125112515">Example Value</strong></p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="en-us_topic_0122970067__row101440253253"><td class="cellrowborder" valign="top" width="19%" headers="mcps1.3.2.2.7.4.2.4.1.1 "><p id="en-us_topic_0122970067__p114452522516">Key</p>
-</td>
-<td class="cellrowborder" valign="top" width="53%" headers="mcps1.3.2.2.7.4.2.4.1.2 "><ul id="en-us_topic_0122970067__ul12144202515257"><li id="en-us_topic_0122970067__li1214414257259">Cannot be left blank.</li><li id="en-us_topic_0122970067__li314416257257">Must be unique for each subnet.</li><li id="en-us_topic_0122970067__li19144142522517">Can contain a maximum of 36 characters.</li><li id="en-us_topic_0122970067__li121441325112513">Can contain only the following character types:<ul id="en-us_topic_0122970067__ul1514413259255"><li id="en-us_topic_0122970067__li114410255252">Uppercase letters</li><li id="en-us_topic_0122970067__li0144172592520">Lowercase letters</li><li id="en-us_topic_0122970067__li314422513252">Digits</li><li id="en-us_topic_0122970067__li81441625202515">Special characters, including hyphens (-) and underscores (_)</li></ul>
-</li></ul>
-</td>
-<td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.2.2.7.4.2.4.1.3 "><p id="en-us_topic_0122970067__p9145825192519">subnet_key1</p>
-</td>
-</tr>
-<tr id="en-us_topic_0122970067__row71451025162518"><td class="cellrowborder" valign="top" width="19%" headers="mcps1.3.2.2.7.4.2.4.1.1 "><p id="en-us_topic_0122970067__p0145132518252">Value</p>
-</td>
-<td class="cellrowborder" valign="top" width="53%" headers="mcps1.3.2.2.7.4.2.4.1.2 "><ul id="en-us_topic_0122970067__ul19145152592512"><li id="en-us_topic_0122970067__li11451225192516">Can contain a maximum of 43 characters.</li><li id="en-us_topic_0122970067__li414510256254">Can contain only the following character types:<ul id="en-us_topic_0122970067__ul814515257252"><li id="en-us_topic_0122970067__li81455252259">Uppercase letters</li><li id="en-us_topic_0122970067__li16145182511253">Lowercase letters</li><li id="en-us_topic_0122970067__li11145112510258">Digits</li><li id="en-us_topic_0122970067__li21454256259">Special characters, including hyphens (-) and underscores (_)</li></ul>
-</li></ul>
-</td>
-<td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.2.2.7.4.2.4.1.3 "><p id="en-us_topic_0122970067__p71451325172519">subnet-01</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</li><li id="en-us_topic_0122970067__li178291735112713">The external DNS server address is used by default. If you need to change the DNS server address, select <strong id="en-us_topic_0122970067__b1482993516272">Custom </strong>for <strong id="en-us_topic_0122970067__b3829113511271">Advanced Settings </strong>and configure the DNS server addresses. You must ensure that the configured DNS server addresses are available.</li><li id="en-us_topic_0122970067__li950324016279">Click <strong id="en-us_topic_0122970067__b640mcpsimp">OK</strong>.</li></ol>
-</div>
-<div class="section" id="en-us_topic_0122970067__section1135734516433"><h4 class="sectiontitle">Precautions</h4><p id="en-us_topic_0122970067__p642mcpsimp">After a subnet is created, five IP addresses in the subnet will be reserved and cannot be used. For example, in a subnet with CIDR block 192.168.0.0/24, the following IP addresses are reserved:</p>
-<ul id="en-us_topic_0122970067__ul643mcpsimp"><li id="en-us_topic_0122970067__li644mcpsimp">192.168.0.0: Network address.</li><li id="en-us_topic_0122970067__li645mcpsimp">192.168.0.1: Gateway address.</li><li id="en-us_topic_0122970067__li646mcpsimp">192.168.0.253: Reserved for the system interface. This IP address is used by the VPC for external communication.</li><li id="en-us_topic_0122970067__li647mcpsimp">192.168.0.254: DHCP service address.</li><li id="en-us_topic_0122970067__li648mcpsimp">192.168.0.255: Network broadcast address.</li></ul>
-<p id="en-us_topic_0122970067__p649mcpsimp">If you set <strong id="en-us_topic_0122970067__b650mcpsimp">Advanced Settings </strong>to <strong id="en-us_topic_0122970067__b651mcpsimp">Custom </strong>during subnet creation, the reserved IP addresses may be different from the preceding default ones. The system will reserve five IP addresses based on your subnet settings.</p>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="en-us_topic_0035391382.html">Getting Started</a></div>
-</div>
-</div>
-
diff --git a/docs/vpn/umn/en-us_topic_0142368417.html b/docs/vpn/umn/en-us_topic_0142368417.html
deleted file mode 100644
index bce4e86f..00000000
--- a/docs/vpn/umn/en-us_topic_0142368417.html
+++ /dev/null
@@ -1,12 +0,0 @@
-<a name="en-us_topic_0142368417"></a><a name="en-us_topic_0142368417"></a>
-
-<h1 class="topictitle1">What Can I Do If the VPN Fails or the Network Speed of the VPN Is Slow?</h1>
-<div id="body1831mcpsimp"><p id="en-us_topic_0142368417__p1832mcpsimp">You can perform the following steps to handle the issues:</p>
-<ol id="en-us_topic_0142368417__ol1833mcpsimp"><li id="en-us_topic_0142368417__li1834mcpsimp">Check the ECS specifications. Rate limiting is not performed for the VPN ingress on the cloud, so the issue may be caused by the ECS specifications.</li><li id="en-us_topic_0142368417__li1835mcpsimp">Rate limiting has been configured for the VPN egress on the cloud. Check whether your bandwidth has reached or exceeded the maximum limit allowed.</li><li id="en-us_topic_0142368417__li1836mcpsimp">Check your local network to see whether the network speed is slow.</li><li id="en-us_topic_0142368417__5.13_Are_SSL_VPNs_Supported_">Check whether packets sent between the cloud and the customer data center have been lost.</li></ol>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="en-us_topic_0035391365.html">FAQs</a></div>
-</div>
-</div>
-
diff --git a/docs/vpn/umn/en-us_topic_0142373840.html b/docs/vpn/umn/en-us_topic_0142373840.html
deleted file mode 100644
index 90ee73a0..00000000
--- a/docs/vpn/umn/en-us_topic_0142373840.html
+++ /dev/null
@@ -1,11 +0,0 @@
-<a name="en-us_topic_0142373840"></a><a name="en-us_topic_0142373840"></a>
-
-<h1 class="topictitle1">Are SSL VPNs Supported?</h1>
-<div id="body1837mcpsimp"><p id="en-us_topic_0142373840__p1838mcpsimp">Currently, the VPN service does not support the SSL VPNs.</p>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="en-us_topic_0035391365.html">FAQs</a></div>
-</div>
-</div>
-
diff --git a/docs/vpn/umn/en-us_topic_0160974607.html b/docs/vpn/umn/en-us_topic_0160974607.html
deleted file mode 100644
index 629362b6..00000000
--- a/docs/vpn/umn/en-us_topic_0160974607.html
+++ /dev/null
@@ -1,41 +0,0 @@
-<a name="en-us_topic_0160974607"></a><a name="en-us_topic_0160974607"></a>
-
-<h1 class="topictitle1">IPsec VPN</h1>
-<div id="body2157mcpsimp"><p id="en-us_topic_0160974607__p2158mcpsimp">The Internet Protocol Security (IPsec) VPN is an encrypted tunneling technology that uses encrypted security services to establish confidential and secure communication tunnels between different networks.</p>
-<p id="en-us_topic_0160974607__p2159mcpsimp">In <a href="#en-us_topic_0160974607__fig12169342501">Figure 1</a>, a VPC has two subnets: 192.168.1.0/24 and 192.168.2.0/24. On your router deployed in your physical data center, you also have two subnets:192.168.3.0/24 and 192.168.4.0/24. You can use VPN to enable subnets in your VPC to communicate with those in your data center.</p>
-<div class="fignone" id="en-us_topic_0160974607__fig12169342501"><a name="en-us_topic_0160974607__fig12169342501"></a><a name="fig12169342501"></a><span class="figcap"><b>Figure 1 </b>IPsec VPN</span><br><span><img id="en-us_topic_0160974607__image203" src="en-us_image_0000001404528466.png"></span></div>
-<p id="en-us_topic_0160974607__p2165mcpsimp">Currently, the site-to-site VPN and hub-spoke VPN are supported. You need to set up VPNs in both your data center and the VPC to establish the VPN connection.</p>
-<p id="en-us_topic_0160974607___bookmark5">You must ensure that the VPN in your VPC and that in your data center use the same IKE and IPsec policy configurations. Before creating a VPN, familiarize yourself with the protocols described in <a href="#en-us_topic_0160974607__table2171mcpsimp">Table 1</a> and ensure that your device meets the requirements and configuration constraints of the involved protocols.</p>
-
-<div class="tablenoborder"><a name="en-us_topic_0160974607__table2171mcpsimp"></a><a name="table2171mcpsimp"></a><table cellpadding="4" cellspacing="0" summary="" id="en-us_topic_0160974607__table2171mcpsimp" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Involved protocols</caption><thead align="left"><tr id="en-us_topic_0160974607__row2177mcpsimp"><th align="left" class="cellrowborder" valign="top" width="16%" id="mcps1.3.6.2.4.1.1"><p id="en-us_topic_0160974607__p2179mcpsimp"><strong id="en-us_topic_0160974607__b2180mcpsimp">Protocol</strong></p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="49%" id="mcps1.3.6.2.4.1.2"><p id="en-us_topic_0160974607__p2182mcpsimp"><strong id="en-us_topic_0160974607__b2183mcpsimp">Description</strong></p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="35%" id="mcps1.3.6.2.4.1.3"><p id="en-us_topic_0160974607__p2185mcpsimp"><strong id="en-us_topic_0160974607__b2186mcpsimp">Constraint</strong></p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="en-us_topic_0160974607__row2187mcpsimp"><td class="cellrowborder" valign="top" width="16%" headers="mcps1.3.6.2.4.1.1 "><p id="en-us_topic_0160974607__p2189mcpsimp">RFC 2409</p>
-</td>
-<td class="cellrowborder" valign="top" width="49%" headers="mcps1.3.6.2.4.1.2 "><p id="en-us_topic_0160974607__p2191mcpsimp">Defines the IKE protocol, which negotiates and verifies key information to safeguard VPNs.</p>
-</td>
-<td class="cellrowborder" valign="top" width="35%" headers="mcps1.3.6.2.4.1.3 "><ul id="en-us_topic_0160974607__ul2193mcpsimp"><li id="en-us_topic_0160974607__li12186105217525">Use the pre-shared key (PSK) to reach an IKE peer agreement.</li><li id="en-us_topic_0160974607__li2194mcpsimp">Use the main mode for negotiation.</li></ul>
-</td>
-</tr>
-<tr id="en-us_topic_0160974607__row2201mcpsimp"><td class="cellrowborder" valign="top" width="16%" headers="mcps1.3.6.2.4.1.1 "><p id="en-us_topic_0160974607__p2203mcpsimp">RFC 4301</p>
-</td>
-<td class="cellrowborder" valign="top" width="49%" headers="mcps1.3.6.2.4.1.2 "><p id="en-us_topic_0160974607__p2205mcpsimp">Defines the IPsec architecture, the security services that IPsec offers, and the collaboration between components.</p>
-</td>
-<td class="cellrowborder" valign="top" width="35%" headers="mcps1.3.6.2.4.1.3 "><p id="en-us_topic_0160974607__p2207mcpsimp">Use the IPsec tunnel to set up a VPN connection.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="en-us_topic_0035391332.html">Overview</a></div>
-</div>
-</div>
-
diff --git a/docs/vpn/umn/en-us_topic_0185622695.html b/docs/vpn/umn/en-us_topic_0185622695.html
deleted file mode 100644
index 3578a999..00000000
--- a/docs/vpn/umn/en-us_topic_0185622695.html
+++ /dev/null
@@ -1,22 +0,0 @@
-<a name="en-us_topic_0185622695"></a><a name="en-us_topic_0185622695"></a>
-
-<h1 class="topictitle1">Region and AZ</h1>
-<div id="body2250mcpsimp"><div class="section" id="en-us_topic_0185622695__section15950134416377"><h4 class="sectiontitle">Concept</h4><p id="en-us_topic_0185622695__p2252mcpsimp">A region and availability zone (AZ) identify the location of a data center. You can create resources in a specific region and AZ.</p>
-<ul id="en-us_topic_0185622695__ul2253mcpsimp"><li id="en-us_topic_0185622695__li2254mcpsimp">A region is a physical data center, which is completely isolated to improve fault tolerance and stability. The region that is selected during resource creation cannot be changed after the resource is created.</li><li id="en-us_topic_0185622695__li2255mcpsimp">An AZ is a physical location where resources use independent power supplies and networks. A region contains one or more AZs that are physically isolated but interconnected through internal networks. Because AZs are isolated from each other, any fault that occurs in an AZ will not affect other AZs.</li></ul>
-<p id="en-us_topic_0185622695__p2256mcpsimp"><a href="#en-us_topic_0185622695__fig2495181716511">Figure 1</a> shows the relationship between regions and AZs.</p>
-<div class="fignone" id="en-us_topic_0185622695__fig2495181716511"><a name="en-us_topic_0185622695__fig2495181716511"></a><a name="fig2495181716511"></a><span class="figcap"><b>Figure 1 </b>Regions and AZs</span><br><span><img id="en-us_topic_0185622695__image214" src="en-us_image_0000001405148570.png"></span></div>
-</div>
-<div class="section" id="en-us_topic_0185622695__section1168319315388"><h4 class="sectiontitle">Selecting a Region</h4><p id="en-us_topic_0185622695__p2263mcpsimp">Select a region closest to your target users for low network latency and quick access.</p>
-</div>
-<div class="section" id="en-us_topic_0185622695__section61221647123811"><h4 class="sectiontitle">Selecting an AZ</h4><p id="en-us_topic_0185622695__p2265mcpsimp">When deploying resources, consider your applications' requirements on disaster recovery (DR) and network latency.</p>
-<ul id="en-us_topic_0185622695__ul2266mcpsimp"><li id="en-us_topic_0185622695__li2267mcpsimp">For high DR capability, deploy resources in different AZs within the same region.</li><li id="en-us_topic_0185622695__li2268mcpsimp">For low network latency, deploy resources in the same AZ.</li></ul>
-</div>
-<div class="section" id="en-us_topic_0185622695__section1859071510391"><h4 class="sectiontitle">Regions and Endpoints</h4><p id="en-us_topic_0185622695__p102mcpsimp">Before you use an API to call resources, specify its region and endpoint. For more details, see <a href="https://docs.otc.t-systems.com/endpoint/index.html" target="_blank" rel="noopener noreferrer"><strong id="en-us_topic_0185622695__b104mcpsimp">Regions and Endpoints</strong></a>.</p>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="en-us_topic_0035391332.html">Overview</a></div>
-</div>
-</div>
-
diff --git a/docs/vpn/umn/en-us_image_0184026531.png b/docs/vpn/umn/figure/en-us_image_0000001542015014.png
similarity index 100%
rename from docs/vpn/umn/en-us_image_0184026531.png
rename to docs/vpn/umn/figure/en-us_image_0000001542015014.png
diff --git a/docs/vpn/umn/en-us_image_0107432228.png b/docs/vpn/umn/figure/en-us_image_0000001542015046.png
similarity index 100%
rename from docs/vpn/umn/en-us_image_0107432228.png
rename to docs/vpn/umn/figure/en-us_image_0000001542015046.png
diff --git a/docs/vpn/umn/figure/en-us_image_0000001542174442.png b/docs/vpn/umn/figure/en-us_image_0000001542174442.png
new file mode 100644
index 00000000..0e4547df
Binary files /dev/null and b/docs/vpn/umn/figure/en-us_image_0000001542174442.png differ
diff --git a/docs/vpn/umn/figure/en-us_image_0000001542174462.png b/docs/vpn/umn/figure/en-us_image_0000001542174462.png
new file mode 100644
index 00000000..49d6b08f
Binary files /dev/null and b/docs/vpn/umn/figure/en-us_image_0000001542174462.png differ
diff --git a/docs/vpn/umn/en-us_image_0152926732.png b/docs/vpn/umn/figure/en-us_image_0000001542334190.png
similarity index 100%
rename from docs/vpn/umn/en-us_image_0152926732.png
rename to docs/vpn/umn/figure/en-us_image_0000001542334190.png
diff --git a/docs/vpn/umn/figure/en-us_image_0000001542334206.png b/docs/vpn/umn/figure/en-us_image_0000001542334206.png
new file mode 100644
index 00000000..0e4547df
Binary files /dev/null and b/docs/vpn/umn/figure/en-us_image_0000001542334206.png differ
diff --git a/docs/vpn/umn/figure/en-us_image_0000001542334214.png b/docs/vpn/umn/figure/en-us_image_0000001542334214.png
new file mode 100644
index 00000000..b63464b8
Binary files /dev/null and b/docs/vpn/umn/figure/en-us_image_0000001542334214.png differ
diff --git a/docs/vpn/umn/en-us_image_0118696493.png b/docs/vpn/umn/figure/en-us_image_0000001542334238.png
similarity index 100%
rename from docs/vpn/umn/en-us_image_0118696493.png
rename to docs/vpn/umn/figure/en-us_image_0000001542334238.png
diff --git a/docs/vpn/umn/figure/en-us_image_0000001542493866.jpg b/docs/vpn/umn/figure/en-us_image_0000001542493866.jpg
new file mode 100644
index 00000000..13fa7894
Binary files /dev/null and b/docs/vpn/umn/figure/en-us_image_0000001542493866.jpg differ
diff --git a/docs/vpn/umn/figure/en-us_image_0000001542494126.png b/docs/vpn/umn/figure/en-us_image_0000001542494126.png
new file mode 100644
index 00000000..0e4547df
Binary files /dev/null and b/docs/vpn/umn/figure/en-us_image_0000001542494126.png differ
diff --git a/docs/vpn/umn/figure/en-us_image_0000001542494178.png b/docs/vpn/umn/figure/en-us_image_0000001542494178.png
new file mode 100644
index 00000000..8236d3cf
Binary files /dev/null and b/docs/vpn/umn/figure/en-us_image_0000001542494178.png differ
diff --git a/docs/vpn/umn/figure/en-us_image_0000001592573989.png b/docs/vpn/umn/figure/en-us_image_0000001592573989.png
new file mode 100644
index 00000000..2ce24f4a
Binary files /dev/null and b/docs/vpn/umn/figure/en-us_image_0000001592573989.png differ
diff --git a/docs/vpn/umn/en-us_image_0152727234.png b/docs/vpn/umn/figure/en-us_image_0000001592574041.png
similarity index 100%
rename from docs/vpn/umn/en-us_image_0152727234.png
rename to docs/vpn/umn/figure/en-us_image_0000001592574041.png
diff --git a/docs/vpn/umn/figure/en-us_image_0000001592694309.png b/docs/vpn/umn/figure/en-us_image_0000001592694309.png
new file mode 100644
index 00000000..9b9dc88c
Binary files /dev/null and b/docs/vpn/umn/figure/en-us_image_0000001592694309.png differ
diff --git a/docs/vpn/umn/figure/en-us_image_0000001592773953.png b/docs/vpn/umn/figure/en-us_image_0000001592773953.png
new file mode 100644
index 00000000..0e4547df
Binary files /dev/null and b/docs/vpn/umn/figure/en-us_image_0000001592773953.png differ
diff --git a/docs/vpn/umn/en-us_image_0118696764.png b/docs/vpn/umn/figure/en-us_image_0000001592773969.png
similarity index 100%
rename from docs/vpn/umn/en-us_image_0118696764.png
rename to docs/vpn/umn/figure/en-us_image_0000001592773969.png
diff --git a/docs/vpn/umn/figure/en-us_image_0000001592774029.png b/docs/vpn/umn/figure/en-us_image_0000001592774029.png
new file mode 100644
index 00000000..80a6105d
Binary files /dev/null and b/docs/vpn/umn/figure/en-us_image_0000001592774029.png differ
diff --git a/docs/vpn/umn/en-us_image_0118696766.png b/docs/vpn/umn/figure/en-us_image_0000001592879209.png
similarity index 100%
rename from docs/vpn/umn/en-us_image_0118696766.png
rename to docs/vpn/umn/figure/en-us_image_0000001592879209.png
diff --git a/docs/vpn/umn/en-us_image_0123091916.png b/docs/vpn/umn/figure/en-us_image_0000001592879265.png
similarity index 100%
rename from docs/vpn/umn/en-us_image_0123091916.png
rename to docs/vpn/umn/figure/en-us_image_0000001592879265.png
diff --git a/docs/vpn/umn/figure/en-us_image_0000001592879273.png b/docs/vpn/umn/figure/en-us_image_0000001592879273.png
new file mode 100644
index 00000000..ec23c730
Binary files /dev/null and b/docs/vpn/umn/figure/en-us_image_0000001592879273.png differ
diff --git a/docs/vpn/umn/figure/en-us_image_0000001592879305.png b/docs/vpn/umn/figure/en-us_image_0000001592879305.png
new file mode 100644
index 00000000..f0916b28
Binary files /dev/null and b/docs/vpn/umn/figure/en-us_image_0000001592879305.png differ
diff --git a/docs/vpn/umn/figure/en-us_image_0000001594572920.png b/docs/vpn/umn/figure/en-us_image_0000001594572920.png
new file mode 100644
index 00000000..f67072b4
Binary files /dev/null and b/docs/vpn/umn/figure/en-us_image_0000001594572920.png differ
diff --git a/docs/vpn/umn/figure/en-us_image_0000001609202724.png b/docs/vpn/umn/figure/en-us_image_0000001609202724.png
new file mode 100644
index 00000000..7d1d2343
Binary files /dev/null and b/docs/vpn/umn/figure/en-us_image_0000001609202724.png differ
diff --git a/docs/vpn/umn/en-us_image_0141273034.png b/docs/vpn/umn/figure/en-us_image_0000001628070572.png
similarity index 76%
rename from docs/vpn/umn/en-us_image_0141273034.png
rename to docs/vpn/umn/figure/en-us_image_0000001628070572.png
index 1909444d..57e8d5b5 100644
Binary files a/docs/vpn/umn/en-us_image_0141273034.png and b/docs/vpn/umn/figure/en-us_image_0000001628070572.png differ
diff --git a/docs/vpn/umn/figure/en-us_image_0000001651244201.png b/docs/vpn/umn/figure/en-us_image_0000001651244201.png
new file mode 100644
index 00000000..b60f433a
Binary files /dev/null and b/docs/vpn/umn/figure/en-us_image_0000001651244201.png differ
diff --git a/docs/vpn/umn/figure/en-us_image_0000001841927836.png b/docs/vpn/umn/figure/en-us_image_0000001841927836.png
new file mode 100644
index 00000000..5fbecc8f
Binary files /dev/null and b/docs/vpn/umn/figure/en-us_image_0000001841927836.png differ
diff --git a/docs/vpn/umn/figure/en-us_image_0000001841932888.png b/docs/vpn/umn/figure/en-us_image_0000001841932888.png
new file mode 100644
index 00000000..7ee442db
Binary files /dev/null and b/docs/vpn/umn/figure/en-us_image_0000001841932888.png differ
diff --git a/docs/vpn/umn/figure/en-us_image_0000001842101730.png b/docs/vpn/umn/figure/en-us_image_0000001842101730.png
new file mode 100644
index 00000000..af51b0d1
Binary files /dev/null and b/docs/vpn/umn/figure/en-us_image_0000001842101730.png differ
diff --git a/docs/vpn/umn/figure/en-us_image_0000001867256192.png b/docs/vpn/umn/figure/en-us_image_0000001867256192.png
new file mode 100644
index 00000000..888039ca
Binary files /dev/null and b/docs/vpn/umn/figure/en-us_image_0000001867256192.png differ
diff --git a/docs/vpn/umn/figure/en-us_image_0000001877145402.png b/docs/vpn/umn/figure/en-us_image_0000001877145402.png
new file mode 100644
index 00000000..036e0302
Binary files /dev/null and b/docs/vpn/umn/figure/en-us_image_0000001877145402.png differ
diff --git a/docs/vpn/umn/figure/en-us_image_0000001878270362.png b/docs/vpn/umn/figure/en-us_image_0000001878270362.png
new file mode 100644
index 00000000..692e4cd6
Binary files /dev/null and b/docs/vpn/umn/figure/en-us_image_0000001878270362.png differ
diff --git a/docs/vpn/umn/figure/en-us_image_0000001878346114.png b/docs/vpn/umn/figure/en-us_image_0000001878346114.png
new file mode 100644
index 00000000..95b64e8a
Binary files /dev/null and b/docs/vpn/umn/figure/en-us_image_0000001878346114.png differ
diff --git a/docs/vpn/umn/figure/en-us_image_0000001883151862.png b/docs/vpn/umn/figure/en-us_image_0000001883151862.png
new file mode 100644
index 00000000..813cb808
Binary files /dev/null and b/docs/vpn/umn/figure/en-us_image_0000001883151862.png differ
diff --git a/docs/vpn/umn/figure/en-us_image_0000001883323518.png b/docs/vpn/umn/figure/en-us_image_0000001883323518.png
new file mode 100644
index 00000000..97fcfe07
Binary files /dev/null and b/docs/vpn/umn/figure/en-us_image_0000001883323518.png differ
diff --git a/docs/vpn/umn/figure/en-us_image_0000001888091881.png b/docs/vpn/umn/figure/en-us_image_0000001888091881.png
new file mode 100644
index 00000000..10339bd1
Binary files /dev/null and b/docs/vpn/umn/figure/en-us_image_0000001888091881.png differ
diff --git a/docs/vpn/umn/figure/en-us_image_0000001888093441.png b/docs/vpn/umn/figure/en-us_image_0000001888093441.png
new file mode 100644
index 00000000..f6474c87
Binary files /dev/null and b/docs/vpn/umn/figure/en-us_image_0000001888093441.png differ
diff --git a/docs/vpn/umn/figure/en-us_image_0000001888117061.png b/docs/vpn/umn/figure/en-us_image_0000001888117061.png
new file mode 100644
index 00000000..2c98cae5
Binary files /dev/null and b/docs/vpn/umn/figure/en-us_image_0000001888117061.png differ
diff --git a/docs/vpn/umn/figure/en-us_image_0000001888252021.png b/docs/vpn/umn/figure/en-us_image_0000001888252021.png
new file mode 100644
index 00000000..3e503f51
Binary files /dev/null and b/docs/vpn/umn/figure/en-us_image_0000001888252021.png differ
diff --git a/docs/vpn/umn/figure/en-us_image_0000001903603225.png b/docs/vpn/umn/figure/en-us_image_0000001903603225.png
new file mode 100644
index 00000000..6c15d401
Binary files /dev/null and b/docs/vpn/umn/figure/en-us_image_0000001903603225.png differ
diff --git a/docs/vpn/umn/figure/en-us_image_0000001911324937.png b/docs/vpn/umn/figure/en-us_image_0000001911324937.png
new file mode 100644
index 00000000..7b53acd5
Binary files /dev/null and b/docs/vpn/umn/figure/en-us_image_0000001911324937.png differ
diff --git a/docs/vpn/umn/figure/en-us_image_0000001923096425.png b/docs/vpn/umn/figure/en-us_image_0000001923096425.png
new file mode 100644
index 00000000..09eb3a1d
Binary files /dev/null and b/docs/vpn/umn/figure/en-us_image_0000001923096425.png differ
diff --git a/docs/vpn/umn/figure/en-us_image_0000001924344277.png b/docs/vpn/umn/figure/en-us_image_0000001924344277.png
new file mode 100644
index 00000000..692e4cd6
Binary files /dev/null and b/docs/vpn/umn/figure/en-us_image_0000001924344277.png differ
diff --git a/docs/vpn/umn/figure/en-us_image_0000001929162353.png b/docs/vpn/umn/figure/en-us_image_0000001929162353.png
new file mode 100644
index 00000000..f9876318
Binary files /dev/null and b/docs/vpn/umn/figure/en-us_image_0000001929162353.png differ
diff --git a/docs/vpn/umn/figure/en-us_image_0000001960951864.png b/docs/vpn/umn/figure/en-us_image_0000001960951864.png
new file mode 100644
index 00000000..afe1ac0f
Binary files /dev/null and b/docs/vpn/umn/figure/en-us_image_0000001960951864.png differ
diff --git a/docs/vpn/umn/figure/en-us_image_0000001970660305.png b/docs/vpn/umn/figure/en-us_image_0000001970660305.png
new file mode 100644
index 00000000..3d3c59d8
Binary files /dev/null and b/docs/vpn/umn/figure/en-us_image_0000001970660305.png differ
diff --git a/docs/vpn/umn/figure/en-us_image_0000001972602221.png b/docs/vpn/umn/figure/en-us_image_0000001972602221.png
new file mode 100644
index 00000000..3936a646
Binary files /dev/null and b/docs/vpn/umn/figure/en-us_image_0000001972602221.png differ
diff --git a/docs/vpn/umn/figure/en-us_image_0000001972697961.png b/docs/vpn/umn/figure/en-us_image_0000001972697961.png
new file mode 100644
index 00000000..b018a7ab
Binary files /dev/null and b/docs/vpn/umn/figure/en-us_image_0000001972697961.png differ
diff --git a/docs/vpn/umn/figure/en-us_image_0000001972699077.png b/docs/vpn/umn/figure/en-us_image_0000001972699077.png
new file mode 100644
index 00000000..5443f913
Binary files /dev/null and b/docs/vpn/umn/figure/en-us_image_0000001972699077.png differ
diff --git a/docs/vpn/umn/figure/en-us_image_0000001976650417.png b/docs/vpn/umn/figure/en-us_image_0000001976650417.png
new file mode 100644
index 00000000..7267525c
Binary files /dev/null and b/docs/vpn/umn/figure/en-us_image_0000001976650417.png differ
diff --git a/docs/vpn/umn/figure/en-us_image_0000001987376506.png b/docs/vpn/umn/figure/en-us_image_0000001987376506.png
new file mode 100644
index 00000000..975599da
Binary files /dev/null and b/docs/vpn/umn/figure/en-us_image_0000001987376506.png differ
diff --git a/docs/vpn/umn/figure/en-us_image_0000001987536262.png b/docs/vpn/umn/figure/en-us_image_0000001987536262.png
new file mode 100644
index 00000000..814c2985
Binary files /dev/null and b/docs/vpn/umn/figure/en-us_image_0000001987536262.png differ
diff --git a/docs/vpn/umn/figure/en-us_image_0000001987536950.png b/docs/vpn/umn/figure/en-us_image_0000001987536950.png
new file mode 100644
index 00000000..6e6e8f3b
Binary files /dev/null and b/docs/vpn/umn/figure/en-us_image_0000001987536950.png differ
diff --git a/docs/vpn/umn/figure/en-us_image_0000001987537386.png b/docs/vpn/umn/figure/en-us_image_0000001987537386.png
new file mode 100644
index 00000000..a910a0dd
Binary files /dev/null and b/docs/vpn/umn/figure/en-us_image_0000001987537386.png differ
diff --git a/docs/vpn/umn/figure/en-us_image_0000001987537886.png b/docs/vpn/umn/figure/en-us_image_0000001987537886.png
new file mode 100644
index 00000000..f500f182
Binary files /dev/null and b/docs/vpn/umn/figure/en-us_image_0000001987537886.png differ
diff --git a/docs/vpn/umn/figure/en-us_image_0000001987560070.png b/docs/vpn/umn/figure/en-us_image_0000001987560070.png
new file mode 100644
index 00000000..65f49897
Binary files /dev/null and b/docs/vpn/umn/figure/en-us_image_0000001987560070.png differ
diff --git a/docs/vpn/umn/figure/en-us_image_0000001987560190.png b/docs/vpn/umn/figure/en-us_image_0000001987560190.png
new file mode 100644
index 00000000..b756b900
Binary files /dev/null and b/docs/vpn/umn/figure/en-us_image_0000001987560190.png differ
diff --git a/docs/vpn/umn/figure/en-us_image_0000002023936425.png b/docs/vpn/umn/figure/en-us_image_0000002023936425.png
new file mode 100644
index 00000000..0284f7b2
Binary files /dev/null and b/docs/vpn/umn/figure/en-us_image_0000002023936425.png differ
diff --git a/docs/vpn/umn/figure/en-us_image_0000002023936993.png b/docs/vpn/umn/figure/en-us_image_0000002023936993.png
new file mode 100644
index 00000000..71046077
Binary files /dev/null and b/docs/vpn/umn/figure/en-us_image_0000002023936993.png differ
diff --git a/docs/vpn/umn/figure/en-us_image_0000002024056937.png b/docs/vpn/umn/figure/en-us_image_0000002024056937.png
new file mode 100644
index 00000000..1306d7e9
Binary files /dev/null and b/docs/vpn/umn/figure/en-us_image_0000002024056937.png differ
diff --git a/docs/vpn/umn/public_sys-resources/ExpandCollapse.js b/docs/vpn/umn/public_sys-resources/ExpandCollapse.js
index 116ddaab..c281dc99 100644
--- a/docs/vpn/umn/public_sys-resources/ExpandCollapse.js
+++ b/docs/vpn/umn/public_sys-resources/ExpandCollapse.js
@@ -1 +1 @@
-var expandClassName="dropdownexpand";var collapseClassName="dropdowncollapse";var collapseTableClassName="dropdowncollapsetable";function ExpandorCollapseNode(a){a=a.parentNode;if(a.className==expandClassName){a.className=collapseClassName}else{a.className=expandClassName}}function ExpandorCollapseTableNode(a){a=a.parentNode;if(a.className==expandClassName){a.className=collapseTableClassName}else{a.className=expandClassName}}function ExpandorCollapseAllNodes(g,h,c){var a=g.getAttribute("title");var b=g.parentNode;if(a=="collapse"){g.setAttribute("title","expand");g.className="dropdownAllButtonexpand";g.innerHTML=h}else{g.setAttribute("title","collapse");g.className="dropdownAllButtoncollapse";g.innerHTML=c}var f=b.getElementsByTagName("*");for(var d=0;d<f.length;d++){var e=f[d];if(e.className.indexOf(expandClassName)!=-1||e.className.indexOf(collapseClassName)!=-1||e.className.indexOf(collapseTableClassName)!=-1){if(a=="collapse"){if(e.tagName.toLowerCase()=="table"){e.className=collapseTableClassName}else{e.className=collapseClassName}}else{e.className=expandClassName}}}}function ExpandForHref(f){if(null==f||"#"==f||"###"==f){return}var a=null;try{a=document.getElementById(f)}catch(d){}if(null==a||a.length==0){return}try{var b=a.parentNode;while(b!=null&&b.tagName!="body"){if(b.className==collapseClassName){b.className=expandClassName}b=b.parentNode}}catch(c){}}window.onload=function(){var b=document.getElementsByTagName("div");for(var c=0;c<b.length;c++){var j=b[c];if(j.className.indexOf(expandClassName)!=-1){j.className=collapseClassName}}var d=document.getElementsByTagName("a");try{for(var c=0;c<d.length;c++){var f=d[c];var h=f.getAttribute("href");if(h!=""&&h!=null){f.addEventListener("click",showHasConref,false)}}}catch(g){}};function showHasConref(b){var a=b.currentTarget.getAttribute("href");try{if(a!=null&&a!="#"&&a.lastIndexOf("#")>-1){ExpandForHref(a.substring(a.lastIndexOf("#")+1))}}catch(c){}};
\ No newline at end of file
+var collapseTableClassName="dropdowncollapsetable";var collapseClassName="dropdowncollapse";var expandClassName="dropdownexpand";function ExpandorCollapseNode(a){a=a.parentNode;if(a.className==expandClassName){a.className=collapseClassName}else{a.className=expandClassName}}function ExpandorCollapseTableNode(a){a=a.parentNode;if(a.className==expandClassName){a.className=collapseTableClassName}else{a.className=expandClassName}}function ExpandorCollapseAllNodes(g,h,c){var a=g.getAttribute("title");var b=g.parentNode;if(a=="collapse"){g.setAttribute("title","expand");g.className="dropdownAllButtonexpand";g.innerHTML=h}else{g.setAttribute("title","collapse");g.className="dropdownAllButtoncollapse";g.innerHTML=c}var f=b.getElementsByTagName("*");for(var d=0;d<f.length;d++){var e=f[d];if(e.className.indexOf(expandClassName)!=-1||e.className.indexOf(collapseClassName)!=-1||e.className.indexOf(collapseTableClassName)!=-1){if(a=="collapse"){if(e.tagName.toLowerCase()=="table"){e.className=collapseTableClassName}else{e.className=collapseClassName}}else{e.className=expandClassName}}}}function ExpandForHref(f){if(null==f||"#"==f||"###"==f){return}var a=null;try{a=document.getElementById(f)}catch(d){}if(null==a||a.length==0){return}try{var b=a.parentNode;while(b!=null&&b.tagName!="body"){if(b.className==collapseClassName){b.className=expandClassName}b=b.parentNode}}catch(c){}}function initLoadHash(){const a=location.hash;if(!a){return}if(a!=null&&a!="#"&&a.lastIndexOf("#")>-1){ExpandForHref(a.substring(a.lastIndexOf("#")+1))}}window.onload=function(){var b=document.getElementsByTagName("div");for(var c=0;c<b.length;c++){var j=b[c];if(j.className.indexOf(expandClassName)!=-1){j.className=collapseClassName}}var d=document.getElementsByTagName("a");try{for(var c=0;c<d.length;c++){var f=d[c];var h=f.getAttribute("href");if(h!=""&&h!=null){f.addEventListener("click",showHasConref,false)}}}catch(g){}initLoadHash()};function showHasConref(b){var a=b.currentTarget.getAttribute("href");try{if(a!=null&&a!="#"&&a.lastIndexOf("#")>-1){ExpandForHref(a.substring(a.lastIndexOf("#")+1))}}catch(c){}};
\ No newline at end of file
diff --git a/docs/vpn/umn/public_sys-resources/commonrtl.css b/docs/vpn/umn/public_sys-resources/commonrtl.css
index f261da75..947a9a03 100644
--- a/docs/vpn/umn/public_sys-resources/commonrtl.css
+++ b/docs/vpn/umn/public_sys-resources/commonrtl.css
@@ -1,2 +1,2 @@
-/*! Copyright (c) Huawei Technologies Co., Ltd. 2020-2022. All rights reserved. */.msgph{font-family:Courier New}.unresolved{background-color:#87ceeb}.noTemplate{background-color:#ff0}.base{background-color:#fff}/*!  Add space for top level topics */.nested0,.p{margin-top:1em}/*!  div with class=p is used for paragraphs that contain blocks, to keep the XHTML valid *//*!  Default of italics to set apart figure captions */.figcap,.italic,.var{font-style:italic}.figdesc{font-style:normal}/*!  Use @frame to create frames on figures */.figborder{padding-left:3px;padding-right:3px;margin-top:1em;border:2px solid Silver}.figsides{margin-top:1em;padding-left:3px;padding-right:3px;border-left:2px solid Silver;border-right:2px solid Silver}.figtop{border-top:2px solid Silver;margin-top:1em}.figbottom{border-bottom:2px solid Silver}.figtopbot{border-top:2px solid Silver;border-bottom:2px solid Silver;margin-top:1em}/*!  Most link groups are created with <div>. Ensure they have space before and after. */.ullinks,ul.simple{list-style-type:none}.attention,.danger,.ddexpand,.dlexpand,.example,.fastpath,.important,.liexpand,.linklist,.note,.notice,.olchildlink,.relconcepts,.relinfo,.relref,.reltasks,.remember,.restriction,.section,.sliexpand,.stepexpand,.substepexpand,.tip,.ulchildlink,.warning{margin-top:1em;margin-bottom:1em}.linklistwithchild,.sublinklist{margin-top:1em;margin-right:1.5em;margin-bottom:1em}.breadcrumb{font-size:smaller;margin-bottom:1em}.prereq{margin-right:20px}/*!  Set heading sizes, getting smaller for deeper nesting */.topictitle1{font-size:1.34em;margin-top:0;margin-bottom:.1em}.topictitle2,.topictitle3,.topictitle4,.topictitle5,.topictitle6,.sectiontitle{font-size:1.17em}.topictitle2{margin-top:1pc;margin-bottom:.45em}.topictitle3{margin-top:1pc;margin-bottom:.17em;font-weight:700}.topictitle4{margin-top:.83em;font-weight:700}.topictitle5{font-weight:700}.topictitle6{font-style:italic}.sectiontitle{margin-top:1em;margin-bottom:0;color:#000;font-weight:700}/*!  All note formats have the same default presentation */.attentiontitle,.bold,.cautiontitle,.dangertitle,.dlterm,.fastpathtitle,.firstcol,.importanttitle,.notelisttitle,.notetitle,.noticetitle,.parmname,.remembertitle,.restrictiontitle,.tiptitle,.uicontrol,.warningtitle{font-weight:700}.caution{font-weight:700;margin-bottom:1em}/*!  Simple lists do not get a bullet *//*!  Used on the first column of a table, when rowheader="firstcol" is used *//*!  Various basic phrase styles */.boldItalic{font-weight:700;font-style:italic}.shortcut,.underlined{text-decoration:underline}/*!  2008-10-27 keyword采用跟随上下文的样式
+.msgph{font-family:Courier New}.unresolved{background-color:#87ceeb}.noTemplate{background-color:#ff0}.base{background-color:#fff}/*!  Add space for top level topics */.nested0,.p{margin-top:1em}/*!  div with class=p is used for paragraphs that contain blocks, to keep the XHTML valid *//*!  Default of italics to set apart figure captions */.figcap,.italic,.var{font-style:italic}.figdesc{font-style:normal}/*!  Use @frame to create frames on figures */.figborder{padding-left:3px;padding-right:3px;margin-top:1em;border:2px solid Silver}.figsides{margin-top:1em;padding-left:3px;padding-right:3px;border-left:2px solid Silver;border-right:2px solid Silver}.figtop{border-top:2px solid Silver;margin-top:1em}.figbottom{border-bottom:2px solid Silver}.figtopbot{border-top:2px solid Silver;border-bottom:2px solid Silver;margin-top:1em}/*!  Most link groups are created with <div>. Ensure they have space before and after. */.ullinks,ul.simple{list-style-type:none}.attention,.danger,.ddexpand,.dlexpand,.example,.fastpath,.important,.liexpand,.linklist,.note,.notice,.olchildlink,.relconcepts,.relinfo,.relref,.reltasks,.remember,.restriction,.section,.sliexpand,.stepexpand,.substepexpand,.tip,.ulchildlink,.warning{margin-top:1em;margin-bottom:1em}.linklistwithchild,.sublinklist{margin-top:1em;margin-right:1.5em;margin-bottom:1em}.breadcrumb{font-size:smaller;margin-bottom:1em}.prereq{margin-right:20px}/*!  Set heading sizes, getting smaller for deeper nesting */.topictitle1{font-size:1.34em;margin-top:0;margin-bottom:.1em}.topictitle2,.topictitle3,.topictitle4,.topictitle5,.topictitle6,.sectiontitle{font-size:1.17em}.topictitle2{margin-top:1pc;margin-bottom:.45em}.topictitle3{margin-top:1pc;margin-bottom:.17em;font-weight:700}.topictitle4{margin-top:.83em;font-weight:700}.topictitle5{font-weight:700}.topictitle6{font-style:italic}.sectiontitle{margin-top:1em;margin-bottom:0;color:#000;font-weight:700}/*!  All note formats have the same default presentation */.attentiontitle,.bold,.cautiontitle,.dangertitle,.dlterm,.fastpathtitle,.firstcol,.importanttitle,.notelisttitle,.notetitle,.noticetitle,.parmname,.remembertitle,.restrictiontitle,.tiptitle,.uicontrol,.warningtitle{font-weight:700}.caution{font-weight:700;margin-bottom:1em}/*!  Simple lists do not get a bullet *//*!  Used on the first column of a table, when rowheader="firstcol" is used *//*!  Various basic phrase styles */.boldItalic{font-weight:700;font-style:italic}.shortcut,.underlined{text-decoration:underline}/*!  2008-10-27 keyword采用跟随上下文的样式
 *//*!  Default of bold for definition list terms *//*!  Use CSS to expand lists with @compact="no" */.dltermexpand{font-weight:700;margin-top:1em}[compact="yes"]>li{margin-top:0}[compact="no"]>li{margin-top:.53em}/*!  Align images based on @align on topic/image */div.imageleft,.text-align-left{text-align:left}div.imagecenter,.text-align-center{text-align:center}div.imageright,.text-align-right{text-align:right}div.imagejustify,.text-align-justify{text-align:justify}.cellrowborder{border-right:0;border-top:0;border-left:1px solid;border-bottom:1px solid}.row-nocellborder{border-left:hidden;border-right:0;border-top:0;border-bottom:1px solid}.cell-norowborder{border-top:0;border-bottom:hidden;border-right:0;border-left:1px solid}.nocellnorowborder{border:0;border-left:hidden;border-bottom:hidden}pre.codeblock,pre.screen{padding:5px;border:outset;background-color:#ccc;margin-top:2px;margin-bottom:2px;white-space:pre}
\ No newline at end of file
diff --git a/docs/vpn/umn/public_sys-resources/imageclose.gif b/docs/vpn/umn/public_sys-resources/imageclose.gif
new file mode 100644
index 00000000..3a3344af
Binary files /dev/null and b/docs/vpn/umn/public_sys-resources/imageclose.gif differ
diff --git a/docs/vpn/umn/public_sys-resources/imageclosehover.gif b/docs/vpn/umn/public_sys-resources/imageclosehover.gif
new file mode 100644
index 00000000..8699d5e3
Binary files /dev/null and b/docs/vpn/umn/public_sys-resources/imageclosehover.gif differ
diff --git a/docs/vpn/umn/public_sys-resources/imagemax.gif b/docs/vpn/umn/public_sys-resources/imagemax.gif
new file mode 100644
index 00000000..99c07dc2
Binary files /dev/null and b/docs/vpn/umn/public_sys-resources/imagemax.gif differ
diff --git a/docs/vpn/umn/public_sys-resources/imagemaxhover.gif b/docs/vpn/umn/public_sys-resources/imagemaxhover.gif
new file mode 100644
index 00000000..d01d77d6
Binary files /dev/null and b/docs/vpn/umn/public_sys-resources/imagemaxhover.gif differ
diff --git a/docs/vpn/umn/public_sys-resources/macFFBgHack.png b/docs/vpn/umn/public_sys-resources/macFFBgHack.png
new file mode 100644
index 00000000..ec811470
Binary files /dev/null and b/docs/vpn/umn/public_sys-resources/macFFBgHack.png differ
diff --git a/docs/vpn/umn/public_sys-resources/popup.js b/docs/vpn/umn/public_sys-resources/popup.js
index a550862e..bae3e929 100644
--- a/docs/vpn/umn/public_sys-resources/popup.js
+++ b/docs/vpn/umn/public_sys-resources/popup.js
@@ -1 +1 @@
-var i=0;var dhtmlgoodies_tooltipFlag=false;var dhtmlgoodies_tooltip="";var dhtmlgoodies_tooltipShadow="";var dhtmlgoodies_shadowSize=3;var dhtmlgoodies_tooltipMaxWidth=500;var dhtmlgoodies_tooltipMinWidth=100;var dhtmlgoodies_iframe=false;var timeId;var clickFlag=false;var tooltip_is_msie=(navigator.userAgent.indexOf("MSIE")>=0&&navigator.userAgent.indexOf("opera")==-1&&document.all)?true:false;var xPos;var yPos;window.document.onmousemove=function(a){a=a||window.event;if(a.pageX){xPos=a.pageX;yPos=a.pageY}else{if(document.body!==null&&typeof document.body!=="undefined"){xPos=a.clientX+document.body.scrollLeft-document.body.clientLeft;yPos=a.clientY+document.body.scrollTop-document.body.clientTop}}};function showTooltip(e){if(document.body===null||typeof document.body==="undefined"){return}if(i==0){return}clickFlag=true;var f=Json.parse("jsonData."+e);var a=Math.max(document.body.clientWidth,document.documentElement.clientWidth)-20;if(!dhtmlgoodies_tooltipFlag){dhtmlgoodies_tooltip=document.createElement("DIV");dhtmlgoodies_tooltip.id="dhtmlgoodies_tooltip";dhtmlgoodies_tooltipShadow=document.createElement("DIV");dhtmlgoodies_tooltipShadow.id="dhtmlgoodies_tooltipShadow";document.body.appendChild(dhtmlgoodies_tooltip);document.body.appendChild(dhtmlgoodies_tooltipShadow);if(tooltip_is_msie){dhtmlgoodies_iframe=document.createElement("IFRAME");dhtmlgoodies_iframe.frameborder="5";dhtmlgoodies_iframe.style.backgroundColor="#FFFFFF";dhtmlgoodies_iframe.src="#";dhtmlgoodies_iframe.style.zIndex=100;dhtmlgoodies_iframe.style.position="absolute";document.body.appendChild(dhtmlgoodies_iframe)}}dhtmlgoodies_tooltip.style.display="block";dhtmlgoodies_tooltipShadow.style.display="block";if(tooltip_is_msie){dhtmlgoodies_iframe.style.display="block"}var b=Math.max(document.body.scrollTop,document.documentElement.scrollTop);if(navigator.userAgent.toLowerCase().indexOf("safari")>=0){b=0}var c=xPos+10;dhtmlgoodies_tooltip.style.width=null;dhtmlgoodies_tooltip.innerHTML=f;dhtmlgoodies_tooltip.style.left=c+"px";if(tooltip_is_msie){dhtmlgoodies_tooltip.style.top=yPos+20+b+"px"}else{dhtmlgoodies_tooltip.style.top=yPos+20+"px"}dhtmlgoodies_tooltipShadow.style.left=c+dhtmlgoodies_shadowSize+"px";if(tooltip_is_msie){dhtmlgoodies_tooltipShadow.style.top=yPos+20+b+dhtmlgoodies_shadowSize+"px"}else{dhtmlgoodies_tooltipShadow.style.top=yPos+20+dhtmlgoodies_shadowSize+"px"}if(dhtmlgoodies_tooltip.offsetWidth>dhtmlgoodies_tooltipMaxWidth){dhtmlgoodies_tooltip.style.width=dhtmlgoodies_tooltipMaxWidth+"px"}var d=dhtmlgoodies_tooltip.offsetWidth;if(d<dhtmlgoodies_tooltipMinWidth){d=dhtmlgoodies_tooltipMinWidth}dhtmlgoodies_tooltip.style.width=d+"px";dhtmlgoodies_tooltipShadow.style.width=dhtmlgoodies_tooltip.offsetWidth+"px";dhtmlgoodies_tooltipShadow.style.height=dhtmlgoodies_tooltip.offsetHeight+"px";if((c+d)>a){dhtmlgoodies_tooltip.style.left=(dhtmlgoodies_tooltipShadow.style.left.replace("px","")-((c+d)-a))+"px";dhtmlgoodies_tooltipShadow.style.left=(dhtmlgoodies_tooltipShadow.style.left.replace("px","")-((c+d)-a)+dhtmlgoodies_shadowSize)+"px"}if(tooltip_is_msie){dhtmlgoodies_iframe.style.left=dhtmlgoodies_tooltip.style.left;dhtmlgoodies_iframe.style.top=dhtmlgoodies_tooltip.style.top;dhtmlgoodies_iframe.style.width=dhtmlgoodies_tooltip.offsetWidth+"px";dhtmlgoodies_iframe.style.height=dhtmlgoodies_tooltip.offsetHeight+"px"}}function hideTooltip(){i=0;clickFlag=false;if((dhtmlgoodies_tooltip!==null&&typeof dhtmlgoodies_tooltip!=="undefined")&&+(dhtmlgoodies_tooltip.style!==null&&typeof dhtmlgoodies_tooltip.style!=="undefined")){dhtmlgoodies_tooltip.style.display="none";dhtmlgoodies_tooltipShadow.style.display="none";if(tooltip_is_msie){dhtmlgoodies_iframe.style.display="none"}}if(timeId!==null&&typeof timeId!=="undefined"&&timeId!=""){clearTimeout(timeId)}}function showText(a){i=1;timeId=setTimeout(function(){showTooltip(a)},500)}function showText2(a){if(!clickFlag){i=1;showTooltip(a);i=0;if(timeId!==null&&typeof timeId!=="undefined"&&timeId!=""){clearTimeout(timeId)}}}function anchorScroll(b){var d=document.getElementsByName(b);if(d!=null&&d.length>0){var c=d[0];var a=c.getBoundingClientRect().left+(document.body.scrollLeft||(document.documentElement&&document.documentElement.scrollLeft));var e=c.getBoundingClientRect().top+(document.body.scrollTop||(document.documentElement&&document.documentElement.scrollTop));window.scrollTo(a,e-30)}};
\ No newline at end of file
+var i=0;var dhtmlgoodies_tooltip="";var dhtmlgoodies_tooltipFlag=false;var dhtmlgoodies_shadowSize=3;var dhtmlgoodies_tooltipShadow="";var dhtmlgoodies_tooltipMinWidth=100;var dhtmlgoodies_tooltipMaxWidth=500;var timeId;var dhtmlgoodies_iframe=false;var tooltip_is_msie=(navigator.userAgent.indexOf("MSIE")>=0&&navigator.userAgent.indexOf("opera")==-1&&document.all)?true:false;var clickFlag=false;var yPos;var xPos;window.document.onmousemove=function(a){a=a||window.event;if(a.pageX){yPos=a.pageY;xPos=a.pageX}else{if(document.body!==null&&typeof document.body!=="undefined"){yPos=a.clientY+document.body.scrollTop-document.body.clientTop;xPos=a.clientX+document.body.scrollLeft-document.body.clientLeft}}};function showTooltip(e){if(document.body===null||typeof document.body==="undefined"||i==0){return}clickFlag=true;var f=Json.parse("jsonData."+e);var a=Math.max(document.body.clientWidth,document.documentElement.clientWidth)-20;if(!dhtmlgoodies_tooltipFlag){dhtmlgoodies_tooltipShadow=document.createElement("DIV");dhtmlgoodies_tooltipShadow.id="dhtmlgoodies_tooltipShadow";dhtmlgoodies_tooltip=document.createElement("DIV");dhtmlgoodies_tooltip.id="dhtmlgoodies_tooltip";document.body.appendChild(dhtmlgoodies_tooltip);document.body.appendChild(dhtmlgoodies_tooltipShadow);if(tooltip_is_msie){dhtmlgoodies_iframe=document.createElement("IFRAME");dhtmlgoodies_iframe.style.backgroundColor="#FFFFFF";dhtmlgoodies_iframe.frameborder="5";dhtmlgoodies_iframe.src="#";dhtmlgoodies_iframe.style.position="absolute";dhtmlgoodies_iframe.style.zIndex=100;document.body.appendChild(dhtmlgoodies_iframe)}}dhtmlgoodies_tooltipShadow.style.display="block";dhtmlgoodies_tooltip.style.display="block";if(tooltip_is_msie){dhtmlgoodies_iframe.style.display="block"}var b=Math.max(document.body.scrollTop,document.documentElement.scrollTop);if(navigator.userAgent.toLowerCase().indexOf("safari")>=0){b=0}dhtmlgoodies_tooltip.style.width=null;dhtmlgoodies_tooltip.innerHTML=f;var c=xPos+10;dhtmlgoodies_tooltip.style.left=c+"px";if(tooltip_is_msie){dhtmlgoodies_tooltip.style.top=yPos+20+b+"px"}else{dhtmlgoodies_tooltip.style.top=yPos+20+"px"}dhtmlgoodies_tooltipShadow.style.left=c+dhtmlgoodies_shadowSize+"px";if(tooltip_is_msie){dhtmlgoodies_tooltipShadow.style.top=yPos+20+b+dhtmlgoodies_shadowSize+"px"}else{dhtmlgoodies_tooltipShadow.style.top=yPos+20+dhtmlgoodies_shadowSize+"px"}if(dhtmlgoodies_tooltip.offsetWidth>dhtmlgoodies_tooltipMaxWidth){dhtmlgoodies_tooltip.style.width=dhtmlgoodies_tooltipMaxWidth+"px"}var d=dhtmlgoodies_tooltip.offsetWidth;if(d<dhtmlgoodies_tooltipMinWidth){d=dhtmlgoodies_tooltipMinWidth}dhtmlgoodies_tooltip.style.width=d+"px";dhtmlgoodies_tooltipShadow.style.height=dhtmlgoodies_tooltip.offsetHeight+"px";dhtmlgoodies_tooltipShadow.style.width=dhtmlgoodies_tooltip.offsetWidth+"px";if((c+d)>a){dhtmlgoodies_tooltip.style.left=(dhtmlgoodies_tooltipShadow.style.left.replace("px","")-((c+d)-a))+"px";dhtmlgoodies_tooltipShadow.style.left=(dhtmlgoodies_tooltipShadow.style.left.replace("px","")-((c+d)-a)+dhtmlgoodies_shadowSize)+"px"}if(tooltip_is_msie){dhtmlgoodies_iframe.style.top=dhtmlgoodies_tooltip.style.top;dhtmlgoodies_iframe.style.left=dhtmlgoodies_tooltip.style.left;dhtmlgoodies_iframe.style.height=dhtmlgoodies_tooltip.offsetHeight+"px";dhtmlgoodies_iframe.style.width=dhtmlgoodies_tooltip.offsetWidth+"px"}}function hideTooltip(){i=0;clickFlag=false;if((dhtmlgoodies_tooltip!==null&&typeof dhtmlgoodies_tooltip!=="undefined")&&+(dhtmlgoodies_tooltip.style!==null&&typeof dhtmlgoodies_tooltip.style!=="undefined")){dhtmlgoodies_tooltip.style.display="none";dhtmlgoodies_tooltipShadow.style.display="none";if(tooltip_is_msie){dhtmlgoodies_iframe.style.display="none"}}if(timeId!==null&&typeof timeId!=="undefined"&&timeId!=""){clearTimeout(timeId)}}function showText(a){i=1;timeId=setTimeout(function(){showTooltip(a)},500)}function showText2(a){if(!clickFlag){i=1;showTooltip(a);i=0;if(timeId!==null&&typeof timeId!=="undefined"&&timeId!=""){clearTimeout(timeId)}}}function anchorScroll(b){var d=document.getElementsByName(b);if(d!=null&&d.length>0){var c=d[0];var a=c.getBoundingClientRect().left+(document.body.scrollLeft||(document.documentElement&&document.documentElement.scrollLeft));var e=c.getBoundingClientRect().top+(document.body.scrollTop||(document.documentElement&&document.documentElement.scrollTop));window.scrollTo(a,e-30)}};
\ No newline at end of file
diff --git a/docs/vpn/umn/vpn_01_0000.html b/docs/vpn/umn/vpn_01_0000.html
new file mode 100644
index 00000000..c9b98246
--- /dev/null
+++ b/docs/vpn/umn/vpn_01_0000.html
@@ -0,0 +1,29 @@
+<a name="EN-US_TOPIC_0000001920877881"></a><a name="EN-US_TOPIC_0000001920877881"></a>
+
+<h1 class="topictitle1">Overview</h1>
+<div id="body15047603"></div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="en-us_topic_0035391393.html">What Is VPN?</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_01_0002.html">Product Advantages</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_01_0032.html">Application Scenarios</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_01_0036.html">Product Specifications</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_01_0005.html">Quotas and Limitations</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_01_0006.html">Reference Standards and Protocols</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_01_0033.html">Differences between Enterprise Edition VPN and Classic VPN</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_08_1503.html">Security</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_01_0011.html">Permissions Management</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_01_0034.html">Basic Concepts</a></strong><br>
+</li>
+</ul>
+</div>
+
diff --git a/docs/vpn/umn/vpn_01_0002.html b/docs/vpn/umn/vpn_01_0002.html
new file mode 100644
index 00000000..ede6de73
--- /dev/null
+++ b/docs/vpn/umn/vpn_01_0002.html
@@ -0,0 +1,26 @@
+<a name="EN-US_TOPIC_0000001937807170"></a><a name="EN-US_TOPIC_0000001937807170"></a>
+
+<h1 class="topictitle1">Product Advantages</h1>
+<div id="body8662426"><p id="EN-US_TOPIC_0000001937807170__en-us_topic_0000001592573741_p32261721123513">Enterprise Edition <span id="EN-US_TOPIC_0000001937807170__en-us_topic_0000001592573741_ph54292439913">VPN</span> has the following advantages:</p>
+<ul id="EN-US_TOPIC_0000001937807170__en-us_topic_0000001592573741_ul16324121514532"><li id="EN-US_TOPIC_0000001937807170__en-us_topic_0000001592573741_li8768172618209"><strong id="EN-US_TOPIC_0000001937807170__en-us_topic_0000001592573741_b7555122742013">High security</strong><ul id="EN-US_TOPIC_0000001937807170__en-us_topic_0000001592573741_ul1098235892014"><li id="EN-US_TOPIC_0000001937807170__en-us_topic_0000001592573741_li13608114511588">Data is encrypted using IKE/IPsec, ensuring high data security.</li><li id="EN-US_TOPIC_0000001937807170__en-us_topic_0000001592573741_li1930812515219">A VPN gateway is exclusive to a tenant, isolating tenants from each other.</li></ul>
+</li><li id="EN-US_TOPIC_0000001937807170__en-us_topic_0000001592573741_li7324171515537"><strong id="EN-US_TOPIC_0000001937807170__en-us_topic_0000001592573741_b1319918173431">High availability</strong><ul id="EN-US_TOPIC_0000001937807170__en-us_topic_0000001592573741_ul93461782013"><li id="EN-US_TOPIC_0000001937807170__en-us_topic_0000001592573741_li257131562012">A VPN gateway provides two IP addresses to establish dual independent VPN connections with a customer gateway. If one VPN connection fails, traffic can be quickly switched to the other VPN connection.</li><li id="EN-US_TOPIC_0000001937807170__en-us_topic_0000001592573741_li12572141510208">Active-active gateways are deployed in different availability zones (AZs) to ensure AZ-level high availability.</li><li id="EN-US_TOPIC_0000001937807170__en-us_topic_0000001592573741_li4897715945">Active/Standby mode: In normal cases, a VPN gateway communicates with a customer gateway through the active connection. If the active connection fails, traffic is automatically switched to the standby VPN connection. After the fault is rectified, traffic is switched back to the active VPN connection.</li></ul>
+</li><li id="EN-US_TOPIC_0000001937807170__en-us_topic_0000001592573741_li13749371144"><strong id="EN-US_TOPIC_0000001937807170__en-us_topic_0000001592573741_b511084512412">Cost-effectiveness</strong><ul id="EN-US_TOPIC_0000001937807170__en-us_topic_0000001592573741_ul47206316551"><li id="EN-US_TOPIC_0000001937807170__en-us_topic_0000001592573741_li208881725550">IPsec connections over the Internet provide a cost-effective alternative to Direct Connect.</li><li id="EN-US_TOPIC_0000001937807170__en-us_topic_0000001592573741_li19298102022716">A VPN gateway can be bound to elastic IP addresses (EIPs) that share bandwidth, reducing bandwidth costs.</li><li id="EN-US_TOPIC_0000001937807170__en-us_topic_0000001592573741_li98798354277">The bandwidth can be adjusted when an EIP instance is created.</li></ul>
+</li></ul>
+<ul id="EN-US_TOPIC_0000001937807170__en-us_topic_0000001592573741_ul10193187165313"><li id="EN-US_TOPIC_0000001937807170__en-us_topic_0000001592573741_li542958162110"><strong id="EN-US_TOPIC_0000001937807170__en-us_topic_0000001592573741_b162810151583">Easy to use</strong><ul id="EN-US_TOPIC_0000001937807170__en-us_topic_0000001592573741_ul860591918216"><li id="EN-US_TOPIC_0000001937807170__en-us_topic_0000001592573741_li146551647172015">A VPN gateway supports multiple connection modes, including policy-based, static routing, and BGP routing, to meet different access requirements of customer gateways.</li><li id="EN-US_TOPIC_0000001937807170__en-us_topic_0000001592573741_li1251215203210">A VPN gateway on the cloud can function as a VPN hub, enabling on-premises branch sites to access each other.</li><li id="EN-US_TOPIC_0000001937807170__en-us_topic_0000001592573741_li1179122873118">A VPN connection can be created in a few simple steps on the VPN device in an on-premises data center and on the VPN console, and is ready to use immediately after being created.</li><li id="EN-US_TOPIC_0000001937807170__en-us_topic_0000001592573741_li14512152012116">VPN can be used together with the enterprise router service, allowing enterprises to build more flexible cloud-based networks.</li><li id="EN-US_TOPIC_0000001937807170__en-us_topic_0000001592573741_li62324522315">Private VPN gateways are supported to encrypt traffic transmitted over Direct Connect connections, improving data transmission security.</li></ul>
+</li></ul>
+<p id="EN-US_TOPIC_0000001937807170__en-us_topic_0000001592573741_p218713409919">Classic <span id="EN-US_TOPIC_0000001937807170__en-us_topic_0000001592573741_ph161871540491">VPN</span> has the following advantages:</p>
+<ul id="EN-US_TOPIC_0000001937807170__en-us_topic_0000001592573741_ul220813301392"><li id="EN-US_TOPIC_0000001937807170__en-us_topic_0000001592573741_li18208430296"><strong id="EN-US_TOPIC_0000001937807170__en-us_topic_0000001592573741_b102087301598">High security</strong><p id="EN-US_TOPIC_0000001937807170__en-us_topic_0000001592573741_p4438201019528">Dedicated devices are used to encrypt data through IKE and IPsec protocols, offering carrier-class reliability and ensuring stable VPN connections from perspectives of hardware, software, and links.</p>
+</li></ul>
+<ul id="EN-US_TOPIC_0000001937807170__en-us_topic_0000001592573741_ul189511011175314"><li id="EN-US_TOPIC_0000001937807170__en-us_topic_0000001592573741_li3951181135316"><strong id="EN-US_TOPIC_0000001937807170__en-us_topic_0000001592573741_b207911842183520">Seamless scaling</strong><p id="EN-US_TOPIC_0000001937807170__en-us_topic_0000001592573741_p13506396523">You can connect your on-premises data center to your VPC to quickly extend services at the local data center to the cloud, forming a hybrid cloud.</p>
+</li></ul>
+<ul id="EN-US_TOPIC_0000001937807170__en-us_topic_0000001592573741_ul45291295531"><li id="EN-US_TOPIC_0000001937807170__en-us_topic_0000001592573741_li13529159145317"><strong id="EN-US_TOPIC_0000001937807170__en-us_topic_0000001592573741_b9292201163611">Cost-effectiveness</strong><p id="EN-US_TOPIC_0000001937807170__en-us_topic_0000001592573741_p20228749195210">IPsec connections over the Internet provide a cost-effective alternative to Direct Connect.</p>
+</li></ul>
+<ul id="EN-US_TOPIC_0000001937807170__en-us_topic_0000001592573741_ul22091030992"><li id="EN-US_TOPIC_0000001937807170__en-us_topic_0000001592573741_li719347155318"><strong id="EN-US_TOPIC_0000001937807170__en-us_topic_0000001592573741_b1136863619368">Easy to use</strong><p id="EN-US_TOPIC_0000001937807170__en-us_topic_0000001592573741_p673351135314">A VPN connection can be created in a few simple steps on the VPN device in an on-premises data center and on the VPN console, and is ready to use immediately after being created.</p>
+</li></ul>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_01_0000.html">Overview</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_01_0005.html b/docs/vpn/umn/vpn_01_0005.html
new file mode 100644
index 00000000..3a41dc89
--- /dev/null
+++ b/docs/vpn/umn/vpn_01_0005.html
@@ -0,0 +1,155 @@
+<a name="EN-US_TOPIC_0000001542174382"></a><a name="EN-US_TOPIC_0000001542174382"></a>
+
+<h1 class="topictitle1">Quotas and Limitations</h1>
+<div id="body1531189675476"><div class="section" id="EN-US_TOPIC_0000001542174382__section1571294811713"><h4 class="sectiontitle">VPN Gateway</h4>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="EN-US_TOPIC_0000001542174382__table69812545232" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Constraints on Enterprise Edition VPN gateways</caption><thead align="left"><tr id="EN-US_TOPIC_0000001542174382__row13981145472311"><th align="left" class="cellrowborder" valign="top" width="18.57%" id="mcps1.3.1.2.2.4.1.1"><p id="EN-US_TOPIC_0000001542174382__p598125410238">VPN Type</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="48.27%" id="mcps1.3.1.2.2.4.1.2"><p id="EN-US_TOPIC_0000001542174382__p13981154192311">Resource</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="33.160000000000004%" id="mcps1.3.1.2.2.4.1.3"><p id="EN-US_TOPIC_0000001542174382__p18981125472320">Default Quota</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="EN-US_TOPIC_0000001542174382__row198115542232"><td class="cellrowborder" valign="top" width="18.57%" headers="mcps1.3.1.2.2.4.1.1 "><p id="EN-US_TOPIC_0000001542174382__p139811454132318">Enterprise Edition VPN</p>
+</td>
+<td class="cellrowborder" valign="top" width="48.27%" headers="mcps1.3.1.2.2.4.1.2 "><p id="EN-US_TOPIC_0000001542174382__p89817546231">VPN gateways per tenant in each region</p>
+</td>
+<td class="cellrowborder" valign="top" width="33.160000000000004%" headers="mcps1.3.1.2.2.4.1.3 "><p id="EN-US_TOPIC_0000001542174382__p14981155416236">50</p>
+<ul id="EN-US_TOPIC_0000001542174382__ul2981154132314"><li id="EN-US_TOPIC_0000001542174382__li7981954102317">If you have only one VPC, you can create a maximum of 50 VPN gateways for the VPC.</li><li id="EN-US_TOPIC_0000001542174382__li12981105417238">If you have multiple VPCs, you can create a maximum of 50 VPN gateways for all these VPCs.</li></ul>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001542174382__row9982554112319"><td class="cellrowborder" valign="top" width="18.57%" headers="mcps1.3.1.2.2.4.1.1 "><p id="EN-US_TOPIC_0000001542174382__p7284184462411">Enterprise Edition VPN</p>
+</td>
+<td class="cellrowborder" valign="top" width="48.27%" headers="mcps1.3.1.2.2.4.1.2 "><p id="EN-US_TOPIC_0000001542174382__p198295492310">VPN connection groups per VPN gateway</p>
+</td>
+<td class="cellrowborder" valign="top" width="33.160000000000004%" headers="mcps1.3.1.2.2.4.1.3 "><p id="EN-US_TOPIC_0000001542174382__p6982654142313">100</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001542174382__row109829546236"><td class="cellrowborder" valign="top" width="18.57%" headers="mcps1.3.1.2.2.4.1.1 "><p id="EN-US_TOPIC_0000001542174382__p7284174410240">Enterprise Edition VPN</p>
+</td>
+<td class="cellrowborder" valign="top" width="48.27%" headers="mcps1.3.1.2.2.4.1.2 "><p id="EN-US_TOPIC_0000001542174382__p129822054192317">Local subnets per VPN gateway</p>
+</td>
+<td class="cellrowborder" valign="top" width="33.160000000000004%" headers="mcps1.3.1.2.2.4.1.3 "><p id="EN-US_TOPIC_0000001542174382__p1098285414234">50</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001542174382__row2982054192317"><td class="cellrowborder" valign="top" width="18.57%" headers="mcps1.3.1.2.2.4.1.1 "><p id="EN-US_TOPIC_0000001542174382__p17284544112416">Enterprise Edition VPN</p>
+</td>
+<td class="cellrowborder" valign="top" width="48.27%" headers="mcps1.3.1.2.2.4.1.2 "><p id="EN-US_TOPIC_0000001542174382__p698216549235">Number of BGP routes that a VPN gateway can receive from a customer gateway through a connection</p>
+</td>
+<td class="cellrowborder" valign="top" width="33.160000000000004%" headers="mcps1.3.1.2.2.4.1.3 "><p id="EN-US_TOPIC_0000001542174382__p109823545239">100</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="EN-US_TOPIC_0000001542174382__table1033092362914" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Constraints on Classic VPN</caption><thead align="left"><tr id="EN-US_TOPIC_0000001542174382__row533017234293"><th align="left" class="cellrowborder" valign="top" width="18.57%" id="mcps1.3.1.3.2.4.1.1"><p id="EN-US_TOPIC_0000001542174382__p193301823192910">VPN Type</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="48.27%" id="mcps1.3.1.3.2.4.1.2"><p id="EN-US_TOPIC_0000001542174382__p1633032352915">Resource</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="33.160000000000004%" id="mcps1.3.1.3.2.4.1.3"><p id="EN-US_TOPIC_0000001542174382__p33301123122912">Default Quota</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="EN-US_TOPIC_0000001542174382__row1133022317297"><td class="cellrowborder" valign="top" width="18.57%" headers="mcps1.3.1.3.2.4.1.1 "><p id="EN-US_TOPIC_0000001542174382__p23691138195416">Classic VPN</p>
+</td>
+<td class="cellrowborder" valign="top" width="48.27%" headers="mcps1.3.1.3.2.4.1.2 "><p id="EN-US_TOPIC_0000001542174382__p63691338165411">VPNs per tenant in each region</p>
+</td>
+<td class="cellrowborder" valign="top" width="33.160000000000004%" headers="mcps1.3.1.3.2.4.1.3 "><p id="EN-US_TOPIC_0000001542174382__p63693383546">2</p>
+<p id="EN-US_TOPIC_0000001542174382__p83691738135417">Only one VPN can be created for a VPC.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+<ul id="EN-US_TOPIC_0000001542174382__ul187635295182"><li id="EN-US_TOPIC_0000001542174382__li1776312293185">By default, the maximum length of TCP packets supported by a VPN gateway is 1300 bytes.</li></ul>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001542174382__section37336271786"><h4 class="sectiontitle">Customer Gateway</h4>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="EN-US_TOPIC_0000001542174382__table64931234151213" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Constraints on customer gateways</caption><thead align="left"><tr id="EN-US_TOPIC_0000001542174382__row114949348125"><th align="left" class="cellrowborder" valign="top" width="22.02256033578174%" id="mcps1.3.2.2.2.4.1.1"><p id="EN-US_TOPIC_0000001542174382__p18494534191215">VPN Type</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="33.49947534102834%" id="mcps1.3.2.2.2.4.1.2"><p id="EN-US_TOPIC_0000001542174382__p116122211144">Resource</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="44.47796432318993%" id="mcps1.3.2.2.2.4.1.3"><p id="EN-US_TOPIC_0000001542174382__p16570191081413">Default Quota</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="EN-US_TOPIC_0000001542174382__row1582418234211"><td class="cellrowborder" valign="top" width="22.02256033578174%" headers="mcps1.3.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000001542174382__p28245236212">Enterprise Edition VPN</p>
+</td>
+<td class="cellrowborder" valign="top" width="33.49947534102834%" headers="mcps1.3.2.2.2.4.1.2 "><p id="EN-US_TOPIC_0000001542174382__p12641105512518">Customer gateways per tenant in each region</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.47796432318993%" headers="mcps1.3.2.2.2.4.1.3 "><p id="EN-US_TOPIC_0000001542174382__p18857196105217">100</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+<ul id="EN-US_TOPIC_0000001542174382__ul4311194823817"><li id="EN-US_TOPIC_0000001542174382__li1675018419387">Enable NAT traversal on the customer gateway based on the networking.<ul id="EN-US_TOPIC_0000001542174382__ul1024512523820"><li id="EN-US_TOPIC_0000001542174382__li163111348133812">If the customer gateway is connected to the Internet through a NAT device, enable NAT traversal on the customer gateway.</li><li id="EN-US_TOPIC_0000001542174382__li81162143393">If the customer gateway is directly connected to the Internet, you do not need to enabled NAT traversal on the customer gateway.</li></ul>
+</li><li id="EN-US_TOPIC_0000001542174382__li8579145234812">Dead Peer Detection (DPD) must be enabled on a customer gateway.</li><li id="EN-US_TOPIC_0000001542174382__li1279559123810">A customer gateway must support IPsec tunnel interfaces and be configured with a corresponding security policy.</li><li id="EN-US_TOPIC_0000001542174382__li1824812594392">When Network Quality Analysis (NQA) is enabled for a connection in static routing mode, the IPsec tunnel interface of a customer gateway must have an IP address and be able to respond to ICMP requests.</li><li id="EN-US_TOPIC_0000001542174382__li01623116424">It is recommended that the maximum segment size (MSS) of TCP packets be set to a value less than 1399 on a customer gateway, so as to prevent fragmentation caused by addition of an IPsec header.</li></ul>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001542174382__section102996566818"><h4 class="sectiontitle">VPN Connection</h4>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="EN-US_TOPIC_0000001542174382__table12321218122518" frame="border" border="1" rules="all"><caption><b>Table 4 </b>Constraints on Enterprise Edition VPN connections</caption><thead align="left"><tr id="EN-US_TOPIC_0000001542174382__row133211018202517"><th align="left" class="cellrowborder" valign="top" width="13.88%" id="mcps1.3.3.2.2.5.1.1"><p id="EN-US_TOPIC_0000001542174382__p13321318162510">VPN Type</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="36.120000000000005%" id="mcps1.3.3.2.2.5.1.2"><p id="EN-US_TOPIC_0000001542174382__p632113182259">Resource</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="24.97%" id="mcps1.3.3.2.2.5.1.3"><p id="EN-US_TOPIC_0000001542174382__p2321181892510">Default Quota</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="25.03%" id="mcps1.3.3.2.2.5.1.4"><p id="EN-US_TOPIC_0000001542174382__p113211518102511">How to Increase Quota</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="EN-US_TOPIC_0000001542174382__row20321161812250"><td class="cellrowborder" valign="top" width="13.88%" headers="mcps1.3.3.2.2.5.1.1 "><p id="EN-US_TOPIC_0000001542174382__p7321518182511">Enterprise Edition VPN</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.120000000000005%" headers="mcps1.3.3.2.2.5.1.2 "><p id="EN-US_TOPIC_0000001542174382__p1632171810258">Policy rules per VPN connection</p>
+</td>
+<td class="cellrowborder" valign="top" width="24.97%" headers="mcps1.3.3.2.2.5.1.3 "><p id="EN-US_TOPIC_0000001542174382__p9321131817257">5</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.03%" headers="mcps1.3.3.2.2.5.1.4 "><p id="EN-US_TOPIC_0000001542174382__p03221518102517">The quotas cannot be increased.</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001542174382__row16322161812515"><td class="cellrowborder" valign="top" width="13.88%" headers="mcps1.3.3.2.2.5.1.1 "><p id="EN-US_TOPIC_0000001542174382__p394555216250">Enterprise Edition VPN</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.120000000000005%" headers="mcps1.3.3.2.2.5.1.2 "><p id="EN-US_TOPIC_0000001542174382__p1332211811254">Customer subnets per VPN connection</p>
+</td>
+<td class="cellrowborder" valign="top" width="24.97%" headers="mcps1.3.3.2.2.5.1.3 "><p id="EN-US_TOPIC_0000001542174382__p43220189256">50</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.03%" headers="mcps1.3.3.2.2.5.1.4 "><p id="EN-US_TOPIC_0000001542174382__p1743525441717">This quota cannot be increased.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="EN-US_TOPIC_0000001542174382__table970594233117" frame="border" border="1" rules="all"><caption><b>Table 5 </b>Constraints on Classic VPN connections</caption><thead align="left"><tr id="EN-US_TOPIC_0000001542174382__row1170634263120"><th align="left" class="cellrowborder" valign="top" width="13.88%" id="mcps1.3.3.3.2.5.1.1"><p id="EN-US_TOPIC_0000001542174382__p11706204293118">VPN Type</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="36.120000000000005%" id="mcps1.3.3.3.2.5.1.2"><p id="EN-US_TOPIC_0000001542174382__p13706142113118">Resource</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="24.97%" id="mcps1.3.3.3.2.5.1.3"><p id="EN-US_TOPIC_0000001542174382__p147061842143115">Default Quota</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="25.03%" id="mcps1.3.3.3.2.5.1.4"><p id="EN-US_TOPIC_0000001542174382__p370664219317">How to Increase Quota</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="EN-US_TOPIC_0000001542174382__row4706164213318"><td class="cellrowborder" valign="top" width="13.88%" headers="mcps1.3.3.3.2.5.1.1 "><p id="EN-US_TOPIC_0000001542174382__p19322201815251">Classic VPN</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.120000000000005%" headers="mcps1.3.3.3.2.5.1.2 "><p id="EN-US_TOPIC_0000001542174382__p18322201816255">VPN connections per tenant in each region</p>
+</td>
+<td class="cellrowborder" valign="top" width="24.97%" headers="mcps1.3.3.3.2.5.1.3 "><p id="EN-US_TOPIC_0000001542174382__p33221218122515">12</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.03%" headers="mcps1.3.3.3.2.5.1.4 "><p id="EN-US_TOPIC_0000001542174382__p8322111817253">This quota cannot be increased.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+<ul id="EN-US_TOPIC_0000001542174382__ul154961321162714"><li id="EN-US_TOPIC_0000001542174382__li18438102313155">In multi-subnet scenarios, you are advised to use VPN connections in routing mode. For a VPN connection in policy-based or policy template mode, a VPN gateway creates a communications tunnel for each pair of the local and customer subnets by default. If there are multiple local or customer subnets for a VPN connection in policy-based or policy template mode, multiple communications tunnels are created.<p id="EN-US_TOPIC_0000001542174382__p19133132421511"><a name="EN-US_TOPIC_0000001542174382__li18438102313155"></a><a name="li18438102313155"></a>Each IP address of a VPN gateway supports a maximum of 100 communications tunnels for connecting to customer gateways.</p>
+<ul id="EN-US_TOPIC_0000001542174382__ul86731331181513"><li id="EN-US_TOPIC_0000001542174382__li1167383141511">In routing mode, each VPN connection occupies only one communications tunnel of the corresponding VPN gateway IP address.</li><li id="EN-US_TOPIC_0000001542174382__li146732031141512">In policy-based or policy template mode, each VPN connection occupies <em id="EN-US_TOPIC_0000001542174382__i358112268582">M</em> x <em id="EN-US_TOPIC_0000001542174382__i86512293587">N</em> communications tunnels of the corresponding VPN gateway IP address. <em id="EN-US_TOPIC_0000001542174382__i7855144012587">M</em> indicates the number of local subnets, and <em id="EN-US_TOPIC_0000001542174382__i1347725313587">N</em> indicates the number of customer subnets.</li></ul>
+<p id="EN-US_TOPIC_0000001542174382__p1013316242157">If the number of communications tunnels occupied by all VPN connections in different modes established by a single gateway IP address has reached 100, excess VPN connections will fail to be created.</p>
+</li><li id="EN-US_TOPIC_0000001542174382__li5907152222716">When creating a VPN connection in policy-based mode and adding multiple policy rules, ensure that the source and destination CIDR blocks in different policy rules do not overlap. Otherwise, data flows may be incorrectly matched or IPsec tunnels may flap.</li></ul>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_01_0000.html">Overview</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_01_0006.html b/docs/vpn/umn/vpn_01_0006.html
new file mode 100644
index 00000000..562f5df4
--- /dev/null
+++ b/docs/vpn/umn/vpn_01_0006.html
@@ -0,0 +1,12 @@
+<a name="EN-US_TOPIC_0000001964846405"></a><a name="EN-US_TOPIC_0000001964846405"></a>
+
+<h1 class="topictitle1">Reference Standards and Protocols</h1>
+<div id="body8662426"><p id="EN-US_TOPIC_0000001964846405__en-us_topic_0000001592879073_p8060118">The following standards and protocols are associated with VPN:</p>
+<ul id="EN-US_TOPIC_0000001964846405__en-us_topic_0000001592879073_ul7927346150"><li id="EN-US_TOPIC_0000001964846405__en-us_topic_0000001592879073_li692720481517">RFC 2403: The Use of HMAC-MD5-96 within ESP and AH</li><li id="EN-US_TOPIC_0000001964846405__en-us_topic_0000001592879073_li592712451510">RFC 2404: The Use of HMAC-SHA-1-96 within ESP and AH</li><li id="EN-US_TOPIC_0000001964846405__en-us_topic_0000001592879073_li89275431517">RFC 2409: The Internet Key Exchange (IKE)</li><li id="EN-US_TOPIC_0000001964846405__en-us_topic_0000001592879073_li892704151514">RFC 2451: The ESP CBC-Mode Cipher Algorithms</li><li id="EN-US_TOPIC_0000001964846405__en-us_topic_0000001592879073_li392714491519">RFC 3526: More Modular Exponential (MODP) Diffie-Hellman groups for Internet Key Exchange (IKE)</li><li id="EN-US_TOPIC_0000001964846405__en-us_topic_0000001592879073_li492716421516">RFC 3566: The AES-XCBC-MAC-96 Algorithm and Its Use With IPsec</li><li id="EN-US_TOPIC_0000001964846405__en-us_topic_0000001592879073_li139272471514">RFC 3602: The AES-CBC Cipher Algorithm and Its Use with IPsec</li><li id="EN-US_TOPIC_0000001964846405__en-us_topic_0000001592879073_li192719461517">RFC 3664: The AES-XCBC-PRF-128 Algorithm for the Internet Key Exchange Protocol (IKE)</li><li id="EN-US_TOPIC_0000001964846405__en-us_topic_0000001592879073_li292816411155">RFC 4106: The Use of Galois/Counter Mode (GCM) in IPsec Encapsulating Security Payload (ESP)</li><li id="EN-US_TOPIC_0000001964846405__en-us_topic_0000001592879073_li149281471518">RFC 4109: Algorithms for Internet Key Exchange version 1 (IKEv1)</li><li id="EN-US_TOPIC_0000001964846405__en-us_topic_0000001592879073_li892844111511">RFC 4434: The AES-XCBC-PRF-128 Algorithm for the Internet Key Exchange Protocol (IKE)</li><li id="EN-US_TOPIC_0000001964846405__en-us_topic_0000001592879073_li149284410155">RFC 4868: Using HMAC-SHA-256, HMAC-SHA-384, and HMAC-SHA-512 with IPsec</li><li id="EN-US_TOPIC_0000001964846405__en-us_topic_0000001592879073_li1792844151512">RFC 4301: Security Architecture for the Internet Protocol</li><li id="EN-US_TOPIC_0000001964846405__en-us_topic_0000001592879073_li119281944151">RFC 4302: IP Authentication Header</li><li id="EN-US_TOPIC_0000001964846405__en-us_topic_0000001592879073_li192894151511">RFC 4303: IP Encapsulating Security Payload (ESP)</li><li id="EN-US_TOPIC_0000001964846405__en-us_topic_0000001592879073_li59283414157">RFC 4305: Cryptographic Algorithm Implementation Requirements for Encapsulating Security Payload (ESP) and Authentication Header (AH)</li><li id="EN-US_TOPIC_0000001964846405__en-us_topic_0000001592879073_li39281343154">RFC 4306: Internet Key Exchange (IKEv2)Protocol</li><li id="EN-US_TOPIC_0000001964846405__en-us_topic_0000001592879073_li7928144171519">RFC 4307: Cryptographic Algorithms for Use in the Internet Key Exchange Version 2 (IKEv2)</li><li id="EN-US_TOPIC_0000001964846405__en-us_topic_0000001592879073_li4928194131512">RFC 4308: Cryptographic Suites for IPsec</li><li id="EN-US_TOPIC_0000001964846405__en-us_topic_0000001592879073_li2092854141511">RFC 5282: Using Authenticated Encryption Algorithms with the Encrypted Payload of the Internet Key Exchange version 2 (IKEv2) Protocol</li><li id="EN-US_TOPIC_0000001964846405__en-us_topic_0000001592879073_li192817416152">RFC 6989: Additional Diffie-Hellman Tests for the Internet Key Exchange Protocol Version 2 (IKEv2)</li><li id="EN-US_TOPIC_0000001964846405__en-us_topic_0000001592879073_li592814451512">RFC 7296: Internet Key Exchange Protocol Version 2 (IKEv2)</li><li id="EN-US_TOPIC_0000001964846405__en-us_topic_0000001592879073_li892819461515">RFC 7321: Cryptographic Algorithm Implementation Requirements and Usage Guidance for Encapsulating Security Payload (ESP) and Authentication Header (AH)</li><li id="EN-US_TOPIC_0000001964846405__en-us_topic_0000001592879073_li69285491513">RFC 8247: Algorithm Implementation Requirements and Usage Guidance for the Internet Key Exchange Protocol Version 2 (IKEv2)</li><li id="EN-US_TOPIC_0000001964846405__en-us_topic_0000001592879073_li1292819411512">RFC 3947: Negotiation of NAT-Traversal in the IKE</li><li id="EN-US_TOPIC_0000001964846405__en-us_topic_0000001592879073_li192813431520">RFC 3948: UDP Encapsulation of IPsec ESP Packets</li><li id="EN-US_TOPIC_0000001964846405__en-us_topic_0000001592879073_li18928154101516">RFC 3706: A Traffic-Based Method of Detecting Dead Internet Key Exchange (IKE) Peers</li><li id="EN-US_TOPIC_0000001964846405__en-us_topic_0000001592879073_li189297431512">RFC 4271: A Border Gateway Protocol 4 (BGP-4)</li></ul>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_01_0000.html">Overview</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_01_0011.html b/docs/vpn/umn/vpn_01_0011.html
new file mode 100644
index 00000000..4a28bcc9
--- /dev/null
+++ b/docs/vpn/umn/vpn_01_0011.html
@@ -0,0 +1,253 @@
+<a name="EN-US_TOPIC_0000001965006205"></a><a name="EN-US_TOPIC_0000001965006205"></a>
+
+<h1 class="topictitle1">Permissions Management</h1>
+<div id="body8662426"><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p7808122016303">If you need to assign different permissions to personnel in your enterprise to access your VPN resources created on the cloud service platform, Identity and Access Management (IAM) is a good choice for fine-grained permissions management. IAM provides identity authentication, permissions management, and access control, helping you securely manage access to your resources.</p>
+<p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p57386149361">With IAM, you can use your account to create IAM users, and assign permissions to the users to control their access to specific cloud resources. For example, some software developers in your enterprise need to use VPN resources but should not be allowed to delete them or perform any high-risk operations. In this scenario, you can create IAM users for the software developers and grant them only the permissions required for using VPN resources.</p>
+<p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p10590121414461">If your <span id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_ph19439115984319"></span>account does not need individual IAM users for permissions management, skip this section, which has no impact on using functions of VPN.</p>
+<p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p7853194812337">IAM is a free service. You only pay for the resources in your account.</p>
+<p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p8443162610188">For more information about IAM, see <a href="https://docs.otc.t-systems.com/usermanual/iam/iam_01_0026.html" target="_blank" rel="noopener noreferrer">IAM Service Overview</a>.</p>
+<div class="section" id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_en-us_topic_0173524723_en-us_topic_0173475706_en-us_topic_0170232209_section13381828152912"><h4 class="sectiontitle">VPN Permissions</h4><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p16170850532">New IAM users do not have any permissions assigned by default. You need to first add them to one or more groups and attach policies or roles to these groups. The users then inherit permissions from the groups and can perform specified operations on cloud services based on the permissions they have been assigned.</p>
+<p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p1418822013412">VPN is a project-level service deployed for specific regions. When you set <strong id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_b11324203073818">Scope</strong> to <strong id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_b12324103012384">Region-specific projects</strong> and select the specified projects in the specified regions, the users only have permissions for VPN in the selected projects. If you set <strong id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_b33261030123813">Scope</strong> to <strong id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_b732643010388">All resources</strong>, users have permissions for VPN in all region-specific projects. When accessing VPN, the users need to switch to the authorized region.</p>
+<p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p7796192218286">You can grant permissions by using roles or policies.</p>
+<ul id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_ul11711133112819"><li id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_li14802133415281">Roles: A type of coarse-grained authorization mechanism that defines permissions related to user responsibilities. There are only a limited number of roles for granting permissions to users. Some roles depend other roles to take effect. When you assign such roles to users, remember to assign the roles they depend on. However, roles are not an ideal choice for fine-grained authorization and secure access control.</li><li id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_li12226144472814">Policies: a type of fine-grained authorization mechanism that defines permissions required to perform operations on specific cloud resources under certain conditions. This mechanism allows for more flexible policy-based authorization, meeting requirements for secure access control. For example, administrators can grant IAM users only permissions to manage VPN resources of a certain type.</li></ul>
+<div class="p" id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p2089419129514"><a href="#EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_en-us_topic_0173524723_en-us_topic_0173475706_en-us_topic_0170232209_table481412518317">Table 1</a> lists all system-defined permissions for VPN.
+<div class="tablenoborder"><a name="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_en-us_topic_0173524723_en-us_topic_0173475706_en-us_topic_0170232209_table481412518317"></a><a name="en-us_topic_0000001542014682_en-us_topic_0173524723_en-us_topic_0173475706_en-us_topic_0170232209_table481412518317"></a><table cellpadding="4" cellspacing="0" summary="" id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_en-us_topic_0173524723_en-us_topic_0173475706_en-us_topic_0170232209_table481412518317" frame="border" border="1" rules="all"><caption><b>Table 1 </b>System-defined permissions for VPN</caption><thead align="left"><tr id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_en-us_topic_0173524723_en-us_topic_0173475706_en-us_topic_0170232209_row15940162519313"><th align="left" class="cellrowborder" valign="top" width="20.119999999999997%" id="mcps1.3.6.6.2.2.4.1.1"><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p6235205715214">System Role/Policy Name</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="48.07%" id="mcps1.3.6.6.2.2.4.1.2"><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_en-us_topic_0173524723_en-us_topic_0173475706_en-us_topic_0170232209_p139411125163119">Description</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="31.81%" id="mcps1.3.6.6.2.2.4.1.3"><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p136951101370">Dependency</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_en-us_topic_0173524723_en-us_topic_0173475706_en-us_topic_0170232209_row6941125173119"><td class="cellrowborder" valign="top" width="20.119999999999997%" headers="mcps1.3.6.6.2.2.4.1.1 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_en-us_topic_0173524723_en-us_topic_0173475706_en-us_topic_0170232209_p39411425183111">VPN Administrator (not recommended)</p>
+</td>
+<td class="cellrowborder" valign="top" width="48.07%" headers="mcps1.3.6.6.2.2.4.1.2 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p15520689522">Administrator permissions for VPN. Users with these permissions can perform all operations on VPN.</p>
+<p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_en-us_topic_0173524723_en-us_topic_0173475706_en-us_topic_0170232209_p11941192513120">Users with these permissions have the <strong id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_b718171442615">VPC Administrator</strong> and <strong id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_b3181151422619">Tenant Guest</strong> permissions by default.</p>
+<ul id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_ul92847351579"><li id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_li4284335578"><strong id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_b1054217533118">VPC Administrator</strong>: project-level policy, which is selected in the same project as <strong id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_b1354275153112">VPN Administrator</strong>.</li><li id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_li16284535679"><strong id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_b1438203323920">Tenant Guest</strong>: project-level policy, which is selected in the same project as <strong id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_b154382033113912">VPN Administrator</strong>.</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="31.81%" headers="mcps1.3.6.6.2.2.4.1.3 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p4751440178">-</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_row22881659143211"><td class="cellrowborder" valign="top" width="20.119999999999997%" headers="mcps1.3.6.6.2.2.4.1.1 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p52891159183210">VPN FullAccess (recommended)</p>
+</td>
+<td class="cellrowborder" valign="top" width="48.07%" headers="mcps1.3.6.6.2.2.4.1.2 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p1928917593323">Full permissions for VPN.</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.81%" headers="mcps1.3.6.6.2.2.4.1.3 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p10270831173912">The actions of global services and the region-level actions cannot be configured in the same policy. As such, the following global actions are added:</p>
+<p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p2088565594514">"tms:predefineTags:list"</p>
+<p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p68851557453">"scm:cert:list"</p>
+<p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p2088511552454">"scm:cert:get"</p>
+<p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p1888535564510">"scm:cert:download"</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_row1214212133318"><td class="cellrowborder" valign="top" width="20.119999999999997%" headers="mcps1.3.6.6.2.2.4.1.1 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p171421324333">VPN ReadOnlyAccess</p>
+</td>
+<td class="cellrowborder" valign="top" width="48.07%" headers="mcps1.3.6.6.2.2.4.1.2 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p41420283315">Read-only permissions on VPN resources. Users who have these permissions can only view information about VPN resources.</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.81%" headers="mcps1.3.6.6.2.2.4.1.3 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p12623147194011">The actions of global services and the region-level actions cannot be configured in the same policy. As such, the following global actions are added:</p>
+<p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p820661674610">"tms:predefineTags:list"</p>
+<p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p520671674614">"scm:cert:list"</p>
+<p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p132061516104614">"scm:cert:get"</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p1828018131714"><a href="#EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_table13641113421711">Table 2</a> lists the common operations supported by system-defined permissions for VPN.</p>
+
+<div class="tablenoborder"><a name="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_table13641113421711"></a><a name="en-us_topic_0000001542014682_table13641113421711"></a><table cellpadding="4" cellspacing="0" summary="" id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_table13641113421711" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Common operations supported by system-defined permissions for VPN</caption><thead align="left"><tr id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_row13641133451711"><th align="left" class="cellrowborder" valign="top" width="25%" id="mcps1.3.6.8.2.5.1.1"><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p66411434171711">Operation</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="23.43%" id="mcps1.3.6.8.2.5.1.2"><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p16391338102710">VPN Administrator (Not Recommended)</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="26.57%" id="mcps1.3.6.8.2.5.1.3"><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p1614263274410">VPN FullAccess (Recommended)</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="25%" id="mcps1.3.6.8.2.5.1.4"><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p582292204319">VPN ReadOnlyAccess</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_row464283451714"><td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.6.8.2.5.1.1 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p20642123481719">Creating a VPN gateway</p>
+</td>
+<td class="cellrowborder" valign="top" width="23.43%" headers="mcps1.3.6.8.2.5.1.2 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p19642163451713">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="26.57%" headers="mcps1.3.6.8.2.5.1.3 "><ul id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_ul107539101452"><li id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_li27531410151">Enterprise Edition VPN: √</li><li id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_li37531210953">Classic VPN: ×</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.6.8.2.5.1.4 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p782252215436">×</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_row18728134532717"><td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.6.8.2.5.1.1 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p16729164572717">Viewing a VPN gateway</p>
+</td>
+<td class="cellrowborder" valign="top" width="23.43%" headers="mcps1.3.6.8.2.5.1.2 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p1672914532718">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="26.57%" headers="mcps1.3.6.8.2.5.1.3 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p1714214324443">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.6.8.2.5.1.4 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p6823182215435">√</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_row5504155713308"><td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.6.8.2.5.1.1 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p1416113562241">Querying the VPN gateway list</p>
+</td>
+<td class="cellrowborder" valign="top" width="23.43%" headers="mcps1.3.6.8.2.5.1.2 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p972123182511">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="26.57%" headers="mcps1.3.6.8.2.5.1.3 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p11721736259">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.6.8.2.5.1.4 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p11721135257">√</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_row14642143411715"><td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.6.8.2.5.1.1 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p176426343178">Updating a VPN gateway</p>
+</td>
+<td class="cellrowborder" valign="top" width="23.43%" headers="mcps1.3.6.8.2.5.1.2 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p186421334141715">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="26.57%" headers="mcps1.3.6.8.2.5.1.3 "><ul id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_ul0708101310519"><li id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_li270811131150">Enterprise Edition VPN: √</li><li id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_li170817138519">Classic VPN: ×</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.6.8.2.5.1.4 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p59991362446">×</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_row1896865917209"><td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.6.8.2.5.1.1 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p1096815916209">Deleting a VPN gateway</p>
+</td>
+<td class="cellrowborder" valign="top" width="23.43%" headers="mcps1.3.6.8.2.5.1.2 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p1044518142307">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="26.57%" headers="mcps1.3.6.8.2.5.1.3 "><ul id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_ul471201313513"><li id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_li1471231315518">Enterprise Edition VPN: √</li><li id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_li11712101312518">Classic VPN: ×</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.6.8.2.5.1.4 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p147811717446">×</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_row8489929248"><td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.6.8.2.5.1.1 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p147361620174214">Creating a VPN connection</p>
+</td>
+<td class="cellrowborder" valign="top" width="23.43%" headers="mcps1.3.6.8.2.5.1.2 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p124521144302">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="26.57%" headers="mcps1.3.6.8.2.5.1.3 "><ul id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_ul938914374238"><li id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_li1838943712238">Enterprise Edition VPN: √</li><li id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_li1938933732314">Classic VPN: √</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.6.8.2.5.1.4 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p91009815449">×</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_row135669505271"><td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.6.8.2.5.1.1 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p1056615072715">Viewing a VPN connection</p>
+</td>
+<td class="cellrowborder" valign="top" width="23.43%" headers="mcps1.3.6.8.2.5.1.2 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p5566175032719">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="26.57%" headers="mcps1.3.6.8.2.5.1.3 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p514303234417">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.6.8.2.5.1.4 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p6823622104319">√</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_row8857313193112"><td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.6.8.2.5.1.1 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p1911121652518">Querying the VPN connection list</p>
+</td>
+<td class="cellrowborder" valign="top" width="23.43%" headers="mcps1.3.6.8.2.5.1.2 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p153014226250">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="26.57%" headers="mcps1.3.6.8.2.5.1.3 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p205302229257">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.6.8.2.5.1.4 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p453018229254">√</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_row71214169213"><td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.6.8.2.5.1.1 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p273616206427">Updating a VPN connection</p>
+</td>
+<td class="cellrowborder" valign="top" width="23.43%" headers="mcps1.3.6.8.2.5.1.2 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p94551214163014">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="26.57%" headers="mcps1.3.6.8.2.5.1.3 "><ul id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_ul28584962311"><li id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_li178513496234">Enterprise Edition VPN: √</li><li id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_li78512493239">Classic VPN: √</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.6.8.2.5.1.4 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p95965913447">×</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_row86421234171714"><td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.6.8.2.5.1.1 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p147361620134211">Deleting a VPN connection</p>
+</td>
+<td class="cellrowborder" valign="top" width="23.43%" headers="mcps1.3.6.8.2.5.1.2 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p545815141301">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="26.57%" headers="mcps1.3.6.8.2.5.1.3 "><ul id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_ul988124915236"><li id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_li48819494232">Enterprise Edition VPN: ×</li><li id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_li988349142313">Classic VPN: √</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.6.8.2.5.1.4 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p1488141012441">×</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_row1175655152513"><td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.6.8.2.5.1.1 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p1299158182516">Creating a customer gateway</p>
+</td>
+<td class="cellrowborder" valign="top" width="23.43%" headers="mcps1.3.6.8.2.5.1.2 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p1099187252">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="26.57%" headers="mcps1.3.6.8.2.5.1.3 "><ul id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_ul0133164119243"><li id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_li1313374115248">Enterprise Edition VPN: √</li><li id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_li71331741172420">Classic VPN: N/A</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.6.8.2.5.1.4 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p29920815255">×</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_row187561654252"><td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.6.8.2.5.1.1 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p49998102517">Viewing a customer gateway</p>
+</td>
+<td class="cellrowborder" valign="top" width="23.43%" headers="mcps1.3.6.8.2.5.1.2 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p109917810258">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="26.57%" headers="mcps1.3.6.8.2.5.1.3 "><ul id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_ul10768550112411"><li id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_li1176835092412">Enterprise Edition VPN: √</li><li id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_li1176816503241">Classic VPN: N/A</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.6.8.2.5.1.4 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p910078182513">√</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_row1144813003110"><td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.6.8.2.5.1.1 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p898665016255">Querying the customer gateway list</p>
+</td>
+<td class="cellrowborder" valign="top" width="23.43%" headers="mcps1.3.6.8.2.5.1.2 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p1298618506257">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="26.57%" headers="mcps1.3.6.8.2.5.1.3 "><ul id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_ul1298685014254"><li id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_li898615504254">Enterprise Edition VPN: √</li><li id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_li18986165012253">Classic VPN: N/A</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.6.8.2.5.1.4 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p16986205019256">√</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_row13996171162515"><td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.6.8.2.5.1.1 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p5100208182510">Updating a customer gateway</p>
+</td>
+<td class="cellrowborder" valign="top" width="23.43%" headers="mcps1.3.6.8.2.5.1.2 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p610018142517">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="26.57%" headers="mcps1.3.6.8.2.5.1.3 "><ul id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_ul5772145011242"><li id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_li14772115052411">Enterprise Edition VPN: √</li><li id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_li7772750152418">Classic VPN: N/A</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.6.8.2.5.1.4 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p310015802519">×</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_row194879014258"><td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.6.8.2.5.1.1 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p3100168182510">Deleting a customer gateway</p>
+</td>
+<td class="cellrowborder" valign="top" width="23.43%" headers="mcps1.3.6.8.2.5.1.2 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p1210010872513">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="26.57%" headers="mcps1.3.6.8.2.5.1.3 "><ul id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_ul177555012413"><li id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_li27751450162412">Enterprise Edition VPN: √</li><li id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_li8775050162416">Classic VPN: N/A</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.6.8.2.5.1.4 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p14100108182516">×</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_row47024383111"><td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.6.8.2.5.1.1 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p02293116410">Creating a VPN connection monitor</p>
+</td>
+<td class="cellrowborder" valign="top" width="23.43%" headers="mcps1.3.6.8.2.5.1.2 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p199513916263">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="26.57%" headers="mcps1.3.6.8.2.5.1.3 "><ul id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_ul195179122613"><li id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_li149511394263">Enterprise Edition VPN: √</li><li id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_li3951189162617">Classic VPN: ×</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.6.8.2.5.1.4 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p9951596265">×</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_row670124310316"><td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.6.8.2.5.1.1 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p11475319175817">Querying a VPN connection monitor</p>
+</td>
+<td class="cellrowborder" valign="top" width="23.43%" headers="mcps1.3.6.8.2.5.1.2 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p1447571965814">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="26.57%" headers="mcps1.3.6.8.2.5.1.3 "><ul id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_ul847512199580"><li id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_li1747511925817">Enterprise Edition VPN: √</li><li id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_li1947512197580">Classic VPN: ×</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.6.8.2.5.1.4 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p15475131915817">√</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_row5707436318"><td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.6.8.2.5.1.1 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p52498421753">Querying the VPN connection monitor list</p>
+</td>
+<td class="cellrowborder" valign="top" width="23.43%" headers="mcps1.3.6.8.2.5.1.2 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p55798125265">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="26.57%" headers="mcps1.3.6.8.2.5.1.3 "><ul id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_ul11579201282610"><li id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_li1157991292611">Enterprise Edition VPN: √</li><li id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_li7579191215269">Classic VPN: ×</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.6.8.2.5.1.4 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p8579171219261">√</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_row107024319315"><td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.6.8.2.5.1.1 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p75961251852">Deleting a VPN connection monitor</p>
+</td>
+<td class="cellrowborder" valign="top" width="23.43%" headers="mcps1.3.6.8.2.5.1.2 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p583171352616">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="26.57%" headers="mcps1.3.6.8.2.5.1.3 "><ul id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_ul68311113112615"><li id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_li583141314261">Enterprise Edition VPN: √</li><li id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_li983120131268">Classic VPN: ×</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.6.8.2.5.1.4 "><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p483151318264">×</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+<div class="note" id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_note7825840181620"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_p882544011167">Classic VPN: For details about how to create a user and grant VPC permissions to the user, see <a href="https://docs.otc.t-systems.com/virtual-private-cloud/umn/permissions_management/creating_a_user_and_granting_vpc_permissions.html" target="_blank" rel="noopener noreferrer">Creating a User and Granting VPC Permissions</a>.</p>
+</div></div>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_en-us_topic_0173524723_en-us_topic_0173475706_en-us_topic_0170232209_section176871218183512"><h4 class="sectiontitle">Helpful Links</h4><ul id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_en-us_topic_0173524723_en-us_topic_0173475706_en-us_topic_0170232209_ul13875918103514"><li id="EN-US_TOPIC_0000001965006205__en-us_topic_0000001542014682_li439484264317"><a href="https://docs.otc.t-systems.com/usermanual/iam/iam_01_0026.html" target="_blank" rel="noopener noreferrer">IAM Service Overview</a></li></ul>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_01_0000.html">Overview</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_01_0012.html b/docs/vpn/umn/vpn_01_0012.html
new file mode 100644
index 00000000..913bd8d6
--- /dev/null
+++ b/docs/vpn/umn/vpn_01_0012.html
@@ -0,0 +1,12 @@
+<a name="EN-US_TOPIC_0000001965006209"></a><a name="EN-US_TOPIC_0000001965006209"></a>
+
+<h1 class="topictitle1">VPN Gateway</h1>
+<div id="body8662426"><p id="EN-US_TOPIC_0000001965006209__en-us_topic_0000001592573829_p141911413172115">A VPN gateway is a virtual gateway of <span id="EN-US_TOPIC_0000001965006209__en-us_topic_0000001592573829_ph54292439913">VPN</span> on the cloud. It establishes secure private connections with a customer gateway in your on-premises network or data center.</p>
+<p id="EN-US_TOPIC_0000001965006209__en-us_topic_0000001592573829_p51851723513">A VPN gateway needs to work with a customer gateway in your on-premises data center.</p>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_01_0034.html">Basic Concepts</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_01_0013.html b/docs/vpn/umn/vpn_01_0013.html
new file mode 100644
index 00000000..b179f710
--- /dev/null
+++ b/docs/vpn/umn/vpn_01_0013.html
@@ -0,0 +1,12 @@
+<a name="EN-US_TOPIC_0000001964846441"></a><a name="EN-US_TOPIC_0000001964846441"></a>
+
+<h1 class="topictitle1">VPN Connection</h1>
+<div id="body8662426"><p id="EN-US_TOPIC_0000001964846441__en-us_topic_0000001542334062_p138316535219">A VPN connection is a secure channel between a VPN gateway and a customer gateway. VPN connections use the IKE and IPsec protocols to encrypt the transmitted data.</p>
+<p id="EN-US_TOPIC_0000001964846441__en-us_topic_0000001542334062_p22471222102919">A VPN connection uses the IKE and IPsec protocols to encrypt transmitted data, ensuring data security and reliability.</p>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_01_0034.html">Basic Concepts</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_01_0014.html b/docs/vpn/umn/vpn_01_0014.html
new file mode 100644
index 00000000..04aba15a
--- /dev/null
+++ b/docs/vpn/umn/vpn_01_0014.html
@@ -0,0 +1,12 @@
+<a name="EN-US_TOPIC_0000001937647870"></a><a name="EN-US_TOPIC_0000001937647870"></a>
+
+<h1 class="topictitle1">VPN Gateway Bandwidth</h1>
+<div id="body8662426"><p id="EN-US_TOPIC_0000001937647870__en-us_topic_0000001542174258_p1243634816384">The bandwidth you purchased for a VPN gateway refers to outbound bandwidth, that is, bandwidth for traffic sent from a VPC on the cloud to a customer gateway in an on-premises data center.</p>
+<ul id="EN-US_TOPIC_0000001937647870__en-us_topic_0000001542174258_ul24271159391"><li id="EN-US_TOPIC_0000001937647870__en-us_topic_0000001542174258_li34271515113917">If the purchased bandwidth is 10 Mbit/s or less, the inbound bandwidth is limited to 10 Mbit/s.</li><li id="EN-US_TOPIC_0000001937647870__en-us_topic_0000001542174258_li20427191523920">If the purchased bandwidth is greater than 10 Mbit/s, the inbound bandwidth is the same as the EIP bandwidth.</li></ul>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_01_0034.html">Basic Concepts</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_01_0015.html b/docs/vpn/umn/vpn_01_0015.html
new file mode 100644
index 00000000..4acdfcea
--- /dev/null
+++ b/docs/vpn/umn/vpn_01_0015.html
@@ -0,0 +1,12 @@
+<a name="EN-US_TOPIC_0000001937807218"></a><a name="EN-US_TOPIC_0000001937807218"></a>
+
+<h1 class="topictitle1">Local Subnet</h1>
+<div id="body8662426"><p id="EN-US_TOPIC_0000001937807218__en-us_topic_0000001542174282_p42414394392">Local subnets are VPC subnets that need to communicate with an on-premises network through VPN. When you buy a VPN gateway, you can set <strong id="EN-US_TOPIC_0000001937807218__en-us_topic_0000001542174282_b8547514162320">Local Subnet</strong> to either of the following options:</p>
+<ul id="EN-US_TOPIC_0000001937807218__en-us_topic_0000001542174282_ul5606347103914"><li id="EN-US_TOPIC_0000001937807218__en-us_topic_0000001542174282_li0606114783919"><strong id="EN-US_TOPIC_0000001937807218__en-us_topic_0000001542174282_b798220140545">Select subnet</strong>: Select subnets from the drop-down list. This is recommended if all subnets that require VPN communication are in the VPC.</li><li id="EN-US_TOPIC_0000001937807218__en-us_topic_0000001542174282_li260614475394"><strong id="EN-US_TOPIC_0000001937807218__en-us_topic_0000001542174282_b429219547">Enter CIDR block</strong>: Enter a subnet using CIDR notation (example: 192.168.0.0/16). If multiple subnets are specified, separate them by a comma (,). This is recommended if the CIDR blocks requiring VPN communication are not in the VPC to which the VPN gateway belongs. For example, CIDR blocks (such as 0.0.0.0/0) that are connected using a VPC peering are not in the VPC to which the VPN gateway belongs.</li></ul>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_01_0034.html">Basic Concepts</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_01_0016.html b/docs/vpn/umn/vpn_01_0016.html
new file mode 100644
index 00000000..33017a74
--- /dev/null
+++ b/docs/vpn/umn/vpn_01_0016.html
@@ -0,0 +1,11 @@
+<a name="EN-US_TOPIC_0000001965006217"></a><a name="EN-US_TOPIC_0000001965006217"></a>
+
+<h1 class="topictitle1">Customer Gateway</h1>
+<div id="body8662426"><p id="EN-US_TOPIC_0000001965006217__en-us_topic_0000001592693941_p58123219311">A customer gateway is a resource that provides information on the console about your customer gateway device, which can be a physical device or software application in your on-premises data center.</p>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_01_0034.html">Basic Concepts</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_01_0017.html b/docs/vpn/umn/vpn_01_0017.html
new file mode 100644
index 00000000..63050dd2
--- /dev/null
+++ b/docs/vpn/umn/vpn_01_0017.html
@@ -0,0 +1,14 @@
+<a name="EN-US_TOPIC_0000001964846449"></a><a name="EN-US_TOPIC_0000001964846449"></a>
+
+<h1 class="topictitle1">Customer Subnet</h1>
+<div id="body8662426"><p id="EN-US_TOPIC_0000001964846449__en-us_topic_0000001542494042_p1711720528439">Customer subnets are subnets in an on-premises data center that access a VPC on the cloud through a VPN. You need to enter subnets using CIDR notation (example: 192.168.0.0/16), and with each entry separated by a comma.</p>
+<p id="EN-US_TOPIC_0000001964846449__en-us_topic_0000001542494042_p20117135215431">After configuring a customer subnet, you do not need to add a route for it. The VPN service will automatically deliver routes pointing to the customer subnet.</p>
+<div class="note" id="EN-US_TOPIC_0000001964846449__en-us_topic_0000001542494042_note15570182912452"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="EN-US_TOPIC_0000001964846449__en-us_topic_0000001542494042_p195711729194514">A customer subnet cannot be set to a Class D or Class E IP address or an IP address starting with 127.</p>
+</div></div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_01_0034.html">Basic Concepts</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_01_0018.html b/docs/vpn/umn/vpn_01_0018.html
new file mode 100644
index 00000000..3f5d0f47
--- /dev/null
+++ b/docs/vpn/umn/vpn_01_0018.html
@@ -0,0 +1,12 @@
+<a name="EN-US_TOPIC_0000001937647878"></a><a name="EN-US_TOPIC_0000001937647878"></a>
+
+<h1 class="topictitle1">PSK</h1>
+<div id="body8662426"><p id="EN-US_TOPIC_0000001937647878__en-us_topic_0000001542014534_p169821636154815">A pre-shared key (PSK) is a key configured for a VPN connection on the cloud. It is used for IKE negotiation between VPN devices at both ends of a VPN connection. Ensure that the PSK configurations at both ends of the VPN connection are the same. Otherwise, the IKE negotiation will fail.</p>
+<p id="EN-US_TOPIC_0000001937647878__en-us_topic_0000001542014534_p788953164518"></p>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_01_0034.html">Basic Concepts</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_01_0020.html b/docs/vpn/umn/vpn_01_0020.html
new file mode 100644
index 00000000..d44afd99
--- /dev/null
+++ b/docs/vpn/umn/vpn_01_0020.html
@@ -0,0 +1,12 @@
+<a name="EN-US_TOPIC_0000001965006193"></a><a name="EN-US_TOPIC_0000001965006193"></a>
+
+<h1 class="topictitle1">Identity Authentication and Access Control</h1>
+<div id="body8662426"><p id="EN-US_TOPIC_0000001965006193__en-us_topic_0000001592573777_p1058990631">A VPN connection supports authentication of a customer gateway using a pre-shared key (PSK).</p>
+<p id="EN-US_TOPIC_0000001965006193__en-us_topic_0000001592573777_p117921755128">The identity authentication succeeds and the VPN connection can be set up only when the PSK configured on the customer gateway is the same as that configured for the VPN connection.</p>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_08_1503.html">Security</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_01_0021.html b/docs/vpn/umn/vpn_01_0021.html
new file mode 100644
index 00000000..61daf5cc
--- /dev/null
+++ b/docs/vpn/umn/vpn_01_0021.html
@@ -0,0 +1,76 @@
+<a name="EN-US_TOPIC_0000001964846421"></a><a name="EN-US_TOPIC_0000001964846421"></a>
+
+<h1 class="topictitle1">Data Protection Technologies</h1>
+<div id="body8662426"><ul id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_ul153161262217"><li id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_li214892619235">VPN is a tunneling technology that provides IP-layer security using the IKE/IPsec protocol suite. It ensures confidentiality and integrity of IP data packets and prevents them from being intercepted, disclosed, or tampered with on insecure networks (such as the Internet).</li><li id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_li14465142032216">When creating a VPN connection, you can configure data encryption and authentication algorithms in a policy.<p id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_p185920503517"><a name="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_li14465142032216"></a><a name="en-us_topic_0000001592879081_li14465142032216"></a><a href="#EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_table108927017443">Table 1</a> lists the algorithms recommended for VPN in descending order of security.</p>
+
+<div class="tablenoborder"><a name="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_table108927017443"></a><a name="en-us_topic_0000001592879081_table108927017443"></a><table cellpadding="4" cellspacing="0" summary="" id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_table108927017443" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Parameters for configuring a VPN policy</caption><thead align="left"><tr id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_row188910011443"><th align="left" class="cellrowborder" colspan="2" valign="top" id="mcps1.3.1.2.2.2.4.1.1"><p id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_p0889702443">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" id="mcps1.3.1.2.2.2.4.1.2"><p id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_p1988960104418">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_row68892074410"><td class="cellrowborder" rowspan="4" valign="top" width="13.24867513248675%" headers="mcps1.3.1.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_p128891606443">IKE Policy</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.076892310768926%" headers="mcps1.3.1.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_p17889804448">Version</p>
+</td>
+<td class="cellrowborder" valign="top" width="55.67443255674432%" headers="mcps1.3.1.2.2.2.4.1.2 "><ul id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_ul1588970164411"><li id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_li138894011444">v2</li><li id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_li178891401443">v1 (v1 has low security. If the device supports v2, v2 is recommended.)</li></ul>
+<p id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_p340085485114">The default value is <strong id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_b198969420185">v2</strong>.</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_row08901014417"><td class="cellrowborder" valign="top" headers="mcps1.3.1.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_p888910034415">Authentication Algorithm</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_p989010044415">Hash algorithm used for authentication. The following algorithms are supported:</p>
+<ul id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_ul6890170174419"><li id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_li168909024412">SHA2-512</li><li id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_li1289050164413">SHA2-384</li><li id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_li16890130194413">SHA2-256</li><li id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_li8890801447">MD5(Insecure. Not recommended.)</li><li id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_li489019010444">SHA1(Insecure. Not recommended.)</li></ul>
+<p id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_p18909010444">By default, the SHA2-256 algorithm is used.</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_row1890200194418"><td class="cellrowborder" valign="top" headers="mcps1.3.1.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_p1890405448">Encryption Algorithm</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_p589020124415">The following encryption algorithms are supported:</p>
+<ul id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_ul28901104447"><li id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_li13890904445">AES-256-GCM-16 (supported only by Enterprise Edition VPN)</li><li id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_li28901401445">AES-128-GCM-16 (supported only by Enterprise Edition VPN)</li><li id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_li0890505441">AES-256(Insecure. Not recommended.)</li><li id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_li78908016443">AES-192(Insecure. Not recommended.)</li><li id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_li1689011034411">AES-128(Insecure. Not recommended.)</li><li id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_li489017010445">3DES(Insecure. Not recommended.)</li></ul>
+<p id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_p1889013010449">By default, the AES-128 algorithm is used.</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_row1789110034412"><td class="cellrowborder" valign="top" headers="mcps1.3.1.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_p6890808446">DH Algorithm</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_p28902024410">The following algorithms are supported:</p>
+<ul id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_ul9891110154415"><li id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_li1189012011442">Group 21</li><li id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_li1989120134412">Group 20</li><li id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_li2891110164410">Group 19</li><li id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_li9891150174413">Group 16</li><li id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_li14891902445">Group 15</li><li id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_li88913014449">Group 14(Insecure. Not recommended.)</li><li id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_li589113064414">Group 5(Insecure. Not recommended.)</li><li id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_li18891150184413">Group 2(Insecure. Not recommended.)</li><li id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_li889190134419">Group 1(Insecure. Not recommended.)</li></ul>
+<p id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_p148911406442">By default, Group 15 is used.</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_row489250154416"><td class="cellrowborder" rowspan="2" valign="top" width="13.24867513248675%" headers="mcps1.3.1.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_p1889115024411">IPsec Policy</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.076892310768926%" headers="mcps1.3.1.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_p889113014418">Authentication Algorithm</p>
+</td>
+<td class="cellrowborder" valign="top" width="55.67443255674432%" headers="mcps1.3.1.2.2.2.4.1.2 "><p id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_p78912044413">Hash algorithm used for authentication. The following algorithms are supported:</p>
+<ul id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_ul88927019442"><li id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_li2089118010444">SHA2-512</li><li id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_li138916054412">SHA2-384</li><li id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_li1989130174414">SHA2-256</li><li id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_li9892190174412">MD5(Insecure. Not recommended.)</li><li id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_li789213018446">SHA1(Insecure. Not recommended.)</li></ul>
+<p id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_p108921104441">By default, the SHA2-256 algorithm is used.</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_row1892403443"><td class="cellrowborder" valign="top" headers="mcps1.3.1.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_p389230104412">Encryption Algorithm</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_p389214024415">The following encryption algorithms are supported:</p>
+<ul id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_ul1689217015444"><li id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_li689211019448">AES-256-GCM-16</li><li id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_li16892110194411">AES-128-GCM-16</li><li id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_li98925015442">AES-256(Insecure. Not recommended.)</li><li id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_li089280104418">AES-192(Insecure. Not recommended.)</li><li id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_li3892204447">AES-128(Insecure. Not recommended.)</li><li id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_li178925094416">3DES(Insecure. Not recommended.)</li></ul>
+<p id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_p589217034417">By default, the AES-128 algorithm is used.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</li></ul>
+<div class="section" id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_section138076351810"><h4 class="sectiontitle">PFS</h4><p id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_p145615618287">Perfect Forward Secrecy (PFS) ensures that the compromise of the keys of an IPsec tunnel does not affect the security of other tunnels by leveraging that the keys of these tunnels are irrelevant to each other. By default, the PFS function is enabled for VPN.</p>
+<p id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_p1725232112411">Each IPsec VPN connection consists of at least one IPsec tunnel, each of which uses an independent set of keys to protect user traffic.</p>
+<p id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_p386519189185">VPN supports the following algorithms:</p>
+<ul id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_ul14348123918187"><li id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_li9991191204914">DH group 1 (This algorithm is insecure. Exercise caution when using it.)</li><li id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_li19732921144919">DH group 2 (This algorithm is insecure. Exercise caution when using it.)</li><li id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_li743162519496">DH group 5 (This algorithm is insecure. Exercise caution when using it.)</li><li id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_li1261613343491">DH group 14</li><li id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_li153481539131819">DH group 15</li><li id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_li134863901816">DH group 16</li><li id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_li13348639151815">DH group 19</li><li id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_li14348153911813">DH group 20</li><li id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_li14348123920184">DH group 21</li></ul>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_section199914573119"><h4 class="sectiontitle">Anti-replay</h4><p id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_p416132313218">Anti-replay uses sequence numbers to protect IPsec encrypted packets against replay attacks, which are initiated by repeatedly sending intercepted data packets. By default, the anti-replay function is enabled for the VPN service.</p>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_section1278722194713"><h4 class="sectiontitle">Resource Isolation</h4><p id="EN-US_TOPIC_0000001964846421__en-us_topic_0000001592879081_p8060118">A VPN gateway is exclusive to a tenant. As such, tenants are isolated from each, ensuring tenant data security.</p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_08_1503.html">Security</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_01_0022.html b/docs/vpn/umn/vpn_01_0022.html
new file mode 100644
index 00000000..fd3fea1f
--- /dev/null
+++ b/docs/vpn/umn/vpn_01_0022.html
@@ -0,0 +1,12 @@
+<a name="EN-US_TOPIC_0000001937647854"></a><a name="EN-US_TOPIC_0000001937647854"></a>
+
+<h1 class="topictitle1">Audit and Logs</h1>
+<div id="body8662426"><p id="EN-US_TOPIC_0000001937647854__en-us_topic_0000001542494010_p8060118">VPN records the create, delete, and modify operations performed on all resources initiated by your account, and sends the records to Cloud Trace Service (CTS) in log files for query, audit, and source tracing.</p>
+<div class="fignone" id="EN-US_TOPIC_0000001937647854__en-us_topic_0000001542494010_fig1487512195210"><span class="figcap"><b>Figure 1 </b>Audit and logs</span><br><span><img class="vsd" id="EN-US_TOPIC_0000001937647854__en-us_topic_0000001542494010_image13821113823820" src="figure/en-us_image_0000001592774029.png" width="NaN" height="NaN"></span></div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_08_1503.html">Security</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_01_0023.html b/docs/vpn/umn/vpn_01_0023.html
new file mode 100644
index 00000000..770fab82
--- /dev/null
+++ b/docs/vpn/umn/vpn_01_0023.html
@@ -0,0 +1,12 @@
+<a name="EN-US_TOPIC_0000001937807186"></a><a name="EN-US_TOPIC_0000001937807186"></a>
+
+<h1 class="topictitle1">Service Resilience</h1>
+<div id="body8662426"><p id="EN-US_TOPIC_0000001937807186__en-us_topic_0000001542333778_p821091317373">VPN provides the dual-AZ disaster recovery function. You can create a VPN gateway in two AZs in the same region, and create a VPN connection between the customer gateway and each AZ.</p>
+<p id="EN-US_TOPIC_0000001937807186__en-us_topic_0000001542333778_p134212152031">If the VPN gateway or VPN connection in an AZ is faulty, traffic is automatically switched to the other VPN connection, ensuring normal service running.</p>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_08_1503.html">Security</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_01_0027.html b/docs/vpn/umn/vpn_01_0027.html
new file mode 100644
index 00000000..93f12816
--- /dev/null
+++ b/docs/vpn/umn/vpn_01_0027.html
@@ -0,0 +1,25 @@
+<a name="EN-US_TOPIC_0000001937807222"></a><a name="EN-US_TOPIC_0000001937807222"></a>
+
+<h1 class="topictitle1">Region and AZ</h1>
+<div id="body8662426"><div class="section" id="EN-US_TOPIC_0000001937807222__en-us_topic_0000001592693965_section7128164317336"><h4 class="sectiontitle">Concepts</h4><p id="EN-US_TOPIC_0000001937807222__en-us_topic_0000001592693965_en-us_topic_0184026189_p212716216381">Regions and availability zones (AZs) identify the locations of data centers. You can create resources in regions and AZs.</p>
+<ul id="EN-US_TOPIC_0000001937807222__en-us_topic_0000001592693965_en-us_topic_0184026189_ul86578533460"><li id="EN-US_TOPIC_0000001937807222__en-us_topic_0000001592693965_en-us_topic_0184026189_li14657175334618">A region is a physical data center location. Each region is completely independent, maximizing the fault tolerance capability and stability. After you create resources in a region, the region cannot be changed.</li><li id="EN-US_TOPIC_0000001937807222__en-us_topic_0000001592693965_en-us_topic_0184026189_li45875020473">An AZ is a physical location with independent power supplies and network in a region. A region can contain multiple AZs that are physically isolated but internally interconnected. Faults that occur in one AZ will not affect other AZs. The inter-AZ connections are low-latency and unexpensive.</li></ul>
+<p id="EN-US_TOPIC_0000001937807222__en-us_topic_0000001592693965_en-us_topic_0184026189_p1479174514614"><a href="#EN-US_TOPIC_0000001937807222__en-us_topic_0000001592693965_en-us_topic_0184026189_fig8747114281212">Figure 1</a> shows the relationship between regions and AZs.</p>
+<div class="fignone" id="EN-US_TOPIC_0000001937807222__en-us_topic_0000001592693965_en-us_topic_0184026189_fig8747114281212"><a name="EN-US_TOPIC_0000001937807222__en-us_topic_0000001592693965_en-us_topic_0184026189_fig8747114281212"></a><a name="en-us_topic_0000001592693965_en-us_topic_0184026189_fig8747114281212"></a><span class="figcap"><b>Figure 1 </b>Regions and AZs</span><br><span><img class="vsd" id="EN-US_TOPIC_0000001937807222__en-us_topic_0000001592693965_en-us_topic_0184026189_image12748194211128" src="figure/en-us_image_0000001542015014.png" width="NaN" height="NaN"></span></div>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001937807222__en-us_topic_0000001592693965_section189753508342"><h4 class="sectiontitle">Selecting a Region</h4><ul id="EN-US_TOPIC_0000001937807222__en-us_topic_0000001592693965_ul56301140103519"><li id="EN-US_TOPIC_0000001937807222__en-us_topic_0000001592693965_li1440132914492">Resource price<p id="EN-US_TOPIC_0000001937807222__en-us_topic_0000001592693965_p965795812588"><a name="EN-US_TOPIC_0000001937807222__en-us_topic_0000001592693965_li1440132914492"></a><a name="en-us_topic_0000001592693965_li1440132914492"></a>Resource prices may vary in different regions. </p>
+</li></ul>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001937807222__en-us_topic_0000001592693965_section145271718387"><h4 class="sectiontitle">Selecting a Region</h4><p id="EN-US_TOPIC_0000001937807222__en-us_topic_0000001592693965_en-us_topic_0184026189_p68521454132212">You are advised to select a region close to you or your target users to reduce network latency and improve the access speed.</p>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001937807222__en-us_topic_0000001592693965_section2413832113816"><h4 class="sectiontitle">Selecting an AZ</h4><p id="EN-US_TOPIC_0000001937807222__en-us_topic_0000001592693965_en-us_topic_0184026189_p859161416717">When selecting a region to deploy resources, consider your applications' requirements on disaster recovery (DR) and network latency.</p>
+<ul id="EN-US_TOPIC_0000001937807222__en-us_topic_0000001592693965_en-us_topic_0184026189_ul157203571473"><li id="EN-US_TOPIC_0000001937807222__en-us_topic_0000001592693965_en-us_topic_0184026189_li7720175710711">For robust DR, deploy resources in different AZs within the same region.</li><li id="EN-US_TOPIC_0000001937807222__en-us_topic_0000001592693965_en-us_topic_0184026189_li109763595719">For a low network latency, deploy resources in the same AZ.</li></ul>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001937807222__en-us_topic_0000001592693965_en-us_topic_0184026189_section1110135820407"><h4 class="sectiontitle">Regions and Endpoints</h4><p id="EN-US_TOPIC_0000001937807222__en-us_topic_0000001592693965_en-us_topic_0184026189_p361784821111">Before you use an API to call resources, specify its region and endpoint. For more information, see <a href="https://docs.otc.t-systems.com/regions-and-endpoints/index.html" target="_blank" rel="noopener noreferrer">Regions and Endpoints</a>.</p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_01_0034.html">Basic Concepts</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_01_0032.html b/docs/vpn/umn/vpn_01_0032.html
new file mode 100644
index 00000000..e24d0d51
--- /dev/null
+++ b/docs/vpn/umn/vpn_01_0032.html
@@ -0,0 +1,29 @@
+<a name="EN-US_TOPIC_0000001965006185"></a><a name="EN-US_TOPIC_0000001965006185"></a>
+
+<h1 class="topictitle1">Application Scenarios</h1>
+<div id="body8662426"><div class="section" id="EN-US_TOPIC_0000001965006185__en-us_topic_0000001542174386_section14587411103213"><h4 class="sectiontitle">Hybrid Cloud Deployment</h4><div class="p" id="EN-US_TOPIC_0000001965006185__en-us_topic_0000001542174386_p114551744103218">You can use a VPN to connect your on-premises data center to a VPC and use the elastic and fast scaling capabilities of the cloud to expand application computing capabilities. <a href="#EN-US_TOPIC_0000001965006185__en-us_topic_0000001542174386_fig985610511108">Figure 1</a> shows the hybrid cloud deployment.<div class="fignone" id="EN-US_TOPIC_0000001965006185__en-us_topic_0000001542174386_fig985610511108"><a name="EN-US_TOPIC_0000001965006185__en-us_topic_0000001542174386_fig985610511108"></a><a name="en-us_topic_0000001542174386_fig985610511108"></a><span class="figcap"><b>Figure 1 </b>Hybrid cloud deployment</span><br><span><img class="imgResize" id="EN-US_TOPIC_0000001965006185__en-us_topic_0000001542174386_image16768931422" src="figure/en-us_image_0000001972699077.png" width="497.42" height="244.86630000000002" title="Click to enlarge"></span></div>
+</div>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001965006185__en-us_topic_0000001542174386_section6241644113713"><h4 class="sectiontitle">Cross-Region Interconnection Between VPCs</h4><p id="EN-US_TOPIC_0000001965006185__en-us_topic_0000001542174386_p167861352203712">With VPNs, you can connect VPCs in different regions to enable connectivity between user services in these regions, as shown in <a href="#EN-US_TOPIC_0000001965006185__en-us_topic_0000001542174386_fig153958299125">Figure 2</a>.</p>
+<div class="fignone" id="EN-US_TOPIC_0000001965006185__en-us_topic_0000001542174386_fig153958299125"><a name="EN-US_TOPIC_0000001965006185__en-us_topic_0000001542174386_fig153958299125"></a><a name="en-us_topic_0000001542174386_fig153958299125"></a><span class="figcap"><b>Figure 2 </b>Cross-region interconnection between VPCs</span><br><span><img class="imgResize" id="EN-US_TOPIC_0000001965006185__en-us_topic_0000001542174386_image571914963413" src="figure/en-us_image_0000001592694309.png" width="497.42" height="204.93970000000002" title="Click to enlarge"></span></div>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001965006185__en-us_topic_0000001542174386_section135144115187"><h4 class="sectiontitle">Enterprise Branch Interconnection</h4><p id="EN-US_TOPIC_0000001965006185__en-us_topic_0000001542174386_p428415414292">A VPN gateway functions as a VPN hub to connect enterprise branches, as shown in <a href="#EN-US_TOPIC_0000001965006185__en-us_topic_0000001542174386_fig1582435310131">Figure 3</a>. This eliminates the need to configure VPN connections between every two branches.</p>
+<div class="fignone" id="EN-US_TOPIC_0000001965006185__en-us_topic_0000001542174386_fig1582435310131"><a name="EN-US_TOPIC_0000001965006185__en-us_topic_0000001542174386_fig1582435310131"></a><a name="en-us_topic_0000001542174386_fig1582435310131"></a><span class="figcap"><b>Figure 3 </b>Enterprise branch interconnection</span><br><span><img class="imgResize" id="EN-US_TOPIC_0000001965006185__en-us_topic_0000001542174386_image105981358115813" src="figure/en-us_image_0000001972697961.png" width="497.42" height="253.87040000000002" title="Click to enlarge"></span></div>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001965006185__en-us_topic_0000001542174386_section141014314813"><h4 class="sectiontitle">Backup Between VPN and Direct Connect</h4><p id="EN-US_TOPIC_0000001965006185__en-us_topic_0000001542174386_p1041033104818">For high reliability purposes, you can connect your on-premises data center to a VPC on the cloud through Direct Connect and VPN that back up each other, as shown in <a href="#EN-US_TOPIC_0000001965006185__en-us_topic_0000001542174386_fig26851202306">Figure 4</a>.</p>
+<div class="fignone" id="EN-US_TOPIC_0000001965006185__en-us_topic_0000001542174386_fig26851202306"><a name="EN-US_TOPIC_0000001965006185__en-us_topic_0000001542174386_fig26851202306"></a><a name="en-us_topic_0000001542174386_fig26851202306"></a><span class="figcap"><b>Figure 4 </b>Backup between VPN and Direct Connect</span><br><span><img class="imgResize" id="EN-US_TOPIC_0000001965006185__en-us_topic_0000001542174386_image210292011577" src="figure/en-us_image_0000001972602221.png" width="497.42" height="259.4032" title="Click to enlarge"></span></div>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_01_0000.html">Overview</a></div>
+</div>
+</div>
+
+
+<script language="JavaScript">
+<!--
+image_size('.imgResize');
+var msg_imageMax = "view original image";
+var msg_imageClose = "close";
+//--></script>
\ No newline at end of file
diff --git a/docs/vpn/umn/vpn_01_0033.html b/docs/vpn/umn/vpn_01_0033.html
new file mode 100644
index 00000000..8b4f60ac
--- /dev/null
+++ b/docs/vpn/umn/vpn_01_0033.html
@@ -0,0 +1,132 @@
+<a name="EN-US_TOPIC_0000001937807178"></a><a name="EN-US_TOPIC_0000001937807178"></a>
+
+<h1 class="topictitle1">Differences between Enterprise Edition VPN and Classic VPN</h1>
+<div id="body8662426">
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_table1912845122813" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Differences between Enterprise Edition VPN and Classic VPN</caption><thead align="left"><tr id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_row11121454287"><th align="left" class="cellrowborder" valign="top" width="19.36%" id="mcps1.3.1.2.5.1.1"><p id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_p121214542817">Category</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="27.97%" id="mcps1.3.1.2.5.1.2"><p id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_p15129458282">Item</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="28.4%" id="mcps1.3.1.2.5.1.3"><p id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_p812204518282">Enterprise Edition VPN</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="24.27%" id="mcps1.3.1.2.5.1.4"><p id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_p1122459281">Classic VPN</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_row41234512288"><td class="cellrowborder" valign="top" width="19.36%" headers="mcps1.3.1.2.5.1.1 "><p id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_p712154572813">Tenant isolation</p>
+</td>
+<td class="cellrowborder" valign="top" width="27.97%" headers="mcps1.3.1.2.5.1.2 "><p id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_p512745142819">Tenant-exclusive gateway</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.4%" headers="mcps1.3.1.2.5.1.3 "><p id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_p9127459289">Supported</p>
+</td>
+<td class="cellrowborder" valign="top" width="24.27%" headers="mcps1.3.1.2.5.1.4 "><p id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_p01210451289">Not supported</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_row101214518283"><td class="cellrowborder" valign="top" width="19.36%" headers="mcps1.3.1.2.5.1.1 "><p id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_p131234572812">Features</p>
+</td>
+<td class="cellrowborder" valign="top" width="27.97%" headers="mcps1.3.1.2.5.1.2 "><p id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_p15121245142819">Policy-based mode</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.4%" headers="mcps1.3.1.2.5.1.3 "><p id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_p912114502818">Supported</p>
+</td>
+<td class="cellrowborder" valign="top" width="24.27%" headers="mcps1.3.1.2.5.1.4 "><p id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_p101214512812">Supported</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_row912145162812"><td class="cellrowborder" valign="top" width="19.36%" headers="mcps1.3.1.2.5.1.1 "><p id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_p1075675110283">Features</p>
+</td>
+<td class="cellrowborder" valign="top" width="27.97%" headers="mcps1.3.1.2.5.1.2 "><p id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_p141214453285">Routing mode</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.4%" headers="mcps1.3.1.2.5.1.3 "><p id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_p18121453286">Static routing and BGP routing</p>
+</td>
+<td class="cellrowborder" valign="top" width="24.27%" headers="mcps1.3.1.2.5.1.4 "><p id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_p11244552812">Not supported</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_row1312114542810"><td class="cellrowborder" valign="top" width="19.36%" headers="mcps1.3.1.2.5.1.1 "><p id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_p1575717512281">Features</p>
+</td>
+<td class="cellrowborder" valign="top" width="27.97%" headers="mcps1.3.1.2.5.1.2 "><p id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_p1512194511289">VPN hub</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.4%" headers="mcps1.3.1.2.5.1.3 "><p id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_p2012114562814">Supported</p>
+</td>
+<td class="cellrowborder" valign="top" width="24.27%" headers="mcps1.3.1.2.5.1.4 "><p id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_p712845112811">Not supported</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_row412545112818"><td class="cellrowborder" valign="top" width="19.36%" headers="mcps1.3.1.2.5.1.1 "><p id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_p1875715517286">Features</p>
+</td>
+<td class="cellrowborder" valign="top" width="27.97%" headers="mcps1.3.1.2.5.1.2 "><p id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_p71294510282">Enterprise router</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.4%" headers="mcps1.3.1.2.5.1.3 "><p id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_p41334515281">Supported</p>
+</td>
+<td class="cellrowborder" valign="top" width="24.27%" headers="mcps1.3.1.2.5.1.4 "><p id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_p1313194542817">Not supported</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_row1313174515281"><td class="cellrowborder" valign="top" width="19.36%" headers="mcps1.3.1.2.5.1.1 "><p id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_p2757251162817">Features</p>
+</td>
+<td class="cellrowborder" valign="top" width="27.97%" headers="mcps1.3.1.2.5.1.2 "><p id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_p12132453281">Network type</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.4%" headers="mcps1.3.1.2.5.1.3 "><p id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_p1213245132810">Public network and private network</p>
+</td>
+<td class="cellrowborder" valign="top" width="24.27%" headers="mcps1.3.1.2.5.1.4 "><p id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_p131314459283">Public network</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_row213144572812"><td class="cellrowborder" valign="top" width="19.36%" headers="mcps1.3.1.2.5.1.1 "><p id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_p141314453282">Capacity</p>
+</td>
+<td class="cellrowborder" valign="top" width="27.97%" headers="mcps1.3.1.2.5.1.2 "><p id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_p12139451287">Number of subnets</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.4%" headers="mcps1.3.1.2.5.1.3 "><ul id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_ul1013545192817"><li id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_li141314519285">Route-based mode: 50</li><li id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_li2013114518282">Policy-based mode: 5</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="24.27%" headers="mcps1.3.1.2.5.1.4 "><p id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_p1613154512813">Policy-based mode: 5</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_row8131745192817"><td class="cellrowborder" valign="top" width="19.36%" headers="mcps1.3.1.2.5.1.1 "><p id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_p1948217572912">Capacity</p>
+</td>
+<td class="cellrowborder" valign="top" width="27.97%" headers="mcps1.3.1.2.5.1.2 "><p id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_p613104562817">For more information, see <a href="vpn_01_0036.html#EN-US_TOPIC_0000001699872529__table83170407352">Table 1</a>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.4%" headers="mcps1.3.1.2.5.1.3 "><p id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_p1964892415355">-</p>
+</td>
+<td class="cellrowborder" valign="top" width="24.27%" headers="mcps1.3.1.2.5.1.4 "><p id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_p8648824113518">-</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_row91394518289"><td class="cellrowborder" valign="top" width="19.36%" headers="mcps1.3.1.2.5.1.1 "><p id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_p413945182812">Reliability</p>
+</td>
+<td class="cellrowborder" valign="top" width="27.97%" headers="mcps1.3.1.2.5.1.2 "><p id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_p91316457288">Gateway protection mode</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.4%" headers="mcps1.3.1.2.5.1.3 "><p id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_p1013124512817">Active/Standby or active-active</p>
+</td>
+<td class="cellrowborder" valign="top" width="24.27%" headers="mcps1.3.1.2.5.1.4 "><p id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_p11131445152816">-</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_row1513245182812"><td class="cellrowborder" valign="top" width="19.36%" headers="mcps1.3.1.2.5.1.1 "><p id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_p119487118293">Reliability</p>
+</td>
+<td class="cellrowborder" valign="top" width="27.97%" headers="mcps1.3.1.2.5.1.2 "><p id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_p181334512816">Cross-AZ gateway deployment</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.4%" headers="mcps1.3.1.2.5.1.3 "><p id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_p8131845122818">Supported</p>
+</td>
+<td class="cellrowborder" valign="top" width="24.27%" headers="mcps1.3.1.2.5.1.4 "><p id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_p2133459283">Not supported</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_row1113245122817"><td class="cellrowborder" valign="top" width="19.36%" headers="mcps1.3.1.2.5.1.1 "><p id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_p16653112192915">Reliability</p>
+</td>
+<td class="cellrowborder" valign="top" width="27.97%" headers="mcps1.3.1.2.5.1.2 "><p id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_p51314458282">Active-active VPN connections</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.4%" headers="mcps1.3.1.2.5.1.3 "><p id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_p181344552816">Supported</p>
+</td>
+<td class="cellrowborder" valign="top" width="24.27%" headers="mcps1.3.1.2.5.1.4 "><p id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_p151394515287">Not supported</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_row613745102816"><td class="cellrowborder" valign="top" width="19.36%" headers="mcps1.3.1.2.5.1.1 "><p id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_p1930519311298">Reliability</p>
+</td>
+<td class="cellrowborder" valign="top" width="27.97%" headers="mcps1.3.1.2.5.1.2 "><p id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_p813114512820">Backup with Direct Connect</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.4%" headers="mcps1.3.1.2.5.1.3 "><p id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_p71444519288">Supported</p>
+</td>
+<td class="cellrowborder" valign="top" width="24.27%" headers="mcps1.3.1.2.5.1.4 "><p id="EN-US_TOPIC_0000001937807178__en-us_topic_0000001592694149_p014164515284">Not supported</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_01_0000.html">Overview</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_01_0034.html b/docs/vpn/umn/vpn_01_0034.html
new file mode 100644
index 00000000..a5360314
--- /dev/null
+++ b/docs/vpn/umn/vpn_01_0034.html
@@ -0,0 +1,33 @@
+<a name="EN-US_TOPIC_0000001964846429"></a><a name="EN-US_TOPIC_0000001964846429"></a>
+
+<h1 class="topictitle1">Basic Concepts</h1>
+<div id="body8662426"></div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="vpn_01_0035.html">IPsec VPN</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_08_1504.html">SSL VPN</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_01_0012.html">VPN Gateway</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_01_0013.html">VPN Connection</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_01_0014.html">VPN Gateway Bandwidth</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_01_0015.html">Local Subnet</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_01_0016.html">Customer Gateway</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_01_0017.html">Customer Subnet</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_01_0018.html">PSK</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_01_0027.html">Region and AZ</a></strong><br>
+</li>
+</ul>
+
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_01_0000.html">Overview</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_01_0035.html b/docs/vpn/umn/vpn_01_0035.html
new file mode 100644
index 00000000..5b80bebb
--- /dev/null
+++ b/docs/vpn/umn/vpn_01_0035.html
@@ -0,0 +1,21 @@
+<a name="EN-US_TOPIC_0000001937647862"></a><a name="EN-US_TOPIC_0000001937647862"></a>
+
+<h1 class="topictitle1">IPsec VPN</h1>
+<div id="body8662426"><p id="EN-US_TOPIC_0000001937647862__en-us_topic_0000001592693925_en-us_topic_0030969429_en-us_topic_0030119097_p62935646105214">Internet Protocol Security (IPsec) VPN uses a secure network protocol suite that authenticates and encrypts the packets of data to provide secure encrypted communication between different networks.</p>
+<p id="EN-US_TOPIC_0000001937647862__en-us_topic_0000001592693925_en-us_topic_0030969429_en-us_topic_0030119097_p64860066112957">In the example shown in <a href="#EN-US_TOPIC_0000001937647862__en-us_topic_0000001592693925_fig1673177194510">Figure 1</a>, assume that you have created a VPC with two subnets (192.168.1.0/24 and 192.168.2.0/24) on the cloud, and the router in your on-premises data center also has two subnets (192.168.3.0/24 and 192.168.4.0/24). In this case, you can create a VPN to connect the VPC subnets and the data center subnets.</p>
+<div class="fignone" id="EN-US_TOPIC_0000001937647862__en-us_topic_0000001592693925_fig1673177194510"><a name="EN-US_TOPIC_0000001937647862__en-us_topic_0000001592693925_fig1673177194510"></a><a name="en-us_topic_0000001592693925_fig1673177194510"></a><span class="figcap"><b>Figure 1 </b>IPsec VPN</span><br><span><img class="imgResize" id="EN-US_TOPIC_0000001937647862__en-us_topic_0000001592693925_image14730744512" src="figure/en-us_image_0000001960951864.png" width="497.42" height="267.2502" title="Click to enlarge"></span></div>
+<p id="EN-US_TOPIC_0000001937647862__en-us_topic_0000001592693925_p10166174016574">Site-to-site VPN is supported to enable communication between VPC subnets and on-premises data center subnets.</p>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_01_0034.html">Basic Concepts</a></div>
+</div>
+</div>
+
+
+<script language="JavaScript">
+<!--
+image_size('.imgResize');
+var msg_imageMax = "view original image";
+var msg_imageClose = "close";
+//--></script>
\ No newline at end of file
diff --git a/docs/vpn/umn/vpn_01_0036.html b/docs/vpn/umn/vpn_01_0036.html
new file mode 100644
index 00000000..f6b3df62
--- /dev/null
+++ b/docs/vpn/umn/vpn_01_0036.html
@@ -0,0 +1,143 @@
+<a name="EN-US_TOPIC_0000001699872529"></a><a name="EN-US_TOPIC_0000001699872529"></a>
+
+<h1 class="topictitle1">Product Specifications</h1>
+<div id="body0000001699872529"><div class="note" id="EN-US_TOPIC_0000001699872529__note1566266462"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="EN-US_TOPIC_0000001699872529__ul21143536205"><li id="EN-US_TOPIC_0000001699872529__li23081751181314">The specification of a VPN gateway can be changed between Basic and Professional 1.</li><li id="EN-US_TOPIC_0000001699872529__li77871431171410">The specification of a VPN gateway can be changed between Professional 1 and Professional 2.</li><li id="EN-US_TOPIC_0000001699872529__li27432874917">The preceding specification changes are subject to the console.</li></ul>
+</div></div>
+
+<div class="tablenoborder"><a name="EN-US_TOPIC_0000001699872529__table83170407352"></a><a name="table83170407352"></a><table cellpadding="4" cellspacing="0" summary="" id="EN-US_TOPIC_0000001699872529__table83170407352" width="100%" frame="border" border="1" rules="all"><caption><b>Table 1 </b><span id="EN-US_TOPIC_0000001699872529__ph115011648185813">VPN</span> specifications</caption><thead align="left"><tr id="EN-US_TOPIC_0000001699872529__row17317340153512"><th align="left" class="cellrowborder" valign="top" width="23.442768411712514%" id="mcps1.3.2.2.5.1.1"><p id="EN-US_TOPIC_0000001699872529__p5317740193512">Item</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="25.98047914818102%" id="mcps1.3.2.2.5.1.2"><p id="EN-US_TOPIC_0000001699872529__p17317134012354">Basic</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="25.820763087843833%" id="mcps1.3.2.2.5.1.3"><p id="EN-US_TOPIC_0000001699872529__p1265062815368">Professional 1</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="24.75598935226265%" id="mcps1.3.2.2.5.1.4"><p id="EN-US_TOPIC_0000001699872529__p106601540153613">Professional 2</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="EN-US_TOPIC_0000001699872529__row231854013511"><td class="cellrowborder" valign="top" width="23.442768411712514%" headers="mcps1.3.2.2.5.1.1 "><p id="EN-US_TOPIC_0000001699872529__p2318124013351">Exclusive gateway resources</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.98047914818102%" headers="mcps1.3.2.2.5.1.2 "><p id="EN-US_TOPIC_0000001699872529__p01591741173716">Supported</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.820763087843833%" headers="mcps1.3.2.2.5.1.3 "><p id="EN-US_TOPIC_0000001699872529__p16616171211399">Supported</p>
+</td>
+<td class="cellrowborder" valign="top" width="24.75598935226265%" headers="mcps1.3.2.2.5.1.4 "><p id="EN-US_TOPIC_0000001699872529__p663321216391">Supported</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001699872529__row9528143443817"><td class="cellrowborder" valign="top" width="23.442768411712514%" headers="mcps1.3.2.2.5.1.1 "><p id="EN-US_TOPIC_0000001699872529__p452853414380">Dual connections</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.98047914818102%" headers="mcps1.3.2.2.5.1.2 "><p id="EN-US_TOPIC_0000001699872529__p925413216393">Supported</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.820763087843833%" headers="mcps1.3.2.2.5.1.3 "><p id="EN-US_TOPIC_0000001699872529__p17256632173918">Supported</p>
+</td>
+<td class="cellrowborder" valign="top" width="24.75598935226265%" headers="mcps1.3.2.2.5.1.4 "><p id="EN-US_TOPIC_0000001699872529__p8259332133912">Supported</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001699872529__row6124123313385"><td class="cellrowborder" valign="top" width="23.442768411712514%" headers="mcps1.3.2.2.5.1.1 "><p id="EN-US_TOPIC_0000001699872529__p8124163343816">Active-active gateways</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.98047914818102%" headers="mcps1.3.2.2.5.1.2 "><p id="EN-US_TOPIC_0000001699872529__p19262113243916">Supported</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.820763087843833%" headers="mcps1.3.2.2.5.1.3 "><p id="EN-US_TOPIC_0000001699872529__p42640327393">Supported</p>
+</td>
+<td class="cellrowborder" valign="top" width="24.75598935226265%" headers="mcps1.3.2.2.5.1.4 "><p id="EN-US_TOPIC_0000001699872529__p11266832113917">Supported</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001699872529__row2804153119113"><td class="cellrowborder" valign="top" width="23.442768411712514%" headers="mcps1.3.2.2.5.1.1 "><p id="EN-US_TOPIC_0000001699872529__p118048313116">Active/Standby gateways</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.98047914818102%" headers="mcps1.3.2.2.5.1.2 "><p id="EN-US_TOPIC_0000001699872529__p12714114319119">Supported</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.820763087843833%" headers="mcps1.3.2.2.5.1.3 "><p id="EN-US_TOPIC_0000001699872529__p9714144313116">Supported</p>
+</td>
+<td class="cellrowborder" valign="top" width="24.75598935226265%" headers="mcps1.3.2.2.5.1.4 "><p id="EN-US_TOPIC_0000001699872529__p15714174315115">Supported</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001699872529__row03181740133514"><td class="cellrowborder" valign="top" width="23.442768411712514%" headers="mcps1.3.2.2.5.1.1 "><p id="EN-US_TOPIC_0000001699872529__p33181240133513">Policy-based mode</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.98047914818102%" headers="mcps1.3.2.2.5.1.2 "><p id="EN-US_TOPIC_0000001699872529__p194324111391">Supported</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.820763087843833%" headers="mcps1.3.2.2.5.1.3 "><p id="EN-US_TOPIC_0000001699872529__p895918419397">Supported</p>
+</td>
+<td class="cellrowborder" valign="top" width="24.75598935226265%" headers="mcps1.3.2.2.5.1.4 "><p id="EN-US_TOPIC_0000001699872529__p149741741163917">Supported</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001699872529__row1131819409352"><td class="cellrowborder" valign="top" width="23.442768411712514%" headers="mcps1.3.2.2.5.1.1 "><p id="EN-US_TOPIC_0000001699872529__p931874083514">Routing mode: static routing</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.98047914818102%" headers="mcps1.3.2.2.5.1.2 "><p id="EN-US_TOPIC_0000001699872529__p149778411396">Supported</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.820763087843833%" headers="mcps1.3.2.2.5.1.3 "><p id="EN-US_TOPIC_0000001699872529__p9979104173914">Supported</p>
+</td>
+<td class="cellrowborder" valign="top" width="24.75598935226265%" headers="mcps1.3.2.2.5.1.4 "><p id="EN-US_TOPIC_0000001699872529__p1098184123911">Supported</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001699872529__row4318174033518"><td class="cellrowborder" valign="top" width="23.442768411712514%" headers="mcps1.3.2.2.5.1.1 "><p id="EN-US_TOPIC_0000001699872529__p153181940113515">Routing mode: BGP routing</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.98047914818102%" headers="mcps1.3.2.2.5.1.2 "><p id="EN-US_TOPIC_0000001699872529__p1498414412392">Supported</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.820763087843833%" headers="mcps1.3.2.2.5.1.3 "><p id="EN-US_TOPIC_0000001699872529__p0986841183919">Supported</p>
+</td>
+<td class="cellrowborder" valign="top" width="24.75598935226265%" headers="mcps1.3.2.2.5.1.4 "><p id="EN-US_TOPIC_0000001699872529__p69891241123919">Supported</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001699872529__row91971726184917"><td class="cellrowborder" valign="top" width="23.442768411712514%" headers="mcps1.3.2.2.5.1.1 "><p id="EN-US_TOPIC_0000001699872529__p119792611494">Policy template mode</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.98047914818102%" headers="mcps1.3.2.2.5.1.2 "><p id="EN-US_TOPIC_0000001699872529__p819892624917">Not supported</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.820763087843833%" headers="mcps1.3.2.2.5.1.3 "><p id="EN-US_TOPIC_0000001699872529__p141981226164911">Not supported</p>
+</td>
+<td class="cellrowborder" valign="top" width="24.75598935226265%" headers="mcps1.3.2.2.5.1.4 "><p id="EN-US_TOPIC_0000001699872529__p519832694914">Not supported</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001699872529__row133183409351"><td class="cellrowborder" valign="top" width="23.442768411712514%" headers="mcps1.3.2.2.5.1.1 "><p id="EN-US_TOPIC_0000001699872529__p109501444203911">Maximum forwarding bandwidth</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.98047914818102%" headers="mcps1.3.2.2.5.1.2 "><p id="EN-US_TOPIC_0000001699872529__p1915294133715">100 Mbit/s</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.820763087843833%" headers="mcps1.3.2.2.5.1.3 "><p id="EN-US_TOPIC_0000001699872529__p815104133718">300 Mbit/s</p>
+</td>
+<td class="cellrowborder" valign="top" width="24.75598935226265%" headers="mcps1.3.2.2.5.1.4 "><p id="EN-US_TOPIC_0000001699872529__p14151174120373">1 Gbit/s</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001699872529__row143181240143514"><td class="cellrowborder" valign="top" width="23.442768411712514%" headers="mcps1.3.2.2.5.1.1 "><p id="EN-US_TOPIC_0000001699872529__p13950114418398">Maximum number of VPN connection groups</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.98047914818102%" headers="mcps1.3.2.2.5.1.2 "><p id="EN-US_TOPIC_0000001699872529__p111507419375">10</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.820763087843833%" headers="mcps1.3.2.2.5.1.3 "><p id="EN-US_TOPIC_0000001699872529__p11149441103719">100</p>
+</td>
+<td class="cellrowborder" valign="top" width="24.75598935226265%" headers="mcps1.3.2.2.5.1.4 "><p id="EN-US_TOPIC_0000001699872529__p0148124123710">100</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001699872529__row163181840143513"><td class="cellrowborder" valign="top" width="23.442768411712514%" headers="mcps1.3.2.2.5.1.1 "><p id="EN-US_TOPIC_0000001699872529__p1494944419394">Interconnection with an enterprise router</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.98047914818102%" headers="mcps1.3.2.2.5.1.2 "><p id="EN-US_TOPIC_0000001699872529__p5148144112377">Not supported</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.820763087843833%" headers="mcps1.3.2.2.5.1.3 "><p id="EN-US_TOPIC_0000001699872529__p1596111538402">Supported</p>
+</td>
+<td class="cellrowborder" valign="top" width="24.75598935226265%" headers="mcps1.3.2.2.5.1.4 "><p id="EN-US_TOPIC_0000001699872529__p99611253114019">Supported</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001699872529__row131844083512"><td class="cellrowborder" valign="top" width="23.442768411712514%" headers="mcps1.3.2.2.5.1.1 "><p id="EN-US_TOPIC_0000001699872529__p19491744193914">Private network</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.98047914818102%" headers="mcps1.3.2.2.5.1.2 "><p id="EN-US_TOPIC_0000001699872529__p15512135574015">Not supported</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.820763087843833%" headers="mcps1.3.2.2.5.1.3 "><p id="EN-US_TOPIC_0000001699872529__p115962184118">Supported</p>
+</td>
+<td class="cellrowborder" valign="top" width="24.75598935226265%" headers="mcps1.3.2.2.5.1.4 "><p id="EN-US_TOPIC_0000001699872529__p859172184113">Supported</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001699872529__row1115614213399"><td class="cellrowborder" valign="top" width="23.442768411712514%" headers="mcps1.3.2.2.5.1.1 "><p id="EN-US_TOPIC_0000001699872529__p1615615424392">Supported regions</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.98047914818102%" headers="mcps1.3.2.2.5.1.2 "><p id="EN-US_TOPIC_0000001699872529__p7156204214395">Subject to the regions available on the console</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.820763087843833%" headers="mcps1.3.2.2.5.1.3 "><p id="EN-US_TOPIC_0000001699872529__p31569425393">Subject to the regions available on the console</p>
+</td>
+<td class="cellrowborder" valign="top" width="24.75598935226265%" headers="mcps1.3.2.2.5.1.4 "><p id="EN-US_TOPIC_0000001699872529__p415664219396">Subject to the regions available on the console</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_01_0000.html">Overview</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_03_0000.html b/docs/vpn/umn/vpn_03_0000.html
new file mode 100644
index 00000000..a75bca45
--- /dev/null
+++ b/docs/vpn/umn/vpn_03_0000.html
@@ -0,0 +1,13 @@
+<a name="EN-US_TOPIC_0000001875078390"></a><a name="EN-US_TOPIC_0000001875078390"></a>
+
+<h1 class="topictitle1">Getting Started</h1>
+<div id="body1432297670101"></div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="vpn_08_1505.html">Enterprise Edition VPN</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_08_1507.html">Classic VPN</a></strong><br>
+</li>
+</ul>
+</div>
+
diff --git a/docs/vpn/umn/vpn_03_0004.html b/docs/vpn/umn/vpn_03_0004.html
new file mode 100644
index 00000000..fdfbbe76
--- /dev/null
+++ b/docs/vpn/umn/vpn_03_0004.html
@@ -0,0 +1,249 @@
+<a name="EN-US_TOPIC_0000001963846436"></a><a name="EN-US_TOPIC_0000001963846436"></a>
+
+<h1 class="topictitle1">Creating a VPN</h1>
+<div id="body8662426"><div class="section" id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_en-us_topic_0013748707_section55639012123559"><h4 class="sectiontitle">Overview</h4><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_en-us_topic_0013748707_p4254626993230">By default, ECSs in a VPC cannot communicate with devices in your on-premises data center or private network. To enable communication between them, you can use a VPN by creating it in your VPC and updating security group rules.</p>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_en-us_topic_0013748707_section46486636123559"><h4 class="sectiontitle">IPsec VPN Topology</h4><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_en-us_topic_0013748707_p7321156123559">In <a href="#EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_fig19884520114220">Figure 1</a>, the VPC has subnets 192.168.1.0/24 and 192.168.2.0/24. Your on-premises data center has subnets 192.168.3.0/24 and 192.168.4.0/24. You can use VPN to enable subnets in the VPC to communicate with those in your data center.</p>
+<div class="fignone" id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_fig19884520114220"><a name="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_fig19884520114220"></a><a name="en-us_topic_0000001592573661_fig19884520114220"></a><span class="figcap"><b>Figure 1 </b>IPsec VPN</span><br><span><img id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_image3174172353914" src="figure/en-us_image_0000001592573989.png" width="518.7" height="284.508546" title="Click to enlarge" class="imgResize"></span></div>
+<p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p10166174016574">Site-to-site VPN is supported to enable communication between VPC subnets and on-premises data center subnets. Before establishing an IPsec VPN, ensure that the on-premises data center where the VPN is to be established meets the following conditions:</p>
+<ul id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_ul177314110481"><li id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_li11730318482">On-premises devices that support the standard IPsec protocol are available.</li><li id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_li47311612486">The on-premises devices have fixed public IP addresses, which can be statically configured or translated by NAT.</li><li id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_li1973113174812">The on-premises subnets do not conflict with VPC subnets, and devices in the on-premises subnets can communicate with the on-premises devices.</li></ul>
+<p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p1669516221335">If the preceding conditions are met, ensure that the IKE policies and IPsec policies at both ends are consistent and the subnets at both ends are matched pairs when configuring IPsec VPN.</p>
+<p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p183703565217">After the configuration is complete, VPN negotiation needs to be triggered by private network data flows.</p>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_en-us_topic_0013748707_section50291515214628"><h4 class="sectiontitle">Scenarios</h4><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_en-us_topic_0013748707_p47080905214628">You need a VPN that sets up a secure, isolated communications tunnel between your on-premises data center and cloud services. </p>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_en-us_topic_0013748707_section272021120388"><h4 class="sectiontitle">Procedure</h4><ol id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_en-us_topic_0013748707_ol2195076720388"><li id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_en-us_topic_0013748707_li6029427620388">Log in to the management console.</li><li id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_en-us_topic_0013748707_li3747390411758">Click <span><img id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_en-us_topic_0013935842_image1095897611136" src="figure/en-us_image_0000001592773969.png" width="16.9575" height="21.945" title="Click to enlarge" class="imgResize"></span> in the upper left corner and select the desired region and project.</li><li id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_en-us_topic_0013748707_li577757920388">Click <strong id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_b18816143711234">Service List</strong> and choose <span class="menucascade" id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_menucascade175381147182912"><b><span class="uicontrol" id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_uicontrol4538104712297">Network</span></b> &gt; <b><span class="uicontrol" id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_uicontrol18559316283">Virtual Private Network</span></b></span>.</li><li id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_li101481141246"><span id="EN-US_TOPIC_0000001963846436__ph54221449694">In the navigation pane on the left, choose <strong id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_en-us_topic_0000001591897601_en-us_topic_0000001591897601_b433982861420">Virtual Private Network</strong>.</span><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p12776522123613"><span id="EN-US_TOPIC_0000001963846436__ph543794912912">If Enterprise Edition VPN is available for the selected region, choose <strong id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_en-us_topic_0000001591897601_en-us_topic_0000001591897601_b91861441151416">Virtual Private Network</strong> &gt; <strong id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_en-us_topic_0000001591897601_en-us_topic_0000001591897601_b15186184131410">Classic</strong>.</span></p>
+</li><li id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_li11662386400">On the <strong id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_b945901392619">Virtual Private Network</strong> page, click <strong id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_b12460813142613">Create VPN</strong>.<p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p52501756163910">If Enterprise Edition VPN is available for the selected region, click <strong id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_b484711216289">Create VPN</strong> on the <strong id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_b11133158192815">Classic</strong> page.</p>
+</li><li id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_en-us_topic_0013748707_li3027778720388"><a name="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_en-us_topic_0013748707_li3027778720388"></a><a name="en-us_topic_0000001592573661_en-us_topic_0013748707_li3027778720388"></a>Configure required parameters and click <strong id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_b64761918162917">Create Now</strong>.<p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p1568412316589"><a href="#EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_table786224517597">Table 1</a>, <a href="#EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_table135874264220">Table 2</a>, and <a href="#EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_table14353932124215">Table 3</a> describe the parameters.</p>
+
+<div class="tablenoborder"><a name="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_table786224517597"></a><a name="en-us_topic_0000001592573661_table786224517597"></a><table cellpadding="4" cellspacing="0" summary="" id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_table786224517597" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Basic parameters</caption><thead align="left"><tr id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_row686364511590"><th align="left" class="cellrowborder" valign="top" width="25.3%" id="mcps1.3.4.2.6.3.2.4.1.1"><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p986354518591">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="46.63%" id="mcps1.3.4.2.6.3.2.4.1.2"><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p208631945135920">Description</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="28.07%" id="mcps1.3.4.2.6.3.2.4.1.3"><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p1286394512595">Example Value</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_row28631945155910"><td class="cellrowborder" valign="top" width="25.3%" headers="mcps1.3.4.2.6.3.2.4.1.1 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p9863204595919">Region</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.63%" headers="mcps1.3.4.2.6.3.2.4.1.2 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p1886316457593">Regions are geographic areas that are physically isolated from each other. The networks inside different regions are not connected to each other, so resources cannot be shared across regions. For low network latency and fast resource access, select the region nearest to your target users.</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.07%" headers="mcps1.3.4.2.6.3.2.4.1.3 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p38934383"></p>
+<p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p6414619137">eu-de</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_row486315451599"><td class="cellrowborder" valign="top" width="25.3%" headers="mcps1.3.4.2.6.3.2.4.1.1 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p17863174517592">Name</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.63%" headers="mcps1.3.4.2.6.3.2.4.1.2 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p8863124595916">The VPN name</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.07%" headers="mcps1.3.4.2.6.3.2.4.1.3 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p13863204512592">VPN-001</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_row9863145175910"><td class="cellrowborder" valign="top" width="25.3%" headers="mcps1.3.4.2.6.3.2.4.1.1 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p168631845185913">VPC</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.63%" headers="mcps1.3.4.2.6.3.2.4.1.2 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p186311451592">The VPC name</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.07%" headers="mcps1.3.4.2.6.3.2.4.1.3 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p286312454595">VPC-001</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_row586394515917"><td class="cellrowborder" valign="top" width="25.3%" headers="mcps1.3.4.2.6.3.2.4.1.1 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p8609635114712">Local Subnet</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.63%" headers="mcps1.3.4.2.6.3.2.4.1.2 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p19609153524710">VPC subnets that will access your on-premises network through a VPN.</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.07%" headers="mcps1.3.4.2.6.3.2.4.1.3 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p160953534719">192.168.1.0/24,</p>
+<p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p46094358479">192.168.2.0/24</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_row1986419459597"><td class="cellrowborder" valign="top" width="25.3%" headers="mcps1.3.4.2.6.3.2.4.1.1 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p116091357474">Remote Gateway</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.63%" headers="mcps1.3.4.2.6.3.2.4.1.2 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p1260913353477">The public IP address of the gateway in your data center or on the private network. This IP address is used for communicating with your VPC.</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.07%" headers="mcps1.3.4.2.6.3.2.4.1.3 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p861083512478">N/A</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_row1386474535911"><td class="cellrowborder" valign="top" width="25.3%" headers="mcps1.3.4.2.6.3.2.4.1.1 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p26108355476">Remote Subnet</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.63%" headers="mcps1.3.4.2.6.3.2.4.1.2 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p46106356471">The subnets of your on-premises network that will access a VPC through a VPN. The remote and local subnets cannot overlap with each other. The remote subnets cannot overlap with CIDR blocks involved in existing VPC peering connections created for the VPC.</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.07%" headers="mcps1.3.4.2.6.3.2.4.1.3 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p156101353478">192.168.3.0/24,</p>
+<p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p5610535154713">192.168.4.0/24</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_row1786411455593"><td class="cellrowborder" valign="top" width="25.3%" headers="mcps1.3.4.2.6.3.2.4.1.1 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p106104358476">PSK</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.63%" headers="mcps1.3.4.2.6.3.2.4.1.2 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p146105354474">Private key shared by two ends of a VPN connection for negotiation. PSKs configured at both ends of the VPN connection must be the same.</p>
+<p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p2610735194715">The PSK can contain 6 to 128 characters.</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.07%" headers="mcps1.3.4.2.6.3.2.4.1.3 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p46115353476">Test@123</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_row8864144513595"><td class="cellrowborder" valign="top" width="25.3%" headers="mcps1.3.4.2.6.3.2.4.1.1 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p1661112355474">Confirm PSK</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.63%" headers="mcps1.3.4.2.6.3.2.4.1.2 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p1461133519473">Enter the PSK again.</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.07%" headers="mcps1.3.4.2.6.3.2.4.1.3 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p1611335164716">Test@123</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_row12865194515599"><td class="cellrowborder" valign="top" width="25.3%" headers="mcps1.3.4.2.6.3.2.4.1.1 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p148657455594">Advanced Settings</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.63%" headers="mcps1.3.4.2.6.3.2.4.1.2 "><ul id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_ul986512454596"><li id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_li186514453593"><strong id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_b12704133614122">Default</strong>: Use default IKE and IPsec policies.</li><li id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_li7865645195915"><strong id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_b93755247425">Custom</strong>: Use custom IKE and IPsec policies. For details, see <a href="#EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_table135874264220">Table 2</a> and <a href="#EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_table14353932124215">Table 3</a>.</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="28.07%" headers="mcps1.3.4.2.6.3.2.4.1.3 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p198652453590">Custom</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_row9578165012553"><td class="cellrowborder" valign="top" width="25.3%" headers="mcps1.3.4.2.6.3.2.4.1.1 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p84809166559">Advanced Settings &gt; Tags</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.63%" headers="mcps1.3.4.2.6.3.2.4.1.2 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p1480201695515">Configure <span class="parmvalue" id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_parmvalue19592101816168"><b>Tags</b></span> in <span class="parmname" id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_parmname35973451179"><b>Advanced Settings</b></span>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.07%" headers="mcps1.3.4.2.6.3.2.4.1.3 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p748014162553">-</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+
+<div class="tablenoborder"><a name="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_table135874264220"></a><a name="en-us_topic_0000001592573661_table135874264220"></a><table cellpadding="4" cellspacing="0" summary="" id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_table135874264220" frame="border" border="1" rules="all"><caption><b>Table 2 </b>IKE policy</caption><thead align="left"><tr id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_row17587620428"><th align="left" class="cellrowborder" valign="top" width="25.34%" id="mcps1.3.4.2.6.4.2.4.1.1"><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p11588321428">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="46.589999999999996%" id="mcps1.3.4.2.6.4.2.4.1.2"><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p19588425429">Description</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="28.07%" id="mcps1.3.4.2.6.4.2.4.1.3"><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p125881524427">Example Value</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_row125889224215"><td class="cellrowborder" valign="top" width="25.34%" headers="mcps1.3.4.2.6.4.2.4.1.1 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p1658819219427">Authentication Algorithm</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.589999999999996%" headers="mcps1.3.4.2.6.4.2.4.1.2 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p54251555542">Hash algorithm used for authentication. The following algorithms are supported:</p>
+<ul id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_ul0130111955"><li id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_li4141111151">MD5(Insecure. Not recommended.)</li><li id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_li15139111657">SHA1(Insecure. Not recommended.)</li><li id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_li01471118518">SHA2-256</li><li id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_li2143111053">SHA2-384</li><li id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_li41416111753">SHA2-512</li></ul>
+<p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p1858815217426">The default value is <strong id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_b7942149995">SHA2-256</strong>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.07%" headers="mcps1.3.4.2.6.4.2.4.1.3 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p25887217423">SHA2-256</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_row558812284212"><td class="cellrowborder" valign="top" width="25.34%" headers="mcps1.3.4.2.6.4.2.4.1.1 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p145884217422">Encryption Algorithm</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.589999999999996%" headers="mcps1.3.4.2.6.4.2.4.1.2 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p1841353811513">Encryption algorithm. The following algorithms are supported:</p>
+<ul id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_ul769125114518"><li id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_li11536175525816">AES-128</li><li id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_li196914511515">AES-192</li><li id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_li5694511650">AES-256</li><li id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_li2691951456">3DES(Insecure. Not recommended.)</li></ul>
+<p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p1658916294216">The default value is <strong id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_b1614814583574">AES-128</strong>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.07%" headers="mcps1.3.4.2.6.4.2.4.1.3 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p558992124213">AES-128</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_row125891221426"><td class="cellrowborder" valign="top" width="25.34%" headers="mcps1.3.4.2.6.4.2.4.1.1 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p0589132164213">DH Algorithm</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.589999999999996%" headers="mcps1.3.4.2.6.4.2.4.1.2 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p233885817513">Diffie-Hellman key exchange algorithm. The following algorithms are supported:</p>
+<ul id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_ul2378288013"><li id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_li17716145916466">DH group 1(Insecure. Not recommended.)</li><li id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_li39121344711">DH group 2(Insecure. Not recommended.)</li><li id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_li155819774716">DH group 5(Insecure. Not recommended.)</li><li id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_li10577110145812">DH group 14</li><li id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_li1933614415332">Group 15</li></ul>
+<ul id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_ul12997921635"><li id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_li1799719215311">Group 16</li><li id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_li1999812217318">Group 19</li><li id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_li2099813210316">Group 20</li><li id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_li12998221036">Group 21</li></ul>
+<p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p858919274219">The default value is <strong id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_b119426112258">Group 14</strong>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.07%" headers="mcps1.3.4.2.6.4.2.4.1.3 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p090615426476">Group 14</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_row15589229423"><td class="cellrowborder" valign="top" width="25.34%" headers="mcps1.3.4.2.6.4.2.4.1.1 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p158920234217">Version</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.589999999999996%" headers="mcps1.3.4.2.6.4.2.4.1.2 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p368081412618">Version of the IKE protocol. The value can be one of the following:</p>
+<ul id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_ul159151191062"><li id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_li991551918617">v1 (For security reasons, IKEv1 is not recommended. If your devices support IKEv2, select IKEv2.)</li><li id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_li991519195616">v2</li></ul>
+<p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p5589102184215">The default value is <strong id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_b9440198132517">v2</strong>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.07%" headers="mcps1.3.4.2.6.4.2.4.1.3 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p4901956175016">v2</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_row175891322427"><td class="cellrowborder" valign="top" width="25.34%" headers="mcps1.3.4.2.6.4.2.4.1.1 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p1759014204211">Lifetime (s)</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.589999999999996%" headers="mcps1.3.4.2.6.4.2.4.1.2 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p115903217426">Lifetime of an SA, in seconds</p>
+<p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p85901926429">An SA will be renegotiated when its lifetime expires.</p>
+<p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p859022104215">The default value is <strong id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_b1512505634816">86400</strong>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.07%" headers="mcps1.3.4.2.6.4.2.4.1.3 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p1659018214212">86400</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_row959011294210"><td class="cellrowborder" valign="top" width="25.34%" headers="mcps1.3.4.2.6.4.2.4.1.1 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p14590627425">Negotiation Mode</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.589999999999996%" headers="mcps1.3.4.2.6.4.2.4.1.2 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p12854132214578">The value is <strong id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_b1026346132611">Main</strong>. This parameter is available only when <strong id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_b11506122892315">Version</strong> is set to <strong id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_b12506172882311">v1</strong>.</p>
+<p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p059015218425">The default value is <strong id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_b13512393122">Main</strong>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.07%" headers="mcps1.3.4.2.6.4.2.4.1.3 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p1859015213426">Main</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+
+<div class="tablenoborder"><a name="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_table14353932124215"></a><a name="en-us_topic_0000001592573661_table14353932124215"></a><table cellpadding="4" cellspacing="0" summary="" id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_table14353932124215" frame="border" border="1" rules="all"><caption><b>Table 3 </b>IPsec policy</caption><thead align="left"><tr id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_row1035433214213"><th align="left" class="cellrowborder" valign="top" width="25.369999999999997%" id="mcps1.3.4.2.6.5.2.4.1.1"><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p0354123264211">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="46.56%" id="mcps1.3.4.2.6.5.2.4.1.2"><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p335493216429">Description</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="28.07%" id="mcps1.3.4.2.6.5.2.4.1.3"><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p18354932144219">Example Value</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_row1335410321427"><td class="cellrowborder" valign="top" width="25.369999999999997%" headers="mcps1.3.4.2.6.5.2.4.1.1 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p14354173244215">Authentication Algorithm</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.56%" headers="mcps1.3.4.2.6.5.2.4.1.2 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p768319242061">Hash algorithm used for authentication. The following algorithms are supported:</p>
+<ul id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_ul146714371269"><li id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_li967133715619">SHA1(Insecure. Not recommended.)</li><li id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_li11671437362">MD5(Insecure. Not recommended.)</li><li id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_li967137365">SHA2-256</li><li id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_li267113711613">SHA2-384</li><li id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_li12674371366">SHA2-512</li></ul>
+<p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p115145432567">The default value is <strong id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_b8209124517258">SHA2-256</strong>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.07%" headers="mcps1.3.4.2.6.5.2.4.1.3 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p153541932114219">SHA2-256</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_row1935423212424"><td class="cellrowborder" valign="top" width="25.369999999999997%" headers="mcps1.3.4.2.6.5.2.4.1.1 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p16355173212422">Encryption Algorithm</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.56%" headers="mcps1.3.4.2.6.5.2.4.1.2 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p520185279">Encryption algorithm. The following algorithms are supported:</p>
+<ul id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_ul54395172720"><li id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_li74391817370">AES-128</li><li id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_li13542074216">AES-192</li><li id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_li743919171275">AES-256</li><li id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_li1043917171776">3DES(Insecure. Not recommended.)</li></ul>
+<p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p19355153294218">The default value is <strong id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_b273202318412">AES-128</strong>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.07%" headers="mcps1.3.4.2.6.5.2.4.1.3 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p535583264211">AES-128</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_row11355183294215"><td class="cellrowborder" valign="top" width="25.369999999999997%" headers="mcps1.3.4.2.6.5.2.4.1.1 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p93551432164217">PFS</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.56%" headers="mcps1.3.4.2.6.5.2.4.1.2 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p035503219422">Algorithm used by the Perfect forward secrecy (PFS) function.</p>
+<p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p5791925178">PFS supports the following algorithms:</p>
+<ul id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_ul14348123918187"><li id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_li1716115916324">Disable</li><li id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_li9991191204914">DH group 1(Insecure. Not recommended.)</li><li id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_li19732921144919">DH group 2(Insecure. Not recommended.)</li><li id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_li743162519496">DH group 5(Insecure. Not recommended.)</li><li id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_li1271310211722">DH group 14</li><li id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_li1261613343491">DH group 15</li><li id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_li134863901816">DH group 16</li><li id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_li13348639151815">DH group 19</li><li id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_li14348153911813">DH group 20</li><li id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_li14348123920184">DH group 21</li></ul>
+<p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p1035623219426">The default value is <strong id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_b426515016517">DH group 14</strong>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.07%" headers="mcps1.3.4.2.6.5.2.4.1.3 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p205001711114910">DH group 14</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_row1835663213428"><td class="cellrowborder" valign="top" width="25.369999999999997%" headers="mcps1.3.4.2.6.5.2.4.1.1 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p9356163284217">Transfer Protocol</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.56%" headers="mcps1.3.4.2.6.5.2.4.1.2 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p6656125520818">Security protocol used in IPsec to transmit and encapsulate user data. The following protocols are supported:</p>
+<ul id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_ul1099412118920"><li id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_li1199419111795">AH</li><li id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_li69941211094">AH-ESP</li><li id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_li38732264417">ESP</li></ul>
+<p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p1035613212421">The default value is <strong id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_b841991331215">ESP</strong>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.07%" headers="mcps1.3.4.2.6.5.2.4.1.3 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p335693274216">ESP</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_row153571632164214"><td class="cellrowborder" valign="top" width="25.369999999999997%" headers="mcps1.3.4.2.6.5.2.4.1.1 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p109513564514">Lifetime (s)</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.56%" headers="mcps1.3.4.2.6.5.2.4.1.2 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p17357143214219">Lifetime of an SA, in seconds</p>
+<p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p11357113214210">An SA will be renegotiated when its lifetime expires.</p>
+<p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p11357732164214">The default value is <strong id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_b1530805324319">3600</strong>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.07%" headers="mcps1.3.4.2.6.5.2.4.1.3 "><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p1635753219429">3600</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+<div class="note" id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_note1883314235586"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_p3833142316581">An IKE policy specifies the encryption and authentication algorithms to be used in the negotiation phase of an IPsec tunnel. An IPsec policy specifies the protocol, encryption algorithm, and authentication algorithm to be used in the data transmission phase of an IPsec tunnel. The IKE and IPsec policies must be the same at both ends of a VPN connection. Otherwise, the VPN connection cannot be set up.</p>
+</div></div>
+</li><li id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_en-us_topic_0013748707_li93950215712">Submit your application.<div class="p" id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_en-us_topic_0013748707_p1274501816577"><a name="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_en-us_topic_0013748707_li93950215712"></a><a name="en-us_topic_0000001592573661_en-us_topic_0013748707_li93950215712"></a>After the IPsec VPN is created, a public IP address is assigned to the VPN. The IP address is the local gateway address of the created VPN. When configuring the remote tunnel in your data center, you must set the remote gateway address to this IP address.<div class="fignone" id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_en-us_topic_0013748707_fig4815144716272"><span class="figcap"><b>Figure 2 </b>Gateway IP address</span><br><span><img id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_image7525145713408" src="figure/en-us_image_0000001542334190.png" height="33.693289" width="465.5" title="Click to enlarge" class="imgResize"></span></div>
+</div>
+</li><li id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_en-us_topic_0013748707_li243897420388">You need to configure an IPsec VPN tunnel on the router or firewall in your on-premises data center.<ul id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_ul10229359153020"><li id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_li1923013598308">For a list of protocols supported by VPN connections, see <a href="vpn_01_0006.html">Reference Standards and Protocols</a>.</li><li id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_en-us_topic_0013748707_li562371663816">Most devices that meet IPsec VPN standards and protocol requirements can be used as VPN devices. For example, a Fortinet FortiGate firewall can be used as a VPN device. For details, see <a href="vpn_admin_0016.html">Configuring VPN When Fortinet FortiGate Firewall Is Used</a>.<p id="EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_en-us_topic_0026963460_p28651782203048">Other devices that meet the requirements outlined in the reference protocols described in section <a href="vpn_01_0006.html">Reference Standards and Protocols</a> can also be deployed. However, some devices may not be supported because of the inconsistent protocol implementation methods of these devices. If connections cannot be set up, rectify the fault by referring to <a href="vpn_faq_00144.html">What Do I Do If a VPN Connection Fails to Be Established?</a> or contact technical support.</p>
+</li></ul>
+</li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_08_1507.html">Classic VPN</a></div>
+</div>
+</div>
+
+
+<script language="JavaScript">
+<!--
+image_size('.imgResize');
+var msg_imageMax = "view original image";
+var msg_imageClose = "close";
+//--></script>
\ No newline at end of file
diff --git a/docs/vpn/umn/vpn_03_0204.html b/docs/vpn/umn/vpn_03_0204.html
new file mode 100644
index 00000000..3b50b6a9
--- /dev/null
+++ b/docs/vpn/umn/vpn_03_0204.html
@@ -0,0 +1,138 @@
+<a name="EN-US_TOPIC_0000001963686660"></a><a name="EN-US_TOPIC_0000001963686660"></a>
+
+<h1 class="topictitle1">Step 1: Creating a VPN Gateway</h1>
+<div id="body8662426"><div class="section" id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_section12234194201712"><h4 class="sectiontitle">Prerequisites</h4><ul id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_ul61311310174"><li class="msonormal" id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_li3197922016">A VPC has been created. For details about how to create a VPC, see the <em id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_i15273181713581">Virtual Private Cloud User Guide</em>.</li><li id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_li31141127132615">Security group rules have been configured for ECSs in the VPC, and allow the customer gateway in the on-premises data center to access VPC resources. For details about how to configure security group rules, see <a href="https://docs.otc.t-systems.com/virtual-private-cloud/umn/access_control/security_group/managing_security_group_rules/adding_a_security_group_rule.html" target="_blank" rel="noopener noreferrer">Security Group Rules</a>.</li></ul>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_section532325082510"><h4 class="sectiontitle">Procedure</h4><ol id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_ol14417275312"><li id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_li11415270318"><span><span id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_ph149997419367">Log in to the management console.</span></span></li><li id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_li141112717317"><span><span id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_ph910821143918">Click <span><img id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_en-us_topic_0000001591897601_image15446151185815" src="figure/en-us_image_0000001923096425.png"></span> in the upper left corner of the page, and choose <span class="menucascade" id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_en-us_topic_0000001591897601_menucascade124471851165812"><b><span class="uicontrol" id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_en-us_topic_0000001591897601_uicontrol144755165811">Network</span></b> &gt; <b><span class="uicontrol" id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_en-us_topic_0000001591897601_uicontrol644725116587">Virtual Private Network</span></b></span>.</span></span></li><li id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_li2411027163118"><span><span id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_ph152910598390">In the navigation pane on the left, choose <span class="menucascade" id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_en-us_topic_0000001591897601_menucascade326450115820"><b><span class="uicontrol" id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_en-us_topic_0000001591897601_uicontrol25222024174318">Virtual Private Network</span></b> &gt; <b><span class="uicontrol" id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_en-us_topic_0000001591897601_uicontrol6523132419431">Enterprise – VPN Gateways</span></b></span>.</span></span></li><li id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_li0729621516"><span>Set parameters as prompted, click , and complete the payment.</span></li><li id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_li114122711316"><span>The following describes only key parameters. </span><p>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_table1333461433211" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Key VPN gateway parameters</caption><thead align="left"><tr id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_row233401463213"><th align="left" class="cellrowborder" valign="top" width="16.3%" id="mcps1.3.2.2.5.2.1.2.4.1.1"><p id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_p63343142323">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="52.54%" id="mcps1.3.2.2.5.2.1.2.4.1.2"><p id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_p5334101433215">Description</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="31.16%" id="mcps1.3.2.2.5.2.1.2.4.1.3"><p id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_p23341514183220">Example Value</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_row3334201483216"><td class="cellrowborder" valign="top" width="16.3%" headers="mcps1.3.2.2.5.2.1.2.4.1.1 "><p id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_p133451453213">Region</p>
+</td>
+<td class="cellrowborder" valign="top" width="52.54%" headers="mcps1.3.2.2.5.2.1.2.4.1.2 "><p id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_p93341114173214">Select the region nearest to you.</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.16%" headers="mcps1.3.2.2.5.2.1.2.4.1.3 "><p id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_p83343144325">eu-de</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_row833521411325"><td class="cellrowborder" valign="top" width="16.3%" headers="mcps1.3.2.2.5.2.1.2.4.1.1 "><p id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_p033511410322">Name</p>
+</td>
+<td class="cellrowborder" valign="top" width="52.54%" headers="mcps1.3.2.2.5.2.1.2.4.1.2 "><p id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_p933541463211">Name a VPN gateway.</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.16%" headers="mcps1.3.2.2.5.2.1.2.4.1.3 "><p id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_p17335121416324">vpngw-001</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_row63351714163215"><td class="cellrowborder" valign="top" width="16.3%" headers="mcps1.3.2.2.5.2.1.2.4.1.1 "><p id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_p1433581415322">Network Type</p>
+</td>
+<td class="cellrowborder" valign="top" width="52.54%" headers="mcps1.3.2.2.5.2.1.2.4.1.2 "><p id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_p4335121443218">Select <strong id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_b2811181165518">Public network</strong>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.16%" headers="mcps1.3.2.2.5.2.1.2.4.1.3 "><p id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_p933541453218">Public network</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_row1933511473211"><td class="cellrowborder" valign="top" width="16.3%" headers="mcps1.3.2.2.5.2.1.2.4.1.1 "><p id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_p12335814163217">Associate With</p>
+</td>
+<td class="cellrowborder" valign="top" width="52.54%" headers="mcps1.3.2.2.5.2.1.2.4.1.2 "><p id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_p73354144321">Select <span class="parmvalue" id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_parmvalue173297179555"><b>VPC</b></span>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.16%" headers="mcps1.3.2.2.5.2.1.2.4.1.3 "><p id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_p8335181415322">VPC</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_row33351314153215"><td class="cellrowborder" valign="top" width="16.3%" headers="mcps1.3.2.2.5.2.1.2.4.1.1 "><p id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_p17335181417323">VPC</p>
+</td>
+<td class="cellrowborder" valign="top" width="52.54%" headers="mcps1.3.2.2.5.2.1.2.4.1.2 "><p id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_p6335111413211">Select the VPC that needs to access the on-premises data center.</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.16%" headers="mcps1.3.2.2.5.2.1.2.4.1.3 "><p id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_p203351214163216">vpc-001(192.168.0.0/16)</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_row133353144322"><td class="cellrowborder" valign="top" width="16.3%" headers="mcps1.3.2.2.5.2.1.2.4.1.1 "><p id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_p10335161483217">Interconnection Subnet</p>
+</td>
+<td class="cellrowborder" valign="top" width="52.54%" headers="mcps1.3.2.2.5.2.1.2.4.1.2 "><p id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_p533514147329">This subnet is used for communication between the VPN gateway and VPC. Ensure that the selected interconnection subnet has four or more assignable IP addresses.</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.16%" headers="mcps1.3.2.2.5.2.1.2.4.1.3 "><p id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_p633512142326">192.168.2.0/24</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_row23351714113210"><td class="cellrowborder" valign="top" width="16.3%" headers="mcps1.3.2.2.5.2.1.2.4.1.1 "><p id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_p1733581420323">Local Subnet</p>
+</td>
+<td class="cellrowborder" valign="top" width="52.54%" headers="mcps1.3.2.2.5.2.1.2.4.1.2 "><p id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_p133367144327">Specify the VPC subnet that needs to access the on-premises data center.</p>
+<p id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_p8336314123214">You can manually enter a CIDR block or select a subnet from the drop-down list box.</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.16%" headers="mcps1.3.2.2.5.2.1.2.4.1.3 "><p id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_p1733611148326">192.168.0.0/24</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_row23361914133214"><td class="cellrowborder" valign="top" width="16.3%" headers="mcps1.3.2.2.5.2.1.2.4.1.1 "><p id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_p17336171411322">BGP ASN</p>
+</td>
+<td class="cellrowborder" valign="top" width="52.54%" headers="mcps1.3.2.2.5.2.1.2.4.1.2 "><p id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_p193361914183213">BGP AS number.</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.16%" headers="mcps1.3.2.2.5.2.1.2.4.1.3 "><p id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_p1336614193217">64512</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_row333611473218"><td class="cellrowborder" valign="top" width="16.3%" headers="mcps1.3.2.2.5.2.1.2.4.1.1 "><p id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_p1133671493211">Specification</p>
+</td>
+<td class="cellrowborder" valign="top" width="52.54%" headers="mcps1.3.2.2.5.2.1.2.4.1.2 "><p id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_p10336141412327">Select <span class="parmvalue" id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_parmvalue161250276552"><b>Professional 1</b></span> and deselect <strong id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_b9125627165514">Access via a non-fixed IP address</strong>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.16%" headers="mcps1.3.2.2.5.2.1.2.4.1.3 "><p id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_p33361414133211">Professional 1</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_row203365149327"><td class="cellrowborder" valign="top" width="16.3%" headers="mcps1.3.2.2.5.2.1.2.4.1.1 "><p id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_p7336191419324">AZ</p>
+</td>
+<td class="cellrowborder" valign="top" width="52.54%" headers="mcps1.3.2.2.5.2.1.2.4.1.2 "><p id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_p13336014163211"><span class="parmvalue" id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_parmvalue4709204710353"><b>AZ1</b></span> and <span class="parmvalue" id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_parmvalue0105263610"><b>AZ2</b></span> are supported.</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.16%" headers="mcps1.3.2.2.5.2.1.2.4.1.3 "><p id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_p133651433212">AZ1, AZ2</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_row184664142910"><td class="cellrowborder" valign="top" width="16.3%" headers="mcps1.3.2.2.5.2.1.2.4.1.1 "><p id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_p2699154310818">Gateway IP Address</p>
+</td>
+<td class="cellrowborder" valign="top" width="52.54%" headers="mcps1.3.2.2.5.2.1.2.4.1.2 "><p id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_p468420244516">This parameter is available only when <strong id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_b75822518311">Network Type</strong> is set to <strong id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_b3582951639">Private network</strong>.</p>
+<ul id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_ul13347174621020"><li id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_li1734713465103">Self-assigned IP address (default)<p id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_p696812251520"><a name="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_li1734713465103"></a><a name="en-us_topic_0000001542333942_li1734713465103"></a>An IP address on the access subnet will be automatically assigned to the VPN gateway.</p>
+<p id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_p1975943952319">You can view the automatically assigned IP address on the <strong id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_b180820531247">VPN Gateways</strong> page.</p>
+</li><li id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_li2090085101013">Manually-specified IP address<p id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_p2255122755018"><a name="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_li2090085101013"></a><a name="en-us_topic_0000001542333942_li2090085101013"></a>Manually configure IP addresses on the access subnet for the VPN gateway.</p>
+</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="31.16%" headers="mcps1.3.2.2.5.2.1.2.4.1.3 "><p id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_p1669924319819">Self-assigned IP address</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_row2336181453211"><td class="cellrowborder" valign="top" width="16.3%" headers="mcps1.3.2.2.5.2.1.2.4.1.1 "><p id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_p1233641483217">Advanced Settings &gt; Tags</p>
+</td>
+<td class="cellrowborder" valign="top" width="52.54%" headers="mcps1.3.2.2.5.2.1.2.4.1.2 "><p id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_p633681413215">Configure <span class="parmvalue" id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_parmvalue8606155065210"><b>Tags</b></span> in <span class="parmname" id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_parmname16606195075210"><b>Advanced Settings</b></span>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.16%" headers="mcps1.3.2.2.5.2.1.2.4.1.3 "><p id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_p111839299417">-</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_row19337131417320"><td class="cellrowborder" valign="top" width="16.3%" headers="mcps1.3.2.2.5.2.1.2.4.1.1 "><p id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_p2337201493214">HA Mode</p>
+</td>
+<td class="cellrowborder" valign="top" width="52.54%" headers="mcps1.3.2.2.5.2.1.2.4.1.2 "><p id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_p10337151416326">Select <span class="parmvalue" id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_parmvalue1378519139"><b>Active-active</b></span>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.16%" headers="mcps1.3.2.2.5.2.1.2.4.1.3 "><p id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_p933715140325">Active-active</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_row433721413329"><td class="cellrowborder" valign="top" width="16.3%" headers="mcps1.3.2.2.5.2.1.2.4.1.1 "><p id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_p183371614113217">Active EIP</p>
+</td>
+<td class="cellrowborder" valign="top" width="52.54%" headers="mcps1.3.2.2.5.2.1.2.4.1.2 "><p id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_p1033791417321">You can buy a new EIP or use an existing EIP.</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.16%" headers="mcps1.3.2.2.5.2.1.2.4.1.3 "><p id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_p1833791413217">11.xx.xx.11</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_row133374142326"><td class="cellrowborder" valign="top" width="16.3%" headers="mcps1.3.2.2.5.2.1.2.4.1.1 "><p id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_p183376148326">Active EIP 2</p>
+</td>
+<td class="cellrowborder" valign="top" width="52.54%" headers="mcps1.3.2.2.5.2.1.2.4.1.2 "><p id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_p2073117083714">You can buy a new EIP or use an existing EIP.</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.16%" headers="mcps1.3.2.2.5.2.1.2.4.1.3 "><p id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_p203371914173214">11.xx.xx.12</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</p></li></ol>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_section1944091617118"><h4 class="sectiontitle">Verification</h4><p id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_p168631185115">Check the created VPN gateway on the <span class="wintitle" id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_wintitle1118592514316"><b>VPN Gateways</b></span> page. The initial state of the VPN gateway is <span class="parmvalue" id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_parmvalue1391854916320"><b>Creating</b></span>. When the VPN gateway state changes to <span class="parmvalue" id="EN-US_TOPIC_0000001963686660__en-us_topic_0000001542333942_parmvalue893641013417"><b>Normal</b></span>, the VPN gateway is successfully created.</p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_08_1505.html">Enterprise Edition VPN</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_03_0335.html b/docs/vpn/umn/vpn_03_0335.html
new file mode 100644
index 00000000..210ddc87
--- /dev/null
+++ b/docs/vpn/umn/vpn_03_0335.html
@@ -0,0 +1,119 @@
+<a name="EN-US_TOPIC_0000002000327313"></a><a name="EN-US_TOPIC_0000002000327313"></a>
+
+<h1 class="topictitle1">Step 4: Creating VPN Connection 2</h1>
+<div id="body8662426"><div class="section" id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_section6180156161713"><h4 class="sectiontitle">Procedure</h4><ol id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_ol18974492316"><li id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_li13897124983119"><span><span id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_ph955355484220">In the navigation pane on the left, choose <span class="menucascade" id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_en-us_topic_0000001591897601_menucascade16881163103614"><b><span class="uicontrol" id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_en-us_topic_0000001591897601_uicontrol1262522084410">Virtual Private Network</span></b> &gt; <b><span class="uicontrol" id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_en-us_topic_0000001591897601_uicontrol7625162018443">Enterprise – VPN Connections</span></b></span>.</span></span></li><li id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_li2897649143110"><span>On the <span class="wintitle" id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_wintitle90759082753332"><b>VPN Connections</b></span> page, click <span class="uicontrol" id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_uicontrol102590236253332"><b>Create VPN Connection</b></span>.</span><p><p id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_p175446487366"><strong id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_b6592221792">For VPN connection 2, you are advised to use the same settings as VPN connection 1, except the connection name, gateway IP address, local tunnel interface IP address, and customer tunnel interface IP address.</strong></p>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_d0e2051" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Parameter settings for VPN connection 2</caption><thead align="left"><tr id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_row3103765"><th align="left" class="cellrowborder" valign="top" width="21.43%" id="mcps1.3.1.2.2.2.2.2.4.1.1"><p id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_p50078427">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="47.24%" id="mcps1.3.1.2.2.2.2.2.4.1.2"><p id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_p29820793">Description</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="31.330000000000002%" id="mcps1.3.1.2.2.2.2.2.4.1.3"><p id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_p66674072">Example Value</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_row1395494514511"><td class="cellrowborder" valign="top" width="21.43%" headers="mcps1.3.1.2.2.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_p10638184514442">Name</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.24%" headers="mcps1.3.1.2.2.2.2.2.4.1.2 "><p id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_p36381845114417">Enter the name of VPN connection 2.</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.330000000000002%" headers="mcps1.3.1.2.2.2.2.2.4.1.3 "><p id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_p863819459443">vpn-002</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_row1047164495120"><td class="cellrowborder" valign="top" width="21.43%" headers="mcps1.3.1.2.2.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_p85584494419">VPN Gateway</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.24%" headers="mcps1.3.1.2.2.2.2.2.4.1.2 "><p id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_p5551443441">Select the VPN gateway created in <a href="vpn_03_0204.html#EN-US_TOPIC_0000001963686660">Step 1: Creating a VPN Gateway</a>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.330000000000002%" headers="mcps1.3.1.2.2.2.2.2.4.1.3 "><p id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_p255444154413">vpngw-001</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_row56484908"><td class="cellrowborder" valign="top" width="21.43%" headers="mcps1.3.1.2.2.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_p11874856">Gateway IP Address</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.24%" headers="mcps1.3.1.2.2.2.2.2.4.1.2 "><p id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_p22339313">Select active EIP 2 of the VPN gateway.</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.330000000000002%" headers="mcps1.3.1.2.2.2.2.2.4.1.3 "><p id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_p1169414501510">11.xx.xx.12</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_row183244509512"><td class="cellrowborder" valign="top" width="21.43%" headers="mcps1.3.1.2.2.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_p103241150105120">Customer Gateway</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.24%" headers="mcps1.3.1.2.2.2.2.2.4.1.2 "><p id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_p732418503513">Select the customer gateway created in <a href="vpn_qs_00007.html#EN-US_TOPIC_0000002000246717">Step 2: Creating a Customer Gateway</a>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.330000000000002%" headers="mcps1.3.1.2.2.2.2.2.4.1.3 "><p id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_p183241350185117">cgw-001</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_row9383112693514"><td class="cellrowborder" valign="top" width="21.43%" headers="mcps1.3.1.2.2.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_p846104794213">VPN Type</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.24%" headers="mcps1.3.1.2.2.2.2.2.4.1.2 "><p id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_p148472313612">Select <strong id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_b1650117187473">Static routing</strong>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.330000000000002%" headers="mcps1.3.1.2.2.2.2.2.4.1.3 "><p id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_p191601542114218">Static routing</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_row7924496"><td class="cellrowborder" valign="top" width="21.43%" headers="mcps1.3.1.2.2.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_p37904428">Customer Subnet</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.24%" headers="mcps1.3.1.2.2.2.2.2.4.1.2 "><p id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_p132013366384">Enter the subnet of the on-premises data center that needs to access the VPC.</p>
+<div class="note" id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_note21518383410"><span class="notetitle"> NOTE: </span><div class="notebody"><ul id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_en-us_topic_0000001592573765_ul17589163714580"><li id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_en-us_topic_0000001592573765_li1640715459592">The customer subnet can overlap with the local subnet but cannot be the same as the local subnet.</li><li id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_en-us_topic_0000001592573765_li2863224201912">A customer subnet cannot be included in the existing subnets of the VPC associated with the VPN gateway. It also cannot be the destination address in the route table of the VPC associated with the VPN gateway.</li><li id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_en-us_topic_0000001592573765_li394172763016">Customer subnets cannot be the reserved CIDR blocks of VPCs, for example, 100.64.0.0/10 or 214.0.0.0/8.</li><li id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_en-us_topic_0000001592573765_li156832021624">If the interconnection subnet is associated with an ACL rule, ensure that the ACL rule permits the TCP port for traffic between all local and customer subnets.</li><li id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_en-us_topic_0000001592573765_li13321746144516">Address groups cannot be used to configure the source and destination subnets in a policy on customer gateway devices.</li></ul>
+</div></div>
+</td>
+<td class="cellrowborder" valign="top" width="31.330000000000002%" headers="mcps1.3.1.2.2.2.2.2.4.1.3 "><p id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_p171813216711">172.16.0.0/16</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_row11187142145316"><td class="cellrowborder" valign="top" width="21.43%" headers="mcps1.3.1.2.2.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_p101871642155312">Interface IP Address Assignment</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.24%" headers="mcps1.3.1.2.2.2.2.2.4.1.2 "><p id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_p179551833144110">The options include <span class="parmvalue" id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_parmvalue169473697591147"><b>Manually specify</b></span> and <span class="parmvalue" id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_parmvalue46395544391147"><b>Automatically assign</b></span>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.330000000000002%" headers="mcps1.3.1.2.2.2.2.2.4.1.3 "><p id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_p17187154219537">Manually specify</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_row19689114513"><td class="cellrowborder" valign="top" width="21.43%" headers="mcps1.3.1.2.2.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_p1568611165115">Local Tunnel Interface Address</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.24%" headers="mcps1.3.1.2.2.2.2.2.4.1.2 "><p id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_p268811115114">Specify the tunnel interface address configured on the VPN gateway.</p>
+<div class="note" id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_note185153120427"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_p254315428">The local and remote interface addresses configured on the customer gateway device must be the same as the values of <strong id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_b51531011501">Customer Tunnel Interface IP Address</strong> and <strong id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_b715411195014">Local Tunnel Interface IP Address</strong>, respectively.</p>
+</div></div>
+</td>
+<td class="cellrowborder" valign="top" width="31.330000000000002%" headers="mcps1.3.1.2.2.2.2.2.4.1.3 "><p id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_p597464319119">169.254.71.2/30</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_row54129138517"><td class="cellrowborder" valign="top" width="21.43%" headers="mcps1.3.1.2.2.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_p141281319517">Customer Tunnel Interface Address</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.24%" headers="mcps1.3.1.2.2.2.2.2.4.1.2 "><p id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_p20412151395111">Specify the tunnel interface address configured on the customer gateway device.</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.330000000000002%" headers="mcps1.3.1.2.2.2.2.2.4.1.3 "><p id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_p1758533318111">169.254.71.1/30</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_row868013580532"><td class="cellrowborder" valign="top" width="21.43%" headers="mcps1.3.1.2.2.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_p17680258175311">Link Detection</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.24%" headers="mcps1.3.1.2.2.2.2.2.4.1.2 "><p id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_p49551120131213">This function is used for route reliability detection in multi-link scenarios.</p>
+<div class="note" id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_note1896215583019"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_p11962185813015">When enabling this function, ensure that the customer gateway supports ICMP and is correctly configured with the customer interface IP address of the VPN connection. Otherwise, VPN traffic will fail to be forwarded.</p>
+</div></div>
+</td>
+<td class="cellrowborder" valign="top" width="31.330000000000002%" headers="mcps1.3.1.2.2.2.2.2.4.1.3 "><p id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_p1568010585539"><strong id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_b48152113391147">NQA</strong> enabled</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_row6412487"><td class="cellrowborder" valign="top" width="21.43%" headers="mcps1.3.1.2.2.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_p49649410">PSK, Confirm PSK</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.24%" headers="mcps1.3.1.2.2.2.2.2.4.1.2 "><p id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_p26381448133916">Specify the negotiation key of the VPN connection.</p>
+<p id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_p18498155720469">The PSKs configured on the VPN console and the customer gateway device must be the same.</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.330000000000002%" headers="mcps1.3.1.2.2.2.2.2.4.1.3 "><p id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_p3356754">Test@123</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_row1076135815719"><td class="cellrowborder" valign="top" width="21.43%" headers="mcps1.3.1.2.2.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_p10961601186">Policy Settings</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.24%" headers="mcps1.3.1.2.2.2.2.2.4.1.2 "><p id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_p78946357474">Configure the IKE and IPsec policies, which define the encryption algorithms used by the VPN tunnel.</p>
+<p id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_p17862851694">The policy settings on the VPN console and the customer gateway device must be the same.</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.330000000000002%" headers="mcps1.3.1.2.2.2.2.2.4.1.3 "><p id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_p13551182313452">Default</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</p></li></ol>
+</div>
+<div class="section" id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_section224611277711"><h4 class="sectiontitle">Verification</h4><p id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_en-us_topic_0000001415105360_p168631185115">Check the created VPN connection on the <span class="wintitle" id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_wintitle1855132894311"><b>VPN Connections</b></span> page. The initial state of the VPN connection is <span class="parmvalue" id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_parmvalue4855228104317"><b>Creating</b></span>. As the customer gateway device has not been configured, no VPN connection can be established. After about 2 minutes, the VPN connection state changes to <span class="parmvalue" id="EN-US_TOPIC_0000002000327313__en-us_topic_0000001592694093_parmvalue9855102811433"><b>Not connected</b></span>.</p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_08_1505.html">Enterprise Edition VPN</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_03_0336.html b/docs/vpn/umn/vpn_03_0336.html
new file mode 100644
index 00000000..9a01371a
--- /dev/null
+++ b/docs/vpn/umn/vpn_03_0336.html
@@ -0,0 +1,110 @@
+<a name="EN-US_TOPIC_0000001963686664"></a><a name="EN-US_TOPIC_0000001963686664"></a>
+
+<h1 class="topictitle1">Step 5: Configuring the Customer Gateway Device</h1>
+<div id="body8662426"><div class="section" id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_section1663185315265"><h4 class="sectiontitle">Procedure</h4><div class="note" id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_note12529451105012"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_p1282183712486">In this example, the customer gateway device is an AR router. </p>
+</div></div>
+<ol id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_ol45921528173816"><li id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_li162413274124"><span>Log in to the AR router.</span></li><li id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_li14617103515124"><span>Enter the system view.</span><p><pre class="screen" id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_screen17292848102710">&lt;AR651&gt;system-view</pre>
+</p></li><li id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_li759211285386"><span>Configure an IP address for the WAN interface. In this example, the WAN interface of the AR router is GigabitEthernet 0/0/8.</span><p><pre class="screen" id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_screen356455152820">[AR651]interface GigabitEthernet 0/0/8
+[AR651-GigabitEthernet0/0/8]ip address 22.xx.xx.22 255.255.255.0
+[AR651-GigabitEthernet0/0/8]quit</pre>
+</p></li><li id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_li147294814711"><span>Configure a default route.</span><p><pre class="screen" id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_screen1784081442810">[AR651]ip route-static 0.0.0.0 0.0.0.0 <em id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_i17381193213911">22.xx.xx.1</em></pre>
+<p id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_p1237015214473">In this command, <em id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_i688019369531">22.xx.xx.1</em> is the gateway address of the AR router's public IP address. Replace it with the actual gateway address.</p>
+</p></li><li id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_li128435124813"><span>Enable the SHA-2 algorithm to be compatible with the standard RFC algorithms.</span><p><pre class="screen" id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_screen156829112810">[AR651]IPsec authentication sha2 compatible enable</pre>
+</p></li><li id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_li13614181334917"><span>Configure an IPsec proposal.</span><p><pre class="screen" id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_screen9933837192815">[AR651]IPsec proposal hwproposal1
+[AR651-IPsec-proposal-hwproposal1]esp authentication-algorithm sha2-256
+[AR651-IPsec-proposal-hwproposal1]esp encryption-algorithm aes-128
+[AR651-IPsec-proposal-hwproposal1]quit</pre>
+</p></li><li id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_li5416102617497"><span>Configure an IKE proposal.</span><p><pre class="screen" id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_screen19793164819284">[AR651]ike proposal 2
+[AR651-ike-proposal-2]encryption-algorithm aes-128
+[AR651-ike-proposal-2]dh group14
+[AR651-ike-proposal-2]authentication-algorithm sha2-256
+[AR651-ike-proposal-2]authentication-method pre-share
+[AR651-ike-proposal-2]integrity-algorithm hmac-sha2-256
+[AR651-ike-proposal-2]prf hmac-sha2-256
+[AR651-ike-proposal-2]quit</pre>
+</p></li><li id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_li51991546194917"><span>Configure IKE peers.</span><p><pre class="screen" id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_screen267414012291">[AR651]ike peer hwpeer1
+[AR651-ike-peer-hwpeer1]undo version 1
+[AR651-ike-peer-hwpeer1]pre-shared-key cipher Test@123
+[AR651-ike-peer-hwpeer1]ike-proposal 2
+[AR651-ike-peer-hwpeer1]local-address <em id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_i12205528401">22.xx.xx.22</em>
+[AR651-ike-peer-hwpeer1]remote-address <em id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_i96578194117">11.xx.xx.11</em>
+[AR651-ike-peer-hwpeer1]rsa encryption-padding oaep
+[AR651-ike-peer-hwpeer1]rsa signature-padding pss
+[AR651-ike-peer-hwpeer1]ikev2 authentication sign-hash sha2-256
+[AR651-ike-peer-hwpeer1]quit
+[AR651]ike peer hwpeer2
+[AR651-ike-peer-hwpeer2]undo version 1
+[AR651-ike-peer-hwpeer2]pre-shared-key cipher Test@123
+[AR651-ike-peer-hwpeer2]ike-proposal 2
+[AR651-ike-peer-hwpeer2]local-address <em id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_i18994175124114">22.xx.xx.22</em>
+[AR651-ike-peer-hwpeer2]remote-address <em id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_i179592111415">11.xx.xx.12</em>
+[AR651-ike-peer-hwpeer2]rsa encryption-padding oaep
+[AR651-ike-peer-hwpeer2]rsa signature-padding pss
+[AR651-ike-peer-hwpeer2]ikev2 authentication sign-hash sha2-256
+[AR651-ike-peer-hwpeer2]quit</pre>
+<p id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_p397635213610">The commands are described as follows:</p>
+<ul id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_ul5677166712"><li id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_li4522710197"><strong id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_b1622610114264">pre-shared-key cipher</strong>: configures a PSK, which must be the same as that configured on the VPN console.</li><li id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_li15896112910913"><strong id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_b137297531128">local-address</strong>: specifies the public IP address of the AR router.</li><li id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_li743464717919"><strong id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_b14404154518464">remote-address</strong>: specifies the active EIP or active EIP 2 of the VPN gateway.</li></ul>
+</p></li><li id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_li18458151135016"><span>Configure an IPsec profile.</span><p><pre class="screen" id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_screen189841446292">[AR651]IPsec profile hwpro1
+[AR651-IPsec-profile-hwpro1]ike-peer hwpeer1
+[AR651-IPsec-profile-hwpro1]proposal hwproposal1
+[AR651-IPsec-profile-hwpro1]pfs dh-group14
+[AR651-IPsec-profile-hwpro1]quit
+[AR651]IPsec profile hwpro2
+[AR651-IPsec-profile-hwpro2]ike-peer hwpeer2
+[AR651-IPsec-profile-hwpro2]proposal hwproposal1
+[AR651-IPsec-profile-hwpro2]pfs dh-group14
+[AR651-IPsec-profile-hwpro2]quit</pre>
+</p></li><li id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_li138301137165010"><span>Configure virtual tunnel interfaces.</span><p><pre class="screen" id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_screen176072814306">[AR651]interface Tunnel0/0/1
+[AR651-Tunnel0/0/1]mtu 1400
+[AR651-Tunnel0/0/1]ip address 169.254.70.1 255.255.255.252
+[AR651-Tunnel0/0/1]tunnel-protocol IPsec
+[AR651-Tunnel0/0/1]source <em id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_i12564205613418">22.xx.xx.22</em>
+[AR651-Tunnel0/0/1]destination <em id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_i447915597417">11.xx.xx.11</em>
+[AR651-Tunnel0/0/1]IPsec profile hwpro1
+[AR651-Tunnel0/0/1]quit
+[AR651]interface Tunnel0/0/2
+[AR651-Tunnel0/0/2]mtu 1400
+[AR651-Tunnel0/0/2]ip address 169.254.71.1 255.255.255.252
+[AR651-Tunnel0/0/2]tunnel-protocol IPsec
+[AR651-Tunnel0/0/2]source <em id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_i6778274423">22.xx.xx.22</em>
+[AR651-Tunnel0/0/2]destination <em id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_i11874211104217">11.xx.xx.12</em>
+[AR651-Tunnel0/0/2]IPsec profile hwpro2
+[AR651-Tunnel0/0/2]quit</pre>
+<p id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_p7977195991011">The commands are described as follows:</p>
+<ul id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_ul159772598105"><li id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_li797714595107"><strong id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_b1481118314149">interface Tunnel0/0/1</strong> and <strong id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_b327411716142">interface Tunnel0/0/2</strong>: indicate the tunnel interfaces corresponding to the two VPN connections.<p id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_p1289710177206">In this example, Tunnel0/0/1 establishes a VPN connection with the active EIP of the VPN gateway, and Tunnel0/0/2 establishes a VPN connection with active EIP 2 of the VPN gateway.</p>
+</li><li id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_li99778592101"><strong id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_b11829115418334">ip address</strong>: configures an IP address for a tunnel interface on the AR router.</li><li id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_li10704135851217"><strong id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_b4980428344">source</strong>: specifies the public IP address of the AR router.</li><li id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_li6705105871211"><strong id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_b10189131414713">destination</strong>: specifies the active EIP or active EIP 2 of the VPN gateway.</li></ul>
+</p></li><li id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_li133281815135116"><span>Configure NQA.</span><p><pre class="screen" id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_screen3401184010307">[AR651]nqa test-instance IPsec_nqa1 IPsec_nqa1
+[AR651-nqa-IPsec_nqa1-IPsec_nqa1]test-type icmp
+[AR651-nqa-IPsec_nqa1-IPsec_nqa1]destination-address ipv4 169.254.70.2
+[AR651-nqa-IPsec_nqa1-IPsec_nqa1]source-address ipv4 169.254.70.1
+[AR651-nqa-IPsec_nqa1-IPsec_nqa1]frequency 15
+[AR651-nqa-IPsec_nqa1-IPsec_nqa1]ttl 255
+[AR651-nqa-IPsec_nqa1-IPsec_nqa1]start now
+[AR651-nqa-IPsec_nqa1-IPsec_nqa1]quit
+[AR651]nqa test-instance IPsec_nqa2 IPsec_nqa2
+[AR651-nqa-IPsec_nqa2-IPsec_nqa2]test-type icmp
+[AR651-nqa-IPsec_nqa2-IPsec_nqa2]destination-address ipv4 169.254.71.2
+[AR651-nqa-IPsec_nqa2-IPsec_nqa2]source-address ipv4 169.254.71.1
+[AR651-nqa-IPsec_nqa2-IPsec_nqa2]frequency 15
+[AR651-nqa-IPsec_nqa2-IPsec_nqa2]ttl 255
+[AR651-nqa-IPsec_nqa2-IPsec_nqa2]start now
+[AR651-nqa-IPsec_nqa2-IPsec_nqa2]quit</pre>
+<p id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_p243063718137">The commands are described as follows:</p>
+<ul id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_ul9430123751318"><li id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_li8430163751317"><strong id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_b36836514340">nqa test-instance IPsec_nqa1 IPsec_nqa1</strong> and <strong id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_b19250155614345">nqa test-instance IPsec_nqa2 IPsec_nqa2</strong>: configure two NQA test instances named <strong id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_b1724921123519">IPsec_nqa1</strong> and <strong id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_b177951416103511">IPsec_nqa2</strong>.<p id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_p138701304218">In this example, the test instance <strong id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_b727021115118">IPsec_nqa1</strong> is created for the VPN connection to which the active EIP of the VPN gateway belongs; the test instance <strong id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_b72701511161113">IPsec_nqa2</strong> is created for the VPN connection to which active EIP 2 of the VPN gateway belongs.</p>
+</li><li id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_li19430153711310"><strong id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_b259873915426">destination-address</strong>: specifies the tunnel interface address of the VPN gateway.</li><li id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_li8430113741314"><strong id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_b473316412438">source-address</strong>: specifies the tunnel interface address of the AR router.</li></ul>
+</p></li><li id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_li264710290512"><span>Configure association between the static route and NQA.</span><p><pre class="screen" id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_screen124338510318">[AR651]ip route-static 192.168.0.0 255.255.255.0 Tunnel0/0/1 track nqa IPsec_nqa1 IPsec_nqa1
+[AR651]ip route-static 192.168.0.0 255.255.255.0 Tunnel0/0/2 track nqa IPsec_nqa2 IPsec_nqa2</pre>
+<p id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_p14881552192112">The parameters are described as follows:</p>
+<ul id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_ul9577125802115"><li id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_li9577158122119"><strong id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_b177821518175014">192.168.0.0</strong> indicates the local subnet of the VPC.</li><li id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_li1119101419276"><strong id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_b1694953191611">Tunnel</strong><em id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_i63131755181515">x</em> and <strong id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_b1588910661616">IPsec_nqa</strong><em id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_i15153155813159">x</em> in the same command correspond to the same VPN connection.</li></ul>
+</p></li></ol>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_section1944091617118"><h4 class="sectiontitle">Verification</h4><ol id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_ol14417275312"><li id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_li11415270318"><span><span id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_ph149997419367">Log in to the management console.</span></span></li><li id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_li141112717317"><span><span id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_ph910821143918">Click <span><img id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_en-us_topic_0000001591897601_image15446151185815" src="figure/en-us_image_0000001923096425.png"></span> in the upper left corner of the page, and choose <span class="menucascade" id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_en-us_topic_0000001591897601_menucascade124471851165812"><b><span class="uicontrol" id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_en-us_topic_0000001591897601_uicontrol144755165811">Network</span></b> &gt; <b><span class="uicontrol" id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_en-us_topic_0000001591897601_uicontrol644725116587">Virtual Private Network</span></b></span>.</span></span></li><li id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_li19901154583213"><span><span id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_ph109011945153218">In the navigation pane on the left, choose <span class="menucascade" id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_en-us_topic_0000001591897601_menucascade16881163103614"><b><span class="uicontrol" id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_en-us_topic_0000001591897601_uicontrol1262522084410">Virtual Private Network</span></b> &gt; <b><span class="uicontrol" id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_en-us_topic_0000001591897601_uicontrol7625162018443">Enterprise – VPN Connections</span></b></span>.</span></span><p><p id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_p1828954617329">Verify that the states of the two VPN connections are both <span class="parmvalue" id="EN-US_TOPIC_0000001963686664__en-us_topic_0000001592879117_parmvalue1195295993"><b>Normal</b></span>.</p>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_08_1505.html">Enterprise Edition VPN</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_03_0337.html b/docs/vpn/umn/vpn_03_0337.html
new file mode 100644
index 00000000..ef53f24e
--- /dev/null
+++ b/docs/vpn/umn/vpn_03_0337.html
@@ -0,0 +1,27 @@
+<a name="EN-US_TOPIC_0000002000246725"></a><a name="EN-US_TOPIC_0000002000246725"></a>
+
+<h1 class="topictitle1">Step 6: Verifying Network Connectivity</h1>
+<div id="body8662426"><div class="section" id="EN-US_TOPIC_0000002000246725__en-us_topic_0000001542014830_section1846122044218"><h4 class="sectiontitle">Procedure</h4><ol id="EN-US_TOPIC_0000002000246725__en-us_topic_0000001542014830_ol11464202427"><li id="EN-US_TOPIC_0000002000246725__en-us_topic_0000001542014830_li19417027165110"><span><span id="EN-US_TOPIC_0000002000246725__en-us_topic_0000001542014830_ph149997419367">Log in to the management console.</span></span></li><li id="EN-US_TOPIC_0000002000246725__en-us_topic_0000001542014830_li18272154101917"><span><span id="EN-US_TOPIC_0000002000246725__en-us_topic_0000001542014830_ph587583114385">Click <span><img id="EN-US_TOPIC_0000002000246725__en-us_topic_0000001542014830_en-us_topic_0000001591897601_image66709190" src="figure/en-us_image_0000001628070572.png" width="19.950000000000003" height="19.950000000000003" title="Click to enlarge" class="imgResize"></span> in the upper left corner and select the desired region and project.</span></span></li><li id="EN-US_TOPIC_0000002000246725__en-us_topic_0000001542014830_li13278035192013"><span>Click <span class="uicontrol" id="EN-US_TOPIC_0000002000246725__en-us_topic_0000001542014830_uicontrol32905289219"><b>Service List</b></span> and choose <span class="menucascade" id="EN-US_TOPIC_0000002000246725__en-us_topic_0000001542014830_menucascade1792474282115"><b><span class="uicontrol" id="EN-US_TOPIC_0000002000246725__en-us_topic_0000001542014830_uicontrol14924114219211">Compute</span></b> &gt; <b><span class="uicontrol" id="EN-US_TOPIC_0000002000246725__en-us_topic_0000001542014830_uicontrol105841338182818">Elastic Cloud Server</span></b></span>.</span></li><li id="EN-US_TOPIC_0000002000246725__en-us_topic_0000001542014830_li154091419132410"><span>Log in to an ECS.</span><p><p id="EN-US_TOPIC_0000002000246725__en-us_topic_0000001542014830_p1929124182617">In this example, use VNC provided on the management console to log in to an ECS.</p>
+</p></li><li id="EN-US_TOPIC_0000002000246725__en-us_topic_0000001542014830_li105742451915"><span>Run the following command on the ECS:</span><p><p id="EN-US_TOPIC_0000002000246725__en-us_topic_0000001542014830_p1322175362818"><b><span class="cmdname" id="EN-US_TOPIC_0000002000246725__en-us_topic_0000001542014830_cmdname19989125215383">ping 172.16.0.100</span></b></p>
+<p id="EN-US_TOPIC_0000002000246725__en-us_topic_0000001542014830_p10932052587">172.16.0.100 is the IP address of a server in the on-premises data center. Replace it with an actual server IP address.</p>
+<p id="EN-US_TOPIC_0000002000246725__en-us_topic_0000001542014830_p17021234173017">If information similar to the following is displayed, the VPC on the cloud and the on-premises data center can communicate with each other.</p>
+<pre class="screen" id="EN-US_TOPIC_0000002000246725__en-us_topic_0000001542014830_screen28101643991">Reply from xx.xx.xx.xx: bytes=32 time=28ms TTL=245
+Reply from xx.xx.xx.xx: bytes=32 time=28ms TTL=245
+Reply from xx.xx.xx.xx: bytes=32 time=28ms TTL=245
+Reply from xx.xx.xx.xx: bytes=32 time=27ms TTL=245</pre>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_08_1505.html">Enterprise Edition VPN</a></div>
+</div>
+</div>
+
+
+<script language="JavaScript">
+<!--
+image_size('.imgResize');
+var msg_imageMax = "view original image";
+var msg_imageClose = "close";
+//--></script>
\ No newline at end of file
diff --git a/docs/vpn/umn/vpn_04_0000.html b/docs/vpn/umn/vpn_04_0000.html
new file mode 100644
index 00000000..6c8c1548
--- /dev/null
+++ b/docs/vpn/umn/vpn_04_0000.html
@@ -0,0 +1,23 @@
+<a name="EN-US_TOPIC_0000001920877885"></a><a name="EN-US_TOPIC_0000001920877885"></a>
+
+<h1 class="topictitle1">Management</h1>
+<div id="body8662426"></div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="vpn_08_1509.html">Enterprise Edition VPN</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_08_1511.html">Classic VPN</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_04_0700.html">Monitoring</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_ug_00016.html">Audit</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_04_1200.html">Permissions Management</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_08_1513.html">Tag Management</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_04_0411.html">Quotas</a></strong><br>
+</li>
+</ul>
+</div>
+
diff --git a/docs/vpn/umn/vpn_04_0002.html b/docs/vpn/umn/vpn_04_0002.html
new file mode 100644
index 00000000..c0223c0a
--- /dev/null
+++ b/docs/vpn/umn/vpn_04_0002.html
@@ -0,0 +1,71 @@
+<a name="EN-US_TOPIC_0000001542494026"></a><a name="EN-US_TOPIC_0000001542494026"></a>
+
+<h1 class="topictitle1">Viewing Created VPNs</h1>
+<div id="body1471229606503"><div class="section" id="EN-US_TOPIC_0000001542494026__section25068200105648"><h4 class="sectiontitle">Scenarios</h4><p id="EN-US_TOPIC_0000001542494026__p54505210105650">You can view details about an existing VPN.</p>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001542494026__section47858803105754"><h4 class="sectiontitle">Procedure</h4><ol id="EN-US_TOPIC_0000001542494026__ol59755164105820"><li id="EN-US_TOPIC_0000001542494026__li6029427620388">Log in to the management console.</li><li id="EN-US_TOPIC_0000001542494026__li1348094513393">Click <span><img id="EN-US_TOPIC_0000001542494026__image1095897611136" src="figure/en-us_image_0000001542015046.png" width="16.9575" height="21.945" title="Click to enlarge" class="imgResize"></span> in the upper left corner and select the desired region and project.</li><li id="EN-US_TOPIC_0000001542494026__li577757920388">Click <strong id="EN-US_TOPIC_0000001542494026__b12732752145214">Service List</strong> and choose <strong id="EN-US_TOPIC_0000001542494026__b1673915295218">Networking</strong> &gt; <strong id="EN-US_TOPIC_0000001542494026__b187404527524">Virtual Private Network</strong>.</li><li id="EN-US_TOPIC_0000001542494026__li101481141246"><span id="EN-US_TOPIC_0000001542494026__ph54221449694">In the navigation pane on the left, choose <strong id="EN-US_TOPIC_0000001542494026__en-us_topic_0000001591897601_en-us_topic_0000001591897601_b433982861420">Virtual Private Network</strong>.</span><p id="EN-US_TOPIC_0000001542494026__p12776522123613"><span id="EN-US_TOPIC_0000001542494026__ph543794912912">If Enterprise Edition VPN is available for the selected region, choose <strong id="EN-US_TOPIC_0000001542494026__en-us_topic_0000001591897601_en-us_topic_0000001591897601_b91861441151416">Virtual Private Network</strong> &gt; <strong id="EN-US_TOPIC_0000001542494026__en-us_topic_0000001591897601_en-us_topic_0000001591897601_b15186184131410">Classic</strong>.</span></p>
+</li><li id="EN-US_TOPIC_0000001542494026__li105641527123813">On the <strong id="EN-US_TOPIC_0000001542494026__b510115387315">Virtual Private Network</strong> page, view the target VPN.<p id="EN-US_TOPIC_0000001542494026__p283755474517">If Enterprise Edition VPN is available for the selected region, view the target VPN on the <strong id="EN-US_TOPIC_0000001542494026__b36875246528">Classic</strong> page.</p>
+<div class="p" id="EN-US_TOPIC_0000001542494026__p8919143410222"><a href="#EN-US_TOPIC_0000001542494026__en-us_topic_0013748707_table1573616693718">Table 1</a> describes the VPN status.
+<div class="tablenoborder"><a name="EN-US_TOPIC_0000001542494026__en-us_topic_0013748707_table1573616693718"></a><a name="en-us_topic_0013748707_table1573616693718"></a><table cellpadding="4" cellspacing="0" summary="" id="EN-US_TOPIC_0000001542494026__en-us_topic_0013748707_table1573616693718" frame="border" border="1" rules="all"><caption><b>Table 1 </b>VPN status</caption><thead align="left"><tr id="EN-US_TOPIC_0000001542494026__en-us_topic_0013748707_row580761493718"><th align="left" class="cellrowborder" valign="top" width="24.81%" id="mcps1.3.2.2.5.3.2.2.3.1.1"><p id="EN-US_TOPIC_0000001542494026__en-us_topic_0013748707_p65469593718">Status</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="75.19%" id="mcps1.3.2.2.5.3.2.2.3.1.2"><p id="EN-US_TOPIC_0000001542494026__en-us_topic_0013748707_p5303029693718">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="EN-US_TOPIC_0000001542494026__en-us_topic_0013748707_row3942386093718"><td class="cellrowborder" valign="top" width="24.81%" headers="mcps1.3.2.2.5.3.2.2.3.1.1 "><p id="EN-US_TOPIC_0000001542494026__en-us_topic_0013748707_p3921611193718">Normal</p>
+</td>
+<td class="cellrowborder" valign="top" width="75.19%" headers="mcps1.3.2.2.5.3.2.2.3.1.2 "><p id="EN-US_TOPIC_0000001542494026__en-us_topic_0013748707_p16932393718">The VPN is successfully created, and the on-premises data center can access the VPC properly.</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001542494026__row1971216541496"><td class="cellrowborder" valign="top" width="24.81%" headers="mcps1.3.2.2.5.3.2.2.3.1.1 "><p id="EN-US_TOPIC_0000001542494026__p071295434911">Not connected</p>
+</td>
+<td class="cellrowborder" valign="top" width="75.19%" headers="mcps1.3.2.2.5.3.2.2.3.1.2 "><p id="EN-US_TOPIC_0000001542494026__p1713135454918">The VPN is successfully created but has not been used for communication with the on-premises data center.</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001542494026__row467655719502"><td class="cellrowborder" valign="top" width="24.81%" headers="mcps1.3.2.2.5.3.2.2.3.1.1 "><p id="EN-US_TOPIC_0000001542494026__p7676145712505">Creating</p>
+</td>
+<td class="cellrowborder" valign="top" width="75.19%" headers="mcps1.3.2.2.5.3.2.2.3.1.2 "><p id="EN-US_TOPIC_0000001542494026__p7676557195020">The VPN is being created.</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001542494026__row5869540125112"><td class="cellrowborder" valign="top" width="24.81%" headers="mcps1.3.2.2.5.3.2.2.3.1.1 "><p id="EN-US_TOPIC_0000001542494026__p5885205695013">Updating</p>
+</td>
+<td class="cellrowborder" valign="top" width="75.19%" headers="mcps1.3.2.2.5.3.2.2.3.1.2 "><p id="EN-US_TOPIC_0000001542494026__p1488114563502">VPN information is being updated.</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001542494026__row134561502527"><td class="cellrowborder" valign="top" width="24.81%" headers="mcps1.3.2.2.5.3.2.2.3.1.1 "><p id="EN-US_TOPIC_0000001542494026__p74561205523">Deleting</p>
+</td>
+<td class="cellrowborder" valign="top" width="75.19%" headers="mcps1.3.2.2.5.3.2.2.3.1.2 "><p id="EN-US_TOPIC_0000001542494026__p64561601524">The VPN is being deleted.</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001542494026__row13102348115020"><td class="cellrowborder" valign="top" width="24.81%" headers="mcps1.3.2.2.5.3.2.2.3.1.1 "><p id="EN-US_TOPIC_0000001542494026__p11869140175116">Abnormal</p>
+</td>
+<td class="cellrowborder" valign="top" width="75.19%" headers="mcps1.3.2.2.5.3.2.2.3.1.2 "><p id="EN-US_TOPIC_0000001542494026__p168692040205120">The VPN is abnormal.</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001542494026__row71412020162620"><td class="cellrowborder" valign="top" width="24.81%" headers="mcps1.3.2.2.5.3.2.2.3.1.1 "><p id="EN-US_TOPIC_0000001542494026__p914216203268">Frozen</p>
+</td>
+<td class="cellrowborder" valign="top" width="75.19%" headers="mcps1.3.2.2.5.3.2.2.3.1.2 "><p id="EN-US_TOPIC_0000001542494026__p91429206264">The VPN is frozen.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+<div class="fignone" id="EN-US_TOPIC_0000001542494026__fig102401443161412"><span class="figcap"><b>Figure 1 </b>Viewing the created VPN</span><br><span><img id="EN-US_TOPIC_0000001542494026__image52406431147" src="figure/en-us_image_0000001987560070.png" height="84.322" width="497.42" title="Click to enlarge" class="imgResize"></span></div>
+</div>
+<p id="EN-US_TOPIC_0000001542494026__p78481718141319"><span><img id="EN-US_TOPIC_0000001542494026__image784811819139" src="figure/en-us_image_0000001842101730.png" height="311.7121" width="497.42" title="Click to enlarge" class="imgResize"></span></p>
+</li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_04_0470.html">Classic VPN Management</a></div>
+</div>
+</div>
+
+
+<script language="JavaScript">
+<!--
+image_size('.imgResize');
+var msg_imageMax = "view original image";
+var msg_imageClose = "close";
+//--></script>
\ No newline at end of file
diff --git a/docs/vpn/umn/vpn_04_0003.html b/docs/vpn/umn/vpn_04_0003.html
new file mode 100644
index 00000000..88b6e9ad
--- /dev/null
+++ b/docs/vpn/umn/vpn_04_0003.html
@@ -0,0 +1,24 @@
+<a name="EN-US_TOPIC_0000001592573553"></a><a name="EN-US_TOPIC_0000001592573553"></a>
+
+<h1 class="topictitle1">Modifying a Created VPN</h1>
+<div id="body8662426"><div class="section" id="EN-US_TOPIC_0000001592573553__en-us_topic_0029397275_section35610742171247"><h4 class="sectiontitle">Scenarios</h4><p id="EN-US_TOPIC_0000001592573553__en-us_topic_0029397275_p65897881171247">If VPN network information conflicts with VPC network information or needs to be adjusted based on the latest network environment, you can modify the VPN.</p>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001592573553__en-us_topic_0029397275_section40696903171247"><h4 class="sectiontitle">Procedure</h4><ol id="EN-US_TOPIC_0000001592573553__en-us_topic_0029397275_ol1240260717532"><li id="EN-US_TOPIC_0000001592573553__en-us_topic_0029397275_li51554023174821">Log in to the management console.</li><li id="EN-US_TOPIC_0000001592573553__li1348094513393">Click <span><img id="EN-US_TOPIC_0000001592573553__image1095897611136" src="figure/en-us_image_0000001592879209.png" width="16.9575" height="21.945" title="Click to enlarge" class="imgResize"></span> in the upper left corner and select the desired region and project.</li><li id="EN-US_TOPIC_0000001592573553__en-us_topic_0029397275_li61333023174821">Click <strong id="EN-US_TOPIC_0000001592573553__b54852128291425">Service List</strong> and choose <strong id="EN-US_TOPIC_0000001592573553__b201879197591425">Networking</strong> &gt; <strong id="EN-US_TOPIC_0000001592573553__b113546536191425">Virtual Private Network</strong>.</li><li id="EN-US_TOPIC_0000001592573553__li101481141246"><span id="EN-US_TOPIC_0000001592573553__ph54221449694">In the navigation pane on the left, choose <strong id="EN-US_TOPIC_0000001592573553__en-us_topic_0000001591897601_en-us_topic_0000001591897601_b433982861420">Virtual Private Network</strong>.</span><p id="EN-US_TOPIC_0000001592573553__p12776522123613"><span id="EN-US_TOPIC_0000001592573553__ph543794912912">If Enterprise Edition VPN is available for the selected region, choose <strong id="EN-US_TOPIC_0000001592573553__en-us_topic_0000001591897601_en-us_topic_0000001591897601_b91861441151416">Virtual Private Network</strong> &gt; <strong id="EN-US_TOPIC_0000001592573553__en-us_topic_0000001591897601_en-us_topic_0000001591897601_b15186184131410">Classic</strong>.</span></p>
+</li><li id="EN-US_TOPIC_0000001592573553__en-us_topic_0029397275_li4451460117532">On the <strong id="EN-US_TOPIC_0000001592573553__b84235270621320">Virtual Private Network</strong> page, locate the target VPN and click <strong id="EN-US_TOPIC_0000001592573553__b84235270621349">Modify</strong>.<p id="EN-US_TOPIC_0000001592573553__p283755474517">If Enterprise Edition VPN is available for the selected region, locate the target VPN and click <strong id="EN-US_TOPIC_0000001592573553__b23972296536">Modify</strong> on the <strong id="EN-US_TOPIC_0000001592573553__b155811840185312">Classic</strong> page.</p>
+</li><li id="EN-US_TOPIC_0000001592573553__en-us_topic_0029397275_li6508709317532">In the displayed dialog box, modify parameters as required.<div class="fignone" id="EN-US_TOPIC_0000001592573553__fig99391408112"><span class="figcap"><b>Figure 1 </b>Modify VPN page</span><br><span><img id="EN-US_TOPIC_0000001592573553__image111452471277" src="figure/en-us_image_0000001987560190.png" height="201.81420000000003" width="497.42" title="Click to enlarge" class="imgResize"></span></div>
+</li><li id="EN-US_TOPIC_0000001592573553__en-us_topic_0029397275_li2831793317532">Click <strong id="EN-US_TOPIC_0000001592573553__b9390163617582">OK</strong>.</li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_04_0470.html">Classic VPN Management</a></div>
+</div>
+</div>
+
+
+<script language="JavaScript">
+<!--
+image_size('.imgResize');
+var msg_imageMax = "view original image";
+var msg_imageClose = "close";
+//--></script>
\ No newline at end of file
diff --git a/docs/vpn/umn/vpn_04_0004.html b/docs/vpn/umn/vpn_04_0004.html
new file mode 100644
index 00000000..0306d57d
--- /dev/null
+++ b/docs/vpn/umn/vpn_04_0004.html
@@ -0,0 +1,23 @@
+<a name="EN-US_TOPIC_0000001592773709"></a><a name="EN-US_TOPIC_0000001592773709"></a>
+
+<h1 class="topictitle1">Deleting a VPN</h1>
+<div id="body8662426"><div class="section" id="EN-US_TOPIC_0000001592773709__section9797105515434"><h4 class="sectiontitle">Scenarios</h4><p id="EN-US_TOPIC_0000001592773709__p9231017446">You can delete a VPN if it is no longer required.</p>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001592773709__section1518210345444"><h4 class="sectiontitle">Procedure</h4><ol id="EN-US_TOPIC_0000001592773709__ol176651150124415"><li id="EN-US_TOPIC_0000001592773709__li166518504448">Log in to the management console.</li><li id="EN-US_TOPIC_0000001592773709__li9672195074412">Click <span><img id="EN-US_TOPIC_0000001592773709__image1084555124152222" src="figure/en-us_image_0000001592879265.png" width="16.9575" height="21.945" title="Click to enlarge" class="imgResize"></span> in the upper left corner and select the desired region and project.</li><li id="EN-US_TOPIC_0000001592773709__li136727501440">Click <strong id="EN-US_TOPIC_0000001592773709__b116748103691426">Service List</strong> and choose <strong id="EN-US_TOPIC_0000001592773709__b148288024791426">Networking</strong> &gt; <strong id="EN-US_TOPIC_0000001592773709__b53033439091426">Virtual Private Network</strong>.</li><li id="EN-US_TOPIC_0000001592773709__li101481141246"><span id="EN-US_TOPIC_0000001592773709__ph54221449694">In the navigation pane on the left, choose <strong id="EN-US_TOPIC_0000001592773709__en-us_topic_0000001591897601_en-us_topic_0000001591897601_b433982861420">Virtual Private Network</strong>.</span><p id="EN-US_TOPIC_0000001592773709__p12776522123613"><span id="EN-US_TOPIC_0000001592773709__ph543794912912">If Enterprise Edition VPN is available for the selected region, choose <strong id="EN-US_TOPIC_0000001592773709__en-us_topic_0000001591897601_en-us_topic_0000001591897601_b91861441151416">Virtual Private Network</strong> &gt; <strong id="EN-US_TOPIC_0000001592773709__en-us_topic_0000001591897601_en-us_topic_0000001591897601_b15186184131410">Classic</strong>.</span></p>
+</li><li id="EN-US_TOPIC_0000001592773709__li1367255004417">On the <strong id="EN-US_TOPIC_0000001592773709__b1387119118546">Virtual Private Network</strong> page, locate the target VPN and click <strong id="EN-US_TOPIC_0000001592773709__b114379419548">Delete</strong>.<p id="EN-US_TOPIC_0000001592773709__p283755474517">If Enterprise Edition VPN is available for the selected region, locate the target VPN and click <strong id="EN-US_TOPIC_0000001592773709__b144641673540">Delete</strong> on the <strong id="EN-US_TOPIC_0000001592773709__b16464157195413">Classic</strong> page.</p>
+</li><li id="EN-US_TOPIC_0000001592773709__li86722050104418">In the displayed dialog box, click <strong id="EN-US_TOPIC_0000001592773709__b2221426164010">Yes</strong>.</li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_04_0470.html">Classic VPN Management</a></div>
+</div>
+</div>
+
+
+<script language="JavaScript">
+<!--
+image_size('.imgResize');
+var msg_imageMax = "view original image";
+var msg_imageClose = "close";
+//--></script>
\ No newline at end of file
diff --git a/docs/vpn/umn/vpn_04_0411.html b/docs/vpn/umn/vpn_04_0411.html
new file mode 100644
index 00000000..4d2c7763
--- /dev/null
+++ b/docs/vpn/umn/vpn_04_0411.html
@@ -0,0 +1,13 @@
+<a name="EN-US_TOPIC_0000001875296754"></a><a name="EN-US_TOPIC_0000001875296754"></a>
+
+<h1 class="topictitle1">Quotas</h1>
+<div id="body8662426"><div class="section" id="EN-US_TOPIC_0000001875296754__en-us_topic_0000001542334014_section8158838204318"><h4 class="sectiontitle">Resource Types</h4><ul id="EN-US_TOPIC_0000001875296754__en-us_topic_0000001542334014_ul164113375910"><li id="EN-US_TOPIC_0000001875296754__en-us_topic_0000001542334014_li5411113712915">VPN resources include VPN gateways, VPN connection groups, and customer gateways.</li></ul>
+<p id="EN-US_TOPIC_0000001875296754__en-us_topic_0000001542334014_p483421111107">The total quota of each resource type varies according to regions.</p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_04_0000.html">Management</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_04_0421.html b/docs/vpn/umn/vpn_04_0421.html
new file mode 100644
index 00000000..ea712bc2
--- /dev/null
+++ b/docs/vpn/umn/vpn_04_0421.html
@@ -0,0 +1,293 @@
+<a name="EN-US_TOPIC_0000001542174206"></a><a name="EN-US_TOPIC_0000001542174206"></a>
+
+<h1 class="topictitle1">Creating a VPN Gateway</h1>
+<div id="body1586310689095"><div class="section" id="EN-US_TOPIC_0000001542174206__section14408801"><h4 class="sectiontitle">Scenario</h4><p class="msonormal" id="EN-US_TOPIC_0000001542174206__p37820334">To connect your on-premises data center or private network to your ECSs in a VPC, you need to create a VPN gateway before creating a VPN connection.</p>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001542174206__section17791412445"><a name="EN-US_TOPIC_0000001542174206__section17791412445"></a><a name="section17791412445"></a><h4 class="sectiontitle">Context</h4><div class="p" id="EN-US_TOPIC_0000001542174206__p76398130286">The recommended networking varies according to the number of customer gateway IP addresses, as described in <a href="#EN-US_TOPIC_0000001542174206__table114201617125613">Table 1</a>.
+<div class="tablenoborder"><a name="EN-US_TOPIC_0000001542174206__table114201617125613"></a><a name="table114201617125613"></a><table cellpadding="4" cellspacing="0" summary="" id="EN-US_TOPIC_0000001542174206__table114201617125613" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Networking</caption><thead align="left"><tr id="EN-US_TOPIC_0000001542174206__row16421161715562"><th align="left" class="cellrowborder" valign="top" width="14.760000000000002%" id="mcps1.3.2.2.2.2.4.1.1"><p id="EN-US_TOPIC_0000001542174206__p1651434113561">Number of Customer Gateway IP Addresses</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="52.900000000000006%" id="mcps1.3.2.2.2.2.4.1.2"><p id="EN-US_TOPIC_0000001542174206__p144211017115616">Recommended Networking</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="32.34%" id="mcps1.3.2.2.2.2.4.1.3"><p id="EN-US_TOPIC_0000001542174206__p74283283574">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="EN-US_TOPIC_0000001542174206__row174211017135617"><td class="cellrowborder" valign="top" width="14.760000000000002%" headers="mcps1.3.2.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000001542174206__p184212017115616">1</p>
+</td>
+<td class="cellrowborder" valign="top" width="52.900000000000006%" headers="mcps1.3.2.2.2.2.4.1.2 "><p id="EN-US_TOPIC_0000001542174206__p442111712562"><span><img class="imgResize" id="EN-US_TOPIC_0000001542174206__image5241153115819" src="figure/en-us_image_0000001592879273.png" width="271.32" height="59.052" title="Click to enlarge"></span></p>
+</td>
+<td class="cellrowborder" valign="top" width="32.34%" headers="mcps1.3.2.2.2.2.4.1.3 "><p id="EN-US_TOPIC_0000001542174206__p5429132885714">It is recommended that the VPN gateway uses the active-active mode. In this case, one VPN connection group is used.</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001542174206__row735622195114"><td class="cellrowborder" valign="top" width="14.760000000000002%" headers="mcps1.3.2.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000001542174206__p235642145116">2</p>
+</td>
+<td class="cellrowborder" valign="top" width="52.900000000000006%" headers="mcps1.3.2.2.2.2.4.1.2 "><p id="EN-US_TOPIC_0000001542174206__p13356321205114"><span><img class="imgResize" id="EN-US_TOPIC_0000001542174206__image202761025185118" src="figure/en-us_image_0000001594572920.png" width="271.32" height="65.9281" title="Click to enlarge"></span></p>
+</td>
+<td class="cellrowborder" valign="top" width="32.34%" headers="mcps1.3.2.2.2.2.4.1.3 "><p id="EN-US_TOPIC_0000001542174206__p19356172145120">It is recommended that the VPN gateway uses the active/standby mode. In this case, two VPN connection groups are used.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+<ul id="EN-US_TOPIC_0000001542174206__ul153584444917"><li id="EN-US_TOPIC_0000001542174206__li2035817441295">If your on-premises data center has only one customer gateway configured with only one IP address, it is recommended that the VPN gateway uses the active-active mode. In this mode, you need to create a VPN connection between each of the active EIP and active EIP 2 of the VPN gateway and the IP address of the customer gateway. In this scenario, only one VPN connection group is used.</li><li id="EN-US_TOPIC_0000001542174206__li02531349018">If your on-premises data center has two customer gateways or one customer gateway configured with two IP addresses, it is recommended that the VPN gateway uses the active/standby mode. In this mode, you need to create a VPN connection with each of the customer gateway IP addresses using the active and standby EIPs of the VPN gateway. In this scenario, two VPN connection groups are used.</li></ul>
+</div>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001542174206__section7358312105"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="EN-US_TOPIC_0000001542174206__ul25889385108"><li id="EN-US_TOPIC_0000001542174206__li1684725861119">When an enterprise router is associated, pay attention to the upper limit of entries in the routing table of the enterprise router.</li></ul>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001542174206__section3364901314"><h4 class="sectiontitle">Prerequisites</h4><ul id="EN-US_TOPIC_0000001542174206__ul519714225114"><li class="msonormal" id="EN-US_TOPIC_0000001542174206__li3197922016">A VPC has been created. For details about how to create a VPC, see the <em id="EN-US_TOPIC_0000001542174206__i1195534173213">Virtual Private Cloud User Guide</em>.</li><li id="EN-US_TOPIC_0000001542174206__li31141127132615">Security group rules have been configured for the VPC, and ECSs can communicate with other devices on the cloud. For details about how to configure security group rules, see the <em id="EN-US_TOPIC_0000001542174206__i6300155013219">Virtual Private Cloud User Guide</em>.</li><li id="EN-US_TOPIC_0000001542174206__li830912231111">An enterprise router has been created if you want to use it to connect to a VPN gateway. For details, see the enterprise router documentation.</li></ul>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001542174206__section62570345"><h4 class="sectiontitle">Procedure</h4><ol id="EN-US_TOPIC_0000001542174206__ol2051618174012"><li id="EN-US_TOPIC_0000001542174206__li1051638174019"><span><span id="EN-US_TOPIC_0000001542174206__ph149997419367">Log in to the management console.</span></span></li><li id="EN-US_TOPIC_0000001542174206__li9516588408"><span><span id="EN-US_TOPIC_0000001542174206__ph587583114385">Click <span><img id="EN-US_TOPIC_0000001542174206__en-us_topic_0000001591897601_image66709190" src="figure/en-us_image_0000001628070572.png" width="19.950000000000003" height="19.950000000000003" title="Click to enlarge" class="imgResize"></span> in the upper left corner and select the desired region and project.</span></span></li><li id="EN-US_TOPIC_0000001542174206__li155161874015"><span><span id="EN-US_TOPIC_0000001542174206__ph910821143918">Click <span><img id="EN-US_TOPIC_0000001542174206__en-us_topic_0000001591897601_image15446151185815" src="figure/en-us_image_0000001923096425.png"></span> in the upper left corner of the page, and choose <span class="menucascade" id="EN-US_TOPIC_0000001542174206__en-us_topic_0000001591897601_menucascade124471851165812"><b><span class="uicontrol" id="EN-US_TOPIC_0000001542174206__en-us_topic_0000001591897601_uicontrol144755165811">Network</span></b> &gt; <b><span class="uicontrol" id="EN-US_TOPIC_0000001542174206__en-us_topic_0000001591897601_uicontrol644725116587">Virtual Private Network</span></b></span>.</span></span></li><li id="EN-US_TOPIC_0000001542174206__li13516882405"><span><span id="EN-US_TOPIC_0000001542174206__ph152910598390">In the navigation pane on the left, choose <span class="menucascade" id="EN-US_TOPIC_0000001542174206__en-us_topic_0000001591897601_menucascade326450115820"><b><span class="uicontrol" id="EN-US_TOPIC_0000001542174206__en-us_topic_0000001591897601_uicontrol25222024174318">Virtual Private Network</span></b> &gt; <b><span class="uicontrol" id="EN-US_TOPIC_0000001542174206__en-us_topic_0000001591897601_uicontrol6523132419431">Enterprise – VPN Gateways</span></b></span>.</span></span></li><li id="EN-US_TOPIC_0000001542174206__li784842171018"><span><span id="EN-US_TOPIC_0000001542174206__ph571516133912">Click </span><span class="uicontrol" id="EN-US_TOPIC_0000001542174206__uicontrol772711163914"><b>Create VPN Gateway</b></span>.</span></li><li id="EN-US_TOPIC_0000001542174206__li1851618817402"><span>Set parameters as prompted and click <span class="uicontrol" id="EN-US_TOPIC_0000001542174206__uicontrol187821334105010"><b>Create Now</b></span>.</span><p><div class="fignone" id="EN-US_TOPIC_0000001542174206__fig6761112718171"><span class="figcap"><b>Figure 1 </b>Creating a VPN gateway</span><br><span><img id="EN-US_TOPIC_0000001542174206__image57611227141712" src="figure/en-us_image_0000001903603225.png" height="356.2538" width="497.42" title="Click to enlarge" class="imgResize"></span></div>
+<p id="EN-US_TOPIC_0000001542174206__p13434635155914"><a href="#EN-US_TOPIC_0000001542174206__d0e1539">Table 2</a> lists the VPN gateway parameters.</p>
+
+<div class="tablenoborder"><a name="EN-US_TOPIC_0000001542174206__d0e1539"></a><a name="d0e1539"></a><table cellpadding="4" cellspacing="0" summary="" id="EN-US_TOPIC_0000001542174206__d0e1539" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Description of VPN gateway parameters</caption><thead align="left"><tr id="EN-US_TOPIC_0000001542174206__row55770977"><th align="left" class="cellrowborder" valign="top" width="15.340000000000002%" id="mcps1.3.5.2.6.2.3.2.4.1.1"><p id="EN-US_TOPIC_0000001542174206__p21155287">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="60.699999999999996%" id="mcps1.3.5.2.6.2.3.2.4.1.2"><p id="EN-US_TOPIC_0000001542174206__p35856657">Description</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="23.96%" id="mcps1.3.5.2.6.2.3.2.4.1.3"><p id="EN-US_TOPIC_0000001542174206__p18708087">Example Value</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="EN-US_TOPIC_0000001542174206__row38960115"><td class="cellrowborder" valign="top" width="15.340000000000002%" headers="mcps1.3.5.2.6.2.3.2.4.1.1 "><p id="EN-US_TOPIC_0000001542174206__p1652714">Region</p>
+</td>
+<td class="cellrowborder" valign="top" width="60.699999999999996%" headers="mcps1.3.5.2.6.2.3.2.4.1.2 "><p id="EN-US_TOPIC_0000001542174206__p66761030">For low network latency and fast resource access, select the region nearest to your target users.</p>
+<p id="EN-US_TOPIC_0000001542174206__p4603103545611">Resources cannot be shared across regions.</p>
+</td>
+<td class="cellrowborder" valign="top" width="23.96%" headers="mcps1.3.5.2.6.2.3.2.4.1.3 "><p id="EN-US_TOPIC_0000001542174206__p38934383"> Select a region as required.eu-de</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001542174206__row14865132"><td class="cellrowborder" valign="top" width="15.340000000000002%" headers="mcps1.3.5.2.6.2.3.2.4.1.1 "><p id="EN-US_TOPIC_0000001542174206__p63225010">Name</p>
+</td>
+<td class="cellrowborder" valign="top" width="60.699999999999996%" headers="mcps1.3.5.2.6.2.3.2.4.1.2 "><p id="EN-US_TOPIC_0000001542174206__p20952185">Name of a VPN gateway. The value can contain only letters, digits, underscores (_), hyphens (-), and periods (.).</p>
+</td>
+<td class="cellrowborder" valign="top" width="23.96%" headers="mcps1.3.5.2.6.2.3.2.4.1.3 "><p id="EN-US_TOPIC_0000001542174206__p19405416">vpngw-001</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001542174206__row164524157273"><td class="cellrowborder" valign="top" width="15.340000000000002%" headers="mcps1.3.5.2.6.2.3.2.4.1.1 "><p id="EN-US_TOPIC_0000001542174206__p1345261552720">Network Type</p>
+</td>
+<td class="cellrowborder" valign="top" width="60.699999999999996%" headers="mcps1.3.5.2.6.2.3.2.4.1.2 "><ul id="EN-US_TOPIC_0000001542174206__ul834552019570"><li id="EN-US_TOPIC_0000001542174206__li83453204578"><strong id="EN-US_TOPIC_0000001542174206__b197310081217">Public network</strong>: A VPN gateway establishes VPN connections through the Internet. <strong id="EN-US_TOPIC_0000001542174206__b746985818510">Public network</strong> is the default value.</li><li id="EN-US_TOPIC_0000001542174206__li20925821135712"><strong id="EN-US_TOPIC_0000001542174206__b126917265124">Private network</strong>: A VPN gateway establishes VPN connections through a private network.</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="23.96%" headers="mcps1.3.5.2.6.2.3.2.4.1.3 "><p id="EN-US_TOPIC_0000001542174206__p1245271519274">Public network</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001542174206__row1893141317173"><td class="cellrowborder" valign="top" width="15.340000000000002%" headers="mcps1.3.5.2.6.2.3.2.4.1.1 "><p id="EN-US_TOPIC_0000001542174206__p389321316174">Associate With</p>
+</td>
+<td class="cellrowborder" valign="top" width="60.699999999999996%" headers="mcps1.3.5.2.6.2.3.2.4.1.2 "><ul id="EN-US_TOPIC_0000001542174206__ul1580523719177"><li id="EN-US_TOPIC_0000001542174206__li1280523710176">VPC<p id="EN-US_TOPIC_0000001542174206__p1364811467311"><a name="EN-US_TOPIC_0000001542174206__li1280523710176"></a><a name="li1280523710176"></a>Through a VPC, the VPN gateway sends messages to the customer gateway or servers in the local subnet.</p>
+</li><li id="EN-US_TOPIC_0000001542174206__li0812499310">Enterprise Router<p id="EN-US_TOPIC_0000001542174206__p382685119319"><a name="EN-US_TOPIC_0000001542174206__li0812499310"></a><a name="li0812499310"></a>Through an enterprise router, the VPN gateway sends messages to the customer gateway or servers in the subnets of all VPCs connected to the enterprise router.</p>
+<div class="note" id="EN-US_TOPIC_0000001542174206__note146271121193"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="EN-US_TOPIC_0000001542174206__p116281712141914">In this scenario, pay attention to the upper limit of entries in the routing table of the enterprise router. If the number of routes advertised by the customer gateway and VPN gateway exceeds this upper limit, the enterprise router cannot learn the excess routes. As a result, traffic will fail to be forwarded between the VPN gateway and the customer gateway.</p>
+</div></div>
+</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="23.96%" headers="mcps1.3.5.2.6.2.3.2.4.1.3 "><p id="EN-US_TOPIC_0000001542174206__p88936132173">VPC</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001542174206__row40431023"><td class="cellrowborder" valign="top" width="15.340000000000002%" headers="mcps1.3.5.2.6.2.3.2.4.1.1 "><p id="EN-US_TOPIC_0000001542174206__p53687406">VPC</p>
+</td>
+<td class="cellrowborder" valign="top" width="60.699999999999996%" headers="mcps1.3.5.2.6.2.3.2.4.1.2 "><p id="EN-US_TOPIC_0000001542174206__p10653194718533">Select a VPC.</p>
+<p id="EN-US_TOPIC_0000001542174206__p53712618">For the VPC parameter configuration, see <a href="#EN-US_TOPIC_0000001542174206__fig26691237124114">Figure 2</a> and <a href="#EN-US_TOPIC_0000001542174206__fig7714430896">Figure 3</a>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="23.96%" headers="mcps1.3.5.2.6.2.3.2.4.1.3 "><p id="EN-US_TOPIC_0000001542174206__p55754762">vpc-001(192.168.0.0/16)</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001542174206__row1018520298214"><td class="cellrowborder" valign="top" width="15.340000000000002%" headers="mcps1.3.5.2.6.2.3.2.4.1.1 "><p id="EN-US_TOPIC_0000001542174206__p495216391411">Enterprise Router</p>
+</td>
+<td class="cellrowborder" valign="top" width="60.699999999999996%" headers="mcps1.3.5.2.6.2.3.2.4.1.2 "><p id="EN-US_TOPIC_0000001542174206__p19952239112">Select an enterprise router.</p>
+<p id="EN-US_TOPIC_0000001542174206__p107641758175410">For the enterprise router parameter configuration, see <a href="#EN-US_TOPIC_0000001542174206__fig17777105424114">Figure 4</a>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="23.96%" headers="mcps1.3.5.2.6.2.3.2.4.1.3 "><p id="EN-US_TOPIC_0000001542174206__p109524392113">er-001</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001542174206__row79405355274"><td class="cellrowborder" valign="top" width="15.340000000000002%" headers="mcps1.3.5.2.6.2.3.2.4.1.1 "><p id="EN-US_TOPIC_0000001542174206__p1626511101911">Interconnection Subnet</p>
+</td>
+<td class="cellrowborder" valign="top" width="60.699999999999996%" headers="mcps1.3.5.2.6.2.3.2.4.1.2 "><p id="EN-US_TOPIC_0000001542174206__p16904101462111">This subnet is used for communication between the VPN gateway and VPC. Ensure that the selected interconnection subnet has four or more assignable IP addresses.</p>
+</td>
+<td class="cellrowborder" valign="top" width="23.96%" headers="mcps1.3.5.2.6.2.3.2.4.1.3 "><p id="EN-US_TOPIC_0000001542174206__p757474562619">192.168.66.0/24</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001542174206__row32030811"><td class="cellrowborder" valign="top" width="15.340000000000002%" headers="mcps1.3.5.2.6.2.3.2.4.1.1 "><p id="EN-US_TOPIC_0000001542174206__p44358893">Local Subnet</p>
+</td>
+<td class="cellrowborder" valign="top" width="60.699999999999996%" headers="mcps1.3.5.2.6.2.3.2.4.1.2 "><p id="EN-US_TOPIC_0000001542174206__p23301451175717">VPC subnets with which your on-premises data center needs to communicate through the customer gateway.</p>
+<ul id="EN-US_TOPIC_0000001542174206__ul58269653"><li id="EN-US_TOPIC_0000001542174206__li193805245716">Select subnet<p id="EN-US_TOPIC_0000001542174206__p0230161441511"><a name="EN-US_TOPIC_0000001542174206__li193805245716"></a><a name="li193805245716"></a>Select subnets of the local VPC.</p>
+</li><li id="EN-US_TOPIC_0000001542174206__li22221463">Enter CIDR block<p id="EN-US_TOPIC_0000001542174206__p6961132517153"><a name="EN-US_TOPIC_0000001542174206__li22221463"></a><a name="li22221463"></a>Enter subnets of the local VPC or subnets of the VPC that establishes a peering connection with the local VPC.</p>
+</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="23.96%" headers="mcps1.3.5.2.6.2.3.2.4.1.3 "><p id="EN-US_TOPIC_0000001542174206__p55108102">192.168.1.0/24,192.168.2.0/24</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001542174206__row34571273"><td class="cellrowborder" valign="top" width="15.340000000000002%" headers="mcps1.3.5.2.6.2.3.2.4.1.1 "><p id="EN-US_TOPIC_0000001542174206__p48809737">BGP ASN</p>
+</td>
+<td class="cellrowborder" valign="top" width="60.699999999999996%" headers="mcps1.3.5.2.6.2.3.2.4.1.2 "><p id="EN-US_TOPIC_0000001542174206__p13765161919312">BGP ASN of the VPN gateway, which must be different from that of the customer gateway.</p>
+</td>
+<td class="cellrowborder" valign="top" width="23.96%" headers="mcps1.3.5.2.6.2.3.2.4.1.3 "><p id="EN-US_TOPIC_0000001542174206__p64295966">64512</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001542174206__row123471343141617"><td class="cellrowborder" valign="top" width="15.340000000000002%" headers="mcps1.3.5.2.6.2.3.2.4.1.1 "><p id="EN-US_TOPIC_0000001542174206__p343654417168">Specification</p>
+</td>
+<td class="cellrowborder" valign="top" width="60.699999999999996%" headers="mcps1.3.5.2.6.2.3.2.4.1.2 "><p id="EN-US_TOPIC_0000001542174206__p19491635475">Three options are available: <strong id="EN-US_TOPIC_0000001542174206__b63401419183">Basic</strong>, <strong id="EN-US_TOPIC_0000001542174206__b468353014510">Professional 1</strong> and <strong id="EN-US_TOPIC_0000001542174206__b24951434154516">Professional 2</strong>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="23.96%" headers="mcps1.3.5.2.6.2.3.2.4.1.3 "><p id="EN-US_TOPIC_0000001542174206__p843710441169">Professional 1</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001542174206__row996829135017"><td class="cellrowborder" valign="top" width="15.340000000000002%" headers="mcps1.3.5.2.6.2.3.2.4.1.1 "><p id="EN-US_TOPIC_0000001542174206__p199683918508">AZ</p>
+</td>
+<td class="cellrowborder" valign="top" width="60.699999999999996%" headers="mcps1.3.5.2.6.2.3.2.4.1.2 "><p id="EN-US_TOPIC_0000001542174206__p199681998502">An AZ is a geographic location with independent power supply and network facilities in a region. AZs in the same VPC are interconnected through private networks and are physically isolated.</p>
+<ul id="EN-US_TOPIC_0000001542174206__ul137361211762"><li id="EN-US_TOPIC_0000001542174206__li10785371258">If two or more AZs are available, select two AZs.<p id="EN-US_TOPIC_0000001542174206__p2068613862517"><a name="EN-US_TOPIC_0000001542174206__li10785371258"></a><a name="li10785371258"></a>The VPN gateway deployed in two AZs has higher availability. You are advised to select the AZs where resources in the VPC are located.</p>
+</li><li id="EN-US_TOPIC_0000001542174206__li723184892517">If only one AZ is available, select this AZ.</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="23.96%" headers="mcps1.3.5.2.6.2.3.2.4.1.3 "><p id="EN-US_TOPIC_0000001542174206__p109681098504">AZ1, AZ2</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001542174206__row145932531419"><td class="cellrowborder" valign="top" width="15.340000000000002%" headers="mcps1.3.5.2.6.2.3.2.4.1.1 "><p id="EN-US_TOPIC_0000001542174206__p359410531718">HA Mode</p>
+</td>
+<td class="cellrowborder" valign="top" width="60.699999999999996%" headers="mcps1.3.5.2.6.2.3.2.4.1.2 "><ul id="EN-US_TOPIC_0000001542174206__ul79691492212"><li id="EN-US_TOPIC_0000001542174206__li13958191962813">Active-active<ul id="EN-US_TOPIC_0000001542174206__ul197972022192814"><li id="EN-US_TOPIC_0000001542174206__li73122456109">When <strong id="EN-US_TOPIC_0000001542174206__b185381115304">Associate With</strong> is set to <strong id="EN-US_TOPIC_0000001542174206__b453131111300">VPC</strong>, the outgoing traffic from the VPN gateway to the customer subnet is preferentially forwarded through the first VPN connection (VPN connection 1) set up between the customer subnet and an EIP. If VPN connection 1 fails, the outgoing traffic is automatically switched to the other VPN connection (VPN connection 2) set up with the customer subnet. After VPN connection 1 recovers, the outgoing traffic is still transmitted through VPN connection 2 and will not be switched back to VPN connection 1.</li><li id="EN-US_TOPIC_0000001542174206__li1844932712810">When <strong id="EN-US_TOPIC_0000001542174206__b1691818165214">Associate With</strong> is set to <strong id="EN-US_TOPIC_0000001542174206__b27714835213">Enterprise Router</strong>, the outgoing traffic from the VPN gateway to the customer subnet is load balanced among all VPN connections set up with the customer subnet.</li></ul>
+</li><li id="EN-US_TOPIC_0000001542174206__li662512526">Active/Standby<p id="EN-US_TOPIC_0000001542174206__p1526133522819"><a name="EN-US_TOPIC_0000001542174206__li662512526"></a><a name="li662512526"></a>The outgoing traffic from the VPN gateway to the customer subnet is preferentially transmitted through the VPN connection (VPN connection 1) set up between the customer subnet and the active EIP. If VPN connection 1 fails, the outgoing traffic is automatically switched to the other VPN connection (VPN connection 2) set up between the customer subnet and the standby EIP. After VPN connection 1 recovers, the outgoing traffic is automatically switched back to VPN connection 1.</p>
+</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="23.96%" headers="mcps1.3.5.2.6.2.3.2.4.1.3 "><p id="EN-US_TOPIC_0000001542174206__p5594185320118">Active-active</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001542174206__row6606205312182"><td class="cellrowborder" valign="top" width="15.340000000000002%" headers="mcps1.3.5.2.6.2.3.2.4.1.1 "><p id="EN-US_TOPIC_0000001542174206__p617313288192">Active EIP</p>
+</td>
+<td class="cellrowborder" valign="top" width="60.699999999999996%" headers="mcps1.3.5.2.6.2.3.2.4.1.2 "><p id="EN-US_TOPIC_0000001542174206__p20173428171917">EIP used by the VPN gateway to communicate with a customer gateway.</p>
+<ul id="EN-US_TOPIC_0000001542174206__ul14718618121"><li id="EN-US_TOPIC_0000001542174206__li16795164910267"><strong id="EN-US_TOPIC_0000001542174206__b580913582348">Create Now</strong>: Create an EIP.</li><li id="EN-US_TOPIC_0000001542174206__li16618283125"><strong id="EN-US_TOPIC_0000001542174206__b43894493503">Use existing</strong>: Use an existing EIP. </li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="23.96%" headers="mcps1.3.5.2.6.2.3.2.4.1.3 "><p id="EN-US_TOPIC_0000001542174206__p1017313285199">Create Now</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001542174206__row19521423141914"><td class="cellrowborder" valign="top" width="15.340000000000002%" headers="mcps1.3.5.2.6.2.3.2.4.1.1 "><p id="EN-US_TOPIC_0000001542174206__p417410282197">Bandwidth (Mbit/s)</p>
+</td>
+<td class="cellrowborder" valign="top" width="60.699999999999996%" headers="mcps1.3.5.2.6.2.3.2.4.1.2 "><p id="EN-US_TOPIC_0000001542174206__p1617432814194">Bandwidth of the EIP, in Mbit/s.</p>
+<ul id="EN-US_TOPIC_0000001542174206__ul1617462841910"><li id="EN-US_TOPIC_0000001542174206__li19174142821914">All VPN connections created using the EIP share the bandwidth of the EIP. The total bandwidth consumed by all the VPN connections cannot exceed the bandwidth of the EIP.<p id="EN-US_TOPIC_0000001542174206__p8174102871919"><a name="EN-US_TOPIC_0000001542174206__li19174142821914"></a><a name="li19174142821914"></a>If network traffic exceeds the bandwidth of the EIP, network congestion may occur and VPN connections may be interrupted. As such, ensure that you configure enough bandwidth.</p>
+</li><li id="EN-US_TOPIC_0000001542174206__li10174122821914">You can configure alarm rules on Cloud Eye to monitor the bandwidth.</li><li id="EN-US_TOPIC_0000001542174206__li1811105031112">You can customize the bandwidth within the allowed range.</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="23.96%" headers="mcps1.3.5.2.6.2.3.2.4.1.3 "><p id="EN-US_TOPIC_0000001542174206__p1317416285193">10 Mbit/s</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001542174206__row65362361919"><td class="cellrowborder" valign="top" width="15.340000000000002%" headers="mcps1.3.5.2.6.2.3.2.4.1.1 "><p id="EN-US_TOPIC_0000001542174206__p117482811914">Bandwidth Name</p>
+</td>
+<td class="cellrowborder" valign="top" width="60.699999999999996%" headers="mcps1.3.5.2.6.2.3.2.4.1.2 "><p id="EN-US_TOPIC_0000001542174206__p201741828171911">EIP bandwidth name.</p>
+</td>
+<td class="cellrowborder" valign="top" width="23.96%" headers="mcps1.3.5.2.6.2.3.2.4.1.3 "><p id="EN-US_TOPIC_0000001542174206__p517432817198">Vpngw-bandwidth1</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001542174206__row16418345111711"><td class="cellrowborder" valign="top" width="15.340000000000002%" headers="mcps1.3.5.2.6.2.3.2.4.1.1 "><p id="EN-US_TOPIC_0000001542174206__p1441812456174">Active EIP 2</p>
+</td>
+<td class="cellrowborder" valign="top" width="60.699999999999996%" headers="mcps1.3.5.2.6.2.3.2.4.1.2 "><p id="EN-US_TOPIC_0000001542174206__p1269417125185">A VPN gateway needs to be bound to a group of EIPs (active EIP and active EIP 2). You can plan the bandwidth for each EIP. The EIPs can share bandwidth with the EIPs of other network services.</p>
+</td>
+<td class="cellrowborder" valign="top" width="23.96%" headers="mcps1.3.5.2.6.2.3.2.4.1.3 "><p id="EN-US_TOPIC_0000001542174206__p12418145171720">Create Now</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001542174206__row165142208197"><td class="cellrowborder" valign="top" width="15.340000000000002%" headers="mcps1.3.5.2.6.2.3.2.4.1.1 "><p id="EN-US_TOPIC_0000001542174206__p31748286192">Standby EIP</p>
+</td>
+<td class="cellrowborder" valign="top" width="60.699999999999996%" headers="mcps1.3.5.2.6.2.3.2.4.1.2 "><p id="EN-US_TOPIC_0000001542174206__p19001367209">A VPN gateway needs to be bound to a group of EIPs (active EIP and standby EIP). You can plan the bandwidth for each EIP. The EIPs can share bandwidth with the EIPs of other network services.</p>
+</td>
+<td class="cellrowborder" valign="top" width="23.96%" headers="mcps1.3.5.2.6.2.3.2.4.1.3 "><p id="EN-US_TOPIC_0000001542174206__p1817472891910">Create Now</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001542174206__row1683182111146"><td class="cellrowborder" valign="top" width="15.340000000000002%" headers="mcps1.3.5.2.6.2.3.2.4.1.1 "><p id="EN-US_TOPIC_0000001542174206__p819612613143">Bandwidth (Mbit/s)</p>
+</td>
+<td class="cellrowborder" valign="top" width="60.699999999999996%" headers="mcps1.3.5.2.6.2.3.2.4.1.2 "><p id="EN-US_TOPIC_0000001542174206__p16196202619148">Bandwidth of the EIP, in Mbit/s.</p>
+<ul id="EN-US_TOPIC_0000001542174206__ul2196526121411"><li id="EN-US_TOPIC_0000001542174206__li3196112615147">All VPN connections created using the EIP share the bandwidth of the EIP. The total bandwidth consumed by all the VPN connections cannot exceed the bandwidth of the EIP.<p id="EN-US_TOPIC_0000001542174206__p13196826181418"><a name="EN-US_TOPIC_0000001542174206__li3196112615147"></a><a name="li3196112615147"></a>If network traffic exceeds the bandwidth of the EIP, network congestion may occur and VPN connections may be interrupted. As such, ensure that you configure enough bandwidth.</p>
+</li><li id="EN-US_TOPIC_0000001542174206__li2196326151420">You can configure alarm rules on Cloud Eye to monitor the bandwidth.</li><li id="EN-US_TOPIC_0000001542174206__li39012563105">You can customize the bandwidth within the allowed range.</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="23.96%" headers="mcps1.3.5.2.6.2.3.2.4.1.3 "><p id="EN-US_TOPIC_0000001542174206__p18196112619141">10 Mbit/s</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001542174206__row17474201149"><td class="cellrowborder" valign="top" width="15.340000000000002%" headers="mcps1.3.5.2.6.2.3.2.4.1.1 "><p id="EN-US_TOPIC_0000001542174206__p91961626131410">Bandwidth Name</p>
+</td>
+<td class="cellrowborder" valign="top" width="60.699999999999996%" headers="mcps1.3.5.2.6.2.3.2.4.1.2 "><p id="EN-US_TOPIC_0000001542174206__p12196172631420">EIP bandwidth name.</p>
+</td>
+<td class="cellrowborder" valign="top" width="23.96%" headers="mcps1.3.5.2.6.2.3.2.4.1.3 "><p id="EN-US_TOPIC_0000001542174206__p1719662614141">Vpngw-bandwidth2</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001542174206__row098199497"><td class="cellrowborder" valign="top" width="15.340000000000002%" headers="mcps1.3.5.2.6.2.3.2.4.1.1 "><p id="EN-US_TOPIC_0000001542174206__p3445172320502">Enterprise Project</p>
+</td>
+<td class="cellrowborder" valign="top" width="60.699999999999996%" headers="mcps1.3.5.2.6.2.3.2.4.1.2 "><p id="EN-US_TOPIC_0000001542174206__p132221224153715">Enterprise project to which the VPN belongs.</p>
+<p id="EN-US_TOPIC_0000001542174206__p222282413372">An enterprise project facilitates project-level management and grouping of cloud resources and users. The default project is <strong id="EN-US_TOPIC_0000001542174206__b137315141508">default</strong>.</p>
+<p id="EN-US_TOPIC_0000001542174206__p222282433714">For details about how to create and manage enterprise projects, see the <em id="EN-US_TOPIC_0000001542174206__i1443718500">Enterprise Management User Guide</em>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="23.96%" headers="mcps1.3.5.2.6.2.3.2.4.1.3 "><p id="EN-US_TOPIC_0000001542174206__p1444522325018">default</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001542174206__row15136145322814"><td class="cellrowborder" valign="top" width="15.340000000000002%" headers="mcps1.3.5.2.6.2.3.2.4.1.1 "><p id="EN-US_TOPIC_0000001542174206__p81361535286">Access VPC</p>
+</td>
+<td class="cellrowborder" valign="top" width="60.699999999999996%" headers="mcps1.3.5.2.6.2.3.2.4.1.2 "><ul id="EN-US_TOPIC_0000001542174206__ul1525212741310"><li id="EN-US_TOPIC_0000001542174206__li122520713131">This parameter is available only when <span class="parmname" id="EN-US_TOPIC_0000001542174206__parmname6995535181814"><b>Associate With</b></span> is set to <span class="parmvalue" id="EN-US_TOPIC_0000001542174206__parmvalue4995113511813"><b>Enterprise Router</b></span>.</li></ul>
+<p id="EN-US_TOPIC_0000001542174206__p41687381125">If a VPN gateway needs to connect to different VPCs in the southbound and northbound directions, set the VPC in the northbound direction as the access VPC. The VPC in the southbound direction is the VPC associated with the VPN gateway.</p>
+</td>
+<td class="cellrowborder" valign="top" width="23.96%" headers="mcps1.3.5.2.6.2.3.2.4.1.3 "><p id="EN-US_TOPIC_0000001542174206__p181361553162816">Same as the associated VPC</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001542174206__row89107692918"><td class="cellrowborder" valign="top" width="15.340000000000002%" headers="mcps1.3.5.2.6.2.3.2.4.1.1 "><p id="EN-US_TOPIC_0000001542174206__p991026132917">Access Subnet</p>
+</td>
+<td class="cellrowborder" valign="top" width="60.699999999999996%" headers="mcps1.3.5.2.6.2.3.2.4.1.2 "><ul id="EN-US_TOPIC_0000001542174206__ul86452118138"><li id="EN-US_TOPIC_0000001542174206__li7641721161313">This parameter is available only when <span class="parmname" id="EN-US_TOPIC_0000001542174206__parmname13321548191820"><b>Associate With</b></span> is set to <span class="parmvalue" id="EN-US_TOPIC_0000001542174206__parmvalue15321648151818"><b>Enterprise Router</b></span>.</li></ul>
+<p id="EN-US_TOPIC_0000001542174206__p1999711486125">By default, a VPN gateway uses the interconnection subnet to connect to the associated VPC. Set this parameter when another subnet needs to be used.</p>
+</td>
+<td class="cellrowborder" valign="top" width="23.96%" headers="mcps1.3.5.2.6.2.3.2.4.1.3 "><p id="EN-US_TOPIC_0000001542174206__p169100692917">Same as the interconnection subnet</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001542174206__row1769815431383"><td class="cellrowborder" valign="top" width="15.340000000000002%" headers="mcps1.3.5.2.6.2.3.2.4.1.1 "><p id="EN-US_TOPIC_0000001542174206__p2699154310818">Gateway IP Address</p>
+</td>
+<td class="cellrowborder" valign="top" width="60.699999999999996%" headers="mcps1.3.5.2.6.2.3.2.4.1.2 "><p id="EN-US_TOPIC_0000001542174206__p12311354349">This parameter is available only when <span class="parmname" id="EN-US_TOPIC_0000001542174206__parmname192571458131917"><b>Associate With</b></span> is set to <span class="parmvalue" id="EN-US_TOPIC_0000001542174206__parmvalue1257195810194"><b>Enterprise Router</b></span> and <span class="parmname" id="EN-US_TOPIC_0000001542174206__parmname825785811912"><b>Network Type</b></span> is set to <span class="parmvalue" id="EN-US_TOPIC_0000001542174206__parmvalue52579587199"><b>Private network</b></span>.</p>
+<ul id="EN-US_TOPIC_0000001542174206__ul13347174621020"><li id="EN-US_TOPIC_0000001542174206__li1734713465103">Self-assigned IP address (default)<p id="EN-US_TOPIC_0000001542174206__p696812251520"><a name="EN-US_TOPIC_0000001542174206__li1734713465103"></a><a name="li1734713465103"></a>An IP address on the access subnet will be automatically assigned to the VPN gateway.</p>
+<p id="EN-US_TOPIC_0000001542174206__p1975943952319">You can view the automatically assigned IP address on the <strong id="EN-US_TOPIC_0000001542174206__b8918121181918">VPN Gateways</strong> page.</p>
+</li><li id="EN-US_TOPIC_0000001542174206__li2090085101013">Manually-specified IP address<p id="EN-US_TOPIC_0000001542174206__p2255122755018"><a name="EN-US_TOPIC_0000001542174206__li2090085101013"></a><a name="li2090085101013"></a>Manually configure IP addresses on the access subnet for the VPN gateway.</p>
+</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="23.96%" headers="mcps1.3.5.2.6.2.3.2.4.1.3 "><p id="EN-US_TOPIC_0000001542174206__p1669924319819">Self-assigned IP address</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001542174206__row671317394357"><td class="cellrowborder" valign="top" width="15.340000000000002%" headers="mcps1.3.5.2.6.2.3.2.4.1.1 "><p id="EN-US_TOPIC_0000001542174206__p1874174223517">Advanced Settings &gt; Access VPC</p>
+</td>
+<td class="cellrowborder" valign="top" width="60.699999999999996%" headers="mcps1.3.5.2.6.2.3.2.4.1.2 "><ul id="EN-US_TOPIC_0000001542174206__ul3741442163519"><li id="EN-US_TOPIC_0000001542174206__li9742194223510">This parameter is available only when <span class="parmname" id="EN-US_TOPIC_0000001542174206__parmname66871448161313"><b>Associate With</b></span> is set to <span class="parmvalue" id="EN-US_TOPIC_0000001542174206__parmvalue5687184841313"><b>VPC</b></span> and <span class="parmname" id="EN-US_TOPIC_0000001542174206__parmname268784811318"><b>Network Type</b></span> is set to <span class="parmvalue" id="EN-US_TOPIC_0000001542174206__parmvalue1168834811132"><b>Private network</b></span>.</li></ul>
+<p id="EN-US_TOPIC_0000001542174206__p174211428351">If a VPN gateway needs to connect to different VPCs in the southbound and northbound directions, set the VPC in the northbound direction as the access VPC. The VPC in the southbound direction is the VPC associated with the VPN gateway.</p>
+</td>
+<td class="cellrowborder" valign="top" width="23.96%" headers="mcps1.3.5.2.6.2.3.2.4.1.3 "><p id="EN-US_TOPIC_0000001542174206__p1742114217355">Same as the associated VPC</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001542174206__row0714939163516"><td class="cellrowborder" valign="top" width="15.340000000000002%" headers="mcps1.3.5.2.6.2.3.2.4.1.1 "><p id="EN-US_TOPIC_0000001542174206__p3742184263511">Advanced Settings &gt; Access Subnet</p>
+</td>
+<td class="cellrowborder" valign="top" width="60.699999999999996%" headers="mcps1.3.5.2.6.2.3.2.4.1.2 "><ul id="EN-US_TOPIC_0000001542174206__ul6743114283514"><li id="EN-US_TOPIC_0000001542174206__li157439423353">This parameter is available only when <span class="parmname" id="EN-US_TOPIC_0000001542174206__parmname372615523133"><b>Associate With</b></span> is set to <span class="parmvalue" id="EN-US_TOPIC_0000001542174206__parmvalue072665211131"><b>VPC</b></span> and <span class="parmname" id="EN-US_TOPIC_0000001542174206__parmname972685211310"><b>Network Type</b></span> is set to <span class="parmvalue" id="EN-US_TOPIC_0000001542174206__parmvalue11726175211313"><b>Private network</b></span>.</li></ul>
+<p id="EN-US_TOPIC_0000001542174206__p16743144218352">By default, a VPN gateway uses the interconnection subnet to connect to the associated VPC. Set this parameter when another subnet needs to be used.</p>
+</td>
+<td class="cellrowborder" valign="top" width="23.96%" headers="mcps1.3.5.2.6.2.3.2.4.1.3 "><p id="EN-US_TOPIC_0000001542174206__p874320426357">Same as the interconnection subnet</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001542174206__row18714103993517"><td class="cellrowborder" valign="top" width="15.340000000000002%" headers="mcps1.3.5.2.6.2.3.2.4.1.1 "><p id="EN-US_TOPIC_0000001542174206__p18743194233517">Advanced Settings &gt; Gateway IP Address</p>
+</td>
+<td class="cellrowborder" valign="top" width="60.699999999999996%" headers="mcps1.3.5.2.6.2.3.2.4.1.2 "><p id="EN-US_TOPIC_0000001542174206__p107441542143515">This parameter is available only when <span class="parmname" id="EN-US_TOPIC_0000001542174206__parmname1172725291320"><b>Associate With</b></span> is set to <span class="parmvalue" id="EN-US_TOPIC_0000001542174206__parmvalue11727165211319"><b>VPC</b></span> and <span class="parmname" id="EN-US_TOPIC_0000001542174206__parmname12727155210139"><b>Network Type</b></span> is set to <span class="parmvalue" id="EN-US_TOPIC_0000001542174206__parmvalue872705214131"><b>Private network</b></span>.</p>
+<ul id="EN-US_TOPIC_0000001542174206__ul17448421358"><li id="EN-US_TOPIC_0000001542174206__li10744542103515">Self-assigned IP address (default)<p id="EN-US_TOPIC_0000001542174206__p774414283511"><a name="EN-US_TOPIC_0000001542174206__li10744542103515"></a><a name="li10744542103515"></a>An IP address on the access subnet will be automatically assigned to the VPN gateway.</p>
+<p id="EN-US_TOPIC_0000001542174206__p18744542133516">You can view the automatically assigned IP address on the <strong id="EN-US_TOPIC_0000001542174206__b1719150687">VPN Gateways</strong> page.</p>
+</li><li id="EN-US_TOPIC_0000001542174206__li37441842173516">Manually-specified IP address<p id="EN-US_TOPIC_0000001542174206__p1774417424358"><a name="EN-US_TOPIC_0000001542174206__li37441842173516"></a><a name="li37441842173516"></a>Manually configure IP addresses on the access subnet for the VPN gateway.</p>
+</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="23.96%" headers="mcps1.3.5.2.6.2.3.2.4.1.3 "><p id="EN-US_TOPIC_0000001542174206__p074514211357">Self-assigned IP address</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001542174206__row35861534018"><td class="cellrowborder" valign="top" width="15.340000000000002%" headers="mcps1.3.5.2.6.2.3.2.4.1.1 "><p id="EN-US_TOPIC_0000001542174206__p1447631912">Advanced Settings &gt; Tags</p>
+</td>
+<td class="cellrowborder" valign="top" width="60.699999999999996%" headers="mcps1.3.5.2.6.2.3.2.4.1.2 "><p id="EN-US_TOPIC_0000001542174206__p1480201695515">Configure <span class="parmvalue" id="EN-US_TOPIC_0000001542174206__parmvalue9467935192416"><b>Tags</b></span> in <span class="parmname" id="EN-US_TOPIC_0000001542174206__parmname1546715354243"><b>Advanced Settings</b></span>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="23.96%" headers="mcps1.3.5.2.6.2.3.2.4.1.3 "><p id="EN-US_TOPIC_0000001542174206__p28995104110">-</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+<div class="fignone" id="EN-US_TOPIC_0000001542174206__fig26691237124114"><a name="EN-US_TOPIC_0000001542174206__fig26691237124114"></a><a name="fig26691237124114"></a><span class="figcap"><b>Figure 2 </b>VPC parameter configuration when <strong id="EN-US_TOPIC_0000001542174206__b17298513195610">Network Type</strong> is set to <strong id="EN-US_TOPIC_0000001542174206__b71571910155614">Public network</strong></span><br><span><img id="EN-US_TOPIC_0000001542174206__image1431942118493" src="figure/en-us_image_0000001883323518.png" width="523.6875" height="450.018933" title="Click to enlarge" class="imgResize"></span></div>
+<div class="fignone" id="EN-US_TOPIC_0000001542174206__fig7714430896"><a name="EN-US_TOPIC_0000001542174206__fig7714430896"></a><a name="fig7714430896"></a><span class="figcap"><b>Figure 3 </b>VPC parameter configuration when <strong id="EN-US_TOPIC_0000001542174206__b12693141982212">Network Type</strong> is set to <strong id="EN-US_TOPIC_0000001542174206__b16931419182214">Private network</strong></span><br><span><img id="EN-US_TOPIC_0000001542174206__image1666903794114" src="figure/en-us_image_0000001929162353.png" height="411.96750000000003" width="523.6875" title="Click to enlarge" class="imgResize"></span></div>
+<div class="fignone" id="EN-US_TOPIC_0000001542174206__fig17777105424114"><a name="EN-US_TOPIC_0000001542174206__fig17777105424114"></a><a name="fig17777105424114"></a><span class="figcap"><b>Figure 4 </b>Enterprise router parameter configuration</span><br><span><img id="EN-US_TOPIC_0000001542174206__image157781543418" src="figure/en-us_image_0000001883151862.png" height="364.08750000000003" width="523.6875" title="Click to enlarge" class="imgResize"></span></div>
+</p></li><li id="EN-US_TOPIC_0000001542174206__li2051615812405"><span>Confirm the VPN gateway information and click <span class="uicontrol" id="EN-US_TOPIC_0000001542174206__uicontrol212981585418"><b>Submit</b></span>.</span></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_ug_00001.html">Enterprise Edition VPN Gateway Management</a></div>
+</div>
+</div>
+
+
+<script language="JavaScript">
+<!--
+image_size('.imgResize');
+var msg_imageMax = "view original image";
+var msg_imageClose = "close";
+//--></script>
\ No newline at end of file
diff --git a/docs/vpn/umn/vpn_04_0431.html b/docs/vpn/umn/vpn_04_0431.html
new file mode 100644
index 00000000..2985c3d8
--- /dev/null
+++ b/docs/vpn/umn/vpn_04_0431.html
@@ -0,0 +1,77 @@
+<a name="EN-US_TOPIC_0000001542014850"></a><a name="EN-US_TOPIC_0000001542014850"></a>
+
+<h1 class="topictitle1">Creating a Customer Gateway</h1>
+<div id="body1586310689433"><div class="section" id="EN-US_TOPIC_0000001542014850__section23935944"><h4 class="sectiontitle">Scenario</h4><p class="msonormal" id="EN-US_TOPIC_0000001542014850__p57260330">To connect your on-premises data center or private network to your ECSs in a VPC, you need to create a customer gateway before creating a VPN connection.</p>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001542014850__section14096911"><h4 class="sectiontitle">Procedure</h4><ol id="EN-US_TOPIC_0000001542014850__ol19346135"><li id="EN-US_TOPIC_0000001542014850__li39897492"><span id="EN-US_TOPIC_0000001542014850__ph149997419367">Log in to the management console.</span></li><li id="EN-US_TOPIC_0000001542014850__li23533109"><span id="EN-US_TOPIC_0000001542014850__ph587583114385">Click <span><img id="EN-US_TOPIC_0000001542014850__en-us_topic_0000001591897601_image66709190" src="figure/en-us_image_0000001628070572.png" width="19.950000000000003" height="19.950000000000003" title="Click to enlarge" class="imgResize"></span> in the upper left corner and select the desired region and project.</span></li><li id="EN-US_TOPIC_0000001542014850__li27133716"><span id="EN-US_TOPIC_0000001542014850__ph910821143918">Click <span><img id="EN-US_TOPIC_0000001542014850__en-us_topic_0000001591897601_image15446151185815" src="figure/en-us_image_0000001923096425.png"></span> in the upper left corner of the page, and choose <span class="menucascade" id="EN-US_TOPIC_0000001542014850__en-us_topic_0000001591897601_menucascade124471851165812"><b><span class="uicontrol" id="EN-US_TOPIC_0000001542014850__en-us_topic_0000001591897601_uicontrol144755165811">Network</span></b> &gt; <b><span class="uicontrol" id="EN-US_TOPIC_0000001542014850__en-us_topic_0000001591897601_uicontrol644725116587">Virtual Private Network</span></b></span>.</span></li><li id="EN-US_TOPIC_0000001542014850__li42876860"><span id="EN-US_TOPIC_0000001542014850__ph13723694110">In the navigation pane on the left, choose <span class="menucascade" id="EN-US_TOPIC_0000001542014850__en-us_topic_0000001591897601_menucascade1867554123416"><b><span class="uicontrol" id="EN-US_TOPIC_0000001542014850__en-us_topic_0000001591897601_uicontrol197779532435">Virtual Private Network</span></b> &gt; <b><span class="uicontrol" id="EN-US_TOPIC_0000001542014850__en-us_topic_0000001591897601_uicontrol377711533436">Enterprise – Customer Gateways</span></b></span>.</span></li><li id="EN-US_TOPIC_0000001542014850__li50347420"><span id="EN-US_TOPIC_0000001542014850__ph23521016154115">On the <span class="wintitle" id="EN-US_TOPIC_0000001542014850__en-us_topic_0000001591897601_wintitle547011256429"><b>Customer Gateways</b></span> page, click <span class="uicontrol" id="EN-US_TOPIC_0000001542014850__en-us_topic_0000001591897601_uicontrol1088212144341"><b>Create Customer Gateway</b></span>.</span></li><li id="EN-US_TOPIC_0000001542014850__li4564054414">Set parameters as prompted and click <span class="uicontrol" id="EN-US_TOPIC_0000001542014850__uicontrol1948192417314"><b>Create Now</b></span>.<div class="fignone" id="EN-US_TOPIC_0000001542014850__fig23059132612"><span class="figcap"><b>Figure 1 </b>Creating a customer gateway</span><br><span><img id="EN-US_TOPIC_0000001542014850__image8811184919573" src="figure/en-us_image_0000001867256192.png" height="223.5996" width="497.42" title="Click to enlarge" class="imgResize"></span></div>
+<p id="EN-US_TOPIC_0000001542014850__p20163125514112"><a href="#EN-US_TOPIC_0000001542014850__table61829653">Table 1</a> lists the customer gateway parameters.</p>
+
+<div class="tablenoborder"><a name="EN-US_TOPIC_0000001542014850__table61829653"></a><a name="table61829653"></a><table cellpadding="4" cellspacing="0" summary="" id="EN-US_TOPIC_0000001542014850__table61829653" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Description of customer gateway parameters</caption><thead align="left"><tr id="EN-US_TOPIC_0000001542014850__row15547288"><th align="left" class="cellrowborder" valign="top" width="20.5%" id="mcps1.3.2.2.6.4.2.4.1.1"><p id="EN-US_TOPIC_0000001542014850__p51370843">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="59.3%" id="mcps1.3.2.2.6.4.2.4.1.2"><p id="EN-US_TOPIC_0000001542014850__p288734">Description</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="20.200000000000003%" id="mcps1.3.2.2.6.4.2.4.1.3"><p id="EN-US_TOPIC_0000001542014850__p23387465">Example Value</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="EN-US_TOPIC_0000001542014850__row1026218433498"><td class="cellrowborder" valign="top" width="20.5%" headers="mcps1.3.2.2.6.4.2.4.1.1 "><p id="EN-US_TOPIC_0000001542014850__p72631343204916">Name</p>
+</td>
+<td class="cellrowborder" valign="top" width="59.3%" headers="mcps1.3.2.2.6.4.2.4.1.2 "><p id="EN-US_TOPIC_0000001542014850__p926314374911">Name of a customer gateway. The value can contain only letters, digits, underscores (_), hyphens (-), and periods (.).</p>
+</td>
+<td class="cellrowborder" valign="top" width="20.200000000000003%" headers="mcps1.3.2.2.6.4.2.4.1.3 "><p id="EN-US_TOPIC_0000001542014850__p426334314494">cgw-001</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001542014850__row773213571811"><td class="cellrowborder" valign="top" width="20.5%" headers="mcps1.3.2.2.6.4.2.4.1.1 "><p id="EN-US_TOPIC_0000001542014850__p1573314578114">Routing Mode</p>
+</td>
+<td class="cellrowborder" valign="top" width="59.3%" headers="mcps1.3.2.2.6.4.2.4.1.2 "><p id="EN-US_TOPIC_0000001542014850__p217610126211">Routing mode of the customer gateway.</p>
+<ul id="EN-US_TOPIC_0000001542014850__ul1217619122211"><li id="EN-US_TOPIC_0000001542014850__li191761612322">Select <strong id="EN-US_TOPIC_0000001542014850__b5784101855418">Dynamic (BGP)</strong> when <strong id="EN-US_TOPIC_0000001542014850__b17844183544">VPN Type</strong> is set to <strong id="EN-US_TOPIC_0000001542014850__b47842181542">Route-based</strong> and <strong id="EN-US_TOPIC_0000001542014850__b778441819546">Routing Mode</strong> is set to <strong id="EN-US_TOPIC_0000001542014850__b37841218145412">Dynamic (BGP)</strong> for the VPN connection.<ul id="EN-US_TOPIC_0000001542014850__ul31763122027"><li id="EN-US_TOPIC_0000001542014850__li81761712425">When selecting this option, ensure that the customer gateway supports dynamic BGP.</li><li id="EN-US_TOPIC_0000001542014850__li2176111218219">The customer gateway can advertise a maximum of 100 BGP routes to the VPN gateway. If more than 100 BGP routes are advertised, the BGP peer relationship is disconnected, causing traffic interruption between the VPN gateway and customer gateway.</li></ul>
+</li></ul>
+<ul id="EN-US_TOPIC_0000001542014850__ul1017641219217"><li id="EN-US_TOPIC_0000001542014850__li4176181213219">Select <strong id="EN-US_TOPIC_0000001542014850__b1157474475414">Static</strong> when <strong id="EN-US_TOPIC_0000001542014850__b20574124415418">VPN Type</strong> is set to <strong id="EN-US_TOPIC_0000001542014850__b157494465419">Route-based</strong> and <strong id="EN-US_TOPIC_0000001542014850__b65741744195411">Routing Mode</strong> is set to <strong id="EN-US_TOPIC_0000001542014850__b19574444175416">Static</strong> for the VPN connection.</li><li id="EN-US_TOPIC_0000001542014850__li161763121218">You are advised to select <strong id="EN-US_TOPIC_0000001542014850__b5178125395419">Static</strong> when <strong id="EN-US_TOPIC_0000001542014850__b111782533546">VPN Type</strong> is set to <strong id="EN-US_TOPIC_0000001542014850__b61781453125416">Policy-based</strong> for the VPN connection.</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="20.200000000000003%" headers="mcps1.3.2.2.6.4.2.4.1.3 "><p id="EN-US_TOPIC_0000001542014850__p19733957815">Static</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001542014850__row9808313185016"><td class="cellrowborder" valign="top" width="20.5%" headers="mcps1.3.2.2.6.4.2.4.1.1 "><p id="EN-US_TOPIC_0000001542014850__p1780818135503">BGP ASN</p>
+</td>
+<td class="cellrowborder" valign="top" width="59.3%" headers="mcps1.3.2.2.6.4.2.4.1.2 "><p id="EN-US_TOPIC_0000001542014850__p060018203119">Enter the ASN of your on-premises data center or private network.</p>
+<p id="EN-US_TOPIC_0000001542014850__p161611923212">The BGP ASN of the customer gateway must be different from that of the VPN gateway.</p>
+</td>
+<td class="cellrowborder" valign="top" width="20.200000000000003%" headers="mcps1.3.2.2.6.4.2.4.1.3 "><p id="EN-US_TOPIC_0000001542014850__p744632810518">65000</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001542014850__row67851857743"><td class="cellrowborder" valign="top" width="20.5%" headers="mcps1.3.2.2.6.4.2.4.1.1 "><p id="EN-US_TOPIC_0000001542014850__p478511571048">Gateway IP Address</p>
+</td>
+<td class="cellrowborder" valign="top" width="59.3%" headers="mcps1.3.2.2.6.4.2.4.1.2 "><p id="EN-US_TOPIC_0000001542014850__p1739971954">IP address used by the customer gateway to communicate with the VPN gateway. The value must be a static address.</p>
+<p id="EN-US_TOPIC_0000001542014850__p16393719516">Ensure that UDP port 4500 is permitted in a firewall rule on the customer gateway in your on-premises data center or private network.</p>
+</td>
+<td class="cellrowborder" valign="top" width="20.200000000000003%" headers="mcps1.3.2.2.6.4.2.4.1.3 "><p id="EN-US_TOPIC_0000001542014850__p137851571045">1.2.3.4</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001542014850__row1350518131417"><td class="cellrowborder" valign="top" width="20.5%" headers="mcps1.3.2.2.6.4.2.4.1.1 "><p id="EN-US_TOPIC_0000001542014850__p1447631912">Advanced Settings &gt; Tags</p>
+</td>
+<td class="cellrowborder" valign="top" width="59.3%" headers="mcps1.3.2.2.6.4.2.4.1.2 "><p id="EN-US_TOPIC_0000001542014850__p2567958174613">Configure <span class="parmvalue" id="EN-US_TOPIC_0000001542014850__parmvalue18031888277"><b>Tags</b></span> in <span class="parmname" id="EN-US_TOPIC_0000001542014850__parmname78033819276"><b>Advanced Settings</b></span>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="20.200000000000003%" headers="mcps1.3.2.2.6.4.2.4.1.3 "><p id="EN-US_TOPIC_0000001542014850__p28995104110">-</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</li><li id="EN-US_TOPIC_0000001542014850__li1222995517536">(Optional) If there are two customer gateways, repeat the preceding operations to configure the other customer gateway with a different identifier.</li></ol>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001542014850__section4183102917439"><h4 class="sectiontitle">Related Operations</h4><p id="EN-US_TOPIC_0000001542014850__p22571530185019">You need to configure an IPsec VPN tunnel on the router or firewall in your on-premises data center.</p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_ug_00008.html">Customer Gateway Management of Enterprise Edition VPN</a></div>
+</div>
+</div>
+
+
+<script language="JavaScript">
+<!--
+image_size('.imgResize');
+var msg_imageMax = "view original image";
+var msg_imageClose = "close";
+//--></script>
\ No newline at end of file
diff --git a/docs/vpn/umn/vpn_04_0441.html b/docs/vpn/umn/vpn_04_0441.html
new file mode 100644
index 00000000..3b34f207
--- /dev/null
+++ b/docs/vpn/umn/vpn_04_0441.html
@@ -0,0 +1,321 @@
+<a name="EN-US_TOPIC_0000001592573765"></a><a name="EN-US_TOPIC_0000001592573765"></a>
+
+<h1 class="topictitle1">Creating a VPN Connection</h1>
+<div id="body1586310689765"><div class="section" id="EN-US_TOPIC_0000001592573765__section23935944"><h4 class="sectiontitle">Scenario</h4><p class="msonormal" id="EN-US_TOPIC_0000001592573765__p57260330">To connect your on-premises data center or private network to your ECSs in a VPC, you need to create VPN connections after creating a VPN gateway and a customer gateway.</p>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001592573765__section81683338183"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="EN-US_TOPIC_0000001592573765__ul13624142916235"><li id="EN-US_TOPIC_0000001592573765__li161253712311">When creating a VPN connection in static routing mode, ensure that the customer gateway supports ICMP and is correctly configured with the customer interface IP address of the VPN connection before enabling NQA. Otherwise, traffic will fail to be forwarded.</li></ul>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001592573765__section39109012"><h4 class="sectiontitle">Procedure</h4><ol id="EN-US_TOPIC_0000001592573765__ol25783960"><li id="EN-US_TOPIC_0000001592573765__li30729051"><span id="EN-US_TOPIC_0000001592573765__ph149997419367">Log in to the management console.</span></li><li id="EN-US_TOPIC_0000001592573765__li8126010"><span id="EN-US_TOPIC_0000001592573765__ph587583114385">Click <span><img id="EN-US_TOPIC_0000001592573765__en-us_topic_0000001591897601_image66709190" src="figure/en-us_image_0000001628070572.png" width="19.950000000000003" height="19.950000000000003" title="Click to enlarge" class="imgResize"></span> in the upper left corner and select the desired region and project.</span></li><li id="EN-US_TOPIC_0000001592573765__li54227060"><span id="EN-US_TOPIC_0000001592573765__ph910821143918">Click <span><img id="EN-US_TOPIC_0000001592573765__en-us_topic_0000001591897601_image15446151185815" src="figure/en-us_image_0000001923096425.png"></span> in the upper left corner of the page, and choose <span class="menucascade" id="EN-US_TOPIC_0000001592573765__en-us_topic_0000001591897601_menucascade124471851165812"><b><span class="uicontrol" id="EN-US_TOPIC_0000001592573765__en-us_topic_0000001591897601_uicontrol144755165811">Network</span></b> &gt; <b><span class="uicontrol" id="EN-US_TOPIC_0000001592573765__en-us_topic_0000001591897601_uicontrol644725116587">Virtual Private Network</span></b></span>.</span></li><li id="EN-US_TOPIC_0000001592573765__li18281498"><span id="EN-US_TOPIC_0000001592573765__ph955355484220">In the navigation pane on the left, choose <span class="menucascade" id="EN-US_TOPIC_0000001592573765__en-us_topic_0000001591897601_menucascade16881163103614"><b><span class="uicontrol" id="EN-US_TOPIC_0000001592573765__en-us_topic_0000001591897601_uicontrol1262522084410">Virtual Private Network</span></b> &gt; <b><span class="uicontrol" id="EN-US_TOPIC_0000001592573765__en-us_topic_0000001591897601_uicontrol7625162018443">Enterprise – VPN Connections</span></b></span>.</span></li><li id="EN-US_TOPIC_0000001592573765__li30315759">On the <span class="wintitle" id="EN-US_TOPIC_0000001592573765__wintitle16931715340"><b>VPN Connections</b></span> page, click <span class="uicontrol" id="EN-US_TOPIC_0000001592573765__uicontrol142418219557"><b>Create VPN Connection</b></span>.<div class="note" id="EN-US_TOPIC_0000001592573765__note105657362148"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="EN-US_TOPIC_0000001592573765__p10565113691419">For higher reliability, you are advised to create a VPN connection between each of the two EIPs of a VPN gateway and a customer gateway.</p>
+</div></div>
+</li><li id="EN-US_TOPIC_0000001592573765__li115613195911">Set parameters as prompted and click <span class="uicontrol" id="EN-US_TOPIC_0000001592573765__uicontrol164655287132"><b>Create Now</b></span>.<div class="p" id="EN-US_TOPIC_0000001592573765__p1242913212591"><a href="#EN-US_TOPIC_0000001592573765__d0e2051">Table 1</a> lists the VPN connection parameters.
+<div class="tablenoborder"><a name="EN-US_TOPIC_0000001592573765__d0e2051"></a><a name="d0e2051"></a><table cellpadding="4" cellspacing="0" summary="" id="EN-US_TOPIC_0000001592573765__d0e2051" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Description of VPN connection parameters</caption><thead align="left"><tr id="EN-US_TOPIC_0000001592573765__row3103765"><th align="left" class="cellrowborder" valign="top" width="21.37%" id="mcps1.3.3.2.6.2.2.2.4.1.1"><p id="EN-US_TOPIC_0000001592573765__p50078427">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="49.769999999999996%" id="mcps1.3.3.2.6.2.2.2.4.1.2"><p id="EN-US_TOPIC_0000001592573765__p29820793">Description</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="28.860000000000003%" id="mcps1.3.3.2.6.2.2.2.4.1.3"><p id="EN-US_TOPIC_0000001592573765__p66674072">Example Value</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="EN-US_TOPIC_0000001592573765__row23286149"><td class="cellrowborder" valign="top" width="21.37%" headers="mcps1.3.3.2.6.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000001592573765__p7129930">Name</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.769999999999996%" headers="mcps1.3.3.2.6.2.2.2.4.1.2 "><p id="EN-US_TOPIC_0000001592573765__p40653443">Name of a VPN connection. The value can contain only letters, digits, underscores (_), hyphens (-), and periods (.).</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.860000000000003%" headers="mcps1.3.3.2.6.2.2.2.4.1.3 "><p id="EN-US_TOPIC_0000001592573765__p4594585">vpn-001</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001592573765__row41351266"><td class="cellrowborder" valign="top" width="21.37%" headers="mcps1.3.3.2.6.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000001592573765__p61118221">VPN Gateway</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.769999999999996%" headers="mcps1.3.3.2.6.2.2.2.4.1.2 "><p id="EN-US_TOPIC_0000001592573765__p51628873">Name of the VPN gateway for which the VPN connection is created.</p>
+<p id="EN-US_TOPIC_0000001592573765__p15689244499">You can also click <span class="uicontrol" id="EN-US_TOPIC_0000001592573765__uicontrol895942931012"><b>Create VPN Gateway</b></span> to create a VPN gateway. For details about related parameters, see <a href="vpn_04_0421.html#EN-US_TOPIC_0000001542174206__d0e1539">Table 2</a>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.860000000000003%" headers="mcps1.3.3.2.6.2.2.2.4.1.3 "><p id="EN-US_TOPIC_0000001592573765__p21189181">vpngw-001</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001592573765__row56484908"><td class="cellrowborder" valign="top" width="21.37%" headers="mcps1.3.3.2.6.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000001592573765__p11874856">Gateway IP Address</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.769999999999996%" headers="mcps1.3.3.2.6.2.2.2.4.1.2 "><p id="EN-US_TOPIC_0000001592573765__p22339313">IP address of the VPN gateway.</p>
+<p id="EN-US_TOPIC_0000001592573765__p14741115816332">The same EIP of a VPN gateway cannot be repeatedly selected when you create VPN connections between the VPN gateway and the same customer gateway.</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.860000000000003%" headers="mcps1.3.3.2.6.2.2.2.4.1.3 "><p id="EN-US_TOPIC_0000001592573765__p534718319536">Available gateway IP address</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001592573765__row1352617714305"><td class="cellrowborder" valign="top" width="21.37%" headers="mcps1.3.3.2.6.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000001592573765__p22295883">Customer Gateway</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.769999999999996%" headers="mcps1.3.3.2.6.2.2.2.4.1.2 "><p id="EN-US_TOPIC_0000001592573765__p61136090">Name of a customer gateway.</p>
+<p id="EN-US_TOPIC_0000001592573765__p46917252166">You can also click <span class="uicontrol" id="EN-US_TOPIC_0000001592573765__uicontrol859313221956"><b>Create Customer Gateway</b></span> to create a customer gateway. For details about related parameters, see <a href="vpn_04_0431.html#EN-US_TOPIC_0000001542014850__table61829653">Table 1</a>.</p>
+<div class="note" id="EN-US_TOPIC_0000001592573765__note399883673717"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="EN-US_TOPIC_0000001592573765__p13998173653720">If a customer gateway connects to multiple VPN gateways, the BGP ASNs and VPN types of the VPN gateways must be the same.</p>
+</div></div>
+</td>
+<td class="cellrowborder" valign="top" width="28.860000000000003%" headers="mcps1.3.3.2.6.2.2.2.4.1.3 "><p id="EN-US_TOPIC_0000001592573765__p53076282">cgw-001</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001592573765__row0118924593"><td class="cellrowborder" valign="top" width="21.37%" headers="mcps1.3.3.2.6.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000001592573765__p846104794213">VPN Type</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.769999999999996%" headers="mcps1.3.3.2.6.2.2.2.4.1.2 "><p id="EN-US_TOPIC_0000001592573765__p11159942174218">IPsec connection mode, which can be route-based or policy-based.</p>
+<ul id="EN-US_TOPIC_0000001592573765__ul1071185515482"><li id="EN-US_TOPIC_0000001592573765__li54561024163019">Static routing<p id="EN-US_TOPIC_0000001592573765__p1652513277309"><a name="EN-US_TOPIC_0000001592573765__li54561024163019"></a><a name="li54561024163019"></a>Determines the data that enters the IPsec VPN tunnel based on the route configuration (local subnet and customer subnet).</p>
+<p id="EN-US_TOPIC_0000001592573765__p37119552483"><strong id="EN-US_TOPIC_0000001592573765__b18422155312482">Application scenario: Communication between customer gateways</strong></p>
+</li><li id="EN-US_TOPIC_0000001592573765__li1820463273012">BGP routing<p id="EN-US_TOPIC_0000001592573765__p437895312306"><a name="EN-US_TOPIC_0000001592573765__li1820463273012"></a><a name="li1820463273012"></a>Determines the traffic that can enter the IPsec VPN tunnel based on BGP routes.</p>
+<p id="EN-US_TOPIC_0000001592573765__p1130413316519"><strong id="EN-US_TOPIC_0000001592573765__b283474104918">Application scenario: Communication between customer gateways, many or frequently changing interconnection subnets, or backup between VPN and Direct Connect</strong></p>
+</li><li id="EN-US_TOPIC_0000001592573765__li97113559485">Policy-based<p id="EN-US_TOPIC_0000001592573765__p127111255204812"><a name="EN-US_TOPIC_0000001592573765__li97113559485"></a><a name="li97113559485"></a>Determines the data that enters the IPsec VPN tunnel based on the policy (between the customer network and VPC). Policy rules can be defined based on the source and destination CIDR blocks.</p>
+<p id="EN-US_TOPIC_0000001592573765__p27111455194814"><strong id="EN-US_TOPIC_0000001592573765__b14275181494915">Application scenario: Isolation between customer gateways</strong></p>
+</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="28.860000000000003%" headers="mcps1.3.3.2.6.2.2.2.4.1.3 "><p id="EN-US_TOPIC_0000001592573765__p191601542114218">Static routing</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001592573765__row7924496"><td class="cellrowborder" valign="top" width="21.37%" headers="mcps1.3.3.2.6.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000001592573765__p37904428">Customer Subnet</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.769999999999996%" headers="mcps1.3.3.2.6.2.2.2.4.1.2 "><p id="EN-US_TOPIC_0000001592573765__p89528127535">Customer-side subnet that needs to access the VPC on the cloud through VPN connections.</p>
+<p id="EN-US_TOPIC_0000001592573765__p559314391411">If there are multiple customer subnets, separate them with commas (,).</p>
+<div class="note" id="EN-US_TOPIC_0000001592573765__note464816941115"><span class="notetitle"> NOTE: </span><div class="notebody"><ul id="EN-US_TOPIC_0000001592573765__ul17589163714580"><li id="EN-US_TOPIC_0000001592573765__li1640715459592">The customer subnet can overlap with the local subnet but cannot be the same as the local subnet.</li><li id="EN-US_TOPIC_0000001592573765__li2863224201912">A customer subnet cannot be included in the existing subnets of the VPC associated with the VPN gateway. It also cannot be the destination address in the route table of the VPC associated with the VPN gateway.</li><li id="EN-US_TOPIC_0000001592573765__li394172763016">Customer subnets cannot be the reserved CIDR blocks of VPCs, for example, 100.64.0.0/10 or 214.0.0.0/8.</li><li id="EN-US_TOPIC_0000001592573765__li156832021624">If the interconnection subnet is associated with an ACL rule, ensure that the ACL rule permits the TCP port for traffic between all local and customer subnets.</li><li id="EN-US_TOPIC_0000001592573765__li13321746144516">Address groups cannot be used to configure the source and destination subnets in a policy on customer gateway devices.</li></ul>
+</div></div>
+</td>
+<td class="cellrowborder" valign="top" width="28.860000000000003%" headers="mcps1.3.3.2.6.2.2.2.4.1.3 "><p id="EN-US_TOPIC_0000001592573765__p52611000">172.16.1.0/24,172.16.2.0/24</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001592573765__row5101510555"><td class="cellrowborder" valign="top" width="21.37%" headers="mcps1.3.3.2.6.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000001592573765__p1310112106520">Interface IP Address Assignment</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.769999999999996%" headers="mcps1.3.3.2.6.2.2.2.4.1.2 "><p id="EN-US_TOPIC_0000001592573765__p10133181435011">This parameter is available only when <span class="parmname" id="EN-US_TOPIC_0000001592573765__parmname8320127509"><b>VPN Type</b></span> is set to <span class="parmvalue" id="EN-US_TOPIC_0000001592573765__parmvalue6311124503"><b>Static routing</b></span> or <span class="parmvalue" id="EN-US_TOPIC_0000001592573765__parmvalue5477173213443"><b>BGP routing</b></span>.</p>
+<div class="note" id="EN-US_TOPIC_0000001592573765__note92391847969"><span class="notetitle"> NOTE: </span><div class="notebody"><ul id="EN-US_TOPIC_0000001592573765__ul1252216344118"><li id="EN-US_TOPIC_0000001592573765__li105140357114">Set interface IP addresses to the tunnel interface IP addresses used by the VPN gateway and customer gateway to communicate with each other.</li><li id="EN-US_TOPIC_0000001592573765__li14522173441119">If the tunnel interface address of the customer gateway is fixed, select <span class="parmvalue" id="EN-US_TOPIC_0000001592573765__parmvalue1431852216516"><b>Manually specify</b></span>, and set the tunnel interface address of the VPN gateway based on the tunnel interface address of the customer gateway.</li></ul>
+</div></div>
+<ul id="EN-US_TOPIC_0000001592573765__ul24725171771"><li id="EN-US_TOPIC_0000001592573765__li1647212171971">Manually specify<ul id="EN-US_TOPIC_0000001592573765__ul0733614173216"><li id="EN-US_TOPIC_0000001592573765__li113663121321">Set <strong id="EN-US_TOPIC_0000001592573765__b122259322050">Local Tunnel Interface Address</strong> to the tunnel interface address of the VPN gateway, which can reside only on the 169.254.x.x/30 CIDR block (except 169.254.195.x/30). Then, the system automatically sets <strong id="EN-US_TOPIC_0000001592573765__b9225153219511">Customer Tunnel Interface Address</strong> to a random value based on the setting of <strong id="EN-US_TOPIC_0000001592573765__b1922523216520">Local Tunnel Interface Address</strong>.<p id="EN-US_TOPIC_0000001592573765__p1817142112326">For example, when you set <strong id="EN-US_TOPIC_0000001592573765__b517111520355">Local Tunnel Interface Address</strong> to <strong id="EN-US_TOPIC_0000001592573765__b191721552153513">169.254.1.6/30</strong>, the system automatically sets <strong id="EN-US_TOPIC_0000001592573765__b91721252153518">Customer Tunnel Interface Address</strong> to <strong id="EN-US_TOPIC_0000001592573765__b191723527353">169.254.1.5/30</strong>.</p>
+</li><li id="EN-US_TOPIC_0000001592573765__li736851263218">When you set <span class="parmname" id="EN-US_TOPIC_0000001592573765__parmname1741016572174"><b>VPN Type</b></span> to <strong id="EN-US_TOPIC_0000001592573765__b12587335194016">BGP routing</strong> and configure tunnel interface addresses in <span class="parmvalue" id="EN-US_TOPIC_0000001592573765__parmvalue65981257102616"><b>Manually specify</b></span> mode, ensure that the local and remote tunnel interface addresses configured on the customer gateway device (the other end of the VPN connection) are the same as the values of <strong id="EN-US_TOPIC_0000001592573765__b147336109524">Customer Tunnel Interface Address</strong> and <strong id="EN-US_TOPIC_0000001592573765__b9258102135220">Local Tunnel Interface Address</strong>, respectively.</li></ul>
+</li><li id="EN-US_TOPIC_0000001592573765__li418543120719">Automatically assign<ul id="EN-US_TOPIC_0000001592573765__ul8156133519326"><li id="EN-US_TOPIC_0000001592573765__li10259203319320">By default, an IP address on the 169.254.x.x/30 CIDR block is assigned to the tunnel interface of the VPN gateway.</li><li id="EN-US_TOPIC_0000001592573765__li14260133316327">To view the automatically assigned local and customer interface IP addresses, click <span class="uicontrol" id="EN-US_TOPIC_0000001592573765__uicontrol838113445395"><b>Modify VPN Connection</b></span> on the <strong id="EN-US_TOPIC_0000001592573765__b19381344193917">VPN Connections</strong> page.</li><li id="EN-US_TOPIC_0000001592573765__li626114334328">When you set <span class="parmname" id="EN-US_TOPIC_0000001592573765__parmname247762362214"><b>VPN Type</b></span> to <span class="parmvalue" id="EN-US_TOPIC_0000001592573765__parmvalue04771523162214"><b>BGP routing</b></span> and select <span class="parmvalue" id="EN-US_TOPIC_0000001592573765__parmvalue445323762714"><b>Automatically assign</b></span>, check the automatically assigned local and customer tunnel interface addresses after the VPN connection is created. Ensure that the local and remote tunnel interface addresses configured on the customer gateway device (the other end of the VPN connection) are the reverse of the settings on the cloud side.</li></ul>
+</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="28.860000000000003%" headers="mcps1.3.3.2.6.2.2.2.4.1.3 "><p id="EN-US_TOPIC_0000001592573765__p81015101251">Automatically assign</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001592573765__row131012101155"><td class="cellrowborder" valign="top" width="21.37%" headers="mcps1.3.3.2.6.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000001592573765__p171013102055">Local Tunnel Interface Address</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.769999999999996%" headers="mcps1.3.3.2.6.2.2.2.4.1.2 "><p id="EN-US_TOPIC_0000001592573765__p162739371794">This parameter is available only when <span class="parmname" id="EN-US_TOPIC_0000001592573765__parmname1291294414479"><b>Interface IP Address Assignment</b></span> is set to <strong id="EN-US_TOPIC_0000001592573765__b7918104494717">Manually specify</strong>.</p>
+<p id="EN-US_TOPIC_0000001592573765__p1583933165018">Tunnel interface IP address configured on the VPN gateway.</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.860000000000003%" headers="mcps1.3.3.2.6.2.2.2.4.1.3 "><p id="EN-US_TOPIC_0000001592573765__p1810141013515">N/A</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001592573765__row15747162719515"><td class="cellrowborder" valign="top" width="21.37%" headers="mcps1.3.3.2.6.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000001592573765__p38761593620">Customer Tunnel Interface Address</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.769999999999996%" headers="mcps1.3.3.2.6.2.2.2.4.1.2 "><p id="EN-US_TOPIC_0000001592573765__p124112429916">This parameter is available only when <span class="parmname" id="EN-US_TOPIC_0000001592573765__parmname14438956144711"><b>Interface IP Address Assignment</b></span> is set to <strong id="EN-US_TOPIC_0000001592573765__b8439156124716">Manually specify</strong>.</p>
+<p id="EN-US_TOPIC_0000001592573765__p17980416282">Tunnel interface IP address configured on the customer gateway device.</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.860000000000003%" headers="mcps1.3.3.2.6.2.2.2.4.1.3 "><p id="EN-US_TOPIC_0000001592573765__p27471275516">N/A</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001592573765__row107791961457"><td class="cellrowborder" valign="top" width="21.37%" headers="mcps1.3.3.2.6.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000001592573765__p27791666519">Link Detection</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.769999999999996%" headers="mcps1.3.3.2.6.2.2.2.4.1.2 "><p id="EN-US_TOPIC_0000001592573765__p175212152087">This parameter is available only when <span class="parmname" id="EN-US_TOPIC_0000001592573765__parmname20688104917470"><b>VPN Type</b></span> is set to <span class="parmvalue" id="EN-US_TOPIC_0000001592573765__parmvalue4521161516812"><b>Static routing</b></span>.</p>
+<div class="note" id="EN-US_TOPIC_0000001592573765__note14020506424"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="EN-US_TOPIC_0000001592573765__p1541250194217">When enabling this function, ensure that the customer gateway supports ICMP and is correctly configured with the customer interface IP address of the VPN connection. Otherwise, traffic will fail to be forwarded.</p>
+</div></div>
+<p id="EN-US_TOPIC_0000001592573765__p49551120131213">After this function is enabled, the VPN gateway automatically performs Network Quality Analysis (NQA) on the customer interface IP address of the customer gateway. </p>
+</td>
+<td class="cellrowborder" valign="top" width="28.860000000000003%" headers="mcps1.3.3.2.6.2.2.2.4.1.3 "><p id="EN-US_TOPIC_0000001592573765__p197799616518">Selected</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001592573765__row6412487"><td class="cellrowborder" valign="top" width="21.37%" headers="mcps1.3.3.2.6.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000001592573765__p49649410">PSK</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.769999999999996%" headers="mcps1.3.3.2.6.2.2.2.4.1.2 "><p id="EN-US_TOPIC_0000001592573765__p62179278">The PSKs configured for the VPN gateway and customer gateway must be the same.</p>
+<p id="EN-US_TOPIC_0000001592573765__p163561325183110">The PSK:</p>
+<ul id="EN-US_TOPIC_0000001592573765__ul16491199171414"><li id="EN-US_TOPIC_0000001592573765__li960712330315">Contains 8 to 128 characters.</li><li id="EN-US_TOPIC_0000001592573765__li2880172743116">Can contain only three or more types of the following characters:<ul id="EN-US_TOPIC_0000001592573765__ul1427714115311"><li id="EN-US_TOPIC_0000001592573765__li1449149181418">Digits</li><li id="EN-US_TOPIC_0000001592573765__li594131117393">Uppercase letters</li><li id="EN-US_TOPIC_0000001592573765__li11491790147">Lowercase letters</li><li id="EN-US_TOPIC_0000001592573765__li1549119901412">Special characters: ~ ! @ # $ % ^ ( ) - _ + = { } , . / : ;</li></ul>
+</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="28.860000000000003%" headers="mcps1.3.3.2.6.2.2.2.4.1.3 "><p id="EN-US_TOPIC_0000001592573765__p3356754">Test@123</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001592573765__row30210793"><td class="cellrowborder" valign="top" width="21.37%" headers="mcps1.3.3.2.6.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000001592573765__p31155189">Confirm PSK</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.769999999999996%" headers="mcps1.3.3.2.6.2.2.2.4.1.2 "><p id="EN-US_TOPIC_0000001592573765__p567201419268">Enter the PSK again.</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.860000000000003%" headers="mcps1.3.3.2.6.2.2.2.4.1.3 "><p id="EN-US_TOPIC_0000001592573765__p62710107">Test@123</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001592573765__row1435145910176"><td class="cellrowborder" valign="top" width="21.37%" headers="mcps1.3.3.2.6.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000001592573765__p19352175921720">Policy</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.769999999999996%" headers="mcps1.3.3.2.6.2.2.2.4.1.2 "><p id="EN-US_TOPIC_0000001592573765__p15323115109">This parameter is available only when <span class="parmname" id="EN-US_TOPIC_0000001592573765__parmname1526305015553"><b>VPN Type</b></span> is set to <strong id="EN-US_TOPIC_0000001592573765__b152701650135515">Policy-based</strong>.</p>
+<p id="EN-US_TOPIC_0000001592573765__p1657613361818">Defines the data flow that enters the encrypted VPN connection between the local and customer subnets. You need to configure the source and destination CIDR blocks in each policy rule. By default, a maximum of five policy rules can be configured.</p>
+<ul id="EN-US_TOPIC_0000001592573765__ul1782812554180"><li id="EN-US_TOPIC_0000001592573765__li585314415112">Source CIDR Block<p id="EN-US_TOPIC_0000001592573765__p1852513475514"><a name="EN-US_TOPIC_0000001592573765__li585314415112"></a><a name="li585314415112"></a>The source CIDR block must contain some CIDR blocks of the local subnets. <strong id="EN-US_TOPIC_0000001592573765__b19730153514412">0.0.0.0/0</strong> indicates any IP address.</p>
+</li></ul>
+<ul id="EN-US_TOPIC_0000001592573765__ul1153711473519"><li id="EN-US_TOPIC_0000001592573765__li053714795116">Destination CIDR Block<p id="EN-US_TOPIC_0000001592573765__p38826195216"><a name="EN-US_TOPIC_0000001592573765__li053714795116"></a><a name="li053714795116"></a>The destination CIDR block must contain all the CIDR blocks of the customer subnets. A policy rule supports a maximum of five destination CIDR blocks, which are separated by commas (,).</p>
+</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="28.860000000000003%" headers="mcps1.3.3.2.6.2.2.2.4.1.3 "><ul id="EN-US_TOPIC_0000001592573765__ul13883837536"><li id="EN-US_TOPIC_0000001592573765__li1488311315537">Source CIDR block 1: 192.168.1.0/24</li><li id="EN-US_TOPIC_0000001592573765__li162711712135312">Destination CIDR block 1: 172.16.1.0/24,172.16.2.0/24</li><li id="EN-US_TOPIC_0000001592573765__li16701849193714">Source CIDR block 2: 192.168.2.0/24</li><li id="EN-US_TOPIC_0000001592573765__li107011649183711">Destination CIDR block 2: 172.16.1.0/24,172.16.2.0/24</li></ul>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001592573765__row13858135661812"><td class="cellrowborder" valign="top" width="21.37%" headers="mcps1.3.3.2.6.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000001592573765__p65313641">Advanced Settings</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.769999999999996%" headers="mcps1.3.3.2.6.2.2.2.4.1.2 "><ul id="EN-US_TOPIC_0000001592573765__ul55913529"><li id="EN-US_TOPIC_0000001592573765__li33459714"><strong id="EN-US_TOPIC_0000001592573765__b192172149105">Default</strong>: Use default IKE and IPsec policies.</li><li id="EN-US_TOPIC_0000001592573765__li9268821247"><strong id="EN-US_TOPIC_0000001592573765__b24192131275">Existing</strong>: Use existing IKE and IPsec policies.</li><li id="EN-US_TOPIC_0000001592573765__li32701973"><strong id="EN-US_TOPIC_0000001592573765__b2099016518565">Custom</strong>: Use custom IKE and IPsec policies. For details about the policies, see <a href="#EN-US_TOPIC_0000001592573765__d0e2178">Table 2</a> and <a href="#EN-US_TOPIC_0000001592573765__d0e2269">Table 3</a>.</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="28.860000000000003%" headers="mcps1.3.3.2.6.2.2.2.4.1.3 "><p id="EN-US_TOPIC_0000001592573765__p10611988">Custom</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+
+<div class="tablenoborder"><a name="EN-US_TOPIC_0000001592573765__d0e2178"></a><a name="d0e2178"></a><table cellpadding="4" cellspacing="0" summary="" id="EN-US_TOPIC_0000001592573765__d0e2178" frame="border" border="1" rules="all"><caption><b>Table 2 </b>IKE policy</caption><thead align="left"><tr id="EN-US_TOPIC_0000001592573765__row1363208"><th align="left" class="cellrowborder" valign="top" width="28.28%" id="mcps1.3.3.2.6.2.3.2.4.1.1"><p id="EN-US_TOPIC_0000001592573765__p43311004">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="55.559999999999995%" id="mcps1.3.3.2.6.2.3.2.4.1.2"><p id="EN-US_TOPIC_0000001592573765__p18530429">Description</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="16.16%" id="mcps1.3.3.2.6.2.3.2.4.1.3"><p id="EN-US_TOPIC_0000001592573765__p24569746">Example Value</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="EN-US_TOPIC_0000001592573765__row2333346105116"><td class="cellrowborder" valign="top" width="28.28%" headers="mcps1.3.3.2.6.2.3.2.4.1.1 "><p id="EN-US_TOPIC_0000001592573765__p33636572">Version</p>
+</td>
+<td class="cellrowborder" valign="top" width="55.559999999999995%" headers="mcps1.3.3.2.6.2.3.2.4.1.2 "><p id="EN-US_TOPIC_0000001592573765__p1046319431554">Version of the IKE protocol. The value can be one of the following:</p>
+<ul id="EN-US_TOPIC_0000001592573765__ul52121483557"><li id="EN-US_TOPIC_0000001592573765__li321244825511">v1 (v1 has low security. If the device supports v2, v2 is recommended.)</li><li id="EN-US_TOPIC_0000001592573765__li921264805514">v2</li></ul>
+<p id="EN-US_TOPIC_0000001592573765__p26326187">The default value is <strong id="EN-US_TOPIC_0000001592573765__b6134522561">v2</strong>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.16%" headers="mcps1.3.3.2.6.2.3.2.4.1.3 "><p id="EN-US_TOPIC_0000001592573765__p52046408">v2</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001592573765__row1074523216593"><td class="cellrowborder" valign="top" width="28.28%" headers="mcps1.3.3.2.6.2.3.2.4.1.1 "><p id="EN-US_TOPIC_0000001592573765__p15721233115915">Negotiation Mode</p>
+</td>
+<td class="cellrowborder" valign="top" width="55.559999999999995%" headers="mcps1.3.3.2.6.2.3.2.4.1.2 "><p id="EN-US_TOPIC_0000001592573765__p25722033155910">This parameter is available only when <strong id="EN-US_TOPIC_0000001592573765__b6790171613130">Version</strong> is <strong id="EN-US_TOPIC_0000001592573765__b816482315139">v1</strong>.</p>
+<ul id="EN-US_TOPIC_0000001592573765__ul1057273311592"><li id="EN-US_TOPIC_0000001592573765__li1657215331596">Main</li><li id="EN-US_TOPIC_0000001592573765__li5572333135916">Aggressive</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="16.16%" headers="mcps1.3.3.2.6.2.3.2.4.1.3 "><p id="EN-US_TOPIC_0000001592573765__p757216330594">Main</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001592573765__row43992387"><td class="cellrowborder" valign="top" width="28.28%" headers="mcps1.3.3.2.6.2.3.2.4.1.1 "><p id="EN-US_TOPIC_0000001592573765__p6613626">Authentication Algorithm</p>
+</td>
+<td class="cellrowborder" valign="top" width="55.559999999999995%" headers="mcps1.3.3.2.6.2.3.2.4.1.2 "><p id="EN-US_TOPIC_0000001592573765__p4511284532">Hash algorithm used for authentication. The following options are available:</p>
+<ul id="EN-US_TOPIC_0000001592573765__ul11892419195318"><li id="EN-US_TOPIC_0000001592573765__li168930195539">SHA1(Insecure. Not recommended.)</li><li id="EN-US_TOPIC_0000001592573765__li1589331919538">MD5(Insecure. Not recommended.)</li><li id="EN-US_TOPIC_0000001592573765__li158931719175318">SHA2-256</li><li id="EN-US_TOPIC_0000001592573765__li889316195531">SHA2-384</li><li id="EN-US_TOPIC_0000001592573765__li17893111911533">SHA2-512</li></ul>
+<p id="EN-US_TOPIC_0000001592573765__p641717283555">The default value is <strong id="EN-US_TOPIC_0000001592573765__b134410472919">SHA2-256</strong>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.16%" headers="mcps1.3.3.2.6.2.3.2.4.1.3 "><p id="EN-US_TOPIC_0000001592573765__p21524018">SHA2-256</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001592573765__row59498439"><td class="cellrowborder" valign="top" width="28.28%" headers="mcps1.3.3.2.6.2.3.2.4.1.1 "><p id="EN-US_TOPIC_0000001592573765__p54644255">Encryption Algorithm</p>
+</td>
+<td class="cellrowborder" valign="top" width="55.559999999999995%" headers="mcps1.3.3.2.6.2.3.2.4.1.2 "><p id="EN-US_TOPIC_0000001592573765__p718934365317">Encryption algorithm. The following options are available:</p>
+<ul id="EN-US_TOPIC_0000001592573765__ul13977452145311"><li id="EN-US_TOPIC_0000001592573765__li231516116912">3DES(Insecure. Not recommended.)</li><li id="EN-US_TOPIC_0000001592573765__li15977952155311">AES-128(Insecure. Not recommended.)</li><li id="EN-US_TOPIC_0000001592573765__li1197755219539">AES-192(Insecure. Not recommended.)</li><li id="EN-US_TOPIC_0000001592573765__li1997745219537">AES-256(Insecure. Not recommended.)</li><li id="EN-US_TOPIC_0000001592573765__li159802519549">AES-256-GCM-16<p id="EN-US_TOPIC_0000001592573765__p1834928163211"><a name="EN-US_TOPIC_0000001592573765__li159802519549"></a><a name="li159802519549"></a>When this encryption algorithm is used, the IKE version can only be <strong id="EN-US_TOPIC_0000001592573765__b1173223564111">v2</strong>.</p>
+</li></ul>
+<p id="EN-US_TOPIC_0000001592573765__p40106022">The default value is <strong id="EN-US_TOPIC_0000001592573765__b62271757143717">AES-128</strong>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.16%" headers="mcps1.3.3.2.6.2.3.2.4.1.3 "><p id="EN-US_TOPIC_0000001592573765__p27362377">AES-128</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001592573765__row44934803"><td class="cellrowborder" valign="top" width="28.28%" headers="mcps1.3.3.2.6.2.3.2.4.1.1 "><p id="EN-US_TOPIC_0000001592573765__p15840397">DH Algorithm</p>
+</td>
+<td class="cellrowborder" valign="top" width="55.559999999999995%" headers="mcps1.3.3.2.6.2.3.2.4.1.2 "><p id="EN-US_TOPIC_0000001592573765__p97108357549">The following algorithms are supported:</p>
+<ul id="EN-US_TOPIC_0000001592573765__ul7134358175417"><li id="EN-US_TOPIC_0000001592573765__li1913455875418">Group 1(Insecure. Not recommended.)</li><li id="EN-US_TOPIC_0000001592573765__li111341358175418">Group 2(Insecure. Not recommended.)</li><li id="EN-US_TOPIC_0000001592573765__li2134105875414">Group 5(Insecure. Not recommended.)</li><li id="EN-US_TOPIC_0000001592573765__li101342058175418">Group 14(Insecure. Not recommended.)</li><li id="EN-US_TOPIC_0000001592573765__li1873164463712">Group 15</li><li id="EN-US_TOPIC_0000001592573765__li513516581541">Group 16</li><li id="EN-US_TOPIC_0000001592573765__li15135358125417">Group 19</li><li id="EN-US_TOPIC_0000001592573765__li513575845418">Group 20</li><li id="EN-US_TOPIC_0000001592573765__li101357585546">Group 21</li></ul>
+<p id="EN-US_TOPIC_0000001592573765__p20504133219229">The default value is <strong id="EN-US_TOPIC_0000001592573765__b141262518296">Group 15</strong>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.16%" headers="mcps1.3.3.2.6.2.3.2.4.1.3 "><p id="EN-US_TOPIC_0000001592573765__p44325103">Group 15</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001592573765__row65764494"><td class="cellrowborder" valign="top" width="28.28%" headers="mcps1.3.3.2.6.2.3.2.4.1.1 "><p id="EN-US_TOPIC_0000001592573765__p1572793193116">Lifetime (s)</p>
+</td>
+<td class="cellrowborder" valign="top" width="55.559999999999995%" headers="mcps1.3.3.2.6.2.3.2.4.1.2 "><p id="EN-US_TOPIC_0000001592573765__p144674334299">Lifetime of a security association (SA).</p>
+<p id="EN-US_TOPIC_0000001592573765__p6110699">An SA will be renegotiated when its lifetime expires.</p>
+<ul id="EN-US_TOPIC_0000001592573765__ul913524911295"><li id="EN-US_TOPIC_0000001592573765__li161354497295">Unit: second</li><li id="EN-US_TOPIC_0000001592573765__li0353812172513">The value ranges from <strong id="EN-US_TOPIC_0000001592573765__b1761475083717">60</strong> to <strong id="EN-US_TOPIC_0000001592573765__b5724115213378">604800</strong>.</li><li id="EN-US_TOPIC_0000001592573765__li19135134916293">The default value is <strong id="EN-US_TOPIC_0000001592573765__b126315211508">86400</strong>.</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="16.16%" headers="mcps1.3.3.2.6.2.3.2.4.1.3 "><p id="EN-US_TOPIC_0000001592573765__p25514685">86400</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001592573765__row57590929"><td class="cellrowborder" valign="top" width="28.28%" headers="mcps1.3.3.2.6.2.3.2.4.1.1 "><p id="EN-US_TOPIC_0000001592573765__p34353683">Local ID</p>
+</td>
+<td class="cellrowborder" valign="top" width="55.559999999999995%" headers="mcps1.3.3.2.6.2.3.2.4.1.2 "><p id="EN-US_TOPIC_0000001592573765__p31184962">Authentication identifier of the VPN gateway used in IPsec negotiation. The VPN gateway ID configured on the customer gateway must be the same as the local ID configured here. Otherwise, IPsec negotiation fails.</p>
+<ul id="EN-US_TOPIC_0000001592573765__ul423212368575"><li id="EN-US_TOPIC_0000001592573765__li1823293635715">IP Address (default value)<p id="EN-US_TOPIC_0000001592573765__p4424125217218"><a name="EN-US_TOPIC_0000001592573765__li1823293635715"></a><a name="li1823293635715"></a>The system automatically sets this parameter to the selected EIP of the VPN gateway.</p>
+</li><li id="EN-US_TOPIC_0000001592573765__li171901841175713">FQDN<p id="EN-US_TOPIC_0000001592573765__p81921551152911"><a name="EN-US_TOPIC_0000001592573765__li171901841175713"></a><a name="li171901841175713"></a>Set the FQDN to a string of 1 to 128 case-sensitive characters that can contain letters, digits, and special characters (excluding &amp;, &lt;, &gt;, [, ], \, ?, and spaces).</p>
+</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="16.16%" headers="mcps1.3.3.2.6.2.3.2.4.1.3 "><p id="EN-US_TOPIC_0000001592573765__p51041586">IP Address</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001592573765__row56721093"><td class="cellrowborder" valign="top" width="28.28%" headers="mcps1.3.3.2.6.2.3.2.4.1.1 "><p id="EN-US_TOPIC_0000001592573765__p31005801">Customer ID</p>
+</td>
+<td class="cellrowborder" valign="top" width="55.559999999999995%" headers="mcps1.3.3.2.6.2.3.2.4.1.2 "><p id="EN-US_TOPIC_0000001592573765__p187121325153715">Authentication identifier of the customer gateway used in IPsec negotiation. The customer gateway ID configured on the customer gateway must be the same as the customer ID configured here. Otherwise, IPsec negotiation fails.</p>
+<ul id="EN-US_TOPIC_0000001592573765__ul101809551572"><li id="EN-US_TOPIC_0000001592573765__li7180165585720">IP Address (default value)<p id="EN-US_TOPIC_0000001592573765__p106371559153213"><a name="EN-US_TOPIC_0000001592573765__li7180165585720"></a><a name="li7180165585720"></a>The system automatically sets this parameter to the IP address of the customer gateway.</p>
+</li><li id="EN-US_TOPIC_0000001592573765__li61812055115716">FQDN<p id="EN-US_TOPIC_0000001592573765__p1447474113382"><a name="EN-US_TOPIC_0000001592573765__li61812055115716"></a><a name="li61812055115716"></a>Set the FQDN to a string of 1 to 128 case-sensitive characters that can contain letters, digits, and special characters (excluding &amp;, &lt;, &gt;, [, ], \, ?, and spaces).</p>
+</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="16.16%" headers="mcps1.3.3.2.6.2.3.2.4.1.3 "><p id="EN-US_TOPIC_0000001592573765__p64648568">IP Address</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+
+<div class="tablenoborder"><a name="EN-US_TOPIC_0000001592573765__d0e2269"></a><a name="d0e2269"></a><table cellpadding="4" cellspacing="0" summary="" id="EN-US_TOPIC_0000001592573765__d0e2269" frame="border" border="1" rules="all"><caption><b>Table 3 </b>IPsec policy</caption><thead align="left"><tr id="EN-US_TOPIC_0000001592573765__row19363783"><th align="left" class="cellrowborder" valign="top" width="28.57%" id="mcps1.3.3.2.6.2.4.2.4.1.1"><p id="EN-US_TOPIC_0000001592573765__p24962600">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="49%" id="mcps1.3.3.2.6.2.4.2.4.1.2"><p id="EN-US_TOPIC_0000001592573765__p8704721">Description</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="22.43%" id="mcps1.3.3.2.6.2.4.2.4.1.3"><p id="EN-US_TOPIC_0000001592573765__p33993835">Example Value</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="EN-US_TOPIC_0000001592573765__row2037278"><td class="cellrowborder" valign="top" width="28.57%" headers="mcps1.3.3.2.6.2.4.2.4.1.1 "><p id="EN-US_TOPIC_0000001592573765__p30801809">Authentication Algorithm</p>
+</td>
+<td class="cellrowborder" valign="top" width="49%" headers="mcps1.3.3.2.6.2.4.2.4.1.2 "><p id="EN-US_TOPIC_0000001592573765__p51451235165813">Hash algorithm used for authentication. The following options are available:</p>
+<ul id="EN-US_TOPIC_0000001592573765__ul159081447195813"><li id="EN-US_TOPIC_0000001592573765__li3908184775818">SHA1(Insecure. Not recommended.)</li><li id="EN-US_TOPIC_0000001592573765__li5908147185814">MD5(Insecure. Not recommended.)</li><li id="EN-US_TOPIC_0000001592573765__li190819478584">SHA2-256</li><li id="EN-US_TOPIC_0000001592573765__li49086477586">SHA2-384</li><li id="EN-US_TOPIC_0000001592573765__li1690816470580">SHA2-512</li></ul>
+<p id="EN-US_TOPIC_0000001592573765__p40158288">The default value is <strong id="EN-US_TOPIC_0000001592573765__b38439114211">SHA2-256</strong>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.43%" headers="mcps1.3.3.2.6.2.4.2.4.1.3 "><p id="EN-US_TOPIC_0000001592573765__p31595932">SHA2-256</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001592573765__row15927932"><td class="cellrowborder" valign="top" width="28.57%" headers="mcps1.3.3.2.6.2.4.2.4.1.1 "><p id="EN-US_TOPIC_0000001592573765__p15094145">Encryption Algorithm</p>
+</td>
+<td class="cellrowborder" valign="top" width="49%" headers="mcps1.3.3.2.6.2.4.2.4.1.2 "><p id="EN-US_TOPIC_0000001592573765__p35181157185818">Encryption algorithm. The following options are available:</p>
+<ul id="EN-US_TOPIC_0000001592573765__ul1414113913590"><li id="EN-US_TOPIC_0000001592573765__li3748138124115">3DES(Insecure. Not recommended.)</li><li id="EN-US_TOPIC_0000001592573765__li11141492596">AES-128(Insecure. Not recommended.)</li><li id="EN-US_TOPIC_0000001592573765__li718528152213">AES-192(Insecure. Not recommended.)</li><li id="EN-US_TOPIC_0000001592573765__li714110910593">AES-256(Insecure. Not recommended.)</li><li id="EN-US_TOPIC_0000001592573765__li157938198594">AES-128-GCM-16</li><li id="EN-US_TOPIC_0000001592573765__li13620132712595">AES-256-GCM-16</li></ul>
+<p id="EN-US_TOPIC_0000001592573765__p64887432">The default value is <strong id="EN-US_TOPIC_0000001592573765__b9164747421">AES-128</strong>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.43%" headers="mcps1.3.3.2.6.2.4.2.4.1.3 "><p id="EN-US_TOPIC_0000001592573765__p21390645">AES-128</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001592573765__row58298083"><td class="cellrowborder" valign="top" width="28.57%" headers="mcps1.3.3.2.6.2.4.2.4.1.1 "><p id="EN-US_TOPIC_0000001592573765__p24524282">PFS</p>
+</td>
+<td class="cellrowborder" valign="top" width="49%" headers="mcps1.3.3.2.6.2.4.2.4.1.2 "><p id="EN-US_TOPIC_0000001592573765__p40309817">Algorithm used by the Perfect forward secrecy (PFS) function.</p>
+<p id="EN-US_TOPIC_0000001592573765__p7634104685918">PFS supports the following algorithms:</p>
+<ul id="EN-US_TOPIC_0000001592573765__ul2378288013"><li id="EN-US_TOPIC_0000001592573765__li14776051129">Disable(Insecure. Not recommended.)</li><li id="EN-US_TOPIC_0000001592573765__li173781984018">DH group 1(Insecure. Not recommended.)</li><li id="EN-US_TOPIC_0000001592573765__li337820810010">DH group 2(Insecure. Not recommended.)</li><li id="EN-US_TOPIC_0000001592573765__li163781483017">DH group 5(Insecure. Not recommended.)</li><li id="EN-US_TOPIC_0000001592573765__li037817817014">DH group 14(Insecure. Not recommended.)</li><li id="EN-US_TOPIC_0000001592573765__li123788814019">DH group 15</li><li id="EN-US_TOPIC_0000001592573765__li143786812020">DH group 16</li><li id="EN-US_TOPIC_0000001592573765__li10378128408">DH group 19</li><li id="EN-US_TOPIC_0000001592573765__li83781285012">DH group 20</li><li id="EN-US_TOPIC_0000001592573765__li4379281005">DH group 21</li></ul>
+<p id="EN-US_TOPIC_0000001592573765__p43869769">The default value is <strong id="EN-US_TOPIC_0000001592573765__b18737174519296">DH group 15</strong>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.43%" headers="mcps1.3.3.2.6.2.4.2.4.1.3 "><p id="EN-US_TOPIC_0000001592573765__p63790418">DH group 15</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001592573765__row37242851"><td class="cellrowborder" valign="top" width="28.57%" headers="mcps1.3.3.2.6.2.4.2.4.1.1 "><p id="EN-US_TOPIC_0000001592573765__p63880915">Transfer Protocol</p>
+</td>
+<td class="cellrowborder" valign="top" width="49%" headers="mcps1.3.3.2.6.2.4.2.4.1.2 "><p id="EN-US_TOPIC_0000001592573765__p885317422019">Security protocol used in IPsec to transmit and encapsulate user data. The following protocols are supported:</p>
+<ul id="EN-US_TOPIC_0000001592573765__ul28121135106"><li id="EN-US_TOPIC_0000001592573765__li381218353012">ESP</li></ul>
+<p id="EN-US_TOPIC_0000001592573765__p62744398">The default value is <strong id="EN-US_TOPIC_0000001592573765__b12417850162916">ESP</strong>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.43%" headers="mcps1.3.3.2.6.2.4.2.4.1.3 "><p id="EN-US_TOPIC_0000001592573765__p49131464">ESP</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001592573765__row39529998"><td class="cellrowborder" valign="top" width="28.57%" headers="mcps1.3.3.2.6.2.4.2.4.1.1 "><p id="EN-US_TOPIC_0000001592573765__p18603143185819">Lifetime (s)</p>
+</td>
+<td class="cellrowborder" valign="top" width="49%" headers="mcps1.3.3.2.6.2.4.2.4.1.2 "><p id="EN-US_TOPIC_0000001592573765__p47670495">Lifetime of an SA.</p>
+<p id="EN-US_TOPIC_0000001592573765__p26381274">An SA will be renegotiated when its lifetime expires.</p>
+<ul id="EN-US_TOPIC_0000001592573765__ul1322141264116"><li id="EN-US_TOPIC_0000001592573765__li9222125416">Unit: second</li><li id="EN-US_TOPIC_0000001592573765__li142472422411">The value ranges from <strong id="EN-US_TOPIC_0000001592573765__b92972127531">30</strong> to <strong id="EN-US_TOPIC_0000001592573765__b92972124537">604800</strong>.</li><li id="EN-US_TOPIC_0000001592573765__li1922141264113">The default value is <strong id="EN-US_TOPIC_0000001592573765__b48780912506">3600</strong>.</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="22.43%" headers="mcps1.3.3.2.6.2.4.2.4.1.3 "><p id="EN-US_TOPIC_0000001592573765__p38814338">3600</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+<div class="note" id="EN-US_TOPIC_0000001592573765__note13784724"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p class="NotesText" id="EN-US_TOPIC_0000001592573765__p56953654">An IKE policy specifies the encryption and authentication algorithms to use in the negotiation phase of an IPsec tunnel. An IPsec policy specifies the protocol, encryption algorithm, and authentication algorithm to use in the data transmission phase of an IPsec tunnel. The policy settings for VPN connections must be the same at the VPC and on-premises data center sides. If they are different, VPN negotiation will fail, causing the failure to establish VPN connections.</p>
+<p id="EN-US_TOPIC_0000001592573765__p20597191814396">The following algorithms are not recommended because they are not secure enough:</p>
+<ul id="EN-US_TOPIC_0000001592573765__ul3825204119915"><li id="EN-US_TOPIC_0000001592573765__li2082684111914">Authentication algorithms: SHA1 and MD5</li><li id="EN-US_TOPIC_0000001592573765__li138264411991">Encryption algorithms: 3DES, AES-128, AES-192, and AES-256<p id="EN-US_TOPIC_0000001592573765__p1776612192132"><a name="EN-US_TOPIC_0000001592573765__li138264411991"></a><a name="li138264411991"></a>Because some customer devices do not support secure encryption algorithms, the default encryption algorithm of VPN connections is still AES-128. You are advised to use a more secure encryption algorithm if customer devices support secure encryption algorithms.</p>
+</li><li id="EN-US_TOPIC_0000001592573765__li382644117914">DH algorithms: Group 1, Group 2, Group 5, and Group 14</li></ul>
+</div></div>
+</div>
+</li><li id="EN-US_TOPIC_0000001592573765__li42820841">Confirm the VPN connection configuration and click <strong id="EN-US_TOPIC_0000001592573765__b89959288343">Submit</strong>.</li><li id="EN-US_TOPIC_0000001592573765__li88114911593">Repeat the preceding operations to create the other VPN connection.<p id="EN-US_TOPIC_0000001592573765__p108441302599"><a name="EN-US_TOPIC_0000001592573765__li88114911593"></a><a name="li88114911593"></a>For details about IP address configuration, see <a href="vpn_04_0421.html#EN-US_TOPIC_0000001542174206__section17791412445">Context</a>.</p>
+<div class="fignone" id="EN-US_TOPIC_0000001592573765__fig9907141118234"><span class="figcap"><b>Figure 1 </b>Creating a VPN connection</span><br><span><img id="EN-US_TOPIC_0000001592573765__image13381652134" src="figure/en-us_image_0000001888091881.png" height="306.9773" width="497.42" title="Click to enlarge" class="imgResize"></span></div>
+</li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_ug_00012.html">Enterprise Edition VPN Connection Management</a></div>
+</div>
+</div>
+
+
+<script language="JavaScript">
+<!--
+image_size('.imgResize');
+var msg_imageMax = "view original image";
+var msg_imageClose = "close";
+//--></script>
\ No newline at end of file
diff --git a/docs/vpn/umn/vpn_04_0470.html b/docs/vpn/umn/vpn_04_0470.html
new file mode 100644
index 00000000..abd037c7
--- /dev/null
+++ b/docs/vpn/umn/vpn_04_0470.html
@@ -0,0 +1,19 @@
+<a name="EN-US_TOPIC_0000001542493834"></a><a name="EN-US_TOPIC_0000001542493834"></a>
+
+<h1 class="topictitle1">Classic VPN Management</h1>
+<div id="body0000001333160093"></div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="vpn_04_0002.html">Viewing Created VPNs</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_04_0003.html">Modifying a Created VPN</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_04_0004.html">Deleting a VPN</a></strong><br>
+</li>
+</ul>
+
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_08_1511.html">Classic VPN</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_04_0700.html b/docs/vpn/umn/vpn_04_0700.html
new file mode 100644
index 00000000..b65e417c
--- /dev/null
+++ b/docs/vpn/umn/vpn_04_0700.html
@@ -0,0 +1,23 @@
+<a name="EN-US_TOPIC_0000001875296738"></a><a name="EN-US_TOPIC_0000001875296738"></a>
+
+<h1 class="topictitle1">Monitoring</h1>
+<div id="body8662426"></div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="vpn_04_0701.html">Monitoring VPN</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_04_0702.html">Metrics (Enterprise Edition VPN)</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_04_0705.html">Metrics (Classic VPN)</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_04_0704.html">Viewing Metrics</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_04_0703.html">Creating Alarm Rules</a></strong><br>
+</li>
+</ul>
+
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_04_0000.html">Management</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_04_0701.html b/docs/vpn/umn/vpn_04_0701.html
new file mode 100644
index 00000000..93f4e182
--- /dev/null
+++ b/docs/vpn/umn/vpn_04_0701.html
@@ -0,0 +1,11 @@
+<a name="EN-US_TOPIC_0000001875136910"></a><a name="EN-US_TOPIC_0000001875136910"></a>
+
+<h1 class="topictitle1">Monitoring VPN</h1>
+<div id="body8662426"><p id="EN-US_TOPIC_0000001875136910__en-us_topic_0000001592879177_p2480648181518">Cloud Eye lets you keep a close eye on the performance and resource utilization of VPNs, ensuring VPN reliability and availability. You can use Cloud Eye to automatically monitor VPNs in real time and manage alarms and notifications, so that you can keep track of VPN performance metrics.</p>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_04_0700.html">Monitoring</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_04_0702.html b/docs/vpn/umn/vpn_04_0702.html
new file mode 100644
index 00000000..702d3886
--- /dev/null
+++ b/docs/vpn/umn/vpn_04_0702.html
@@ -0,0 +1,309 @@
+<a name="EN-US_TOPIC_0000001921096257"></a><a name="EN-US_TOPIC_0000001921096257"></a>
+
+<h1 class="topictitle1">Metrics (Enterprise Edition VPN)</h1>
+<div id="body8662426"><div class="section" id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_section177600215715"><h4 class="sectiontitle">Description</h4><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p13696202554410">This section describes monitored metrics reported by VPN to Cloud Eye as well as their namespaces and dimensions. You can use the Cloud Eye management console to query the metrics of the monitored objects and alarms generated for VPN.</p>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_section27711327125714"><h4 class="sectiontitle">Namespace</h4><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p9163153717574">SYS.VPN</p>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_section990985119571"><h4 class="sectiontitle">Metrics</h4>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_table102901036171517" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Metrics supported for Enterprise Edition VPN gateways</caption><thead align="left"><tr id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_row9290103651519"><th align="left" class="cellrowborder" valign="top" width="19.5%" id="mcps1.3.3.2.2.7.1.1"><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p32901736111515">Metric ID</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="11.26%" id="mcps1.3.3.2.2.7.1.2"><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p122909361156">Metric Name</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="32.51%" id="mcps1.3.3.2.2.7.1.3"><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p1429013661514">Description</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="9.02%" id="mcps1.3.3.2.2.7.1.4"><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p9290836191510">Value Range</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="12.04%" id="mcps1.3.3.2.2.7.1.5"><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p729073612157">Monitored Object</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="15.67%" id="mcps1.3.3.2.2.7.1.6"><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p142901367152">Monitoring Interval (Raw Data)</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_row9371314162220"><td class="cellrowborder" valign="top" width="19.5%" headers="mcps1.3.3.2.2.7.1.1 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p9371101492211">gateway_send_pkt_rate</p>
+</td>
+<td class="cellrowborder" valign="top" width="11.26%" headers="mcps1.3.3.2.2.7.1.2 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p3371414132214">Outbound Packet Rate</p>
+</td>
+<td class="cellrowborder" valign="top" width="32.51%" headers="mcps1.3.3.2.2.7.1.3 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p4371161414224">Average number of data packets leaving the cloud per second.</p>
+</td>
+<td class="cellrowborder" valign="top" width="9.02%" headers="mcps1.3.3.2.2.7.1.4 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p6371151418225">≥ 0 pps</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.04%" headers="mcps1.3.3.2.2.7.1.5 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p53711614132214">Gateway</p>
+</td>
+<td class="cellrowborder" valign="top" width="15.67%" headers="mcps1.3.3.2.2.7.1.6 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p14371111418223">1 minute</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_row0461151614227"><td class="cellrowborder" valign="top" width="19.5%" headers="mcps1.3.3.2.2.7.1.1 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p12461016192216">gateway_recv_pkt_rate</p>
+</td>
+<td class="cellrowborder" valign="top" width="11.26%" headers="mcps1.3.3.2.2.7.1.2 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p3461111619224">Inbound Packet Rate</p>
+</td>
+<td class="cellrowborder" valign="top" width="32.51%" headers="mcps1.3.3.2.2.7.1.3 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p1446151682219">Average number of data packets entering the cloud per second.</p>
+</td>
+<td class="cellrowborder" valign="top" width="9.02%" headers="mcps1.3.3.2.2.7.1.4 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p746111632210">≥ 0 pps</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.04%" headers="mcps1.3.3.2.2.7.1.5 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p14470220133813">Gateway</p>
+</td>
+<td class="cellrowborder" valign="top" width="15.67%" headers="mcps1.3.3.2.2.7.1.6 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p6232523162811">1 minute</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_row06952184227"><td class="cellrowborder" valign="top" width="19.5%" headers="mcps1.3.3.2.2.7.1.1 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p36951187223">gateway_send_rate</p>
+</td>
+<td class="cellrowborder" valign="top" width="11.26%" headers="mcps1.3.3.2.2.7.1.2 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p1469551822214">Outbound Bandwidth</p>
+</td>
+<td class="cellrowborder" valign="top" width="32.51%" headers="mcps1.3.3.2.2.7.1.3 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p1269521882214">Average volume of traffic leaving the cloud per second.</p>
+</td>
+<td class="cellrowborder" valign="top" width="9.02%" headers="mcps1.3.3.2.2.7.1.4 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p19695818112211">0–1 Gbit/s</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.04%" headers="mcps1.3.3.2.2.7.1.5 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p190992017384">Gateway</p>
+</td>
+<td class="cellrowborder" valign="top" width="15.67%" headers="mcps1.3.3.2.2.7.1.6 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p6853923142819">1 minute</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_row17293192119228"><td class="cellrowborder" valign="top" width="19.5%" headers="mcps1.3.3.2.2.7.1.1 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p1029313211220">gateway_recv_rate</p>
+</td>
+<td class="cellrowborder" valign="top" width="11.26%" headers="mcps1.3.3.2.2.7.1.2 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p17293142116221">Inbound Bandwidth</p>
+</td>
+<td class="cellrowborder" valign="top" width="32.51%" headers="mcps1.3.3.2.2.7.1.3 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p12293192114223">Average volume of traffic entering the cloud per second.</p>
+</td>
+<td class="cellrowborder" valign="top" width="9.02%" headers="mcps1.3.3.2.2.7.1.4 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p198869568392">0–1 Gbit/s</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.04%" headers="mcps1.3.3.2.2.7.1.5 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p927816219385">Gateway</p>
+</td>
+<td class="cellrowborder" valign="top" width="15.67%" headers="mcps1.3.3.2.2.7.1.6 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p1830092414287">1 minute</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_row1213916235222"><td class="cellrowborder" valign="top" width="19.5%" headers="mcps1.3.3.2.2.7.1.1 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p13139123172214">gateway_send_rate_usage</p>
+</td>
+<td class="cellrowborder" valign="top" width="11.26%" headers="mcps1.3.3.2.2.7.1.2 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p813952317223">Outbound Bandwidth Usage</p>
+</td>
+<td class="cellrowborder" valign="top" width="32.51%" headers="mcps1.3.3.2.2.7.1.3 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p71391923122219">Bandwidth utilization for traffic leaving the cloud.</p>
+</td>
+<td class="cellrowborder" valign="top" width="9.02%" headers="mcps1.3.3.2.2.7.1.4 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p1613972319225">0-100%</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.04%" headers="mcps1.3.3.2.2.7.1.5 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p155821622183816">Gateway</p>
+</td>
+<td class="cellrowborder" valign="top" width="15.67%" headers="mcps1.3.3.2.2.7.1.6 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p1268732452811">1 minute</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_row18112152615224"><td class="cellrowborder" valign="top" width="19.5%" headers="mcps1.3.3.2.2.7.1.1 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p7113122617228">gateway_recv_rate_usage</p>
+</td>
+<td class="cellrowborder" valign="top" width="11.26%" headers="mcps1.3.3.2.2.7.1.2 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p18113526192216">Inbound Bandwidth Usage</p>
+</td>
+<td class="cellrowborder" valign="top" width="32.51%" headers="mcps1.3.3.2.2.7.1.3 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p161137262224">Bandwidth utilization for traffic entering the cloud.</p>
+</td>
+<td class="cellrowborder" valign="top" width="9.02%" headers="mcps1.3.3.2.2.7.1.4 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p1111372682213">0-100%</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.04%" headers="mcps1.3.3.2.2.7.1.5 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p937102343811">Gateway</p>
+</td>
+<td class="cellrowborder" valign="top" width="15.67%" headers="mcps1.3.3.2.2.7.1.6 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p14439225182810">1 minute</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_row7694102952210"><td class="cellrowborder" valign="top" width="19.5%" headers="mcps1.3.3.2.2.7.1.1 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p5694162911228">gateway_connection_num</p>
+</td>
+<td class="cellrowborder" valign="top" width="11.26%" headers="mcps1.3.3.2.2.7.1.2 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p14694102913221">Number of Connections</p>
+</td>
+<td class="cellrowborder" valign="top" width="32.51%" headers="mcps1.3.3.2.2.7.1.3 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p13694229152219">Number of VPN connections.</p>
+</td>
+<td class="cellrowborder" valign="top" width="9.02%" headers="mcps1.3.3.2.2.7.1.4 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p2357117124013">≥ 0</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.04%" headers="mcps1.3.3.2.2.7.1.5 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p189717261385">Gateway</p>
+</td>
+<td class="cellrowborder" valign="top" width="15.67%" headers="mcps1.3.3.2.2.7.1.6 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p15858152518282">1 minute</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_table4138102013567" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Enterprise Edition VPN connection metrics</caption><thead align="left"><tr id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_row51387200565"><th align="left" class="cellrowborder" valign="top" width="18.04%" id="mcps1.3.3.3.2.7.1.1"><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p51381220125614">Metric ID</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="14.71%" id="mcps1.3.3.3.2.7.1.2"><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p4138172013565">Metric Name</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="30.759999999999998%" id="mcps1.3.3.3.2.7.1.3"><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p913816202562">Description</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="10.059999999999999%" id="mcps1.3.3.3.2.7.1.4"><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p16138152020567">Value Range</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="10.209999999999999%" id="mcps1.3.3.3.2.7.1.5"><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p19138152005613">Monitored Object</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="16.220000000000002%" id="mcps1.3.3.3.2.7.1.6"><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p1513842025613">Monitoring Interval (Raw Data)</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_row2160114335611"><td class="cellrowborder" valign="top" width="18.04%" headers="mcps1.3.3.3.2.7.1.1 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p16961916203318">tunnel_average_latency</p>
+</td>
+<td class="cellrowborder" valign="top" width="14.71%" headers="mcps1.3.3.3.2.7.1.2 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p220316521435">Average Tunnel RTT</p>
+</td>
+<td class="cellrowborder" valign="top" width="30.759999999999998%" headers="mcps1.3.3.3.2.7.1.3 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p83401211143416">Average round-trip time on the tunnel between the VPN gateway and customer gateway.</p>
+</td>
+<td class="cellrowborder" valign="top" width="10.059999999999999%" headers="mcps1.3.3.3.2.7.1.4 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p1216013437565">0–5000 ms</p>
+</td>
+<td class="cellrowborder" valign="top" width="10.209999999999999%" headers="mcps1.3.3.3.2.7.1.5 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p204748451819">VPN connection</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.220000000000002%" headers="mcps1.3.3.3.2.7.1.6 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p1096018310531">1 minute</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_row148726415564"><td class="cellrowborder" valign="top" width="18.04%" headers="mcps1.3.3.3.2.7.1.1 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p15961516193320">tunnel_max_latency</p>
+</td>
+<td class="cellrowborder" valign="top" width="14.71%" headers="mcps1.3.3.3.2.7.1.2 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p1087334175618">Maximum Tunnel RTT</p>
+</td>
+<td class="cellrowborder" valign="top" width="30.759999999999998%" headers="mcps1.3.3.3.2.7.1.3 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p4142343526">Maximum round-trip time on the tunnel between the VPN gateway and customer gateway.</p>
+</td>
+<td class="cellrowborder" valign="top" width="10.059999999999999%" headers="mcps1.3.3.3.2.7.1.4 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p787311410564">0–5000 ms</p>
+</td>
+<td class="cellrowborder" valign="top" width="10.209999999999999%" headers="mcps1.3.3.3.2.7.1.5 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p2478184191818">VPN connection</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.220000000000002%" headers="mcps1.3.3.3.2.7.1.6 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p14976183165312">1 minute</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_row1452811408563"><td class="cellrowborder" valign="top" width="18.04%" headers="mcps1.3.3.3.2.7.1.1 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p896161673317">tunnel_packet_loss_rate</p>
+</td>
+<td class="cellrowborder" valign="top" width="14.71%" headers="mcps1.3.3.3.2.7.1.2 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p155285409566">Tunnel Packet Loss Rate</p>
+</td>
+<td class="cellrowborder" valign="top" width="30.759999999999998%" headers="mcps1.3.3.3.2.7.1.3 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p9341711133410">Packet loss rate on the tunnel between the VPN gateway and customer gateway.</p>
+</td>
+<td class="cellrowborder" valign="top" width="10.059999999999999%" headers="mcps1.3.3.3.2.7.1.4 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p752813401561">0–100 %</p>
+</td>
+<td class="cellrowborder" valign="top" width="10.209999999999999%" headers="mcps1.3.3.3.2.7.1.5 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p16481546181">VPN connection</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.220000000000002%" headers="mcps1.3.3.3.2.7.1.6 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p1999173205314">1 minute</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_row162075396566"><td class="cellrowborder" valign="top" width="18.04%" headers="mcps1.3.3.3.2.7.1.1 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p1196101613314">link_average_latency</p>
+</td>
+<td class="cellrowborder" valign="top" width="14.71%" headers="mcps1.3.3.3.2.7.1.2 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p1494610314414">Average Link RTT</p>
+</td>
+<td class="cellrowborder" valign="top" width="30.759999999999998%" headers="mcps1.3.3.3.2.7.1.3 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p934118118347">Average round-trip time on the physical link between the VPN gateway and customer gateway.</p>
+</td>
+<td class="cellrowborder" valign="top" width="10.059999999999999%" headers="mcps1.3.3.3.2.7.1.4 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p2441955726">0–5000 ms</p>
+</td>
+<td class="cellrowborder" valign="top" width="10.209999999999999%" headers="mcps1.3.3.3.2.7.1.5 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p54455511213">VPN connection</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.220000000000002%" headers="mcps1.3.3.3.2.7.1.6 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p799313375314">1 minute</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_row17900837125611"><td class="cellrowborder" valign="top" width="18.04%" headers="mcps1.3.3.3.2.7.1.1 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p10961816103312">link_max_latency</p>
+</td>
+<td class="cellrowborder" valign="top" width="14.71%" headers="mcps1.3.3.3.2.7.1.2 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p199467312420">Maximum Link RTT</p>
+</td>
+<td class="cellrowborder" valign="top" width="30.759999999999998%" headers="mcps1.3.3.3.2.7.1.3 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p1034191113417">Maximum round-trip time on the physical link between the VPN gateway and customer gateway.</p>
+</td>
+<td class="cellrowborder" valign="top" width="10.059999999999999%" headers="mcps1.3.3.3.2.7.1.4 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p1644175518211">0–5000 ms</p>
+</td>
+<td class="cellrowborder" valign="top" width="10.209999999999999%" headers="mcps1.3.3.3.2.7.1.5 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p1444175518211">VPN connection</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.220000000000002%" headers="mcps1.3.3.3.2.7.1.6 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p2996143155311">1 minute</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_row32306362566"><td class="cellrowborder" valign="top" width="18.04%" headers="mcps1.3.3.3.2.7.1.1 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p5963160330">link_packet_loss_rate</p>
+</td>
+<td class="cellrowborder" valign="top" width="14.71%" headers="mcps1.3.3.3.2.7.1.2 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p1294623116413">Link Packet Loss Rate</p>
+</td>
+<td class="cellrowborder" valign="top" width="30.759999999999998%" headers="mcps1.3.3.3.2.7.1.3 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p173418119346">Packet loss rate on the physical link between the VPN gateway and customer gateway.</p>
+</td>
+<td class="cellrowborder" valign="top" width="10.059999999999999%" headers="mcps1.3.3.3.2.7.1.4 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p744145517212">0–100 %</p>
+</td>
+<td class="cellrowborder" valign="top" width="10.209999999999999%" headers="mcps1.3.3.3.2.7.1.5 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p144412551120">VPN connection</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.220000000000002%" headers="mcps1.3.3.3.2.7.1.6 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p1299817317539">1 minute</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_row12138122019569"><td class="cellrowborder" valign="top" width="18.04%" headers="mcps1.3.3.3.2.7.1.1 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p113813203565">connection_status</p>
+</td>
+<td class="cellrowborder" valign="top" width="14.71%" headers="mcps1.3.3.3.2.7.1.2 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p1613852019561">VPN Connection Status</p>
+</td>
+<td class="cellrowborder" valign="top" width="30.759999999999998%" headers="mcps1.3.3.3.2.7.1.3 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p10138420195613">Status of a VPN connection:</p>
+<p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p913822014562"><strong id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_b2858134482818">0</strong>: not connected</p>
+<p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p51382020125614"><strong id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_b19401246192818">1</strong>: connected</p>
+<p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p14199521631"><strong id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_b10998103911109">2</strong>: unknown</p>
+</td>
+<td class="cellrowborder" valign="top" width="10.059999999999999%" headers="mcps1.3.3.3.2.7.1.4 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p41381720175612">0, 1, or 2</p>
+</td>
+<td class="cellrowborder" valign="top" width="10.209999999999999%" headers="mcps1.3.3.3.2.7.1.5 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p18491946185">VPN connection</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.220000000000002%" headers="mcps1.3.3.3.2.7.1.6 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p20139120155617">1 minute</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_row8912857204210"><td class="cellrowborder" valign="top" width="18.04%" headers="mcps1.3.3.3.2.7.1.1 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p141061148124316">recv_pkt_rate</p>
+</td>
+<td class="cellrowborder" valign="top" width="14.71%" headers="mcps1.3.3.3.2.7.1.2 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p131061488439">Packet Receive Rate</p>
+</td>
+<td class="cellrowborder" valign="top" width="30.759999999999998%" headers="mcps1.3.3.3.2.7.1.3 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p1510644813430">Average number of data packets received per second.</p>
+</td>
+<td class="cellrowborder" valign="top" width="10.059999999999999%" headers="mcps1.3.3.3.2.7.1.4 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p9913105774217">≥ 0 pps</p>
+</td>
+<td class="cellrowborder" valign="top" width="10.209999999999999%" headers="mcps1.3.3.3.2.7.1.5 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p16292936485">VPN connection</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.220000000000002%" headers="mcps1.3.3.3.2.7.1.6 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p0221205284314">1 minute</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_row953462194313"><td class="cellrowborder" valign="top" width="18.04%" headers="mcps1.3.3.3.2.7.1.1 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p12106114811433">send_pkt_rate</p>
+</td>
+<td class="cellrowborder" valign="top" width="14.71%" headers="mcps1.3.3.3.2.7.1.2 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p3106194864310">Packet Send Rate</p>
+</td>
+<td class="cellrowborder" valign="top" width="30.759999999999998%" headers="mcps1.3.3.3.2.7.1.3 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p510684818438">Average number of data packets sent per second.</p>
+</td>
+<td class="cellrowborder" valign="top" width="10.059999999999999%" headers="mcps1.3.3.3.2.7.1.4 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p57309343471">≥ 0 pps</p>
+</td>
+<td class="cellrowborder" valign="top" width="10.209999999999999%" headers="mcps1.3.3.3.2.7.1.5 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p1076219311484">VPN connection</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.220000000000002%" headers="mcps1.3.3.3.2.7.1.6 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p162211152184317">1 minute</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_row8329194124311"><td class="cellrowborder" valign="top" width="18.04%" headers="mcps1.3.3.3.2.7.1.1 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p1610624812432">recv_rate</p>
+</td>
+<td class="cellrowborder" valign="top" width="14.71%" headers="mcps1.3.3.3.2.7.1.2 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p20106134819434">Traffic Receive Rate</p>
+</td>
+<td class="cellrowborder" valign="top" width="30.759999999999998%" headers="mcps1.3.3.3.2.7.1.3 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p13106164814312">Average volume of traffic received per second.</p>
+</td>
+<td class="cellrowborder" valign="top" width="10.059999999999999%" headers="mcps1.3.3.3.2.7.1.4 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p532915444310">0~1Gbit/s</p>
+</td>
+<td class="cellrowborder" valign="top" width="10.209999999999999%" headers="mcps1.3.3.3.2.7.1.5 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p152301043484">VPN connection</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.220000000000002%" headers="mcps1.3.3.3.2.7.1.6 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p1122110529436">1 minute</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_row59271768434"><td class="cellrowborder" valign="top" width="18.04%" headers="mcps1.3.3.3.2.7.1.1 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p81061648124312">send_rate</p>
+</td>
+<td class="cellrowborder" valign="top" width="14.71%" headers="mcps1.3.3.3.2.7.1.2 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p5106114824313">Traffic Send Rate</p>
+</td>
+<td class="cellrowborder" valign="top" width="30.759999999999998%" headers="mcps1.3.3.3.2.7.1.3 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p310618488437">Average volume of traffic sent per second.</p>
+</td>
+<td class="cellrowborder" valign="top" width="10.059999999999999%" headers="mcps1.3.3.3.2.7.1.4 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p1478511024813">0~1Gbit/s</p>
+</td>
+<td class="cellrowborder" valign="top" width="10.209999999999999%" headers="mcps1.3.3.3.2.7.1.5 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p6608945486">VPN connection</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.220000000000002%" headers="mcps1.3.3.3.2.7.1.6 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p13221452114316">1 minute</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_section1512885019588"><h4 class="sectiontitle">Dimensions</h4>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_table4950161311596" frame="border" border="1" rules="all"><thead align="left"><tr id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_row895081325913"><th align="left" class="cellrowborder" valign="top" width="49.11%" id="mcps1.3.4.2.1.3.1.1"><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p17950171355916">key</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="50.89%" id="mcps1.3.4.2.1.3.1.2"><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p20950013165911">Value</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_row99501913185913"><td class="cellrowborder" valign="top" width="49.11%" headers="mcps1.3.4.2.1.3.1.1 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p695071345912">evpn_connection_id</p>
+</td>
+<td class="cellrowborder" valign="top" width="50.89%" headers="mcps1.3.4.2.1.3.1.2 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p1795018137598">Enterprise Edition <span id="EN-US_TOPIC_0000001921096257__ph1931935492613">VPN</span> connection</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_row2621716191619"><td class="cellrowborder" valign="top" width="49.11%" headers="mcps1.3.4.2.1.3.1.1 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p879192410217">evpn_gateway_id</p>
+</td>
+<td class="cellrowborder" valign="top" width="50.89%" headers="mcps1.3.4.2.1.3.1.2 "><p id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_p19478172613314">Enterprise Edition <span id="EN-US_TOPIC_0000001921096257__en-us_topic_0000001592773849_ph1016885719262">VPN</span> gateway</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_04_0700.html">Monitoring</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_04_0703.html b/docs/vpn/umn/vpn_04_0703.html
new file mode 100644
index 00000000..392762c3
--- /dev/null
+++ b/docs/vpn/umn/vpn_04_0703.html
@@ -0,0 +1,18 @@
+<a name="EN-US_TOPIC_0000001875136914"></a><a name="EN-US_TOPIC_0000001875136914"></a>
+
+<h1 class="topictitle1">Creating Alarm Rules</h1>
+<div id="body8662426"><div class="section" id="EN-US_TOPIC_0000001875136914__en-us_topic_0000001542174122_section166011172455"><h4 class="sectiontitle">Scenarios</h4><p id="EN-US_TOPIC_0000001875136914__en-us_topic_0000001542174122_p1674115416436">You can configure alarm rules on the Cloud Eye console to keep track of your VPN status at any time.</p>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001875136914__en-us_topic_0000001542174122_section14752346104518"><h4 class="sectiontitle">Procedure</h4><ol id="EN-US_TOPIC_0000001875136914__en-us_topic_0000001542174122_ol14741165411435"><li id="EN-US_TOPIC_0000001875136914__en-us_topic_0000001542174122_li10741154104315">Log in to the management console.</li><li id="EN-US_TOPIC_0000001875136914__en-us_topic_0000001542174122_li27411454184315">Click <span><img id="EN-US_TOPIC_0000001875136914__en-us_topic_0000001542174122_image10373231194414" src="figure/en-us_image_0000001542334206.png"></span> in the upper left corner and select the desired region and project.</li><li id="EN-US_TOPIC_0000001875136914__en-us_topic_0000001542174122_li9741954184320">Click <span><img id="EN-US_TOPIC_0000001875136914__en-us_topic_0000001542174122_image1256815184511" src="figure/en-us_image_0000001878270362.png"></span> in the upper left corner of the management console, and choose <strong id="EN-US_TOPIC_0000001875136914__en-us_topic_0000001542174122_b397123101219">Management &amp; Deployment</strong> &gt; <strong id="EN-US_TOPIC_0000001875136914__en-us_topic_0000001542174122_b3122026191210">Cloud Eye</strong>.</li><li id="EN-US_TOPIC_0000001875136914__en-us_topic_0000001542174122_li774115415431">Choose <strong id="EN-US_TOPIC_0000001875136914__en-us_topic_0000001542174122_b13185728123114">Cloud Service Monitoring</strong> &gt; <strong id="EN-US_TOPIC_0000001875136914__en-us_topic_0000001542174122_b121851289317">Virtual Private Network</strong>, click <strong id="EN-US_TOPIC_0000001875136914__en-us_topic_0000001542174122_b18383112719322">Create Alarm Rule</strong>, and configure alarm rules for different types of alarms as required.<ul id="EN-US_TOPIC_0000001875136914__en-us_topic_0000001542174122_ul1194514213532"><li id="EN-US_TOPIC_0000001875136914__en-us_topic_0000001542174122_li10945184205311">Alarms related to Enterprise Edition VPN gateways: Choose <strong id="EN-US_TOPIC_0000001875136914__en-us_topic_0000001542174122_b6998851293">S2C VPN Gateway</strong> from the right drop-down list box, click the <strong id="EN-US_TOPIC_0000001875136914__en-us_topic_0000001542174122_b99981351397">Resources</strong> tab, and choose <strong id="EN-US_TOPIC_0000001875136914__en-us_topic_0000001542174122_b0451113092917">More</strong> &gt; <strong id="EN-US_TOPIC_0000001875136914__en-us_topic_0000001542174122_b157261836172914">Create Alarm Rule</strong> in the <strong id="EN-US_TOPIC_0000001875136914__en-us_topic_0000001542174122_b4125239172919">Operation</strong> column of a VPN gateway.</li><li id="EN-US_TOPIC_0000001875136914__en-us_topic_0000001542174122_li1494511425535">Alarms related to Enterprise Edition VPN connections: Choose <strong id="EN-US_TOPIC_0000001875136914__en-us_topic_0000001542174122_b1523011015">S2C VPN Connection</strong> from the right drop-down list box, click the <strong id="EN-US_TOPIC_0000001875136914__en-us_topic_0000001542174122_b1429017106">Resources</strong> tab, and choose <strong id="EN-US_TOPIC_0000001875136914__en-us_topic_0000001542174122_b891818616308">More</strong> &gt; <strong id="EN-US_TOPIC_0000001875136914__en-us_topic_0000001542174122_b491976133018">Create Alarm Rule</strong> in the <strong id="EN-US_TOPIC_0000001875136914__en-us_topic_0000001542174122_b109192683015">Operation</strong> column of a VPN connection.</li><li id="EN-US_TOPIC_0000001875136914__en-us_topic_0000001542174122_li6945194275311">Alarms related to Classic VPN connections: Choose <strong id="EN-US_TOPIC_0000001875136914__en-us_topic_0000001542174122_b3404105216300">VPN Connections</strong> from the right drop-down list box, click the <strong id="EN-US_TOPIC_0000001875136914__en-us_topic_0000001542174122_b912019137313">Resources</strong> tab, and choose <strong id="EN-US_TOPIC_0000001875136914__en-us_topic_0000001542174122_b199116203115">More</strong> &gt; <strong id="EN-US_TOPIC_0000001875136914__en-us_topic_0000001542174122_b12917165312">Create Alarm Rule</strong> in the <strong id="EN-US_TOPIC_0000001875136914__en-us_topic_0000001542174122_b29121614316">Operation</strong> column of a VPN connection.</li></ul>
+</li><li id="EN-US_TOPIC_0000001875136914__en-us_topic_0000001542174122_li12741854104316">Click <strong id="EN-US_TOPIC_0000001875136914__en-us_topic_0000001542174122_b842352706141344">Create</strong>.<p id="EN-US_TOPIC_0000001875136914__en-us_topic_0000001542174122_p12742954104311">After the alarm rule is created, if you have enabled <strong id="EN-US_TOPIC_0000001875136914__en-us_topic_0000001542174122_b12322713144318">Alarm Notification</strong> and configured required parameters, you will receive notifications once an alarm is triggered.</p>
+<div class="note" id="EN-US_TOPIC_0000001875136914__en-us_topic_0000001542174122_note1025572618468"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="EN-US_TOPIC_0000001875136914__en-us_topic_0000001542174122_p125632613462">For more information about VPN alarm rules, see the <em id="EN-US_TOPIC_0000001875136914__en-us_topic_0000001542174122_i115110394253">Cloud Eye User Guide</em>.</p>
+</div></div>
+</li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_04_0700.html">Monitoring</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_04_0704.html b/docs/vpn/umn/vpn_04_0704.html
new file mode 100644
index 00000000..3c0662a5
--- /dev/null
+++ b/docs/vpn/umn/vpn_04_0704.html
@@ -0,0 +1,27 @@
+<a name="EN-US_TOPIC_0000001875296742"></a><a name="EN-US_TOPIC_0000001875296742"></a>
+
+<h1 class="topictitle1">Viewing Metrics</h1>
+<div id="body8662426"><div class="section" id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_section176271175544"><h4 class="sectiontitle">Scenarios</h4><p id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_p684062117544">View the VPN connection status and usages of bandwidth and EIP. You can view data of the last 1, 3, 12, or 24 hours, or last 7 days.</p>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_section1065719301486"><h4 class="sectiontitle">Viewing VPN Gateway Metrics</h4><ul id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_ul557153218227"><li id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_li8571123272214">Viewing metrics on the Cloud Eye console<ol id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_ol7678161704817"><li id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_li20678101794819">Log in to the management console.</li><li id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_li17678121716484">Click <span><img id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_image10373231194414" src="figure/en-us_image_0000001592773953.png"></span> in the upper left corner and select the desired region and project.</li><li id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_li677419523205">Click <strong id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_b719581822816">Service List</strong> and choose <strong id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_b1180014814351">Management &amp; Deployment</strong> &gt; <strong id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_b842352706141452">Cloud Eye</strong>.</li><li id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_li3679217184814">Choose <strong id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_b191214256101">Cloud Service Monitoring</strong> &gt; <strong id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_b15915192781015">Virtual Private Network</strong>.</li><li id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_li260214914298">On the <span class="uicontrol" id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_uicontrol101402499511"><b>Enterprise – VPN Gateways</b></span> page, locate the target VPN gateway, and click <strong id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_b151401249257">View Metric</strong> in the <strong id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_b814014917517">Operation</strong> column.<p id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_p1760224902920">You can view data of the last 1, 3, 12, or 24 hours, or last 7 days.</p>
+</li></ol>
+</li></ul>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_section460284962918"><h4 class="sectiontitle">Viewing VPN Connection Metrics</h4><ul id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_ul06020497296"><li id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_li14602184914294">Viewing metrics on the VPN console<ol id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_ol26032049192919"><li id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_li1160314497299">Log in to the management console.</li><li id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_li176033496292">Click <span><img id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_image13603849182914" src="figure/en-us_image_0000001542494126.png"></span> in the upper left corner and select the desired region and project.</li><li id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_li1134765818316">Click <span><img id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_image1534714583312" src="figure/en-us_image_0000001924344277.png"></span> in the upper left corner of the management console, and choose <strong id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_b351383910403">Networking</strong> &gt; <strong id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_b11513183934016">Virtual Private Network</strong>.</li><li id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_li112037523310">View metrics. <ul id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_ul112035521037"><li id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_li112036520319">Choose <strong id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_b2763174613215">Virtual Private Network</strong> &gt; <strong id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_b19763154612219">Enterprise – VPN Connections</strong>, and click <span><img id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_image276304616211" src="figure/en-us_image_0000001878346114.png"></span><strong id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_b376374617217"> View Metric</strong> under the name of a VPN connection.<p id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_p98862485527">The metrics include the following:</p>
+<ul id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_ul1698455225211"><li id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_li19197135115214">VPN Connection Status</li><li id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_li2824554125317">Average Link RTT, Maximum Link RTT, Link Packet Loss Rate<p id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_p14921443105518"><a name="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_li2824554125317"></a><a name="en-us_topic_0000001592878869_li2824554125317"></a>These metrics are displayed only after the health check function is enabled. To enable this function, click the name of a VPN connection and add health check items on the <strong id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_b77301223134417">Summary</strong> tab page.</p>
+</li><li id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_li1046616349545">Average Tunnel RTT, Maximum Tunnel RTT, Tunnel Packet Loss Rate<p id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_p1152715411568"><a name="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_li1046616349545"></a><a name="en-us_topic_0000001592878869_li1046616349545"></a>These metrics are displayed only when <strong id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_b456504210555">VPN Type</strong> is set to <strong id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_b20755752175510">Static routing</strong> and the NQA function is enabled.</p>
+</li></ul>
+</li></ul>
+</li></ol>
+</li><li id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_li5602104912919">Viewing metrics on the Cloud Eye console<ol id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_ol136021749142911"><li id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_li12602649102914">Log in to the management console.</li><li id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_li8602134982917">Click <span><img id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_image460294919297" src="figure/en-us_image_0000001542174442.png"></span> in the upper left corner and select the desired region and project.</li><li id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_li12602164918291">Click <strong id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_b164969316365">Service List</strong> and choose <strong id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_b64971363612">Management &amp; Deployment</strong> &gt; <strong id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_b124975323620">Cloud Eye</strong>.</li><li id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_li914012431534">Choose <span class="menucascade" id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_menucascade20769726195916"><b><span class="uicontrol" id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_uicontrol57692267591">Cloud Service Monitoring</span></b> &gt; <b><span class="uicontrol" id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_uicontrol5966152955914">Virtual Private Network</span></b></span>.</li><li id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_li10602249132916">View metrics. The operations vary according to the VPN type.<ul id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_ul10441165812161"><li id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_li9681101720483">Enterprise Edition VPN: On the <span class="uicontrol" id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_uicontrol1333115481612"><b>Enterprise – VPN Gateways</b></span> page, locate the target VPN connection, and click <strong id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_b6985924579">View Metric</strong> in the <strong id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_b51315288713">Operation</strong> column to view the VPN connection status.</li><li id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_li1390901644119">Classic VPN: Click the <strong id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_b343610582711">VPN Connections</strong> tab, locate the target VPN connection, and click <strong id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_b2436105811719">View Metric</strong> in the <strong id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_b16436105818719">Operation</strong> column to view the VPN connection status.<p id="EN-US_TOPIC_0000001875296742__en-us_topic_0000001592878869_p12688125184118">You can view data of the last 1, 3, 12, or 24 hours, or last 7 days.</p>
+</li></ul>
+</li></ol>
+</li></ul>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_04_0700.html">Monitoring</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_04_0705.html b/docs/vpn/umn/vpn_04_0705.html
new file mode 100644
index 00000000..61a67da7
--- /dev/null
+++ b/docs/vpn/umn/vpn_04_0705.html
@@ -0,0 +1,168 @@
+<a name="EN-US_TOPIC_0000001921215905"></a><a name="EN-US_TOPIC_0000001921215905"></a>
+
+<h1 class="topictitle1">Metrics (Classic VPN)</h1>
+<div id="body8662426"><div class="section" id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_section177600215715"><h4 class="sectiontitle">Description</h4><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_p13696202554410">This section describes monitored metrics reported by VPN to Cloud Eye as well as their namespaces and dimensions. You can use the Cloud Eye management console to query the metrics of the monitored objects and alarms generated for VPN.</p>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_section27711327125714"><h4 class="sectiontitle">Namespace</h4><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_p9163153717574">SYS.VPC</p>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_section990985119571"><h4 class="sectiontitle">Metrics</h4>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_table102901036171517" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Metrics supported for Classic VPN bandwidth</caption><thead align="left"><tr id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_row9290103651519"><th align="left" class="cellrowborder" valign="top" width="19.5%" id="mcps1.3.3.2.2.7.1.1"><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_p32901736111515">Metric ID</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="11.26%" id="mcps1.3.3.2.2.7.1.2"><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_p122909361156">Metric Name</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="32.51%" id="mcps1.3.3.2.2.7.1.3"><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_p1429013661514">Description</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="9.02%" id="mcps1.3.3.2.2.7.1.4"><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_p9290836191510">Value Range</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="12.04%" id="mcps1.3.3.2.2.7.1.5"><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_p729073612157">Monitored Object</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="15.67%" id="mcps1.3.3.2.2.7.1.6"><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_p142901367152">Monitoring Interval (Raw Data)</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_row9371314162220"><td class="cellrowborder" valign="top" width="19.5%" headers="mcps1.3.3.2.2.7.1.1 "><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_p0315364467">upstream_bandwidth</p>
+</td>
+<td class="cellrowborder" valign="top" width="11.26%" headers="mcps1.3.3.2.2.7.1.2 "><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_p93123674619">Outbound Bandwidth</p>
+</td>
+<td class="cellrowborder" valign="top" width="32.51%" headers="mcps1.3.3.2.2.7.1.3 "><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_p372710490468">Network rate of outbound traffic (previously called "Upstream Bandwidth").</p>
+<p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_p872744913464">Unit: bit/s</p>
+</td>
+<td class="cellrowborder" valign="top" width="9.02%" headers="mcps1.3.3.2.2.7.1.4 "><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_p73213388468">≥ 0 bit/s</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.04%" headers="mcps1.3.3.2.2.7.1.5 "><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_p53711614132214">Bandwidth or EIP</p>
+</td>
+<td class="cellrowborder" valign="top" width="15.67%" headers="mcps1.3.3.2.2.7.1.6 "><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_p14371111418223">1 minute</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_row0461151614227"><td class="cellrowborder" valign="top" width="19.5%" headers="mcps1.3.3.2.2.7.1.1 "><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_p1630113615467">downstream_bandwidth</p>
+</td>
+<td class="cellrowborder" valign="top" width="11.26%" headers="mcps1.3.3.2.2.7.1.2 "><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_p72933654612">Inbound Bandwidth</p>
+</td>
+<td class="cellrowborder" valign="top" width="32.51%" headers="mcps1.3.3.2.2.7.1.3 "><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_p13788523479">Network rate of inbound traffic (previously called "Downstream Bandwidth").</p>
+<p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_p177881026478">Unit: bit/s</p>
+</td>
+<td class="cellrowborder" valign="top" width="9.02%" headers="mcps1.3.3.2.2.7.1.4 "><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_p532113813463">≥ 0 bit/s</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.04%" headers="mcps1.3.3.2.2.7.1.5 "><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_p146237322357">Bandwidth or EIP</p>
+</td>
+<td class="cellrowborder" valign="top" width="15.67%" headers="mcps1.3.3.2.2.7.1.6 "><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_p6232523162811">1 minute</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_row06952184227"><td class="cellrowborder" valign="top" width="19.5%" headers="mcps1.3.3.2.2.7.1.1 "><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_p727163614615">upstream_bandwidth_usage</p>
+</td>
+<td class="cellrowborder" valign="top" width="11.26%" headers="mcps1.3.3.2.2.7.1.2 "><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_p527436184613">Outbound Bandwidth Usage</p>
+</td>
+<td class="cellrowborder" valign="top" width="32.51%" headers="mcps1.3.3.2.2.7.1.3 "><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_p1314571718470">Usage of outbound bandwidth, in percentage.</p>
+<p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_p214541714715">Outbound bandwidth usage = Outbound bandwidth/Purchased bandwidth</p>
+</td>
+<td class="cellrowborder" valign="top" width="9.02%" headers="mcps1.3.3.2.2.7.1.4 "><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_p331183874617">0-100%</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.04%" headers="mcps1.3.3.2.2.7.1.5 "><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_p862653212353">Bandwidth or EIP</p>
+</td>
+<td class="cellrowborder" valign="top" width="15.67%" headers="mcps1.3.3.2.2.7.1.6 "><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_p6853923142819">1 minute</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_row17293192119228"><td class="cellrowborder" valign="top" width="19.5%" headers="mcps1.3.3.2.2.7.1.1 "><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_p425123614610">downstream_bandwidth_usage</p>
+</td>
+<td class="cellrowborder" valign="top" width="11.26%" headers="mcps1.3.3.2.2.7.1.2 "><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_p11251836154610">Inbound Bandwidth Usage</p>
+</td>
+<td class="cellrowborder" valign="top" width="32.51%" headers="mcps1.3.3.2.2.7.1.3 "><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_p813115295478">Usage of inbound bandwidth, in percentage.</p>
+<p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_p16131152918477">Inbound bandwidth usage = Inbound bandwidth/Purchased bandwidth</p>
+<div class="note" id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_note1710273894714"><span class="notetitle"> NOTE: </span><div class="notebody"><ul id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_ul1896123816478"><li id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_li4961133874715">Up to 10 Mbit/s inbound bandwidth is provided for some sites that purchase an inbound bandwidth of less than 10 Mbit/s. As such, the inbound bandwidth usage may be greater than 100%.</li><li id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_li1961113817478">If you change the bandwidth of an EIP in use, there is a delay of 5–10 minutes for the metrics to update for the new bandwidth.</li></ul>
+</div></div>
+</td>
+<td class="cellrowborder" valign="top" width="9.02%" headers="mcps1.3.3.2.2.7.1.4 "><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_p19301138104619">0-100%</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.04%" headers="mcps1.3.3.2.2.7.1.5 "><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_p3628332193519">Bandwidth or EIP</p>
+</td>
+<td class="cellrowborder" valign="top" width="15.67%" headers="mcps1.3.3.2.2.7.1.6 "><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_p1830092414287">1 minute</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_row1213916235222"><td class="cellrowborder" valign="top" width="19.5%" headers="mcps1.3.3.2.2.7.1.1 "><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_p92443620463">up_stream</p>
+</td>
+<td class="cellrowborder" valign="top" width="11.26%" headers="mcps1.3.3.2.2.7.1.2 "><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_p18231036204616">Outbound Traffic</p>
+</td>
+<td class="cellrowborder" valign="top" width="32.51%" headers="mcps1.3.3.2.2.7.1.3 "><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_p195965501474">Outbound network traffic (previously called "Upstream Traffic")</p>
+<p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_p059635094716">Unit: byte</p>
+</td>
+<td class="cellrowborder" valign="top" width="9.02%" headers="mcps1.3.3.2.2.7.1.4 "><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_p93014384467">≥ 0 bytes</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.04%" headers="mcps1.3.3.2.2.7.1.5 "><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_p1630103263516">Bandwidth or EIP</p>
+</td>
+<td class="cellrowborder" valign="top" width="15.67%" headers="mcps1.3.3.2.2.7.1.6 "><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_p1268732452811">1 minute</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_row18112152615224"><td class="cellrowborder" valign="top" width="19.5%" headers="mcps1.3.3.2.2.7.1.1 "><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_p1222836134619">down_stream</p>
+</td>
+<td class="cellrowborder" valign="top" width="11.26%" headers="mcps1.3.3.2.2.7.1.2 "><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_p1421193611463">Inbound Traffic</p>
+</td>
+<td class="cellrowborder" valign="top" width="32.51%" headers="mcps1.3.3.2.2.7.1.3 "><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_p15352219482">Inbound network traffic (previously called "Downstream Traffic")</p>
+<p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_p1635182134811">Unit: byte</p>
+</td>
+<td class="cellrowborder" valign="top" width="9.02%" headers="mcps1.3.3.2.2.7.1.4 "><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_p229538134611">≥ 0 bytes</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.04%" headers="mcps1.3.3.2.2.7.1.5 "><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_p20632432113519">Bandwidth or EIP</p>
+</td>
+<td class="cellrowborder" valign="top" width="15.67%" headers="mcps1.3.3.2.2.7.1.6 "><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_p14439225182810">1 minute</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_en-us_topic_0174923945_t6da8a079aade442e8a54dff304289dcb" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Metrics supported for Classic VPN connections</caption><thead align="left"><tr id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_en-us_topic_0174923945_rc074e100f1e04ed8ac7b79a2f48cdc6f"><th align="left" class="cellrowborder" valign="top" width="12.9%" id="mcps1.3.3.3.2.7.1.1"><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_p102492125562">Metric ID</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="13.03%" id="mcps1.3.3.3.2.7.1.2"><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_en-us_topic_0174923945_a974ca288f0cc4c328c40ae975ccc43ce">Metric Name</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="31.03%" id="mcps1.3.3.3.2.7.1.3"><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_en-us_topic_0174923945_a776170f4342a48f191f3ed46135789ea">Description</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="12.85%" id="mcps1.3.3.3.2.7.1.4"><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_en-us_topic_0174923945_ad6cabfcc0e804bcfb16fe2e6ff466e51">Value Range</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="14.52%" id="mcps1.3.3.3.2.7.1.5"><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_en-us_topic_0174923945_a1839a8c948e44697b638c0412b796f48">Monitored Object</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="15.67%" id="mcps1.3.3.3.2.7.1.6"><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_en-us_topic_0174923945_p3974940181816">Monitoring Interval (Raw Data)</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_en-us_topic_0174923945_ra1d61ed2ad1143a7adef7c2e71751c9c"><td class="cellrowborder" valign="top" width="12.9%" headers="mcps1.3.3.3.2.7.1.1 "><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_p7249181275613">connection_status</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.03%" headers="mcps1.3.3.3.2.7.1.2 "><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_en-us_topic_0174923945_p2901537123910">VPN Connection Status</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.03%" headers="mcps1.3.3.3.2.7.1.3 "><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_en-us_topic_0174923945_p09063716392">Status of a VPN connection:</p>
+<p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_en-us_topic_0174923945_p090153718394"><strong id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_b155272531344">0</strong>: not connected</p>
+<p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_en-us_topic_0174923945_p1690173753914"><strong id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_b12481056133416">1</strong>: connected</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.85%" headers="mcps1.3.3.3.2.7.1.4 "><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_en-us_topic_0174923945_p5907371391">0 or 1</p>
+</td>
+<td class="cellrowborder" valign="top" width="14.52%" headers="mcps1.3.3.3.2.7.1.5 "><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_en-us_topic_0174923945_p1390143723911">VPN connection</p>
+</td>
+<td class="cellrowborder" valign="top" width="15.67%" headers="mcps1.3.3.3.2.7.1.6 "><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_en-us_topic_0174923945_p5164114823020">5 minutes</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_section1512885019588"><h4 class="sectiontitle">Dimensions</h4>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_table4950161311596" frame="border" border="1" rules="all"><thead align="left"><tr id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_row895081325913"><th align="left" class="cellrowborder" valign="top" width="49.11%" id="mcps1.3.4.2.1.3.1.1"><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_p17950171355916">key</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="50.89%" id="mcps1.3.4.2.1.3.1.2"><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_p20950013165911">Value</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_row101936101040"><td class="cellrowborder" valign="top" width="49.11%" headers="mcps1.3.4.2.1.3.1.1 "><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_p121942101642">vpn_connection_id</p>
+</td>
+<td class="cellrowborder" valign="top" width="50.89%" headers="mcps1.3.4.2.1.3.1.2 "><p id="EN-US_TOPIC_0000001921215905__en-us_topic_0000001773649290_p619417101842">VPN Connections</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_04_0700.html">Monitoring</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_04_0807.html b/docs/vpn/umn/vpn_04_0807.html
new file mode 100644
index 00000000..ff008f5e
--- /dev/null
+++ b/docs/vpn/umn/vpn_04_0807.html
@@ -0,0 +1,26 @@
+<a name="EN-US_TOPIC_0000001592573841"></a><a name="EN-US_TOPIC_0000001592573841"></a>
+
+<h1 class="topictitle1">Unbinding an EIP from a VPN Gateway</h1>
+<div id="body1606292158838"><div class="section" id="EN-US_TOPIC_0000001592573841__section7141367"><h4 class="sectiontitle">Scenario</h4><p class="msonormal" id="EN-US_TOPIC_0000001592573841__p7942332">After a VPN gateway is created, you can unbind an EIP from it.</p>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001592573841__section8755641118"><h4 class="sectiontitle">Notes and Constraints</h4><p id="EN-US_TOPIC_0000001592573841__p1444219913315">An EIP that is in use by a VPN connection cannot be unbound from a VPN gateway.</p>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001592573841__section11751173522910"><h4 class="sectiontitle">Procedure</h4><ol id="EN-US_TOPIC_0000001592573841__ol39349140"><li id="EN-US_TOPIC_0000001592573841__li1161885112464"><span id="EN-US_TOPIC_0000001592573841__ph149997419367">Log in to the management console.</span></li><li id="EN-US_TOPIC_0000001592573841__li1161895184616"><span id="EN-US_TOPIC_0000001592573841__ph587583114385">Click <span><img id="EN-US_TOPIC_0000001592573841__en-us_topic_0000001591897601_image66709190" src="figure/en-us_image_0000001628070572.png" width="19.950000000000003" height="19.950000000000003" title="Click to enlarge" class="imgResize"></span> in the upper left corner and select the desired region and project.</span></li><li id="EN-US_TOPIC_0000001592573841__li13618165134612"><span id="EN-US_TOPIC_0000001592573841__ph910821143918">Click <span><img id="EN-US_TOPIC_0000001592573841__en-us_topic_0000001591897601_image15446151185815" src="figure/en-us_image_0000001923096425.png"></span> in the upper left corner of the page, and choose <span class="menucascade" id="EN-US_TOPIC_0000001592573841__en-us_topic_0000001591897601_menucascade124471851165812"><b><span class="uicontrol" id="EN-US_TOPIC_0000001592573841__en-us_topic_0000001591897601_uicontrol144755165811">Network</span></b> &gt; <b><span class="uicontrol" id="EN-US_TOPIC_0000001592573841__en-us_topic_0000001591897601_uicontrol644725116587">Virtual Private Network</span></b></span>.</span></li><li id="EN-US_TOPIC_0000001592573841__li6618185120465"><span id="EN-US_TOPIC_0000001592573841__ph152910598390">In the navigation pane on the left, choose <span class="menucascade" id="EN-US_TOPIC_0000001592573841__en-us_topic_0000001591897601_menucascade326450115820"><b><span class="uicontrol" id="EN-US_TOPIC_0000001592573841__en-us_topic_0000001591897601_uicontrol25222024174318">Virtual Private Network</span></b> &gt; <b><span class="uicontrol" id="EN-US_TOPIC_0000001592573841__en-us_topic_0000001591897601_uicontrol6523132419431">Enterprise – VPN Gateways</span></b></span>.</span></li><li id="EN-US_TOPIC_0000001592573841__li843823541517">Locate the row that contains the target VPN gateway, and click <span class="uicontrol" id="EN-US_TOPIC_0000001592573841__uicontrol6910193018019"><b>Unbind EIP</b></span> or choose <span class="uicontrol" id="EN-US_TOPIC_0000001592573841__uicontrol948733812117"><b>More</b></span> &gt; <strong id="EN-US_TOPIC_0000001592573841__b1625841315378">Unbind EIP</strong> in the <strong id="EN-US_TOPIC_0000001592573841__b64451416123716">Operation</strong> column.<ul id="EN-US_TOPIC_0000001592573841__ul1714117501017"><li id="EN-US_TOPIC_0000001592573841__li4141145016016">If the VPN gateway uses the active-active mode, the active EIP and active EIP 2 can be unbound from the VPN gateway.</li><li id="EN-US_TOPIC_0000001592573841__li29288291913">If the VPN gateway uses the active/standby mode, the active EIP and standby EIP can be unbound from the VPN gateway.</li></ul>
+<div class="fignone" id="EN-US_TOPIC_0000001592573841__fig13442235124010"><span class="figcap"><b>Figure 1 </b>Unbinding an EIP from the VPN gateway</span><br><span><img id="EN-US_TOPIC_0000001592573841__image84421235164013" src="figure/en-us_image_0000001987537886.png" width="497.42" height="158.42960000000002" title="Click to enlarge" class="imgResize"></span></div>
+</li><li id="EN-US_TOPIC_0000001592573841__li661811510469">In the displayed dialog box, click <strong id="EN-US_TOPIC_0000001592573841__b1493021413911">Yes</strong>.<div class="note" id="EN-US_TOPIC_0000001592573841__note150211043719"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"></div></div>
+</li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_ug_00001.html">Enterprise Edition VPN Gateway Management</a></div>
+</div>
+</div>
+
+
+<script language="JavaScript">
+<!--
+image_size('.imgResize');
+var msg_imageMax = "view original image";
+var msg_imageClose = "close";
+//--></script>
\ No newline at end of file
diff --git a/docs/vpn/umn/vpn_04_1003.html b/docs/vpn/umn/vpn_04_1003.html
new file mode 100644
index 00000000..57e45fec
--- /dev/null
+++ b/docs/vpn/umn/vpn_04_1003.html
@@ -0,0 +1,21 @@
+<a name="EN-US_TOPIC_0000001542174334"></a><a name="EN-US_TOPIC_0000001542174334"></a>
+
+<h1 class="topictitle1">Deleting a VPN Connection</h1>
+<div id="body1586310692803"><div class="section" id="EN-US_TOPIC_0000001542174334__section50043088"><h4 class="sectiontitle">Scenario</h4><p class="msonormal" id="EN-US_TOPIC_0000001542174334__p41687863">If a VPN connection is no longer required, you can delete it to release network resources.</p>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001542174334__section47734611"><h4 class="sectiontitle">Procedure</h4><ol id="EN-US_TOPIC_0000001542174334__ol57246238"><li id="EN-US_TOPIC_0000001542174334__li45454096"><span id="EN-US_TOPIC_0000001542174334__ph149997419367">Log in to the management console.</span></li><li id="EN-US_TOPIC_0000001542174334__li6433686"><span id="EN-US_TOPIC_0000001542174334__ph587583114385">Click <span><img id="EN-US_TOPIC_0000001542174334__en-us_topic_0000001591897601_image66709190" src="figure/en-us_image_0000001628070572.png" width="19.950000000000003" height="19.950000000000003" title="Click to enlarge" class="imgResize"></span> in the upper left corner and select the desired region and project.</span></li><li id="EN-US_TOPIC_0000001542174334__li51366534"><span id="EN-US_TOPIC_0000001542174334__ph910821143918">Click <span><img id="EN-US_TOPIC_0000001542174334__en-us_topic_0000001591897601_image15446151185815" src="figure/en-us_image_0000001923096425.png"></span> in the upper left corner of the page, and choose <span class="menucascade" id="EN-US_TOPIC_0000001542174334__en-us_topic_0000001591897601_menucascade124471851165812"><b><span class="uicontrol" id="EN-US_TOPIC_0000001542174334__en-us_topic_0000001591897601_uicontrol144755165811">Network</span></b> &gt; <b><span class="uicontrol" id="EN-US_TOPIC_0000001542174334__en-us_topic_0000001591897601_uicontrol644725116587">Virtual Private Network</span></b></span>.</span></li><li id="EN-US_TOPIC_0000001542174334__li59645627"><span id="EN-US_TOPIC_0000001542174334__ph152910598390">In the navigation pane on the left, choose <span class="menucascade" id="EN-US_TOPIC_0000001542174334__en-us_topic_0000001591897601_menucascade16881163103614"><b><span class="uicontrol" id="EN-US_TOPIC_0000001542174334__en-us_topic_0000001591897601_uicontrol1262522084410">Virtual Private Network</span></b> &gt; <b><span class="uicontrol" id="EN-US_TOPIC_0000001542174334__en-us_topic_0000001591897601_uicontrol7625162018443">Enterprise – VPN Connections</span></b></span>.</span></li><li id="EN-US_TOPIC_0000001542174334__li167671382306">On the <span class="wintitle" id="EN-US_TOPIC_0000001542174334__wintitle17948114143213"><b>VPN Connections</b></span> page, locate the row that contains the target VPN connection, and click <strong id="EN-US_TOPIC_0000001542174334__b094834120323">Delete</strong>.</li><li id="EN-US_TOPIC_0000001542174334__li18488515103018">In the displayed dialog box, click <strong id="EN-US_TOPIC_0000001542174334__b540145012322">Yes</strong>.</li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_ug_00012.html">Enterprise Edition VPN Connection Management</a></div>
+</div>
+</div>
+
+
+<script language="JavaScript">
+<!--
+image_size('.imgResize');
+var msg_imageMax = "view original image";
+var msg_imageClose = "close";
+//--></script>
\ No newline at end of file
diff --git a/docs/vpn/umn/vpn_04_1200.html b/docs/vpn/umn/vpn_04_1200.html
new file mode 100644
index 00000000..d012951f
--- /dev/null
+++ b/docs/vpn/umn/vpn_04_1200.html
@@ -0,0 +1,17 @@
+<a name="EN-US_TOPIC_0000001875136918"></a><a name="EN-US_TOPIC_0000001875136918"></a>
+
+<h1 class="topictitle1">Permissions Management</h1>
+<div id="body8662426"></div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="vpn_04_1201.html">Creating a User and Granting VPN Permissions</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_04_1202.html">VPN Custom Policies</a></strong><br>
+</li>
+</ul>
+
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_04_0000.html">Management</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_04_1201.html b/docs/vpn/umn/vpn_04_1201.html
new file mode 100644
index 00000000..cf1217ca
--- /dev/null
+++ b/docs/vpn/umn/vpn_04_1201.html
@@ -0,0 +1,32 @@
+<a name="EN-US_TOPIC_0000001921096265"></a><a name="EN-US_TOPIC_0000001921096265"></a>
+
+<h1 class="topictitle1">Creating a User and Granting VPN Permissions</h1>
+<div id="body8662426"><p id="EN-US_TOPIC_0000001921096265__en-us_topic_0000001542174234_p127227284917">Use the <a href="https://docs.otc.t-systems.com/usermanual/iam/iam_01_0026.html" target="_blank" rel="noopener noreferrer">Identity and Access Management (IAM)</a> service to implement fine-grained permissions control over your VPN resources. With IAM, you can:</p>
+<ul id="EN-US_TOPIC_0000001921096265__en-us_topic_0000001542174234_ul472210214918"><li id="EN-US_TOPIC_0000001921096265__en-us_topic_0000001542174234_li472217217495">Create IAM users for employees based on your enterprise's organizational structure. Each IAM user will have their own security credentials for accessing VPN resources.</li><li id="EN-US_TOPIC_0000001921096265__en-us_topic_0000001542174234_li672213218497">Grant users only the permissions required to perform a given task based on their job responsibilities.</li><li id="EN-US_TOPIC_0000001921096265__en-us_topic_0000001542174234_li1722729492">Grant the permission to perform professional and efficient O&amp;M on your VPN resources to other accounts or cloud services.</li></ul>
+<p id="EN-US_TOPIC_0000001921096265__en-us_topic_0000001542174234_p372222114917">If your account meets your permissions requirements, you can skip this section.</p>
+<p id="EN-US_TOPIC_0000001921096265__en-us_topic_0000001542174234_p4722122134916">This section describes the procedure for granting permissions (see <a href="#EN-US_TOPIC_0000001921096265__en-us_topic_0000001542174234_en-us_topic_0173533526_en-us_topic_0173481716_en-us_topic_0172268189_fig12481104618719">Figure 1</a>).</p>
+<div class="section" id="EN-US_TOPIC_0000001921096265__en-us_topic_0000001542174234_section20587194155113"><h4 class="sectiontitle">Prerequisites</h4><p id="EN-US_TOPIC_0000001921096265__en-us_topic_0000001542174234_p6881184218523">You have learned about the permissions supported by VPN, and determined the permissions to be granted to a user group. Before granting permissions of other services, learn about all <a href="https://docs.otc.t-systems.com/identity-access-management/permissions/permissions.html" target="_blank" rel="noopener noreferrer">permissions</a> supported by IAM.</p>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001921096265__en-us_topic_0000001542174234_section18871644175411"><h4 class="sectiontitle">Process Flow</h4><div class="fignone" id="EN-US_TOPIC_0000001921096265__en-us_topic_0000001542174234_en-us_topic_0173533526_en-us_topic_0173481716_en-us_topic_0172268189_fig12481104618719"><a name="EN-US_TOPIC_0000001921096265__en-us_topic_0000001542174234_en-us_topic_0173533526_en-us_topic_0173481716_en-us_topic_0172268189_fig12481104618719"></a><a name="en-us_topic_0000001542174234_en-us_topic_0173533526_en-us_topic_0173481716_en-us_topic_0172268189_fig12481104618719"></a><span class="figcap"><b>Figure 1 </b>Process of granting VPN permissions</span><br><span><img class="imgResize" id="EN-US_TOPIC_0000001921096265__en-us_topic_0000001542174234_image136671815103812" src="figure/en-us_image_0000001976650417.png" width="199.5" height="346.53150000000005" title="Click to enlarge"></span></div>
+<ol id="EN-US_TOPIC_0000001921096265__en-us_topic_0000001542174234_en-us_topic_0173533526_en-us_topic_0173481716_en-us_topic_0172268189_ol32691936499"><li id="EN-US_TOPIC_0000001921096265__en-us_topic_0000001542174234_en-us_topic_0173533526_en-us_topic_0173481716_en-us_topic_0172268189_li10269636890"><a name="EN-US_TOPIC_0000001921096265__en-us_topic_0000001542174234_en-us_topic_0173533526_en-us_topic_0173481716_en-us_topic_0172268189_li10269636890"></a><a name="en-us_topic_0000001542174234_en-us_topic_0173533526_en-us_topic_0173481716_en-us_topic_0172268189_li10269636890"></a><a href="https://docs.otc.t-systems.com/usermanual/iam/iam_01_0030.html" target="_blank" rel="noopener noreferrer">Create a user group and assign permissions</a> to it.<p id="EN-US_TOPIC_0000001921096265__en-us_topic_0000001542174234_en-us_topic_0173533526_en-us_topic_0173481716_en-us_topic_0172268189_p15269143619914">Create a user group on the IAM console and attach the <strong id="EN-US_TOPIC_0000001921096265__en-us_topic_0000001542174234_b1239221513526">VPN Administrator</strong> policy to the group.</p>
+</li><li id="EN-US_TOPIC_0000001921096265__en-us_topic_0000001542174234_en-us_topic_0173533526_en-us_topic_0173481716_en-us_topic_0172268189_li15271113610912"><a href="https://docs.otc.t-systems.com/usermanual/iam/iam_01_0031.html" target="_blank" rel="noopener noreferrer">Create a user and add it to the user group</a>.<p id="EN-US_TOPIC_0000001921096265__en-us_topic_0000001542174234_en-us_topic_0173533526_en-us_topic_0173481716_en-us_topic_0172268189_p82718361996">Create a user on the IAM console and add the user to the group created in <a href="#EN-US_TOPIC_0000001921096265__en-us_topic_0000001542174234_en-us_topic_0173533526_en-us_topic_0173481716_en-us_topic_0172268189_li10269636890">1</a>.</p>
+</li><li id="EN-US_TOPIC_0000001921096265__en-us_topic_0000001542174234_en-us_topic_0173533526_en-us_topic_0173481716_en-us_topic_0172268189_li8271163618912"><a href="https://docs.otc.t-systems.com/usermanual/iam/iam_01_0032.html" target="_blank" rel="noopener noreferrer">Log in</a> and verify permissions.<p id="EN-US_TOPIC_0000001921096265__en-us_topic_0000001542174234_p2160182135713">Log in to the management console as the created user. Switch to the authorized region and verify the permissions.</p>
+<ul id="EN-US_TOPIC_0000001921096265__en-us_topic_0000001542174234_ul1571914230579"><li id="EN-US_TOPIC_0000001921096265__en-us_topic_0000001542174234_li36639366570">Click <strong id="EN-US_TOPIC_0000001921096265__en-us_topic_0000001542174234_b14471254218">Service List</strong> and choose <strong id="EN-US_TOPIC_0000001921096265__en-us_topic_0000001542174234_b31601329620">Networking</strong> &gt; <strong id="EN-US_TOPIC_0000001921096265__en-us_topic_0000001542174234_b279411320215">Virtual Private Network</strong>. On the <strong id="EN-US_TOPIC_0000001921096265__en-us_topic_0000001542174234_b7904723144412">Enterprise – VPN Gateways</strong> page, click <strong id="EN-US_TOPIC_0000001921096265__en-us_topic_0000001542174234_b7312207174018">Create VPN Gateway</strong> in the upper right corner. If the VPN gateway is successfully created, the <strong id="EN-US_TOPIC_0000001921096265__en-us_topic_0000001542174234_b122773561137">VPN Administrator</strong> policy has already taken effect.</li><li id="EN-US_TOPIC_0000001921096265__en-us_topic_0000001542174234_li146631936105719">Choose any other service in <strong id="EN-US_TOPIC_0000001921096265__en-us_topic_0000001542174234_b1796510382265">Service List</strong>. If a message appears indicating that you have insufficient permissions to access the service, the <strong id="EN-US_TOPIC_0000001921096265__en-us_topic_0000001542174234_b9965193812615">VPN Administrator</strong> policy has already taken effect.</li></ul>
+<div class="note" id="EN-US_TOPIC_0000001921096265__en-us_topic_0000001542174234_note7825840181620"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="EN-US_TOPIC_0000001921096265__en-us_topic_0000001542174234_p882544011167">Classic VPN: For details about how to create a user and grant VPC permissions to the user, see <a href="https://docs.otc.t-systems.com/virtual-private-cloud/umn/permissions_management/creating_a_user_and_granting_vpc_permissions.html" target="_blank" rel="noopener noreferrer">Creating a User and Granting VPC Permissions</a>.</p>
+</div></div>
+</li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_04_1200.html">Permissions Management</a></div>
+</div>
+</div>
+
+
+<script language="JavaScript">
+<!--
+image_size('.imgResize');
+var msg_imageMax = "view original image";
+var msg_imageClose = "close";
+//--></script>
\ No newline at end of file
diff --git a/docs/vpn/umn/vpn_04_1202.html b/docs/vpn/umn/vpn_04_1202.html
new file mode 100644
index 00000000..516b86f6
--- /dev/null
+++ b/docs/vpn/umn/vpn_04_1202.html
@@ -0,0 +1,69 @@
+<a name="EN-US_TOPIC_0000001921215917"></a><a name="EN-US_TOPIC_0000001921215917"></a>
+
+<h1 class="topictitle1">VPN Custom Policies</h1>
+<div id="body8662426"><p id="EN-US_TOPIC_0000001921215917__en-us_topic_0000001592573753_p3571162744711">Custom policies can be created to supplement the system-defined policies of VPN.</p>
+<p id="EN-US_TOPIC_0000001921215917__en-us_topic_0000001592573753_p1363833161415">You can create custom policies in either of the following ways:</p>
+<ul id="EN-US_TOPIC_0000001921215917__en-us_topic_0000001592573753_ul1146431393818"><li id="EN-US_TOPIC_0000001921215917__en-us_topic_0000001592573753_li5764181518386">Visual editor: Select cloud services, actions, resources, and request conditions. This does not require knowledge of policy syntax.</li><li id="EN-US_TOPIC_0000001921215917__en-us_topic_0000001592573753_li546410135389">JSON: Edit JSON policies from scratch or based on an existing policy.</li></ul>
+<p id="EN-US_TOPIC_0000001921215917__en-us_topic_0000001592573753_p82911030103912">For details, see <a href="https://docs.otc.t-systems.com/usermanual/iam/iam_01_0016.html" target="_blank" rel="noopener noreferrer">Creating a Custom Policy</a>. The following section contains examples of common VPN custom policies.</p>
+<div class="section" id="EN-US_TOPIC_0000001921215917__en-us_topic_0000001592573753_section7529733164812"><h4 class="sectiontitle">Example VPN custom policy</h4><ul id="EN-US_TOPIC_0000001921215917__en-us_topic_0000001592573753_ul2504185715494"><li id="EN-US_TOPIC_0000001921215917__en-us_topic_0000001592573753_li5504357164912">Example 1: Grant permission to delete VPN gateways.<pre class="screen" id="EN-US_TOPIC_0000001921215917__en-us_topic_0000001592573753_screen48273211535">{
+    "Version": "1.1",
+    "Statement": [
+        {
+            "Effect": "Allow",
+            "Action": [
+                "vpn:vpnGateways:delete"
+            ]
+        }
+    ]
+}</pre>
+</li><li id="EN-US_TOPIC_0000001921215917__en-us_topic_0000001592573753_li3652938178">Example 2: Deny VPN connection deletion.<p id="EN-US_TOPIC_0000001921215917__en-us_topic_0000001592573753_p1892813119464"><a name="EN-US_TOPIC_0000001921215917__en-us_topic_0000001592573753_li3652938178"></a><a name="en-us_topic_0000001592573753_li3652938178"></a>A policy with only "Deny" permissions must be used together with other policies. If the permissions granted to an IAM user contain both "Allow" and "Deny", the "Deny" permissions take precedence over the "Allow" permissions.</p>
+<p id="EN-US_TOPIC_0000001921215917__en-us_topic_0000001592573753_p17928101124619">The following method can be used if you need to assign permissions of the <strong id="EN-US_TOPIC_0000001921215917__en-us_topic_0000001592573753_b028516309208">VPN FullAccess</strong> policy to a user but also forbid the user from deleting VPN connections. Create a custom policy for denying VPN connection deletion, and assign both policies to the group the user belongs to. Then the user can perform all operations on VPN except deleting VPN connections. The following is an example of a deny policy:</p>
+<pre class="screen" id="EN-US_TOPIC_0000001921215917__en-us_topic_0000001592573753_screen39281011144617">{
+    "Version": "1.1",
+    "Statement": [
+        {
+            "Effect": "Deny",
+            "Action": [
+                "vpn:vpnGateways:delete"
+            ]
+        }
+    ]
+}</pre>
+</li><li id="EN-US_TOPIC_0000001921215917__en-us_topic_0000001592573753_li8475316125413">Example 3: defining multiple actions in a policy<p id="EN-US_TOPIC_0000001921215917__en-us_topic_0000001592573753_p466319313484"><a name="EN-US_TOPIC_0000001921215917__en-us_topic_0000001592573753_li8475316125413"></a><a name="en-us_topic_0000001592573753_li8475316125413"></a>A custom policy can contain the actions of one or multiple services that are of the same type (global or project-level). The following is an example policy containing multiple actions.</p>
+<pre class="screen" id="EN-US_TOPIC_0000001921215917__en-us_topic_0000001592573753_screen46646311485">{
+    "Version": "1.1",
+    "Statement": [
+        {
+            "Effect": "Allow",
+            "Action": [
+                "vpn:vpnGateways:create",
+                "vpn:vpnConnections:create",
+                "vpn:customerGateways:create"
+            ]
+        },
+        {
+            "Effect": "Deny",
+            "Action": [
+                "vpn:vpnGateways:delete",
+                "vpn:vpnConnections:delete",
+                "vpn:customerGateways:create"
+            ]
+        },
+        {
+            "Effect": "Allow",
+            "Action": [
+                "vpc:vpcs:list",
+                "vpc:subnets:get"
+            ]
+        }
+    ]
+}</pre>
+</li></ul>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_04_1200.html">Permissions Management</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_08_0000.html b/docs/vpn/umn/vpn_08_0000.html
new file mode 100644
index 00000000..2ad0a34b
--- /dev/null
+++ b/docs/vpn/umn/vpn_08_0000.html
@@ -0,0 +1,13 @@
+<a name="EN-US_TOPIC_0000001921037529"></a><a name="EN-US_TOPIC_0000001921037529"></a>
+
+<h1 class="topictitle1">FAQs</h1>
+<div id="body1566522558595"></div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="vpn_08_1517.html">Enterprise Edition VPN</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_08_1518.html">Classic VPN</a></strong><br>
+</li>
+</ul>
+</div>
+
diff --git a/docs/vpn/umn/vpn_08_0232.html b/docs/vpn/umn/vpn_08_0232.html
new file mode 100644
index 00000000..4345cdc8
--- /dev/null
+++ b/docs/vpn/umn/vpn_08_0232.html
@@ -0,0 +1,11 @@
+<a name="EN-US_TOPIC_0000001929472298"></a><a name="EN-US_TOPIC_0000001929472298"></a>
+
+<h1 class="topictitle1">Where Can I Add Routes on the VPN Console to Reach the Remote Subnets?</h1>
+<div id="body8662426"><p id="EN-US_TOPIC_0000001929472298__en-us_topic_0000001542333802_p8060118">When a VPN connection is created, routes are automatically delivered to reach the remote subnets.</p>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_08_1518.html">Classic VPN</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_08_0233.html b/docs/vpn/umn/vpn_08_0233.html
new file mode 100644
index 00000000..387dc90f
--- /dev/null
+++ b/docs/vpn/umn/vpn_08_0233.html
@@ -0,0 +1,12 @@
+<a name="EN-US_TOPIC_0000001956631561"></a><a name="EN-US_TOPIC_0000001956631561"></a>
+
+<h1 class="topictitle1">Will I Be Notified If a VPN Connection Is Interrupted?</h1>
+<div id="body8662426"><p class="msonormal" id="EN-US_TOPIC_0000001956631561__en-us_topic_0000001592773757_p4894738101814">The VPN connection status can be monitored. After a VPN connection is created, the VPN service reports the connection status information to Cloud Eye, but does not automatically send alarm notifications to you. To receive notifications, create alarm rules and enable <strong id="EN-US_TOPIC_0000001956631561__en-us_topic_0000001592773757_b4476161662820">Alarm Notification</strong> on the Cloud Eye console.</p>
+<p id="EN-US_TOPIC_0000001956631561__en-us_topic_0000001592773757_p133201343134410">After a VPN connection is created, you can locate the row that contains the VPN connection and choose <strong id="EN-US_TOPIC_0000001956631561__en-us_topic_0000001592773757_b1957521171218">Operation</strong> &gt; <strong id="EN-US_TOPIC_0000001956631561__en-us_topic_0000001592773757_b1057520111126">View Metric</strong> to view the VPN connection status.</p>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_08_1518.html">Classic VPN</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_08_0305.html b/docs/vpn/umn/vpn_08_0305.html
new file mode 100644
index 00000000..ee955214
--- /dev/null
+++ b/docs/vpn/umn/vpn_08_0305.html
@@ -0,0 +1,26 @@
+<a name="EN-US_TOPIC_0000001929312958"></a><a name="EN-US_TOPIC_0000001929312958"></a>
+
+<h1 class="topictitle1">What Are the Differences Between the Application Scenarios and Connection Modes of IPsec and SSL VPNs?</h1>
+<div id="body8662426"><div class="section" id="EN-US_TOPIC_0000001929312958__en-us_topic_0000001592878905_section16622259181815"><h4 class="sectiontitle">Scenarios</h4><p class="msonormal" id="EN-US_TOPIC_0000001929312958__en-us_topic_0000001592878905_p18976171214193">IPsec VPN connects two LANs, such as a branch and its headquarters (or a VPC), or an on-premises data center and a VPC.</p>
+<p class="msonormal" id="EN-US_TOPIC_0000001929312958__en-us_topic_0000001592878905_p397619120193">SSL VPN connects a client to a LAN. For example, the portable computer of an employee on a business trip accesses the internal network of the company.</p>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001929312958__en-us_topic_0000001592878905_section1371082710200"><h4 class="sectiontitle">Connection Modes</h4><p class="msonormal" id="EN-US_TOPIC_0000001929312958__en-us_topic_0000001592878905_p755783612016">IPsec VPN requires fixed gateways, such as firewalls or routers, at both ends. The administrator needs to configure gateways at both ends to complete IPsec VPN negotiation.</p>
+<p class="msonormal" id="EN-US_TOPIC_0000001929312958__en-us_topic_0000001592878905_p16557636152017">SSL VPN needs to install a specified client software on the server, then the server connects to the SSL device through the username and password.</p>
+<p id="EN-US_TOPIC_0000001929312958__en-us_topic_0000001592878905_p65201040182110"><span><img id="EN-US_TOPIC_0000001929312958__en-us_topic_0000001592878905_image1196125417215" src="figure/en-us_image_0000001542174462.png" width="465.5" height="158.295536" title="Click to enlarge" class="imgResize"></span></p>
+<div class="note" id="EN-US_TOPIC_0000001929312958__en-us_topic_0000001592878905_note1311083910224"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="EN-US_TOPIC_0000001929312958__en-us_topic_0000001592878905_p12971850591">Currently, only IPsec VPN is supported; SSL VPN is not supported.</p>
+</div></div>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_08_1518.html">Classic VPN</a></div>
+</div>
+</div>
+
+
+<script language="JavaScript">
+<!--
+image_size('.imgResize');
+var msg_imageMax = "view original image";
+var msg_imageClose = "close";
+//--></script>
\ No newline at end of file
diff --git a/docs/vpn/umn/vpn_08_0312.html b/docs/vpn/umn/vpn_08_0312.html
new file mode 100644
index 00000000..e7c39c97
--- /dev/null
+++ b/docs/vpn/umn/vpn_08_0312.html
@@ -0,0 +1,14 @@
+<a name="EN-US_TOPIC_0000001956631565"></a><a name="EN-US_TOPIC_0000001956631565"></a>
+
+<h1 class="topictitle1">How Do I Replace a Direct Connect Connection with a VPN?</h1>
+<div id="body8662426"><ol id="EN-US_TOPIC_0000001956631565__en-us_topic_0000001592879181_ol12273192712358"><li class="msonormal" id="EN-US_TOPIC_0000001956631565__en-us_topic_0000001592879181_li427312783511">Ensure that the on-premises gateway supports IPsec VPN.</li><li class="msonormal" id="EN-US_TOPIC_0000001956631565__en-us_topic_0000001592879181_li112751927153518">Create a VPN gateway and a VPN connection on the cloud. Select the VPC to which the Direct Connect connection uses for the VPN gateway.<div class="notice" id="EN-US_TOPIC_0000001956631565__en-us_topic_0000001592879181_note24161634103520"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p class="msonormal" id="EN-US_TOPIC_0000001956631565__en-us_topic_0000001592879181_en-us_topic_0187565716_p61128913">When creating a VPN connection, configure its remote subnet as follows to avoid routing conflicts.</p>
+<ul id="EN-US_TOPIC_0000001956631565__en-us_topic_0000001592879181_ul1501251183511"><li class="msonormal" id="EN-US_TOPIC_0000001956631565__en-us_topic_0000001592879181_li450165115359">Delete the virtual interface of the Direct Connect connection first and then configure the VPN connection.</li><li class="msonormal" id="EN-US_TOPIC_0000001956631565__en-us_topic_0000001592879181_li17501185163518">Divide the remote subnet into two subnets and configure the VPN connection. After the Direct Connect connection is deleted, configure the VPN connection again.</li></ul>
+</div></div>
+</li></ol>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_08_1518.html">Classic VPN</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_08_0318.html b/docs/vpn/umn/vpn_08_0318.html
new file mode 100644
index 00000000..781f3ffd
--- /dev/null
+++ b/docs/vpn/umn/vpn_08_0318.html
@@ -0,0 +1,13 @@
+<a name="EN-US_TOPIC_0000001956471789"></a><a name="EN-US_TOPIC_0000001956471789"></a>
+
+<h1 class="topictitle1">How Do I Access ECSs at Home When My Enterprise Network Has Been Connected to the Cloud Through a VPN?</h1>
+<div id="body8662426"><p id="EN-US_TOPIC_0000001956471789__en-us_topic_0000001542493926_p1924444143117">A VPN connects a VPC on the cloud and an on-premises local area network (LAN).</p>
+<p id="EN-US_TOPIC_0000001956471789__en-us_topic_0000001542493926_p37151026163116">The home network is not a part of the LAN of your enterprise and cannot be directly connected to the VPC on the cloud.</p>
+<p id="EN-US_TOPIC_0000001956471789__en-us_topic_0000001542493926_p117151726103119">If your host at home needs to access VPC resources on the cloud, your host can directly access the EIP of the cloud service or connect to the LAN of your enterprise through SSL VPN (if your enterprise supports SSL access) and then access VPC resources on the cloud through the LAN.</p>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_08_1518.html">Classic VPN</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_08_0323.html b/docs/vpn/umn/vpn_08_0323.html
new file mode 100644
index 00000000..c50b8748
--- /dev/null
+++ b/docs/vpn/umn/vpn_08_0323.html
@@ -0,0 +1,12 @@
+<a name="EN-US_TOPIC_0000001956471785"></a><a name="EN-US_TOPIC_0000001956471785"></a>
+
+<h1 class="topictitle1">How Many VPN Connections Do I Need to Connect to Multiple On-premises Servers?</h1>
+<div id="body8662426"><p class="msonormal" id="EN-US_TOPIC_0000001956471785__en-us_topic_0000001542174358_en-us_topic_0187565707_p20026916">VPN uses the IPsec technology to connect your on-premises data center to a VPC on the cloud. As such, the number of VPN connections is related to the number of data centers where the servers to be connected to the cloud are located, but not to the number of servers.</p>
+<p class="msonormal" id="EN-US_TOPIC_0000001956471785__en-us_topic_0000001542174358_en-us_topic_0187565707_p46024516">In most cases, one on-premises data center has one public gateway. All servers connect to the Internet through this gateway. Therefore, you only need to configure one VPN connection to allow communications between the VPC and your on-premises data center.</p>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_08_1518.html">Classic VPN</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_08_0325.html b/docs/vpn/umn/vpn_08_0325.html
new file mode 100644
index 00000000..cf295f1b
--- /dev/null
+++ b/docs/vpn/umn/vpn_08_0325.html
@@ -0,0 +1,14 @@
+<a name="EN-US_TOPIC_0000001929472302"></a><a name="EN-US_TOPIC_0000001929472302"></a>
+
+<h1 class="topictitle1">What Are the Impacts of a VPN on an On-premises Network? What Are the Changes to the Route for Accessing an ECS?</h1>
+<div id="body8662426"><p class="msonormal" id="EN-US_TOPIC_0000001929472302__en-us_topic_0000001542014934_p63901157">When you configure a VPN, perform the following operations on the on-premises gateway:</p>
+<ol id="EN-US_TOPIC_0000001929472302__en-us_topic_0000001542014934_ol38239504"><li id="EN-US_TOPIC_0000001929472302__en-us_topic_0000001542014934_li263889">Configure IKE and IPsec policies.</li><li id="EN-US_TOPIC_0000001929472302__en-us_topic_0000001542014934_li2375008">Specify the to-be-protected traffic (firewall).</li><li id="EN-US_TOPIC_0000001929472302__en-us_topic_0000001542014934_li21375072">Check the route configuration on the gateway to ensure that traffic destined for a VPC can be routed to the correct outbound interface (interface having an IPsec policy bound).</li></ol>
+<p class="msonormal" id="EN-US_TOPIC_0000001929472302__en-us_topic_0000001542014934_p8611223">After the VPN configuration is complete, only the traffic matching the ACL rules enters the VPN tunnel.</p>
+<p class="msonormal" id="EN-US_TOPIC_0000001929472302__en-us_topic_0000001542014934_p10392145">For example, before a VPN is created, on-premises users access the ECS through the EIP bound to the ECS. After a VPN is created, data flows matching the firewall rules access the private IP address of the ECS through the VPN tunnel.</p>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_08_1518.html">Classic VPN</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_08_0614.html b/docs/vpn/umn/vpn_08_0614.html
new file mode 100644
index 00000000..79d9dcce
--- /dev/null
+++ b/docs/vpn/umn/vpn_08_0614.html
@@ -0,0 +1,14 @@
+<a name="EN-US_TOPIC_0000001929472306"></a><a name="EN-US_TOPIC_0000001929472306"></a>
+
+<h1 class="topictitle1">How Do I Configure DPD for Interconnection with the Cloud?</h1>
+<div id="body8662426"><p id="EN-US_TOPIC_0000001929472306__en-us_topic_0000001542014774_p54067443257">By default, DPD is enabled on the cloud side and cannot be disabled.</p>
+<p id="EN-US_TOPIC_0000001929472306__en-us_topic_0000001542014774_p828183919258">Configure DPD as follows:</p>
+<ul id="EN-US_TOPIC_0000001929472306__en-us_topic_0000001542014774_ul7977101817266"><li id="EN-US_TOPIC_0000001929472306__en-us_topic_0000001542014774_li897715183266">DPD-type: on-demand</li><li id="EN-US_TOPIC_0000001929472306__en-us_topic_0000001542014774_li3977191892611">DPD idle-time: 30s</li><li id="EN-US_TOPIC_0000001929472306__en-us_topic_0000001542014774_li17978131810268">DPD retransmit-interval: 15s</li><li id="EN-US_TOPIC_0000001929472306__en-us_topic_0000001542014774_li10978141882617">DPD retry-limit: 3</li><li id="EN-US_TOPIC_0000001929472306__en-us_topic_0000001542014774_li20978191862615">DPD msg: seq-hash-notify</li></ul>
+<p id="EN-US_TOPIC_0000001929472306__en-us_topic_0000001542014774_p728539172515">The <strong id="EN-US_TOPIC_0000001929472306__en-us_topic_0000001542014774_b1689582720516">DPD msg</strong> format at both ends of the VPN connection must be the same, but the DPD type, idle time, retransmission interval, and retry limit can be different.</p>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_08_1518.html">Classic VPN</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_08_0713.html b/docs/vpn/umn/vpn_08_0713.html
new file mode 100644
index 00000000..8705867c
--- /dev/null
+++ b/docs/vpn/umn/vpn_08_0713.html
@@ -0,0 +1,13 @@
+<a name="EN-US_TOPIC_0000001986263977"></a><a name="EN-US_TOPIC_0000001986263977"></a>
+
+<h1 class="topictitle1">Why Is Not Connected Displayed as the Status for a Successfully Created VPN Connection?</h1>
+<div id="body8662426"><p id="EN-US_TOPIC_0000001986263977__en-us_topic_0000001542334034_p0635185981512">After a VPN connection is created, its status changes to <strong id="EN-US_TOPIC_0000001986263977__en-us_topic_0000001542334034_b0247089615">Normal</strong> only after servers at both ends of the VPN connection communicate with each other. </p>
+<ul id="EN-US_TOPIC_0000001986263977__en-us_topic_0000001542334034_ul1159112691914"><li id="EN-US_TOPIC_0000001986263977__en-us_topic_0000001542334034_li18128194719236">IKE v1:<p id="EN-US_TOPIC_0000001986263977__en-us_topic_0000001542334034_p9615352312"><a name="EN-US_TOPIC_0000001986263977__en-us_topic_0000001542334034_li18128194719236"></a><a name="en-us_topic_0000001542334034_li18128194719236"></a>If no traffic goes through the VPN connection for a period of time, the VPN connection needs to be renegotiated. The negotiation time depends on the value of <strong id="EN-US_TOPIC_0000001986263977__en-us_topic_0000001542334034_b1987616145446">Lifetime (s)</strong> in the IPsec policy. Generally, <strong id="EN-US_TOPIC_0000001986263977__en-us_topic_0000001542334034_b10801462441">Lifetime (s)</strong> is set to <strong id="EN-US_TOPIC_0000001986263977__en-us_topic_0000001542334034_b481146184410">3600</strong> (1 hour), indicating that the negotiation will be initiated in the fifty-fourth minute. If the negotiation succeeds, the connection remains to the next round of negotiation. If the negotiation fails, the VPN connection status changes to <strong id="EN-US_TOPIC_0000001986263977__en-us_topic_0000001542334034_b2812850184514">Not Connected</strong> within one hour. The connection can be restored only after the two ends of the VPN connection communicate with each other. The disconnection can be avoided by using a network monitoring tool, such as IP SLA, to generate packets.</p>
+</li><li id="EN-US_TOPIC_0000001986263977__en-us_topic_0000001542334034_li859726181919">IKE v2: If no traffic goes through the VPN connection for a period of time, the VPN connection remains in the connected status.</li></ul>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_08_1518.html">Classic VPN</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_08_1501.html b/docs/vpn/umn/vpn_08_1501.html
new file mode 100644
index 00000000..0303a477
--- /dev/null
+++ b/docs/vpn/umn/vpn_08_1501.html
@@ -0,0 +1,17 @@
+<a name="EN-US_TOPIC_0000001979423939"></a><a name="EN-US_TOPIC_0000001979423939"></a>
+
+<h1 class="topictitle1">What Is the VPN Quota?</h1>
+<div id="body8662426"><div class="section" id="EN-US_TOPIC_0000001979423939__en-us_topic_0000001592573881_en-us_topic_0187565792_section839511291410"><h4 class="sectiontitle">What Is a Quota?</h4><p id="EN-US_TOPIC_0000001979423939__en-us_topic_0000001592573881_en-us_topic_0040259342_p1415804616467">Quotas can limit the number or amount of resources available to users, such as the maximum number of ECSs or EVS disks that can be created.</p>
+<p id="EN-US_TOPIC_0000001979423939__en-us_topic_0000001592573881_en-us_topic_0040259342_p547171214515">If the existing resource quota cannot meet your service requirements, you can apply for a higher quota.</p>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001979423939__en-us_topic_0000001592573881_section118941847164019"><h4 class="sectiontitle">How Do I View My Quota?</h4><ol id="EN-US_TOPIC_0000001979423939__en-us_topic_0000001592573881_en-us_topic_0040259342_ol1222775692215"><li id="EN-US_TOPIC_0000001979423939__en-us_topic_0000001592573881_en-us_topic_0040259342_li5648642910048">Log in to the management console.</li><li id="EN-US_TOPIC_0000001979423939__en-us_topic_0000001592573881_en-us_topic_0040259342_li464234814566">Click <span><img id="EN-US_TOPIC_0000001979423939__en-us_topic_0000001592573881_en-us_topic_0040259342_en-us_topic_0014250631_en-us_topic_0014250631_image1733511156361" src="figure/en-us_image_0000001542334238.png"></span> in the upper left corner and select the desired region and project.</li><li id="EN-US_TOPIC_0000001979423939__en-us_topic_0000001592573881_en-us_topic_0040259342_li3861581410048">Click <span><img id="EN-US_TOPIC_0000001979423939__en-us_topic_0000001592573881_en-us_topic_0040259342_image99377514309" src="figure/en-us_image_0000001592574041.png"></span> (the <strong id="EN-US_TOPIC_0000001979423939__en-us_topic_0000001592573881_b18322679596">My Quotas</strong> icon) in the upper right corner.<p id="EN-US_TOPIC_0000001979423939__en-us_topic_0000001592573881_en-us_topic_0040259342_p1748884433119">The <strong id="EN-US_TOPIC_0000001979423939__en-us_topic_0000001592573881_b106648075919">Service Quota</strong> page is displayed.</p>
+</li><li id="EN-US_TOPIC_0000001979423939__en-us_topic_0000001592573881_en-us_topic_0040259342_li1579070183211">View the used and total quota of each type of resources on the displayed page.<p id="EN-US_TOPIC_0000001979423939__en-us_topic_0000001592573881_en-us_topic_0040259342_p97891720193417"><a name="EN-US_TOPIC_0000001979423939__en-us_topic_0000001592573881_en-us_topic_0040259342_li1579070183211"></a><a name="en-us_topic_0000001592573881_en-us_topic_0040259342_li1579070183211"></a>If a quota cannot meet service requirements, apply for a higher quota.</p>
+</li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_08_1518.html">Classic VPN</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_08_1503.html b/docs/vpn/umn/vpn_08_1503.html
new file mode 100644
index 00000000..1678d2f2
--- /dev/null
+++ b/docs/vpn/umn/vpn_08_1503.html
@@ -0,0 +1,21 @@
+<a name="EN-US_TOPIC_0000001964846401"></a><a name="EN-US_TOPIC_0000001964846401"></a>
+
+<h1 class="topictitle1">Security</h1>
+<div id="body0000001964846401"></div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="vpn_01_0020.html">Identity Authentication and Access Control</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_01_0021.html">Data Protection Technologies</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_01_0022.html">Audit and Logs</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_01_0023.html">Service Resilience</a></strong><br>
+</li>
+</ul>
+
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_01_0000.html">Overview</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_08_1504.html b/docs/vpn/umn/vpn_08_1504.html
new file mode 100644
index 00000000..1b1b8edc
--- /dev/null
+++ b/docs/vpn/umn/vpn_08_1504.html
@@ -0,0 +1,11 @@
+<a name="EN-US_TOPIC_0000001937807198"></a><a name="EN-US_TOPIC_0000001937807198"></a>
+
+<h1 class="topictitle1">SSL VPN</h1>
+<div id="body8662426"><p id="EN-US_TOPIC_0000001937807198__en-us_topic_0000001745897453_p8060118">SSL VPN is a virtual private network technology using the SSL protocol. It allows remote users to securely access enterprise intranet resources.</p>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_01_0034.html">Basic Concepts</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_08_1505.html b/docs/vpn/umn/vpn_08_1505.html
new file mode 100644
index 00000000..91a263ac
--- /dev/null
+++ b/docs/vpn/umn/vpn_08_1505.html
@@ -0,0 +1,27 @@
+<a name="EN-US_TOPIC_0000001920890921"></a><a name="EN-US_TOPIC_0000001920890921"></a>
+
+<h1 class="topictitle1">Enterprise Edition VPN</h1>
+<div id="body0000001920890921"></div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="vpn_qs_00003.html">Overview</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_03_0204.html">Step 1: Creating a VPN Gateway</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_qs_00007.html">Step 2: Creating a Customer Gateway</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_qs_00008.html">Step 3: Creating VPN Connection 1</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_03_0335.html">Step 4: Creating VPN Connection 2</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_03_0336.html">Step 5: Configuring the Customer Gateway Device</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_03_0337.html">Step 6: Verifying Network Connectivity</a></strong><br>
+</li>
+</ul>
+
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_03_0000.html">Getting Started</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_08_1507.html b/docs/vpn/umn/vpn_08_1507.html
new file mode 100644
index 00000000..3929f646
--- /dev/null
+++ b/docs/vpn/umn/vpn_08_1507.html
@@ -0,0 +1,15 @@
+<a name="EN-US_TOPIC_0000001875091418"></a><a name="EN-US_TOPIC_0000001875091418"></a>
+
+<h1 class="topictitle1">Classic VPN</h1>
+<div id="body0000001875091418"></div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="vpn_03_0004.html">Creating a VPN</a></strong><br>
+</li>
+</ul>
+
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_03_0000.html">Getting Started</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_08_1509.html b/docs/vpn/umn/vpn_08_1509.html
new file mode 100644
index 00000000..18204570
--- /dev/null
+++ b/docs/vpn/umn/vpn_08_1509.html
@@ -0,0 +1,19 @@
+<a name="EN-US_TOPIC_0000001921050589"></a><a name="EN-US_TOPIC_0000001921050589"></a>
+
+<h1 class="topictitle1">Enterprise Edition VPN</h1>
+<div id="body0000001921050589"></div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="vpn_ug_00001.html">Enterprise Edition VPN Gateway Management</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_ug_00008.html">Customer Gateway Management of Enterprise Edition VPN</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_ug_00012.html">Enterprise Edition VPN Connection Management</a></strong><br>
+</li>
+</ul>
+
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_04_0000.html">Management</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_08_1511.html b/docs/vpn/umn/vpn_08_1511.html
new file mode 100644
index 00000000..74666bc5
--- /dev/null
+++ b/docs/vpn/umn/vpn_08_1511.html
@@ -0,0 +1,15 @@
+<a name="EN-US_TOPIC_0000001874931578"></a><a name="EN-US_TOPIC_0000001874931578"></a>
+
+<h1 class="topictitle1">Classic VPN</h1>
+<div id="body0000001874931578"></div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="vpn_04_0470.html">Classic VPN Management</a></strong><br>
+</li>
+</ul>
+
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_04_0000.html">Management</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_08_1513.html b/docs/vpn/umn/vpn_08_1513.html
new file mode 100644
index 00000000..5a95765a
--- /dev/null
+++ b/docs/vpn/umn/vpn_08_1513.html
@@ -0,0 +1,19 @@
+<a name="EN-US_TOPIC_0000001917855174"></a><a name="EN-US_TOPIC_0000001917855174"></a>
+
+<h1 class="topictitle1">Tag Management</h1>
+<div id="body8662426"></div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="vpn_08_1514.html">Scenario</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_08_1515.html">Searching for Resources by Tag</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_08_1516.html">Managing Tags</a></strong><br>
+</li>
+</ul>
+
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_04_0000.html">Management</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_08_1514.html b/docs/vpn/umn/vpn_08_1514.html
new file mode 100644
index 00000000..572bdfa4
--- /dev/null
+++ b/docs/vpn/umn/vpn_08_1514.html
@@ -0,0 +1,38 @@
+<a name="EN-US_TOPIC_0000001917695266"></a><a name="EN-US_TOPIC_0000001917695266"></a>
+
+<h1 class="topictitle1">Scenario</h1>
+<div id="body8662426"><p id="EN-US_TOPIC_0000001917695266__en-us_topic_0000001936159521_en-us_topic_0000001591737181_en-us_topic_0013859511_p9885431181319">VPN tags are used to identify VPN resources, facilitating VPN resource identification and management. You can add tags for a VPN resource when you create the VPN resource. Alternatively, you add tags for an existing VPN resource on the resource details page. A maximum of 20 tags can be added for each VPN resource.</p>
+<p id="EN-US_TOPIC_0000001917695266__en-us_topic_0000001936159521_en-us_topic_0000001591737181_en-us_topic_0013859511_p5741757113359">A tag consists of a key and a value. <a href="#EN-US_TOPIC_0000001917695266__en-us_topic_0000001936159521_en-us_topic_0000001591737181_en-us_topic_0013859511_table1794599823119">Table 1</a> describes the requirements on the keys and values of VPN tags.</p>
+
+<div class="tablenoborder"><a name="EN-US_TOPIC_0000001917695266__en-us_topic_0000001936159521_en-us_topic_0000001591737181_en-us_topic_0013859511_table1794599823119"></a><a name="en-us_topic_0000001936159521_en-us_topic_0000001591737181_en-us_topic_0013859511_table1794599823119"></a><table cellpadding="4" cellspacing="0" summary="" id="EN-US_TOPIC_0000001917695266__en-us_topic_0000001936159521_en-us_topic_0000001591737181_en-us_topic_0013859511_table1794599823119" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Requirements on the keys and values of VPN tags</caption><thead align="left"><tr id="EN-US_TOPIC_0000001917695266__en-us_topic_0000001936159521_en-us_topic_0000001591737181_en-us_topic_0013859511_row2997812223119"><th align="left" class="cellrowborder" valign="top" width="18.54%" id="mcps1.3.3.2.4.1.1"><p id="EN-US_TOPIC_0000001917695266__en-us_topic_0000001936159521_en-us_topic_0000001591737181_en-us_topic_0013859511_p4367076523119">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="53.39%" id="mcps1.3.3.2.4.1.2"><p id="EN-US_TOPIC_0000001917695266__en-us_topic_0000001936159521_en-us_topic_0000001591737181_en-us_topic_0013859511_p4767111023119">Requirement</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="28.07%" id="mcps1.3.3.2.4.1.3"><p id="EN-US_TOPIC_0000001917695266__en-us_topic_0000001936159521_en-us_topic_0000001591737181_en-us_topic_0013859511_p3615470723119">Example Value</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="EN-US_TOPIC_0000001917695266__en-us_topic_0000001936159521_en-us_topic_0000001591737181_en-us_topic_0013859511_row5695691323119"><td class="cellrowborder" valign="top" width="18.54%" headers="mcps1.3.3.2.4.1.1 "><p id="EN-US_TOPIC_0000001917695266__en-us_topic_0000001936159521_en-us_topic_0000001591737181_en-us_topic_0013859511_p5010724023119">Key</p>
+</td>
+<td class="cellrowborder" valign="top" width="53.39%" headers="mcps1.3.3.2.4.1.2 "><ul id="EN-US_TOPIC_0000001917695266__en-us_topic_0000001936159521_en-us_topic_0000001591737181_ub2cf5f68e02742d49e3f8d80289eab77"><li id="EN-US_TOPIC_0000001917695266__en-us_topic_0000001936159521_en-us_topic_0000001591737181_l69b087a6e844481d84cf8668fe7ef490">Cannot be left blank.</li><li id="EN-US_TOPIC_0000001917695266__en-us_topic_0000001936159521_en-us_topic_0000001591737181_l1c4fa8e37999443a95189f79a4f5336a">Must be unique for the same VPN.</li><li id="EN-US_TOPIC_0000001917695266__en-us_topic_0000001936159521_en-us_topic_0000001591737181_l1e143053ab1847cb8781edb26e58e787">Can contain a maximum of 128 characters.</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="28.07%" headers="mcps1.3.3.2.4.1.3 "><p id="EN-US_TOPIC_0000001917695266__en-us_topic_0000001936159521_en-us_topic_0000001591737181_en-us_topic_0013859511_p5438834323119">vpn_key1</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001917695266__en-us_topic_0000001936159521_en-us_topic_0000001591737181_en-us_topic_0013859511_row1973304523119"><td class="cellrowborder" valign="top" width="18.54%" headers="mcps1.3.3.2.4.1.1 "><p id="EN-US_TOPIC_0000001917695266__en-us_topic_0000001936159521_en-us_topic_0000001591737181_en-us_topic_0013859511_p5487280123119">Value</p>
+</td>
+<td class="cellrowborder" valign="top" width="53.39%" headers="mcps1.3.3.2.4.1.2 "><ul id="EN-US_TOPIC_0000001917695266__en-us_topic_0000001936159521_en-us_topic_0000001591737181_u463eb9034f3d456b81073b15ba62f102"><li id="EN-US_TOPIC_0000001917695266__en-us_topic_0000001936159521_en-us_topic_0000001591737181_l4128d1ac8ff244d19539bdca4eedf161">Can contain a maximum of 255 characters.</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="28.07%" headers="mcps1.3.3.2.4.1.3 "><p id="EN-US_TOPIC_0000001917695266__en-us_topic_0000001936159521_en-us_topic_0000001591737181_en-us_topic_0013859511_p4850087723119">vpn-01</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_08_1513.html">Tag Management</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_08_1515.html b/docs/vpn/umn/vpn_08_1515.html
new file mode 100644
index 00000000..604260c9
--- /dev/null
+++ b/docs/vpn/umn/vpn_08_1515.html
@@ -0,0 +1,35 @@
+<a name="EN-US_TOPIC_0000001947814261"></a><a name="EN-US_TOPIC_0000001947814261"></a>
+
+<h1 class="topictitle1">Searching for Resources by Tag</h1>
+<div id="body8662426"><div class="section" id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_section11654115195716"><h4 class="sectiontitle">Context</h4><p id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_p102691672586">You can search for VPN gateways, customer gateways, and VPN connections based on the tag keys and values that have been added for these VPN resources.</p>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_en-us_topic_0000001591737181_section4374728222113"><h4 class="sectiontitle">Procedure</h4><p id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_p3881132111183"><strong id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_b9551144114519">Searching for Enterprise Edition VPN gateways by tag</strong></p>
+<ol id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_ol5401757161516"><li id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_li940155712157"><span id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_ph1140165716157">Log in to the management console.</span></li><li id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_li1040165721520"><span id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_ph44011957181515">Click <span><img id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_en-us_topic_0000001591897601_image66709190" src="figure/en-us_image_0000001628070572.png" width="19.950000000000003" height="19.950000000000003" title="Click to enlarge" class="imgResize"></span> in the upper left corner and select the desired region and project.</span></li><li id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_li8401125781512"><span id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_ph740115713155">Click <span><img id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_en-us_topic_0000001591897601_image15446151185815" src="figure/en-us_image_0000001923096425.png"></span> in the upper left corner of the page, and choose <span class="menucascade" id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_en-us_topic_0000001591897601_menucascade124471851165812"><b><span class="uicontrol" id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_en-us_topic_0000001591897601_uicontrol144755165811">Network</span></b> &gt; <b><span class="uicontrol" id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_en-us_topic_0000001591897601_uicontrol644725116587">Virtual Private Network</span></b></span>.</span></li><li id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_li3401165710151"><span id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_ph1740105715157">In the navigation pane on the left, choose <span class="menucascade" id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_en-us_topic_0000001591897601_menucascade326450115820"><b><span class="uicontrol" id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_en-us_topic_0000001591897601_uicontrol25222024174318">Virtual Private Network</span></b> &gt; <b><span class="uicontrol" id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_en-us_topic_0000001591897601_uicontrol6523132419431">Enterprise – VPN Gateways</span></b></span>.</span></li><li id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_li116614181561">Click in the text box for selecting a property or entering a keyword, choose a tag key under <strong id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_b136214559017">Resource Tag</strong>, and select a tag value.<div class="p" id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_p1657181841710">The system displays the VPN gateways that match the selected tag key and value.<ul id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_ul8251903259"><li id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_li2025111016255">You can only select existing keys and values from the drop-down list.</li><li id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_li72511803251">You can select a maximum of 20 tags to search for VPN resources. If you select multiple tags, the relationship between them is AND.</li><li id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_li10293164820581">You can use tags together with other types of filter criteria. The relationship between them is AND.</li></ul>
+</div>
+</li></ol>
+<p id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_p45325620252"><strong id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_b1842124621216">Searching for customer gateways of Enterprise Edition VPN by tag</strong></p>
+<ol id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_ol11994513201816"><li id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_li9994121311818"><span id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_ph1599461318185">Log in to the management console.</span></li><li id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_li599481381817"><span id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_ph29943133182">Click <span><img id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_en-us_topic_0000001591897601_image66709190_1" src="figure/en-us_image_0000001628070572.png" width="19.950000000000003" height="19.950000000000003" title="Click to enlarge" class="imgResize"></span> in the upper left corner and select the desired region and project.</span></li><li id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_li37858561186"><span id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_ph197847569181">Click <span><img id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_en-us_topic_0000001591897601_image15446151185815_1" src="figure/en-us_image_0000001923096425.png"></span> in the upper left corner of the page, and choose <span class="menucascade" id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_en-us_topic_0000001591897601_menucascade124471851165812_1"><b><span class="uicontrol" id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_en-us_topic_0000001591897601_uicontrol144755165811_1">Network</span></b> &gt; <b><span class="uicontrol" id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_en-us_topic_0000001591897601_uicontrol644725116587_1">Virtual Private Network</span></b></span>.</span></li><li id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_li139942136186">In the navigation pane on the left, choose <strong id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_b192636430534">Virtual Private Network</strong> &gt; <strong id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_b4263134314539">Enterprise – Customer Gateways</strong>.</li><li id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_li109951413121818">Click in the text box for selecting a property or entering a keyword, choose a tag key under <strong id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_b353517353546">Resource Tag</strong>, and select a tag value.<div class="p" id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_p58995239181">The system displays the customer gateways that match the selected tag key and value.<ul id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_ul11569105016267"><li id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_li1156915072610">You can only select existing keys and values from the drop-down list.</li><li id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_li1956945042618">You can select a maximum of 20 tags to search for VPN resources. If you select multiple tags, the relationship between them is AND.</li><li id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_li7776291624">You can use tags together with other types of filter criteria. The relationship between them is AND.</li></ul>
+</div>
+</li></ol>
+<p id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_p3499143052714"><strong id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_b142361513134">Searching for Enterprise Edition VPN connections by tag</strong></p>
+<ol id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_ol518810092018"><li id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_li1318820142019"><span id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_ph6188905207">Log in to the management console.</span></li><li id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_li91881805201"><span id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_ph21882002203">Click <span><img id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_en-us_topic_0000001591897601_image66709190_2" src="figure/en-us_image_0000001628070572.png" width="19.950000000000003" height="19.950000000000003" title="Click to enlarge" class="imgResize"></span> in the upper left corner and select the desired region and project.</span></li><li id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_li118811017208"><span id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_ph61889017207">Click <span><img id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_en-us_topic_0000001591897601_image15446151185815_2" src="figure/en-us_image_0000001923096425.png"></span> in the upper left corner of the page, and choose <span class="menucascade" id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_en-us_topic_0000001591897601_menucascade124471851165812_2"><b><span class="uicontrol" id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_en-us_topic_0000001591897601_uicontrol144755165811_2">Network</span></b> &gt; <b><span class="uicontrol" id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_en-us_topic_0000001591897601_uicontrol644725116587_2">Virtual Private Network</span></b></span>.</span></li><li id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_li918960142017">In the navigation pane on the left, choose <strong id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_b975592611016">Virtual Private Network</strong> &gt; <strong id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_b7755162651012">Enterprise – VPN Connections</strong>.</li><li id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_li111897017207">Click in the text box for selecting a property or entering a keyword, choose a tag key under <strong id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_b1818444595419">Resource Tag</strong>, and select a tag value.<div class="p" id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_p17189901205">The system displays the VPN connections that match the selected tag key and value.<ul id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_ul0499113014272"><li id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_li3499153014279">You can only select existing keys and values from the drop-down list.</li><li id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_li15499173032712">You can select a maximum of 20 tags to search for VPN resources. If you select multiple tags, the relationship between them is AND.</li><li id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_li103804151524">You can use tags together with other types of filter criteria. The relationship between them is AND.</li></ul>
+</div>
+</li></ol>
+<p id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_p192981712173611"><strong id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_b1442216454361">Searching for Classic VPN gateways by tag</strong></p>
+<ol id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_ol18476752143617"><li id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_li15476252143611"><span id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_ph10476752203610">Log in to the management console.</span></li><li id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_li0476185253616"><span id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_ph17476152153614">Click <span><img id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_en-us_topic_0000001591897601_image66709190_3" src="figure/en-us_image_0000001628070572.png" width="19.950000000000003" height="19.950000000000003" title="Click to enlarge" class="imgResize"></span> in the upper left corner and select the desired region and project.</span></li><li id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_li174761252113620">Click <span class="wintitle" id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_wintitle1982518228571"><b>Service List</b></span> and choose <strong id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_b17825102212579">Network</strong> &gt; <strong id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_b7825202285713">Virtual Private Network</strong>.</li><li id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_li589313305437">In the navigation pane on the left, choose <strong id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_b5878183013575">Virtual Private Network</strong> &gt; <strong id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_b19878113015711">Classic</strong>.</li><li id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_li4477352133612">Click <span class="uicontrol" id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_uicontrol11582194619572"><b>Search by Tag</b></span> in the upper right corner, select the desired tag key and value, and click <span class="uicontrol" id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_uicontrol45826465577"><b>Search</b></span>.<ul id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_ul174771528361"><li id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_li747735216361">You can only select existing keys and values from the drop-down list.</li><li id="EN-US_TOPIC_0000001947814261__en-us_topic_0000001894519826_li11477115243618">You can select a maximum of 20 tags to search for VPN resources.</li></ul>
+</li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_08_1513.html">Tag Management</a></div>
+</div>
+</div>
+
+
+<script language="JavaScript">
+<!--
+image_size('.imgResize');
+var msg_imageMax = "view original image";
+var msg_imageClose = "close";
+//--></script>
\ No newline at end of file
diff --git a/docs/vpn/umn/vpn_08_1516.html b/docs/vpn/umn/vpn_08_1516.html
new file mode 100644
index 00000000..28c82f1f
--- /dev/null
+++ b/docs/vpn/umn/vpn_08_1516.html
@@ -0,0 +1,34 @@
+<a name="EN-US_TOPIC_0000001917855182"></a><a name="EN-US_TOPIC_0000001917855182"></a>
+
+<h1 class="topictitle1">Managing Tags</h1>
+<div id="body8662426"><div class="section" id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_section1675011912582"><h4 class="sectiontitle">Context</h4><p id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_p1591851517581">You can add, delete, modify, and view tags of VPN gateways.</p>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_en-us_topic_0000001591737181_section4374728222113"><h4 class="sectiontitle">Procedure</h4><div class="p" id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_p0387154113571"><strong id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_b5387194110574">Managing tags of Enterprise Edition VPN gateways</strong><ol id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_ol4387104115711"><li id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_li63875415571"><span id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_ph1838754175717">Log in to the management console.</span></li><li id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_li123870419577"><span id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_ph1388041105710">Click <span><img id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_en-us_topic_0000001591897601_image66709190" src="figure/en-us_image_0000001628070572.png" width="19.950000000000003" height="19.950000000000003" title="Click to enlarge" class="imgResize"></span> in the upper left corner and select the desired region and project.</span></li><li id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_li0388941165714"><span id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_ph33885413577">Click <span><img id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_en-us_topic_0000001591897601_image15446151185815" src="figure/en-us_image_0000001923096425.png"></span> in the upper left corner of the page, and choose <span class="menucascade" id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_en-us_topic_0000001591897601_menucascade124471851165812"><b><span class="uicontrol" id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_en-us_topic_0000001591897601_uicontrol144755165811">Network</span></b> &gt; <b><span class="uicontrol" id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_en-us_topic_0000001591897601_uicontrol644725116587">Virtual Private Network</span></b></span>.</span></li><li id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_li1138817417573"><span id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_ph17388841115717">In the navigation pane on the left, choose <span class="menucascade" id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_en-us_topic_0000001591897601_menucascade326450115820"><b><span class="uicontrol" id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_en-us_topic_0000001591897601_uicontrol25222024174318">Virtual Private Network</span></b> &gt; <b><span class="uicontrol" id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_en-us_topic_0000001591897601_uicontrol6523132419431">Enterprise – VPN Gateways</span></b></span>.</span></li><li id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_li13388741155717">Click the name of the target VPN gateway. The VPN gateway details page is displayed.</li><li id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_li2388174116574">Click the <strong id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_b16428143431113">Tags</strong> tab, and add, delete, modify, or view tags of the VPN gateway.<ul id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_ul83881241145710"><li id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_li2038834112577">Add a tag.<p id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_p1238834135714"><a name="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_li2038834112577"></a><a name="en-us_topic_0000001894359938_li2038834112577"></a>Click <strong id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_b17498208161214">Add Tag</strong>. In the <strong id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_b18643014121218">Add Tag</strong> dialog box, enter the key and value of a tag to be added, and click <strong id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_b107465299122">OK</strong>.</p>
+</li><li id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_li73881441205714">Modify a tag.<p id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_p18388154135713"><a name="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_li73881441205714"></a><a name="en-us_topic_0000001894359938_li73881441205714"></a>Click <strong id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_b310622619134">Edit</strong> in the <strong id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_b1745610285138">Operation</strong> column of the target tag. In the <strong id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_b207354321314">Edit Tag</strong> dialog box, change the tag value and click <strong id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_b16660951131317">OK</strong>.</p>
+</li><li id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_li6388114116579">Delete a tag.<p id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_p03887413574"><a name="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_li6388114116579"></a><a name="en-us_topic_0000001894359938_li6388114116579"></a>Click <strong id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_b1463841018157">Delete</strong> in the <strong id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_b970561211519">Operation</strong> column of the target tag. In the <strong id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_b12475173319158">Delete Tag</strong> dialog box, click <strong id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_b1379445111159">OK</strong>.</p>
+</li><li id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_en-us_topic_0000001894359938_en-us_topic_0000001591737181_en-us_topic_0013859511_li52016284185726">View tags.<p id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_en-us_topic_0000001894359938_en-us_topic_0000001591737181_en-us_topic_0013859511_p37814045185728"><a name="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_en-us_topic_0000001894359938_en-us_topic_0000001591737181_en-us_topic_0013859511_li52016284185726"></a><a name="en-us_topic_0000001894359938_en-us_topic_0000001894359938_en-us_topic_0000001591737181_en-us_topic_0013859511_li52016284185726"></a>On the <strong id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_b121411365187">Tags</strong> page, view tag details, including the number of new tags that can be created and the key and value of each existing tag.</p>
+</li></ul>
+</li></ol>
+</div>
+<p id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_p1547614417587"><strong id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_b1442216454361">Managing tags of Classic VPN gateways</strong></p>
+<ol id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_ol18476752143617"><li id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_li15476252143611"><span id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_ph10476752203610">Log in to the management console.</span></li><li id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_li0476185253616"><span id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_ph17476152153614">Click <span><img id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_en-us_topic_0000001591897601_image66709190_1" src="figure/en-us_image_0000001628070572.png" width="19.950000000000003" height="19.950000000000003" title="Click to enlarge" class="imgResize"></span> in the upper left corner and select the desired region and project.</span></li><li id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_li174761252113620">Click <span class="wintitle" id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_wintitle166664770705730"><b>Service List</b></span> and choose <strong id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_b109059512505730">Network</strong> &gt; <strong id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_b167830093705730">Virtual Private Network</strong>.</li><li id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_li589313305437">In the navigation pane on the left, choose <strong id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_b82695990605744">Virtual Private Network</strong> &gt; <strong id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_b6631222705744">Classic</strong>.</li><li id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_li4477352133612">On the <span class="wintitle" id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_wintitle1047013351101"><b>Classic</b></span> page, click the name of the target VPN gateway. The VPN gateway details page is displayed.</li><li id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_li92005103117">Click the <strong id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_b16840125062115">Tags</strong> tab, and add, delete, modify, or view tags of the VPN gateway.<ul id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_ul18200710911"><li id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_li1920021020117">Add a tag.<p id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_p13200181010115"><a name="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_li1920021020117"></a><a name="en-us_topic_0000001894359938_li1920021020117"></a>Click <strong id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_b1853441062218">Add Tag</strong>. In the <strong id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_b1153441092216">Add Tag</strong> dialog box, enter the key and value of a tag to be added, and click <strong id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_b053591032217">OK</strong>.</p>
+</li><li id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_li132008101319">Modify a tag.<p id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_p920010101111"><a name="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_li132008101319"></a><a name="en-us_topic_0000001894359938_li132008101319"></a>Click <strong id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_b8469185415135">Edit</strong> in the <strong id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_b1446995410137">Operation</strong> column of the target tag. In the <strong id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_b1246912542132">Edit Tag</strong> dialog box, change the tag value and click <strong id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_b1946911541134">OK</strong>.</p>
+</li><li id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_li1020018101916">Delete a tag.<p id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_p320014104110"><a name="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_li1020018101916"></a><a name="en-us_topic_0000001894359938_li1020018101916"></a>Click <strong id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_b1254185241514">Delete</strong> in the <strong id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_b825465215156">Operation</strong> column of the target tag. In the <strong id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_b42541252141519">Delete Tag</strong> dialog box, click <strong id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_b13254165221515">OK</strong>.</p>
+</li><li id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_li172001610713">View tags.<p id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_p8200181011110"><a name="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_li172001610713"></a><a name="en-us_topic_0000001894359938_li172001610713"></a>On the <strong id="EN-US_TOPIC_0000001917855182__en-us_topic_0000001894359938_b922113511233">Tags</strong> page, view tag details, including the number of new tags that can be created and the key and value of each existing tag.</p>
+</li></ul>
+</li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_08_1513.html">Tag Management</a></div>
+</div>
+</div>
+
+
+<script language="JavaScript">
+<!--
+image_size('.imgResize');
+var msg_imageMax = "view original image";
+var msg_imageClose = "close";
+//--></script>
\ No newline at end of file
diff --git a/docs/vpn/umn/vpn_08_1517.html b/docs/vpn/umn/vpn_08_1517.html
new file mode 100644
index 00000000..945d4ad9
--- /dev/null
+++ b/docs/vpn/umn/vpn_08_1517.html
@@ -0,0 +1,33 @@
+<a name="EN-US_TOPIC_0000001921050593"></a><a name="EN-US_TOPIC_0000001921050593"></a>
+
+<h1 class="topictitle1">Enterprise Edition VPN</h1>
+<div id="body0000001921050593"></div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="vpn_faq_00031.html">What Are the Typical Scenarios of IPsec VPN?</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_faq_00032.html">What Are a VPC, a VPN Gateway, and a VPN Connection?</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_faq_00036.html">How Do I Plan CIDR Blocks for Access to a VPC Through a VPN Connection?</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_faq_00037.html">Is an IPsec VPN Connection Automatically Established?</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_faq_00040.html">What Are VPN Negotiation Parameters? What Are Their Default Values?</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_faq_00041.html">Are a Username and Password Required for Creating an IPsec VPN Connection?</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_faq_00043.html">What VPN Resources Can Be Monitored?</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_faq_00044.html">Can EIPs Be Used as VPN Gateway IP Addresses?</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_faq_00051.html">Which IKE Version Should I Select When I Create a VPN Connection?</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_faq_00144.html">What Do I Do If a VPN Connection Fails to Be Established?</a></strong><br>
+</li>
+</ul>
+
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_08_0000.html">FAQs</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_08_1518.html b/docs/vpn/umn/vpn_08_1518.html
new file mode 100644
index 00000000..f0bf4500
--- /dev/null
+++ b/docs/vpn/umn/vpn_08_1518.html
@@ -0,0 +1,33 @@
+<a name="EN-US_TOPIC_0000001874931582"></a><a name="EN-US_TOPIC_0000001874931582"></a>
+
+<h1 class="topictitle1">Classic VPN</h1>
+<div id="body0000001874931582"></div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="vpn_08_0305.html">What Are the Differences Between the Application Scenarios and Connection Modes of IPsec and SSL VPNs?</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_08_0232.html">Where Can I Add Routes on the VPN Console to Reach the Remote Subnets?</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_08_0233.html">Will I Be Notified If a VPN Connection Is Interrupted?</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_08_0323.html">How Many VPN Connections Do I Need to Connect to Multiple On-premises Servers?</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_08_0325.html">What Are the Impacts of a VPN on an On-premises Network? What Are the Changes to the Route for Accessing an ECS?</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_08_0312.html">How Do I Replace a Direct Connect Connection with a VPN?</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_08_0318.html">How Do I Access ECSs at Home When My Enterprise Network Has Been Connected to the Cloud Through a VPN?</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_08_0614.html">How Do I Configure DPD for Interconnection with the Cloud?</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_08_1501.html">What Is the VPN Quota?</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_08_0713.html">Why Is Not Connected Displayed as the Status for a Successfully Created VPN Connection?</a></strong><br>
+</li>
+</ul>
+
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_08_0000.html">FAQs</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_08_1519.html b/docs/vpn/umn/vpn_08_1519.html
new file mode 100644
index 00000000..5c559177
--- /dev/null
+++ b/docs/vpn/umn/vpn_08_1519.html
@@ -0,0 +1,121 @@
+<a name="EN-US_TOPIC_0000001874918542"></a><a name="EN-US_TOPIC_0000001874918542"></a>
+
+<h1 class="topictitle1">Change History</h1>
+<div id="body0000001877942589">
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="EN-US_TOPIC_0000001874918542__table1557726816410" frame="border" border="1" rules="all"><thead align="left"><tr id="EN-US_TOPIC_0000001874918542__en-us_topic_0040335187_row2942532716410"><th align="left" class="cellrowborder" valign="top" width="30.330000000000002%" id="mcps1.3.1.1.3.1.1"><p id="EN-US_TOPIC_0000001874918542__en-us_topic_0040335187_p5627845516410"><strong id="EN-US_TOPIC_0000001874918542__b8694115213198">Released On</strong></p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="69.67%" id="mcps1.3.1.1.3.1.2"><p id="EN-US_TOPIC_0000001874918542__en-us_topic_0040335187_p2382284816410"><strong id="EN-US_TOPIC_0000001874918542__b128874530198">Description</strong></p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="EN-US_TOPIC_0000001874918542__row1932119368"><td class="cellrowborder" valign="top" width="30.330000000000002%" headers="mcps1.3.1.1.3.1.1 "><p id="EN-US_TOPIC_0000001874918542__p33218115363">2024-08-23</p>
+</td>
+<td class="cellrowborder" valign="top" width="69.67%" headers="mcps1.3.1.1.3.1.2 "><p id="EN-US_TOPIC_0000001874918542__p2321410364">This release incorporates the following changes:</p>
+<ul id="EN-US_TOPIC_0000001874918542__ul5247154673420"><li id="EN-US_TOPIC_0000001874918542__li192471146183412">Added tables <a href="vpn_ug_00003.html#EN-US_TOPIC_0000001542014738__table135441110101713">Table 1</a>, <a href="vpn_ug_00010.html#EN-US_TOPIC_0000001592773721__table135441110101713">Table 1</a>, and <a href="vpn_ug_00014.html#EN-US_TOPIC_0000001592773861__table135441110101713">Table 2</a> in <a href="vpn_04_0000.html">Management</a>.</li><li id="EN-US_TOPIC_0000001874918542__li1624744620340">Added chapter <a href="vpn_09_0000.html">Administrator Guide</a>.</li></ul>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001874918542__row11627597225"><td class="cellrowborder" valign="top" width="30.330000000000002%" headers="mcps1.3.1.1.3.1.1 "><p id="EN-US_TOPIC_0000001874918542__p1620590225">2024-03-15</p>
+</td>
+<td class="cellrowborder" valign="top" width="69.67%" headers="mcps1.3.1.1.3.1.2 "><p id="EN-US_TOPIC_0000001874918542__p362155911225">This release incorporates the following changes:</p>
+<ul id="EN-US_TOPIC_0000001874918542__ul219210522345"><li id="EN-US_TOPIC_0000001874918542__li161921152153416">Updated description in <a href="vpn_03_0000.html">Getting Started</a> and added <a href="vpn_08_1505.html">Enterprise Edition VPN</a>.</li><li id="EN-US_TOPIC_0000001874918542__li319215293419">Updated section <a href="vpn_04_0000.html">Management</a>, and added sections <a href="vpn_ug_00001.html">Enterprise Edition VPN Gateway Management</a>, <a href="vpn_ug_00008.html">Customer Gateway Management of Enterprise Edition VPN</a>, and <a href="vpn_ug_00012.html">Enterprise Edition VPN Connection Management</a>.</li><li id="EN-US_TOPIC_0000001874918542__li1192452193411">Added FAQs about Enterprise Edition VPN in <a href="vpn_08_0000.html">FAQs</a>.</li></ul>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001874918542__row20908142611812"><td class="cellrowborder" valign="top" width="30.330000000000002%" headers="mcps1.3.1.1.3.1.1 "><p id="EN-US_TOPIC_0000001874918542__p7488135345813">2020-11-01</p>
+</td>
+<td class="cellrowborder" valign="top" width="69.67%" headers="mcps1.3.1.1.3.1.2 "><p id="EN-US_TOPIC_0000001874918542__p1448895375816">This release incorporates the following changes:</p>
+<ul id="EN-US_TOPIC_0000001874918542__ul12256141219111"><li id="EN-US_TOPIC_0000001874918542__li7257151217114">Updated the value range of the pre-shared key in <a href="vpn_03_0004.html#EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_table786224517597">Table 1</a>.</li><li id="EN-US_TOPIC_0000001874918542__li1325711127111">Adjusted the column width of the table in <a href="vpn_03_0004.html">Creating a VPN</a>.</li></ul>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001874918542__row420417298010"><td class="cellrowborder" valign="top" width="30.330000000000002%" headers="mcps1.3.1.1.3.1.1 "><p id="EN-US_TOPIC_0000001874918542__p2020402916017">2019-02-22</p>
+</td>
+<td class="cellrowborder" valign="top" width="69.67%" headers="mcps1.3.1.1.3.1.2 "><p id="EN-US_TOPIC_0000001874918542__p82046291900">This release incorporates the following changes:</p>
+<p id="EN-US_TOPIC_0000001874918542__p577194620016">Updated the region description in <a href="vpn_03_0004.html#EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_table786224517597">Table 1</a>.</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001874918542__row196561942122513"><td class="cellrowborder" valign="top" width="30.330000000000002%" headers="mcps1.3.1.1.3.1.1 "><p id="EN-US_TOPIC_0000001874918542__p1434516321311">2019-02-18</p>
+</td>
+<td class="cellrowborder" valign="top" width="69.67%" headers="mcps1.3.1.1.3.1.2 "><p id="EN-US_TOPIC_0000001874918542__p12658104282513">Accepted in OTC-4.0/Agile-02.2019</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001874918542__row4691171154815"><td class="cellrowborder" valign="top" width="30.330000000000002%" headers="mcps1.3.1.1.3.1.1 "><p id="EN-US_TOPIC_0000001874918542__p96948174814">2019-02-11</p>
+</td>
+<td class="cellrowborder" valign="top" width="69.67%" headers="mcps1.3.1.1.3.1.2 "><p id="EN-US_TOPIC_0000001874918542__p20694111164818">This release incorporates the following changes:</p>
+<ul id="EN-US_TOPIC_0000001874918542__ul20165843204811"><li id="EN-US_TOPIC_0000001874918542__li1016516431485">Deleted content about the firewall version from section <a href="vpn_03_0004.html">Creating a VPN</a>.</li><li id="EN-US_TOPIC_0000001874918542__li579192703714">Added <a href="vpn_04_0002.html#EN-US_TOPIC_0000001542494026__en-us_topic_0013748707_table1573616693718">Table 1</a>.</li><li id="EN-US_TOPIC_0000001874918542__li4166730181818">Adjusted the column width of a table.</li></ul>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001874918542__row37901307542"><td class="cellrowborder" valign="top" width="30.330000000000002%" headers="mcps1.3.1.1.3.1.1 "><p id="EN-US_TOPIC_0000001874918542__p17791802542">2019-02-02</p>
+</td>
+<td class="cellrowborder" valign="top" width="69.67%" headers="mcps1.3.1.1.3.1.2 "><p id="EN-US_TOPIC_0000001874918542__p910710157542">This release incorporates the following changes:</p>
+<ul id="EN-US_TOPIC_0000001874918542__ul31079156542"><li id="EN-US_TOPIC_0000001874918542__li11072154549">Updated a figure in section <a href="vpn_04_0003.html">Modifying a Created VPN</a>.</li><li id="EN-US_TOPIC_0000001874918542__li1410701515540">Updated description in section <a href="vpn_08_0713.html">Why Is Not Connected Displayed as the Status for a Successfully Created VPN Connection?</a>.</li><li id="EN-US_TOPIC_0000001874918542__li144901231774">Added the negotiation mode in <a href="vpn_03_0004.html#EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_table135874264220">Table 2</a>.</li></ul>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001874918542__row69798509303"><td class="cellrowborder" valign="top" width="30.330000000000002%" headers="mcps1.3.1.1.3.1.1 "><p id="EN-US_TOPIC_0000001874918542__p39811150163019">2019-01-30</p>
+</td>
+<td class="cellrowborder" valign="top" width="69.67%" headers="mcps1.3.1.1.3.1.2 "><p id="EN-US_TOPIC_0000001874918542__p79814504306">This release incorporates the following changes:</p>
+<ul id="EN-US_TOPIC_0000001874918542__ul191301696314"><li id="EN-US_TOPIC_0000001874918542__li8249642133611">Sorted the DH algorithms to display in <a href="vpn_03_0004.html#EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_table135874264220">Table 2</a>.</li><li id="EN-US_TOPIC_0000001874918542__li83791137218">Sorted the PFS algorithms to display in <a href="vpn_03_0004.html#EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_table14353932124215">Table 3</a></li><li id="EN-US_TOPIC_0000001874918542__li797918143312">Added description to show how to query the firewall version in step <a href="vpn_03_0004.html#EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_en-us_topic_0013748707_li3027778720388">5</a>.</li></ul>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001874918542__row9392193711916"><td class="cellrowborder" valign="top" width="30.330000000000002%" headers="mcps1.3.1.1.3.1.1 "><p id="EN-US_TOPIC_0000001874918542__p133923372192">2019-01-23</p>
+</td>
+<td class="cellrowborder" valign="top" width="69.67%" headers="mcps1.3.1.1.3.1.2 "><p id="EN-US_TOPIC_0000001874918542__p1139219371191">This release incorporates the following changes:</p>
+<ul id="EN-US_TOPIC_0000001874918542__ul1530712562193"><li id="EN-US_TOPIC_0000001874918542__li183073564198">Changed "VPN Connection" to "VPN".</li><li id="EN-US_TOPIC_0000001874918542__li798431385812">Changed <strong id="EN-US_TOPIC_0000001874918542__b677010304368">OK</strong> to <strong id="EN-US_TOPIC_0000001874918542__b9937820135912">yes</strong> in <a href="vpn_04_0004.html">Deleting a VPN</a>.</li><li id="EN-US_TOPIC_0000001874918542__li8950239142311">Modified the titles of sections <a href="vpn_04_0002.html">Viewing Created VPNs</a> and <a href="vpn_04_0003.html">Modifying a Created VPN</a>.</li><li id="EN-US_TOPIC_0000001874918542__li98103275132">Added the parameter <strong id="EN-US_TOPIC_0000001874918542__b8242715183612">Region</strong> and the option <strong id="EN-US_TOPIC_0000001874918542__b14243101563615">Specify CIDR block</strong> for the parameter <strong id="EN-US_TOPIC_0000001874918542__b1724315152362">Local Subnet</strong> in <a href="vpn_03_0004.html#EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_table786224517597">Table 1</a>.</li><li id="EN-US_TOPIC_0000001874918542__li664014481222">Added description about the DH group security level and description about the supported DH groups when the firewall version is <strong id="EN-US_TOPIC_0000001874918542__b9339112753611">V1</strong> or <strong id="EN-US_TOPIC_0000001874918542__b143396277363">V5</strong> in <a href="vpn_03_0004.html#EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_table135874264220">Table 2</a>.</li><li id="EN-US_TOPIC_0000001874918542__li486105610568">Added description about the PFS group security level and description about the supported DH groups when the firewall version is <strong id="EN-US_TOPIC_0000001874918542__b8180163563620">V1</strong> or <strong id="EN-US_TOPIC_0000001874918542__b1180113511366">V5</strong> in <a href="vpn_03_0004.html#EN-US_TOPIC_0000001963846436__en-us_topic_0000001592573661_table14353932124215">Table 3</a>.</li><li id="EN-US_TOPIC_0000001874918542__li125961415132713">Optimized the FAQ <a href="vpn_faq_00144.html">What Do I Do If a VPN Connection Fails to Be Established?</a>.</li></ul>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001874918542__row146711933205518"><td class="cellrowborder" valign="top" width="30.330000000000002%" headers="mcps1.3.1.1.3.1.1 "><p id="EN-US_TOPIC_0000001874918542__p18692429556">2019-01-02</p>
+</td>
+<td class="cellrowborder" valign="top" width="69.67%" headers="mcps1.3.1.1.3.1.2 "><p id="EN-US_TOPIC_0000001874918542__p108731042165510">This release incorporates the following changes:</p>
+<p id="EN-US_TOPIC_0000001874918542__p1087513422554">Added description about the PFS function to the section for configuring the IPsec policy of a VPN.</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001874918542__row52558314105"><td class="cellrowborder" valign="top" width="30.330000000000002%" headers="mcps1.3.1.1.3.1.1 "><p id="EN-US_TOPIC_0000001874918542__p14255123151013">2018-04-30</p>
+</td>
+<td class="cellrowborder" valign="top" width="69.67%" headers="mcps1.3.1.1.3.1.2 "><p id="EN-US_TOPIC_0000001874918542__p152551231201016">This issue is the eighth official release, which incorporates the following change:</p>
+<p id="EN-US_TOPIC_0000001874918542__p657118441126">Added support for tags configured during VPN creation.</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001874918542__row5666964022548"><td class="cellrowborder" valign="top" width="30.330000000000002%" headers="mcps1.3.1.1.3.1.1 "><p id="EN-US_TOPIC_0000001874918542__p4026471422548">2017-08-30</p>
+</td>
+<td class="cellrowborder" valign="top" width="69.67%" headers="mcps1.3.1.1.3.1.2 "><p id="EN-US_TOPIC_0000001874918542__p4021641722548">This issue is the seventh official release, which incorporates the following change:</p>
+<p id="EN-US_TOPIC_0000001874918542__p27274932225426">Added description about VPC and subnet tags.</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001874918542__row45343299203833"><td class="cellrowborder" valign="top" width="30.330000000000002%" headers="mcps1.3.1.1.3.1.1 "><p id="EN-US_TOPIC_0000001874918542__p5436509203833">2017-07-30</p>
+</td>
+<td class="cellrowborder" valign="top" width="69.67%" headers="mcps1.3.1.1.3.1.2 "><p id="EN-US_TOPIC_0000001874918542__p23399123203849">This issue is the sixth official release, which incorporates the following change:</p>
+<ul id="EN-US_TOPIC_0000001874918542__ul9265521203849"><li id="EN-US_TOPIC_0000001874918542__li16280829203849">Added the best practice.</li><li id="EN-US_TOPIC_0000001874918542__li54153379181253">Added support for the multi-project feature.</li></ul>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001874918542__row4095108113440"><td class="cellrowborder" valign="top" width="30.330000000000002%" headers="mcps1.3.1.1.3.1.1 "><p id="EN-US_TOPIC_0000001874918542__p3301541613440">2017-04-28</p>
+</td>
+<td class="cellrowborder" valign="top" width="69.67%" headers="mcps1.3.1.1.3.1.2 "><p id="EN-US_TOPIC_0000001874918542__p5700302613440">This issue is the fifth official release, which incorporates the following change:</p>
+<ul id="EN-US_TOPIC_0000001874918542__ul4184280213538"><li id="EN-US_TOPIC_0000001874918542__li1709145813538">Changed the maximum number obtained by multiplying the number of local subnets and that of remote subnets of a VPN to 2500.</li></ul>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001874918542__row2837151616028"><td class="cellrowborder" valign="top" width="30.330000000000002%" headers="mcps1.3.1.1.3.1.1 "><p id="EN-US_TOPIC_0000001874918542__p1639149716028">2017-03-30</p>
+</td>
+<td class="cellrowborder" valign="top" width="69.67%" headers="mcps1.3.1.1.3.1.2 "><p id="EN-US_TOPIC_0000001874918542__p2345367616043">This issue is the fourth official release, which incorporates the following change:</p>
+<p id="EN-US_TOPIC_0000001874918542__p1551584516227">Added an example illustrating how to configure the remote device of a VPN.</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001874918542__row22752595155423"><td class="cellrowborder" valign="top" width="30.330000000000002%" headers="mcps1.3.1.1.3.1.1 "><p id="EN-US_TOPIC_0000001874918542__p31020873155423">2017-01-20</p>
+</td>
+<td class="cellrowborder" valign="top" width="69.67%" headers="mcps1.3.1.1.3.1.2 "><p id="EN-US_TOPIC_0000001874918542__p62663228155438">This issue is the third official release, which incorporates the following change:</p>
+<ul id="EN-US_TOPIC_0000001874918542__ul27098142155438"><li id="EN-US_TOPIC_0000001874918542__li42556690155438">Added description about the IPsec VPN created between multiple local gateways in different VPCs and the same remote gateway.</li></ul>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001874918542__row63279125111612"><td class="cellrowborder" valign="top" width="30.330000000000002%" headers="mcps1.3.1.1.3.1.1 "><p id="EN-US_TOPIC_0000001874918542__p25335471111612">2016-12-30</p>
+</td>
+<td class="cellrowborder" valign="top" width="69.67%" headers="mcps1.3.1.1.3.1.2 "><p id="EN-US_TOPIC_0000001874918542__p38907253111612">This issue is the second official release, which incorporates the following change:</p>
+<p id="EN-US_TOPIC_0000001874918542__p11893204142218">Added FAQs.</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001874918542__en-us_topic_0040335187_row5947359616410"><td class="cellrowborder" valign="top" width="30.330000000000002%" headers="mcps1.3.1.1.3.1.1 "><p id="EN-US_TOPIC_0000001874918542__en-us_topic_0040335187_p648803616410">2016-10-19</p>
+</td>
+<td class="cellrowborder" valign="top" width="69.67%" headers="mcps1.3.1.1.3.1.2 "><p id="EN-US_TOPIC_0000001874918542__en-us_topic_0040335187_p1946537916410">This issue is the first official release.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_09_0000.html b/docs/vpn/umn/vpn_09_0000.html
new file mode 100644
index 00000000..c00f5a50
--- /dev/null
+++ b/docs/vpn/umn/vpn_09_0000.html
@@ -0,0 +1,11 @@
+<a name="EN-US_TOPIC_0000001990602386"></a><a name="EN-US_TOPIC_0000001990602386"></a>
+
+<h1 class="topictitle1">Administrator Guide</h1>
+<div id="body0000001990602386"></div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="vpn_admin_0016.html">Configuring VPN When Fortinet FortiGate Firewall Is Used</a></strong><br>
+</li>
+</ul>
+</div>
+
diff --git a/docs/vpn/umn/vpn_admin_0016.html b/docs/vpn/umn/vpn_admin_0016.html
new file mode 100644
index 00000000..4205f9b3
--- /dev/null
+++ b/docs/vpn/umn/vpn_admin_0016.html
@@ -0,0 +1,125 @@
+<a name="EN-US_TOPIC_0000001990762094"></a><a name="EN-US_TOPIC_0000001990762094"></a>
+
+<h1 class="topictitle1">Configuring VPN When Fortinet FortiGate Firewall Is Used</h1>
+<div id="body8662426"><div class="section" id="EN-US_TOPIC_0000001990762094__en-us_topic_0000001542174002_section10800141510"><h4 class="sectiontitle">Scenarios</h4><p id="EN-US_TOPIC_0000001990762094__en-us_topic_0000001542174002_p12202681657">This section describes how to create a VPN gateway and VPN connections to connect your on-premises network to a VPC subnet if your local data center uses FortiGate firewalls as Internet egresses.</p>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001990762094__en-us_topic_0000001542174002_section7511220171718"><h4 class="sectiontitle">Topology Connection</h4><p id="EN-US_TOPIC_0000001990762094__en-us_topic_0000001542174002_p622318398179">As shown in <a href="#EN-US_TOPIC_0000001990762094__en-us_topic_0000001542174002_fig433914417515">Figure 1</a>, the local data center has multiple Internet egresses. The egress 11.11.11.11 is specified to establish a VPN connection with a VPC. The subnet of the local data center is 10.10.0.0/16, and the VPC subnet is 172.16.0.0/24. The IP address of the VPN gateway you created is 22.22.22.22. Create a VPN connection to connect your on-premises network to the VPC subnet.</p>
+<div class="fignone" id="EN-US_TOPIC_0000001990762094__en-us_topic_0000001542174002_fig433914417515"><a name="EN-US_TOPIC_0000001990762094__en-us_topic_0000001542174002_fig433914417515"></a><a name="en-us_topic_0000001542174002_fig433914417515"></a><span class="figcap"><b>Figure 1 </b>Multi-egress on-premises network connecting to a VPC through a VPN</span><br><span><img class="imgResize" id="EN-US_TOPIC_0000001990762094__en-us_topic_0000001542174002_image165471545191" src="figure/en-us_image_0000001970660305.png" width="497.42" height="209.12920000000003" title="Click to enlarge"></span></div>
+<p id="EN-US_TOPIC_0000001990762094__en-us_topic_0000001542174002_p1729154115518"></p>
+<p id="EN-US_TOPIC_0000001990762094__en-us_topic_0000001542174002_p13310141517209">Configure the VPN connection policies based on <a href="#EN-US_TOPIC_0000001990762094__en-us_topic_0000001542174002_fig135126335202">Figure 2</a>.</p>
+<div class="fignone" id="EN-US_TOPIC_0000001990762094__en-us_topic_0000001542174002_fig135126335202"><a name="EN-US_TOPIC_0000001990762094__en-us_topic_0000001542174002_fig135126335202"></a><a name="en-us_topic_0000001542174002_fig135126335202"></a><span class="figcap"><b>Figure 2 </b>Policy details</span><br><span><img id="EN-US_TOPIC_0000001990762094__en-us_topic_0000001542174002_image1251343342010" src="figure/en-us_image_0000001542493866.jpg" height="288.98240000000004" width="497.42" title="Click to enlarge" class="imgResize"></span></div>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001990762094__en-us_topic_0000001542174002_section1783112215285"><h4 class="sectiontitle">Configuration Procedure</h4><p id="EN-US_TOPIC_0000001990762094__en-us_topic_0000001542174002_p1161652392218">This example describes how to configure a VPN if a FortiGate firewall is used in your local data center.</p>
+<ol id="EN-US_TOPIC_0000001990762094__en-us_topic_0000001542174002_ol8748134712223"><li id="EN-US_TOPIC_0000001990762094__en-us_topic_0000001542174002_li1474884718222"><span>Configure IPsec VPN.</span><p><ol type="a" id="EN-US_TOPIC_0000001990762094__en-us_topic_0000001542174002_ol8277120204420"><li id="EN-US_TOPIC_0000001990762094__en-us_topic_0000001542174002_li1196331513442">Create a tunnel.</li><li id="EN-US_TOPIC_0000001990762094__en-us_topic_0000001542174002_li11575131119297">Configure the basic information for the tunnel.</li><li id="EN-US_TOPIC_0000001990762094__en-us_topic_0000001542174002_li19751354303">Configure IKE phase 1 parameters.</li><li id="EN-US_TOPIC_0000001990762094__en-us_topic_0000001542174002_li241511917336">Configure IPsec phase 2 parameters.</li><li id="EN-US_TOPIC_0000001990762094__en-us_topic_0000001542174002_li11135115913374">Configure the IPsec tunnel.</li></ol>
+</p></li><li id="EN-US_TOPIC_0000001990762094__en-us_topic_0000001542174002_li55285110227"><span>Configure routes.</span><p><ol type="a" id="EN-US_TOPIC_0000001990762094__en-us_topic_0000001542174002_ol511851419418"><li id="EN-US_TOPIC_0000001990762094__en-us_topic_0000001542174002_li05431336124115">Add a static route.<p id="EN-US_TOPIC_0000001990762094__en-us_topic_0000001542174002_p286163784116"><a name="EN-US_TOPIC_0000001990762094__en-us_topic_0000001542174002_li05431336124115"></a><a name="en-us_topic_0000001542174002_li05431336124115"></a>Add a route to the cloud VPC subnet 172.16.0.0/24, with the outbound interface being the VPN tunnel interface.</p>
+</li><li id="EN-US_TOPIC_0000001990762094__en-us_topic_0000001542174002_li19626142620418">Configure policy-based routes for multiple egresses.<p id="EN-US_TOPIC_0000001990762094__en-us_topic_0000001542174002_p11490115319415"><a name="EN-US_TOPIC_0000001990762094__en-us_topic_0000001542174002_li19626142620418"></a><a name="en-us_topic_0000001542174002_li19626142620418"></a>Set the source address to the subnet of the local data center and the destination address to the subnet of the VPC. Adjust the configuration sequence of the policy-based routes to ensure that the policy-based routes will be preferentially used.</p>
+</li></ol>
+</p></li><li id="EN-US_TOPIC_0000001990762094__en-us_topic_0000001542174002_li2598459152218"><span>Configure policies and NAT.</span><p><ol type="a" id="EN-US_TOPIC_0000001990762094__en-us_topic_0000001542174002_ol1035235264314"><li id="EN-US_TOPIC_0000001990762094__en-us_topic_0000001542174002_li226711478437">Configure a policy for access to the cloud from the local data center.</li><li id="EN-US_TOPIC_0000001990762094__en-us_topic_0000001542174002_li58717113479">Configure a policy for access to the local data center from the cloud.</li></ol>
+</p></li></ol>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001990762094__en-us_topic_0000001542174002_section42021117112410"><h4 class="sectiontitle">Configuration Verification</h4><ol id="EN-US_TOPIC_0000001990762094__en-us_topic_0000001542174002_ol6882182810401"><li id="EN-US_TOPIC_0000001990762094__en-us_topic_0000001542174002_li34943377431">Check whether the on-premises VPN status is normal.</li></ol><ol start="2" id="EN-US_TOPIC_0000001990762094__en-us_topic_0000001542174002_ol157153154217"><li id="EN-US_TOPIC_0000001990762094__en-us_topic_0000001542174002_li167153104213">Check whether the cloud-based VPN status is normal.</li></ol>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001990762094__en-us_topic_0000001542174002_section9137125714277"><h4 class="sectiontitle">Configuration Using the CLI</h4><ol id="EN-US_TOPIC_0000001990762094__en-us_topic_0000001542174002_ol830624719281"><li id="EN-US_TOPIC_0000001990762094__en-us_topic_0000001542174002_li163061847112812">Configure the physical interface.<pre class="screen" id="EN-US_TOPIC_0000001990762094__en-us_topic_0000001542174002_screen1230624913329">config system interface
+   edit "port1"
+        set vdom "root"
+        set ip 11.11.11.11 255.255.255.0
+        set type physical
+next
+    edit "IPsec"                                  //Tunnel interface configuration
+        set vdom "root"
+        set type tunnel
+        set interface "port1"               //Physical interface bound to the tunnel
+               next                    
+         end</pre>
+</li><li id="EN-US_TOPIC_0000001990762094__en-us_topic_0000001542174002_li1268919397346">Configure interface zones.<pre class="screen" id="EN-US_TOPIC_0000001990762094__en-us_topic_0000001542174002_screen106151749123412">config system zone
+    edit "trust"
+        set intrazone allow
+        set interface "A1"
+    next
+    edit "untrust"
+        set intrazone allow
+        set interface "port1 "
+    next
+end</pre>
+</li><li id="EN-US_TOPIC_0000001990762094__en-us_topic_0000001542174002_li10690153983413">Configure subnets.<pre class="screen" id="EN-US_TOPIC_0000001990762094__en-us_topic_0000001542174002_screen189153554341">config firewall address
+         edit "hw-172.16.0.0/24"
+        set uuid f612b4bc-5487-51e9-e755-08456712a7a0
+        set subnet 172.16.0.0 255.255.255.0              //Subnet on the cloud
+         next
+    edit "local-10.10.0.0/16"
+        set uuid 9f268868-5489-45e9-d409-5abc9a946c0c
+        set subnet 10.10.0.0 255.255.0.0                     //Subnet of the local data center
+    next</pre>
+</li><li id="EN-US_TOPIC_0000001990762094__en-us_topic_0000001542174002_li1169133933413">Configure IPsec.<pre class="screen" id="EN-US_TOPIC_0000001990762094__en-us_topic_0000001542174002_screen158120172352">config vpn IPsec phase1-interface                                        //Phase 1 configuration
+    edit "IPsec"
+        set interface "port1"
+        set nattraversal disable
+        set proposal aes128-sha1
+        set comments "IPsec"
+        set dhgrp 5
+        set remote-gw 22.22.22.22
+        set psksecret ENC dmFyLzF4tRrIjV3T+lSzhQeU2nGEoYKC31NaYRWFJl8krlwNmZX5SfwUi5W5RLJqFu82VYKYsXp5+HZJ13VYY8O2Sn/vruzdLxqu84zbHEIQkTlf5n/63KEru1rRoNiHDTWfh3A3ep3fKJmxf43pQ7OD64t151ol06FMjUBLHgJ1ep9d32Q0F3f3oUxfDQs21Bi9RA==
+    next
+end
+config vpn IPsec phase2-interface                                        //Phase 2 configuration
+    edit "IP-TEST"
+        set phase1name "IPsec "
+        set proposal aes128-sha1
+        set dhgrp 5
+        set keylifeseconds 3600
+        set src-subnet 10.10.0.0 255.255.0.0
+        set dst-subnet 172.16.0.0 255.255.255.0
+    next
+end</pre>
+</li><li id="EN-US_TOPIC_0000001990762094__en-us_topic_0000001542174002_li3383160193610">Configure access policies.<pre class="screen" id="EN-US_TOPIC_0000001990762094__en-us_topic_0000001542174002_screen116312108363">config firewall policy 
+ edit 15                                                  //Policy 15 is used to access the on-premises data center from the cloud. NAT is disabled.
+        set uuid 4f452870-ddb2-51e5-35c9-38a987ebdb6c
+        set srcintf "IPsec"
+        set dstintf "trust"
+        set srcaddr "hw-172.16.0.0/24"
+        set dstaddr "local-10.10.0.0/16"
+        set action accept
+        set schedule "always"
+        set service "ALL"
+        set logtraffic all
+    next
+    edit 29                                           //Policy 29 is used to access the cloud from the on-premises data center. NAT is disabled.
+        set uuid c2d0ec77-5254-51e9-80dc-2813ccf51463
+        set srcintf "trust"
+        set dstintf "IPsec"
+        set srcaddr "local-10.10.0.0/16"
+        set dstaddr "hw-172.16.0.0/24"
+        set action accept
+        set schedule "always"
+        set service "ALL"
+        set logtraffic all
+    next </pre>
+</li><li id="EN-US_TOPIC_0000001990762094__en-us_topic_0000001542174002_li11692143943412">Configure routes.<pre class="screen" id="EN-US_TOPIC_0000001990762094__en-us_topic_0000001542174002_screen1171092453613">config router static
+    edit 24                                 //Route 24 is a static route that is used to access on the cloud.
+        set dst 172.16.0.0 255.255.255.0
+        set gateway 11.11.11.1
+        set distance 10
+        set device "port1"
+config router policy
+edit 2                         //Policy-based route 2 is used to access the cloud from the on-premises data center.
+        set input-device "A1"
+        set src "10.10.00/255.255.0.0"
+        set dst "172.16.0.0/255.255.255.0"
+        set gateway 11.11.11.1
+        set output-device "port1"</pre>
+</li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_09_0000.html">Administrator Guide</a></div>
+</div>
+</div>
+
+
+<script language="JavaScript">
+<!--
+image_size('.imgResize');
+var msg_imageMax = "view original image";
+var msg_imageClose = "close";
+//--></script>
\ No newline at end of file
diff --git a/docs/vpn/umn/vpn_faq_00031.html b/docs/vpn/umn/vpn_faq_00031.html
new file mode 100644
index 00000000..a602a072
--- /dev/null
+++ b/docs/vpn/umn/vpn_faq_00031.html
@@ -0,0 +1,14 @@
+<a name="EN-US_TOPIC_0000001956631549"></a><a name="EN-US_TOPIC_0000001956631549"></a>
+
+<h1 class="topictitle1">What Are the Typical Scenarios of IPsec VPN?</h1>
+<div id="body8662426"><p id="EN-US_TOPIC_0000001956631549__en-us_topic_0000001542174214_p2629411182913">A VPN is a point-to-point connection that implements private network access between two points.</p>
+<ul id="EN-US_TOPIC_0000001956631549__en-us_topic_0000001542174214_ul76761193303"><li id="EN-US_TOPIC_0000001956631549__en-us_topic_0000001542174214_li157231830143016">Applicable scenarios:<ul id="EN-US_TOPIC_0000001956631549__en-us_topic_0000001542174214_ul436636173019"><li id="EN-US_TOPIC_0000001956631549__en-us_topic_0000001542174214_li17676181915308">A VPN is created between different regions to enable cross-region VPC communications.</li><li id="EN-US_TOPIC_0000001956631549__en-us_topic_0000001542174214_li13679111943014">A VPN hub is used together with VPC peering connections and Cloud Connect connections to enable communications between an on-premises data center and multiple VPCs on the cloud.</li><li id="EN-US_TOPIC_0000001956631549__en-us_topic_0000001542174214_li15679141920305">A VPN is used together with source NAT to enable access to specific IP addresses across clouds.</li></ul>
+</li><li id="EN-US_TOPIC_0000001956631549__en-us_topic_0000001542174214_li8285194010301">Not applicable scenarios:<ul id="EN-US_TOPIC_0000001956631549__en-us_topic_0000001542174214_ul2244112383011"><li id="EN-US_TOPIC_0000001956631549__en-us_topic_0000001542174214_li424492311306">A VPN cannot be used to connect VPCs in the same region. It is recommended that you use VPC peering connections to enable communications between VPCs in the same region.</li><li id="EN-US_TOPIC_0000001956631549__en-us_topic_0000001542174214_li122441823153011">A VPN cannot be used between the cloud and your home network that uses PPPoE dial-up.</li><li id="EN-US_TOPIC_0000001956631549__en-us_topic_0000001542174214_li142451123143019">A VPN cannot be used between the cloud and 4G/5G routers.</li><li id="EN-US_TOPIC_0000001956631549__en-us_topic_0000001542174214_li124682383013">A VPN cannot be used between the cloud and your personal terminals.</li></ul>
+</li></ul>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_08_1517.html">Enterprise Edition VPN</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_faq_00032.html b/docs/vpn/umn/vpn_faq_00032.html
new file mode 100644
index 00000000..b3b33616
--- /dev/null
+++ b/docs/vpn/umn/vpn_faq_00032.html
@@ -0,0 +1,15 @@
+<a name="EN-US_TOPIC_0000001956471773"></a><a name="EN-US_TOPIC_0000001956471773"></a>
+
+<h1 class="topictitle1">What Are a VPC, a VPN Gateway, and a VPN Connection?</h1>
+<div id="body8662426"><p id="EN-US_TOPIC_0000001956471773__en-us_topic_0000001542333814_p732813232911">VPC enables you to create private, isolated virtual networks. You can use VPN to securely access ECSs in VPCs.</p>
+<p id="EN-US_TOPIC_0000001956471773__en-us_topic_0000001542333814_p4328832192911">A VPN gateway is an egress gateway for a VPC. With a VPN gateway, you can create a secure, reliable, and encrypted connection between a VPC and an on-premises data center or between two VPCs in different regions.</p>
+<p id="EN-US_TOPIC_0000001956471773__en-us_topic_0000001542333814_p332815329292">A VPN connection is a secure and reliable IPsec encrypted communications tunnel established between a VPN gateway and the customer gateway in an on-premises data center.</p>
+<p id="EN-US_TOPIC_0000001956471773__en-us_topic_0000001542333814_p12552858162613">To create a VPN on the cloud, perform the following operations:</p>
+<ol id="EN-US_TOPIC_0000001956471773__en-us_topic_0000001542333814_ol12299153519279"><li id="EN-US_TOPIC_0000001956471773__en-us_topic_0000001542333814_li1529916356276">Create a VPN gateway. You need to specify the VPC to be connected, as well as the bandwidth and EIPs of the VPN gateway.</li><li id="EN-US_TOPIC_0000001956471773__en-us_topic_0000001542333814_li62992354272">Create a VPN connection. You need to specify the gateway EIP used to connect to the customer gateway, subnets, and negotiation policies.</li></ol>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_08_1517.html">Enterprise Edition VPN</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_faq_00036.html b/docs/vpn/umn/vpn_faq_00036.html
new file mode 100644
index 00000000..62c580a1
--- /dev/null
+++ b/docs/vpn/umn/vpn_faq_00036.html
@@ -0,0 +1,11 @@
+<a name="EN-US_TOPIC_0000001929312950"></a><a name="EN-US_TOPIC_0000001929312950"></a>
+
+<h1 class="topictitle1">How Do I Plan CIDR Blocks for Access to a VPC Through a VPN Connection?</h1>
+<div id="body8662426"><ul id="EN-US_TOPIC_0000001929312950__en-us_topic_0000001592573705_en-us_topic_0000001168738685_ul565561811549"><li id="EN-US_TOPIC_0000001929312950__en-us_topic_0000001592573705_en-us_topic_0000001168738685_li765541810548">The CIDR blocks of a VPC cannot conflict with on-premises CIDR blocks.</li><li id="EN-US_TOPIC_0000001929312950__en-us_topic_0000001592573705_en-us_topic_0000001168738685_li176553183541">To avoid conflicts with cloud service addresses, do not use 127.0.0.0/8, 169.254.0.0/16, 224.0.0.0/3, or 100.64.0.0/10 for your on-premises network.</li></ul>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_08_1517.html">Enterprise Edition VPN</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_faq_00037.html b/docs/vpn/umn/vpn_faq_00037.html
new file mode 100644
index 00000000..78b152fc
--- /dev/null
+++ b/docs/vpn/umn/vpn_faq_00037.html
@@ -0,0 +1,11 @@
+<a name="EN-US_TOPIC_0000001929472290"></a><a name="EN-US_TOPIC_0000001929472290"></a>
+
+<h1 class="topictitle1">Is an IPsec VPN Connection Automatically Established?</h1>
+<div id="body8662426"><p id="EN-US_TOPIC_0000001929472290__en-us_topic_0000001542174010_p220265132310">Yes. An IPsec VPN connection is automatically established.</p>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_08_1517.html">Enterprise Edition VPN</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_faq_00040.html b/docs/vpn/umn/vpn_faq_00040.html
new file mode 100644
index 00000000..38c89e0a
--- /dev/null
+++ b/docs/vpn/umn/vpn_faq_00040.html
@@ -0,0 +1,102 @@
+<a name="EN-US_TOPIC_0000001956631553"></a><a name="EN-US_TOPIC_0000001956631553"></a>
+
+<h1 class="topictitle1">What Are VPN Negotiation Parameters? What Are Their Default Values?</h1>
+<div id="body8662426">
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_en-us_topic_0187565660_table6757141283818" frame="border" border="1" rules="all"><caption><b>Table 1 </b>VPN negotiation parameters</caption><thead align="left"><tr id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_en-us_topic_0187565660_row1289211210381"><th align="left" class="cellrowborder" valign="top" width="25%" id="mcps1.3.1.2.4.1.1"><p id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_en-us_topic_0187565660_p12892151215380">Protocol</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="25%" id="mcps1.3.1.2.4.1.2"><p id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_en-us_topic_0187565660_p1389281293813">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="50%" id="mcps1.3.1.2.4.1.3"><p id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_en-us_topic_0187565660_p389251233813">Value</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_en-us_topic_0187565660_row289251213814"><td class="cellrowborder" rowspan="8" valign="top" width="25%" headers="mcps1.3.1.2.4.1.1 "><p id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_en-us_topic_0187565660_p19892151263816">IKE</p>
+</td>
+<td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.1.2.4.1.2 "><p id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_en-us_topic_0187565660_p178939129388">Version</p>
+</td>
+<td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.1.2.4.1.3 "><ul id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_ul1410561601"><li id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_li67171076015">v1 (v1 has low security. If the device supports v2, v2 is recommended.)</li><li id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_li184110619017">v2 (default value)</li></ul>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_row15111942141110"><td class="cellrowborder" valign="top" headers="mcps1.3.1.2.4.1.1 "><p id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_p131111442161120">Negotiation Mode</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.2.4.1.2 "><ul id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_ul44016913125"><li id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_li64019101219">Main (default value)</li><li id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_li941129201218">Aggressive</li></ul>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_row0557131831113"><td class="cellrowborder" valign="top" headers="mcps1.3.1.2.4.1.1 "><p id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_p35841723151120">Authentication Algorithm</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.2.4.1.2 "><ul id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_ul758482391111"><li id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_li2585123191116">MD5 (This algorithm is insecure. Exercise caution when using this algorithm.)</li><li id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_li258542321115">SHA1 (This algorithm is insecure. Exercise caution when using this algorithm.)</li><li id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_li155851723111112">SHA2-256 (default value)</li><li id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_li6585723171111">SHA2-384</li><li id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_li1058522319117">SHA2-512</li></ul>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_en-us_topic_0187565660_row16893101218383"><td class="cellrowborder" valign="top" headers="mcps1.3.1.2.4.1.1 "><p id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_en-us_topic_0187565660_p4893012113810">Encryption Algorithm</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.2.4.1.2 "><ul id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_ul7688158185713"><li id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_li14688155813572">3DES (This algorithm is insecure. Exercise caution when using this algorithm.)</li><li id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_li268812583576">AES-128 (default value)</li><li id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_li14412261310">AES-192 (This algorithm is insecure. Exercise caution when using this algorithm.)</li><li id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_li106881758165720">AES-256 (This algorithm is insecure. Exercise caution when using this algorithm.)</li><li id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_li1283103551312">AES-256-GCM-16</li></ul>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_en-us_topic_0187565660_row1389351243813"><td class="cellrowborder" valign="top" headers="mcps1.3.1.2.4.1.1 "><p id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_en-us_topic_0187565660_p1689311273810">DH Algorithm</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.2.4.1.2 "><ul id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_ul11435205095810"><li id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_li3705132305914">Group 1 (This algorithm is insecure. Exercise caution when using this algorithm.)</li><li id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_li14435175025810">Group 2 (This algorithm is insecure. Exercise caution when using this algorithm.)</li><li id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_li11435550165816">Group 5 (This algorithm is insecure. Exercise caution when using this algorithm.)</li><li id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_li18310191513593">Group 14 (default value)</li><li id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_li1448981951418">Group 15</li><li id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_li10435850175812">Group 16</li><li id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_li144351850155818">Group 19</li><li id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_li1643595016589">Group 20</li><li id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_li2043585011582">Group 21</li></ul>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_en-us_topic_0187565660_row189416121384"><td class="cellrowborder" valign="top" headers="mcps1.3.1.2.4.1.1 "><p id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_p1572793193116">Lifetime (s)</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.2.4.1.2 "><p id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_en-us_topic_0187565660_p08945129386"><strong id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_b127771238185810">86400</strong> (default value)</p>
+<p id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_p142653248478">Unit: second</p>
+<p id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_p1717171814473">Value range: <strong id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_b153695468583">60</strong> to <strong id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_b163691346145820">604800</strong></p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_row1442197131714"><td class="cellrowborder" valign="top" headers="mcps1.3.1.2.4.1.1 "><p id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_p1642110710178">Local ID</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.2.4.1.2 "><ul id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_ul1021917556177"><li id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_li13219115581714">IP Address<p id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_p112198551177"><a name="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_li13219115581714"></a><a name="en-us_topic_0000001592773537_li13219115581714"></a>The local IP address is automatically displayed as the EIP of the VPN gateway, removing the need to manually configure it.</p>
+</li><li id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_li4219255171710">FQDN</li></ul>
+<p id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_p321945581715">By default, the local ID type is IP address and the local ID value is the EIP of the VPN gateway.</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_row16766617191714"><td class="cellrowborder" valign="top" headers="mcps1.3.1.2.4.1.1 "><p id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_p17667178172">Customer ID</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.2.4.1.2 "><ul id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_ul938341571815"><li id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_li173831615161812">IP Address</li><li id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_li113831315191815">FQDN</li></ul>
+<p id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_p1383131551814">By default, the customer ID type is IP address and the customer ID value is the public IP address of the customer gateway.</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_en-us_topic_0187565660_row14894201213385"><td class="cellrowborder" rowspan="5" valign="top" width="25%" headers="mcps1.3.1.2.4.1.1 "><p id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_en-us_topic_0187565660_p989491215385">IPsec</p>
+</td>
+<td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.1.2.4.1.2 "><p id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_en-us_topic_0187565660_p4894812103812">Authentication Algorithm</p>
+</td>
+<td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.1.2.4.1.3 "><ul id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_ul329419301647"><li id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_li229417301543">SHA1 (This algorithm is insecure. Exercise caution when using this algorithm.)</li><li id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_li629417301047">MD5 (This algorithm is insecure. Exercise caution when using this algorithm.)</li><li id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_li2536339147">SHA2-256 (default value)</li><li id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_li7294113013415">SHA2-384</li><li id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_li1829573015415">SHA2-512</li></ul>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_en-us_topic_0187565660_row1389411218382"><td class="cellrowborder" valign="top" headers="mcps1.3.1.2.4.1.1 "><p id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_en-us_topic_0187565660_p589414123381">Encryption Algorithm</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.2.4.1.2 "><ul id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_ul14697859341"><li id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_li1969711598411">AES-128 (default value)</li><li id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_li1369735910413">AES-192 (This algorithm is insecure. Exercise caution when using this algorithm.)</li><li id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_li116979598414">AES-256 (This algorithm is insecure. Exercise caution when using this algorithm.)</li><li id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_li1469711595416">3DES (This algorithm is insecure. Exercise caution when using this algorithm.)</li><li id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_li1989490161419">AES-128-GCM-16</li><li id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_li1489418011410">AES-256-GCM-16</li></ul>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_en-us_topic_0187565660_row17894131219389"><td class="cellrowborder" valign="top" headers="mcps1.3.1.2.4.1.1 "><p id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_en-us_topic_0187565660_p1389441210389">PFS</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.2.4.1.2 "><ul id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_ul14535132413513"><li id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_li1653511241750">DH group 1 (This algorithm is insecure. Exercise caution when using this algorithm.)</li><li id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_li853514245513">DH group 2 (This algorithm is insecure. Exercise caution when using this algorithm.)</li><li id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_li17526135611529"><p id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_p1978225614528"><a name="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_li17526135611529"></a><a name="en-us_topic_0000001592773537_li17526135611529"></a>DH group 5 (This algorithm is insecure. Exercise caution when using this algorithm.)</p>
+</li><li id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_li0535192418512">DH group 14 (default value)</li><li id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_li1953592417517">DH group 15</li><li id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_li17535124451">DH group 16</li><li id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_li153512416510">DH group 19</li><li id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_li853511241553">DH group 20</li><li id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_li2535152419512">DH group 21</li><li id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_li25351224157">Disable (not recommended due to security risks)</li></ul>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_en-us_topic_0187565660_row16894161218382"><td class="cellrowborder" valign="top" headers="mcps1.3.1.2.4.1.1 "><p id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_en-us_topic_0187565660_p188941812113814">Transfer Protocol</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.2.4.1.2 "><ul id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_ul852415613717"><li id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_li4524161274">ESP (default value)</li></ul>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_en-us_topic_0187565660_row1089451210386"><td class="cellrowborder" valign="top" headers="mcps1.3.1.2.4.1.1 "><p id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_p83151924131019">Lifetime (s)</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.2.4.1.2 "><p id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_en-us_topic_0187565660_p13894181214381"><strong id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_b3341851205919">3600</strong> (default value)</p>
+<p id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_p8191102418545">Unit: second</p>
+<p id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_p72845165547">Value range: <strong id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_b128661810020">30</strong> to <strong id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_b486681303">604800</strong></p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+<div class="note" id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_note6103102310301"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_ul1815693841219"><li id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_li1313726142018">Perfect Forward Secrecy (PFS) is a security feature.<p id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_p1774618610204"><a name="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_li1313726142018"></a><a name="en-us_topic_0000001592773537_li1313726142018"></a>IKE negotiation has two phases, phase one and phase two. The key of phase two (IPsec SA) is derived from the key generated in phase one. Once the key in phase one is disclosed, the security of the IPsec VPN may be adversely affected. To improve the key security, IKE provides PFS. When PFS is enabled, an additional DH exchange will be performed during IPsec SA negotiation to generate a new IPsec SA key, improving IPsec SA security.</p>
+</li><li id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_li215613389127">For security purposes, PFS is enabled on the cloud side by default. Ensure that PFS is also enabled on the gateway device in your on-premises data center and the PFS settings on both ends are the same. Otherwise, the negotiation will fail.</li><li id="EN-US_TOPIC_0000001956631553__en-us_topic_0000001592773537_li1780314512910">The default traffic-based lifetime of an IPsec SA is 1,843,200 KB on the cloud side and cannot be changed for the VPN. This parameter is not involved in negotiation and has no impact on the establishment of an IPsec SA.</li></ul>
+</div></div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_08_1517.html">Enterprise Edition VPN</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_faq_00041.html b/docs/vpn/umn/vpn_faq_00041.html
new file mode 100644
index 00000000..8eb2d5ec
--- /dev/null
+++ b/docs/vpn/umn/vpn_faq_00041.html
@@ -0,0 +1,14 @@
+<a name="EN-US_TOPIC_0000001956471777"></a><a name="EN-US_TOPIC_0000001956471777"></a>
+
+<h1 class="topictitle1">Are a Username and Password Required for Creating an IPsec VPN Connection?</h1>
+<div id="body8662426"><p id="EN-US_TOPIC_0000001956471777__en-us_topic_0000001592693981_p107929122458">No. IPsec VPN uses a pre-shared key (PSK) for authentication. The PSK is configured on a VPN gateway, and a connection will be established after VPN negotiation is complete. Therefore, no username or password is required for creating an IPsec VPN connection. Generally, SSL, PPTP, and L2TP VPNs use usernames and passwords for authentication.</p>
+<div class="note" id="EN-US_TOPIC_0000001956471777__en-us_topic_0000001592693981_note14957144124813"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="EN-US_TOPIC_0000001956471777__en-us_topic_0000001592693981_p20982194414481">IPsec XAUTH provides extended authentication for IPsec VPN. It requires users to enter their usernames and passwords during VPN negotiation.</p>
+<p id="EN-US_TOPIC_0000001956471777__en-us_topic_0000001592693981_p1014214135506">Currently, VPN does not support IPsec XAUTH.</p>
+</div></div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_08_1517.html">Enterprise Edition VPN</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_faq_00043.html b/docs/vpn/umn/vpn_faq_00043.html
new file mode 100644
index 00000000..83f63e7a
--- /dev/null
+++ b/docs/vpn/umn/vpn_faq_00043.html
@@ -0,0 +1,15 @@
+<a name="EN-US_TOPIC_0000001929312954"></a><a name="EN-US_TOPIC_0000001929312954"></a>
+
+<h1 class="topictitle1">What VPN Resources Can Be Monitored?</h1>
+<div id="body8662426"><p class="msonormal" id="EN-US_TOPIC_0000001929312954__en-us_topic_0000001542333866_p1534575075720"><strong id="EN-US_TOPIC_0000001929312954__en-us_topic_0000001542333866_b183491482815">VPN gateway</strong></p>
+<p class="msonormal" id="EN-US_TOPIC_0000001929312954__en-us_topic_0000001542333866_p13843183720429">The following bandwidth information of a VPN gateway IP address can be monitored: inbound traffic, inbound bandwidth, outbound traffic, outbound bandwidth, and outbound bandwidth usage.</p>
+<p class="msonormal" id="EN-US_TOPIC_0000001929312954__en-us_topic_0000001542333866_p165314549576"><strong id="EN-US_TOPIC_0000001929312954__en-us_topic_0000001542333866_b840975381013">VPN connection</strong></p>
+<p class="msonormal" id="EN-US_TOPIC_0000001929312954__en-us_topic_0000001542333866_p1560425334316">The following information about a VPN connection can be monitored: VPN connection status, average link round-trip time (RTT), maximum link RTT, link packet loss rate, average tunnel RTT, maximum tunnel RTT, and tunnel packet loss rate.</p>
+<p id="EN-US_TOPIC_0000001929312954__en-us_topic_0000001542333866_p1080151019463">To monitor average link RTT, maximum link RTT, link packet loss rate, average tunnel RTT, maximum tunnel RTT, and tunnel packet loss rate, click the VPN connection name and click <strong id="EN-US_TOPIC_0000001929312954__en-us_topic_0000001542333866_b45394358464">Add</strong> in the <strong id="EN-US_TOPIC_0000001929312954__en-us_topic_0000001542333866_b87184392469">Health Check</strong> area on the <strong id="EN-US_TOPIC_0000001929312954__en-us_topic_0000001542333866_b73512439463">Summary</strong> tab page to add health check items.</p>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_08_1517.html">Enterprise Edition VPN</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_faq_00044.html b/docs/vpn/umn/vpn_faq_00044.html
new file mode 100644
index 00000000..17c2606c
--- /dev/null
+++ b/docs/vpn/umn/vpn_faq_00044.html
@@ -0,0 +1,12 @@
+<a name="EN-US_TOPIC_0000001929472294"></a><a name="EN-US_TOPIC_0000001929472294"></a>
+
+<h1 class="topictitle1">Can EIPs Be Used as VPN Gateway IP Addresses?</h1>
+<div id="body8662426"><p id="EN-US_TOPIC_0000001929472294__en-us_topic_0000001592693957_p133931754145116">Yes.</p>
+<p id="EN-US_TOPIC_0000001929472294__en-us_topic_0000001592693957_p1032225818148">When creating a VPN gateway, you can bind EIPs as the gateway IP addresses.</p>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_08_1517.html">Enterprise Edition VPN</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_faq_00051.html b/docs/vpn/umn/vpn_faq_00051.html
new file mode 100644
index 00000000..24099efa
--- /dev/null
+++ b/docs/vpn/umn/vpn_faq_00051.html
@@ -0,0 +1,28 @@
+<a name="EN-US_TOPIC_0000001956631557"></a><a name="EN-US_TOPIC_0000001956631557"></a>
+
+<h1 class="topictitle1">Which IKE Version Should I Select When I Create a VPN Connection?</h1>
+<div id="body8662426"><p id="EN-US_TOPIC_0000001956631557__en-us_topic_0000001542333938_p0641756185211">IKEv2 is recommended because IKEv1 is not secure. In addition, IKEv2 outperforms IKEv1 in connection negotiation and establishment, authentication methods, dead peer detection (DPD) timeout processing, and security association (SA) timeout processing.</p>
+<p id="EN-US_TOPIC_0000001956631557__en-us_topic_0000001542333938_p8060118">IKEv2 will be widely used, and IKEv1 will gradually phase out.</p>
+<div class="section" id="EN-US_TOPIC_0000001956631557__en-us_topic_0000001542333938_section14830133325317"><h4 class="sectiontitle">Introduction to IKEv1 and IKEv2</h4><ul id="EN-US_TOPIC_0000001956631557__en-us_topic_0000001542333938_ul7803728133120"><li id="EN-US_TOPIC_0000001956631557__en-us_topic_0000001542333938_li180311289311">As a hybrid protocol, IKEv1 brings some security and performance defects due to its complexity. As such, it has become a bottleneck in the IPsec system.</li><li id="EN-US_TOPIC_0000001956631557__en-us_topic_0000001542333938_li4803102853111">IKEv2 addresses the issues of IKEv1 while retaining basic functions of IKEv1. IKEv2 is more simplified, efficient, secure, and robust than IKEv1. Additionally, IKEv2 is defined by RFC 4306 in a single document, whereas IKEv1 are defined in multiple documents. By minimizing core functions and default password algorithms, IKEv2 greatly improves interoperability between different IPsec VPNs.</li></ul>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001956631557__en-us_topic_0000001542333938_section549121716540"><h4 class="sectiontitle">Security Risks of IKEv1</h4><ul id="EN-US_TOPIC_0000001956631557__en-us_topic_0000001542333938_ul4593105994414"><li id="EN-US_TOPIC_0000001956631557__en-us_topic_0000001542333938_li11594175904416">The cryptographic algorithms supported by IKEv1 have not been updated for more than 10 years. In addition, IKEv1 does not support strong cryptographic algorithms such as AES-GCM and ChaCha20-Poly1305. For IKEv1, the E (Encryption) bit in the ISALMP header specifies that the payloads following the ISALMP header are encrypted, but any data integrity verification of those payloads is handled by a separate hash payload. This separation of encryption from data integrity protection prevents the use of authenticated encryption (AES-GCM) with IKEv1.</li><li id="EN-US_TOPIC_0000001956631557__en-us_topic_0000001542333938_li7594759194411">IKEv1 is vulnerable to DoS amplification attacks and half-open connection attacks. After responding to spoofed packets, the responder maintains initiator-responder relationships, consuming a large number of system resources.<p id="EN-US_TOPIC_0000001956631557__en-us_topic_0000001542333938_p626417386611"><a name="EN-US_TOPIC_0000001956631557__en-us_topic_0000001542333938_li7594759194411"></a><a name="en-us_topic_0000001542333938_li7594759194411"></a>This defect is inherent to IKEv1 and is addressed in IKEv2.</p>
+</li><li id="EN-US_TOPIC_0000001956631557__en-us_topic_0000001542333938_li12594559174415">The aggressive mode of IKEv1 is not secure. In this mode, information packets are not encrypted, posing risks of information leakage. There are also brute-force attacks targeting at the aggressive mode, such as man-in-the-middle attacks.</li></ul>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001956631557__en-us_topic_0000001542333938_section14586202811557"><h4 class="sectiontitle">Differences Between IKEv1 and IKEv2</h4><ul id="EN-US_TOPIC_0000001956631557__en-us_topic_0000001542333938_ul16293233151216"><li id="EN-US_TOPIC_0000001956631557__en-us_topic_0000001542333938_li52941733141218"><strong id="EN-US_TOPIC_0000001956631557__en-us_topic_0000001542333938_b62353519584">Negotiation process</strong><ul id="EN-US_TOPIC_0000001956631557__en-us_topic_0000001542333938_ul293016141813"><li id="EN-US_TOPIC_0000001956631557__en-us_topic_0000001542333938_li16930814681">IKEv1 is complex and consumes a large amount of bandwidth. IKEv1 SA negotiation consists of two phases. In IKEv1 phase 1, an IKE SA is established in either main mode or aggressive mode. Main mode requires three exchanges between peers totaling six ISAKMP messages, whereas aggressive mode requires two exchanges totaling three ISAKMP messages. Aggressive mode is faster, but does not provide identity protection for peers as key exchange and identity authentication are performed simultaneously. In IKEv1 phase 2, IPsec SAs are established through three ISAKMP messages in quick mode.</li><li id="EN-US_TOPIC_0000001956631557__en-us_topic_0000001542333938_li0930101414817">Compared with IKEv1, IKEv2 simplifies the SA negotiation process. IKEv2 requires only two exchanges, totaling four messages, to establish an IKE SA and a pair of IPsec SAs. To create multiple pairs of IPsec SAs, only one additional exchange is needed for each additional pair of SAs.<div class="note" id="EN-US_TOPIC_0000001956631557__en-us_topic_0000001542333938_note144911143571"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="EN-US_TOPIC_0000001956631557__en-us_topic_0000001542333938_p79021619185719">For IKEv1 negotiation, its main mode involves nine (6+3) messages, and its aggressive mode involves six (3+3) messages. In contrast, IKEv2 negotiation requires only four (2+2) messages.</p>
+</div></div>
+</li></ul>
+</li><li id="EN-US_TOPIC_0000001956631557__en-us_topic_0000001542333938_li202941633101217"><strong id="EN-US_TOPIC_0000001956631557__en-us_topic_0000001542333938_b1086011463588">Authentication methods</strong><ul id="EN-US_TOPIC_0000001956631557__en-us_topic_0000001542333938_ul1577114314811"><li id="EN-US_TOPIC_0000001956631557__en-us_topic_0000001542333938_li57711330817">Only IKEv1 (requiring an encryption card) supports digital envelope authentication (HSS-DE).</li><li id="EN-US_TOPIC_0000001956631557__en-us_topic_0000001542333938_li15811471186">IKEv2 supports Extensible Authentication Protocol (EAP) authentication. IKEv2 can use an AAA server to remotely authenticate mobile and PC users and assign private IP addresses to these users. IKEv1 does not provide this function and must use L2TP to assign private IP addresses.</li><li id="EN-US_TOPIC_0000001956631557__en-us_topic_0000001542333938_li137711232817">Only IKEv2 supports IKE SA integrity algorithms.</li></ul>
+</li><li id="EN-US_TOPIC_0000001956631557__en-us_topic_0000001542333938_li13294433151216"><strong id="EN-US_TOPIC_0000001956631557__en-us_topic_0000001542333938_b14967426125920">DPD timeout processing</strong><ul id="EN-US_TOPIC_0000001956631557__en-us_topic_0000001542333938_ul1228520341883"><li id="EN-US_TOPIC_0000001956631557__en-us_topic_0000001542333938_li10285193412818">Only IKEv1 supports the <strong id="EN-US_TOPIC_0000001956631557__en-us_topic_0000001542333938_b11950155817253">retry-interval</strong> parameter. If a device sends a DPD packet but receives no reply within the specified retry-interval, the device records a DPD failure event. When the number of DPD failure events reaches 5, both the IKE SA and IPsec SAs are deleted. IKE SA negotiation will start again only when there is traffic to be transmitted over the IPsec tunnel.</li><li id="EN-US_TOPIC_0000001956631557__en-us_topic_0000001542333938_li3285134283">In IKEv2, the retransmission interval increases from 1, 2, 4, 8, 16, 32 to 64, in seconds. If no reply is received within eight consecutive transmissions, the peer end is considered dead, and the IKE SA and IPsec SAs are deleted.</li></ul>
+</li><li id="EN-US_TOPIC_0000001956631557__en-us_topic_0000001542333938_li2294933201214"><strong id="EN-US_TOPIC_0000001956631557__en-us_topic_0000001542333938_b201058233323">IKE SA timeout processing and IPsec SA timeout processing</strong><p id="EN-US_TOPIC_0000001956631557__en-us_topic_0000001542333938_p1936140783">In IKEv2, the IKE SA soft lifetime is 9/10 of the IKE SA hard lifetime plus or minus a random number. This reduces the likelihood that two ends initiate renegotiation simultaneously. Therefore, you do not manually set the soft lifetime in IKEv2.</p>
+</li></ul>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001956631557__en-us_topic_0000001542333938_section733174455716"><h4 class="sectiontitle">Advantages of IKEv2 over IKEv1</h4><ul id="EN-US_TOPIC_0000001956631557__en-us_topic_0000001542333938_ul872013248588"><li id="EN-US_TOPIC_0000001956631557__en-us_topic_0000001542333938_li07204249581">Simplifies the SA negotiation process, improving efficiency.</li><li id="EN-US_TOPIC_0000001956631557__en-us_topic_0000001542333938_li77203248580">Fixes many cryptographic security vulnerabilities, improving security.</li><li id="EN-US_TOPIC_0000001956631557__en-us_topic_0000001542333938_li18720224205820">Supports EAP authentication, improving authentication flexibility and scalability.<p id="EN-US_TOPIC_0000001956631557__en-us_topic_0000001542333938_p54819574491"><a name="EN-US_TOPIC_0000001956631557__en-us_topic_0000001542333938_li18720224205820"></a><a name="en-us_topic_0000001542333938_li18720224205820"></a>EAP is an authentication protocol that supports multiple authentication methods. The biggest advantage of EAP is its scalability. That is, new authentication methods can be added without changing the original authentication system. EAP authentication has been widely used in dial-up access networks.</p>
+</li><li id="EN-US_TOPIC_0000001956631557__en-us_topic_0000001542333938_li4444859173118">Employs an Encrypted Payload on basis of ESP. This payload contains both an encryption algorithm and a data integrity algorithm. AES-GCM ensures confidentiality, integrity, and authentication, and works well with IKEv2.</li></ul>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_08_1517.html">Enterprise Edition VPN</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_faq_00144.html b/docs/vpn/umn/vpn_faq_00144.html
new file mode 100644
index 00000000..88bd82d2
--- /dev/null
+++ b/docs/vpn/umn/vpn_faq_00144.html
@@ -0,0 +1,17 @@
+<a name="EN-US_TOPIC_0000001956471781"></a><a name="EN-US_TOPIC_0000001956471781"></a>
+
+<h1 class="topictitle1">What Do I Do If a VPN Connection Fails to Be Established?</h1>
+<div id="body8662426"><ol id="EN-US_TOPIC_0000001956471781__en-us_topic_0000001592879093_en-us_topic_0000001349015628_en-us_topic_0026963462_ol26232838203434"><li id="EN-US_TOPIC_0000001956471781__en-us_topic_0000001592879093_en-us_topic_0000001349015628_li8102141954417">Log in to the management console and choose <strong id="EN-US_TOPIC_0000001956471781__en-us_topic_0000001592879093_en-us_topic_0000001349015628_b104596617612">Virtual Private Network</strong> &gt; <strong id="EN-US_TOPIC_0000001956471781__en-us_topic_0000001592879093_en-us_topic_0000001349015628_b245911619619">Enterprise – VPN Connections</strong>.</li><li id="EN-US_TOPIC_0000001956471781__en-us_topic_0000001592879093_en-us_topic_0000001349015628_li1792232524416">In the VPN connection list, locate the target VPN connection, and choose <strong id="EN-US_TOPIC_0000001956471781__en-us_topic_0000001592879093_en-us_topic_0000001349015628_b545162812107">More</strong> &gt; <strong id="EN-US_TOPIC_0000001956471781__en-us_topic_0000001592879093_en-us_topic_0000001349015628_b6786181615611">Modify Policy Settings</strong> on the right to view IKE and IPsec policies of the VPN connection.</li><li id="EN-US_TOPIC_0000001956471781__en-us_topic_0000001592879093_en-us_topic_0000001349015628_en-us_topic_0026963462_li33571179203434">Check the IKE and IPsec policies to see whether the negotiation modes and encryption algorithms at both ends of the VPN connection are the same.<p id="EN-US_TOPIC_0000001956471781__en-us_topic_0000001592879093_en-us_topic_0000001349015628_p41218302453"><a name="EN-US_TOPIC_0000001956471781__en-us_topic_0000001592879093_en-us_topic_0000001349015628_en-us_topic_0026963462_li33571179203434"></a><a name="en-us_topic_0000001592879093_en-us_topic_0000001349015628_en-us_topic_0026963462_li33571179203434"></a>If the IKE SA has been set up in phase 1 but no IPsec SA has been established in phase 2, the IPsec policies at both ends of the VPN connection may be inconsistent.</p>
+</li></ol><ol start="4" id="EN-US_TOPIC_0000001956471781__en-us_topic_0000001592879093_en-us_topic_0000001349015628_en-us_topic_0026963462_ol1993602204429"><li id="EN-US_TOPIC_0000001956471781__en-us_topic_0000001592879093_en-us_topic_0000001349015628_en-us_topic_0026963462_li40763791204424">Check whether the firewall configurations are correct.<p id="EN-US_TOPIC_0000001956471781__en-us_topic_0000001592879093_en-us_topic_0000001349015628_en-us_topic_0026963462_p4472110920340"><a name="EN-US_TOPIC_0000001956471781__en-us_topic_0000001592879093_en-us_topic_0000001349015628_en-us_topic_0026963462_li40763791204424"></a><a name="en-us_topic_0000001592879093_en-us_topic_0000001349015628_en-us_topic_0026963462_li40763791204424"></a>If the subnets of your on-premises data center are 192.168.3.0/24 and 192.168.4.0/24, and the VPC subnets are 192.168.1.0/24 and 192.168.2.0/24, configure the firewall function for each on-premises subnet to allow communication with the VPC subnets. The following provides an example of firewall configurations:</p>
+<pre class="screen" id="EN-US_TOPIC_0000001956471781__en-us_topic_0000001592879093_en-us_topic_0000001349015628_en-us_topic_0026963462_screen1875451620457">rule 1 permit ip source 192.168.3.0 0.0.0.255 destination 192.168.1.0 0.0.0.255
+rule 2 permit ip source 192.168.3.0 0.0.0.255 destination 192.168.2.0 0.0.0.255
+rule 3 permit ip source 192.168.4.0 0.0.0.255 destination 192.168.1.0 0.0.0.255
+rule 4 permit ip source 192.168.4.0 0.0.0.255 destination 192.168.2.0 0.0.0.255</pre>
+</li><li id="EN-US_TOPIC_0000001956471781__en-us_topic_0000001592879093_en-us_topic_0000001349015628_li28525212619">Ping the two ends of the VPN connection from each other to check whether the VPN connection is normal.</li></ol>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_08_1517.html">Enterprise Edition VPN</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_faq_0021.html b/docs/vpn/umn/vpn_faq_0021.html
deleted file mode 100644
index 7267b048..00000000
--- a/docs/vpn/umn/vpn_faq_0021.html
+++ /dev/null
@@ -1,11 +0,0 @@
-<a name="vpn_faq_0021"></a><a name="vpn_faq_0021"></a>
-
-<h1 class="topictitle1">How Many IPsec VPNs Can I Have?</h1>
-<div id="body1689mcpsimp"><p id="vpn_faq_0021__5.2_Do_IPsec_VPNs_Support_Automatic_Nego">By default, a user can have a maximum of five IPsec VPNs. If your quota cannot fulfill your service requirements, submit a service ticket to increase the quota.</p>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="en-us_topic_0035391365.html">FAQs</a></div>
-</div>
-</div>
-
diff --git a/docs/vpn/umn/vpn_faq_0055.html b/docs/vpn/umn/vpn_faq_0055.html
deleted file mode 100644
index f988bacc..00000000
--- a/docs/vpn/umn/vpn_faq_0055.html
+++ /dev/null
@@ -1,18 +0,0 @@
-<a name="vpn_faq_0055"></a><a name="vpn_faq_0055"></a>
-
-<h1 class="topictitle1">What Do I Do If VPN Setup Fails?</h1>
-<div id="body1691mcpsimp"><ol id="vpn_faq_0055__ol1692mcpsimp"><li id="vpn_faq_0055__li1693mcpsimp">Log in to the management console and click <strong id="vpn_faq_0055__b1694mcpsimp">Virtual Private Network</strong>.</li><li id="vpn_faq_0055__li1695mcpsimp">In the VPN list, locate the target VPN and click <strong id="vpn_faq_0055__b1696mcpsimp">View Policy </strong>in the <strong id="vpn_faq_0055__b1697mcpsimp">Operation</strong><p id="vpn_faq_0055__p1698mcpsimp">column to view IKE and IPsec policy details about the VPN.</p>
-</li><li id="vpn_faq_0055__li1699mcpsimp">Check the IKE and IPsec policies to see whether the negotiation modes and encryption algorithms between the local and remote sides of the VPN are the same.<ol class="lower-alpha" type="a" id="vpn_faq_0055__ol1700mcpsimp"><li id="vpn_faq_0055__li1701mcpsimp">If the IKE policy has been set up during phase one and the IPsec policy has not been enabled in phase two, the IPsec policies between the local and remote sides of the VPN may be inconsistent.</li><li id="vpn_faq_0055__li1702mcpsimp">If the Cisco physical device is used at the customer side, it is recommended that you use MD5. Then, you need to set <strong id="vpn_faq_0055__b1703mcpsimp">Authentication Mode </strong>to <strong id="vpn_faq_0055__b1704mcpsimp">MD5 </strong>in the IPsec policy for the VPN created on the cloud.</li></ol>
-</li><li id="vpn_faq_0055__li1705mcpsimp">Check whether the ACL configurations are correct.<p id="vpn_faq_0055__p1706mcpsimp"><a name="vpn_faq_0055__li1705mcpsimp"></a><a name="li1705mcpsimp"></a>If the subnets of your data center are 192.168.3.0/24 and 192.168.4.0/24, and the VPC subnets are 192.168.1.0/24 and 192.168.2.0/24, configure the ACL rules for each data center subnet to permit the communication with the VPC subnets. The following provides an example of ACL configurations:</p>
-<pre class="screen" id="vpn_faq_0055__screen1072223423820">rule 1 permit ip source 192.168.3.0 0.0.0.255 destination 192.168.1.0 0.0.0.255
-rule 2 permit ip source 192.168.3.0 0.0.0.255 destination 192.168.2.0 0.0.0.255
-rule 3 permit ip source 192.168.4.0 0.0.0.255 destination 192.168.1.0 0.0.0.255
-rule 4 permit ip source 192.168.4.0 0.0.0.255 destination 192.168.2.0 0.0.0.255</pre>
-</li><li id="vpn_faq_0055__li225016576383">After the configuration is complete, ping the local and the remote side from each other to check whether the VPN connection is normal.</li></ol>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="en-us_topic_0035391365.html">FAQs</a></div>
-</div>
-</div>
-
diff --git a/docs/vpn/umn/vpn_faq_0056.html b/docs/vpn/umn/vpn_faq_0056.html
deleted file mode 100644
index f2f21a3c..00000000
--- a/docs/vpn/umn/vpn_faq_0056.html
+++ /dev/null
@@ -1,11 +0,0 @@
-<a name="vpn_faq_0056"></a><a name="vpn_faq_0056"></a>
-
-<h1 class="topictitle1">How Can I Handle the Failure in Accessing the ECSs from My Data Center or LAN Even If the VPN Has Been Set Up?</h1>
-<div id="body1712mcpsimp"><p id="vpn_faq_0056__5.5_What_Do_I_Do_If_I_Cannot_Access_My_D">The security group denies the access from all sources by default. If you want to access your ECSs, modify the security group configuration and allow the access from the remote subnets.</p>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="en-us_topic_0035391365.html">FAQs</a></div>
-</div>
-</div>
-
diff --git a/docs/vpn/umn/vpn_faq_0057.html b/docs/vpn/umn/vpn_faq_0057.html
deleted file mode 100644
index 1fde869a..00000000
--- a/docs/vpn/umn/vpn_faq_0057.html
+++ /dev/null
@@ -1,11 +0,0 @@
-<a name="vpn_faq_0057"></a><a name="vpn_faq_0057"></a>
-
-<h1 class="topictitle1">What Do I Do If I Cannot Access My Data Center or LAN from the ECSs After a VPN Connection Has Been Set Up?</h1>
-<div id="body1713mcpsimp"><p id="vpn_faq_0057__5.6_Does_a_VPN_Allow_for_Communication_B">Check whether you have properly configured the firewall policies for the access from the public IP address of the cloud VPN to the public IP address of your data center or LAN. No policies are configured to limit the access by default.</p>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="en-us_topic_0035391365.html">FAQs</a></div>
-</div>
-</div>
-
diff --git a/docs/vpn/umn/vpn_faq_0058.html b/docs/vpn/umn/vpn_faq_0058.html
deleted file mode 100644
index 8d893dad..00000000
--- a/docs/vpn/umn/vpn_faq_0058.html
+++ /dev/null
@@ -1,12 +0,0 @@
-<a name="vpn_faq_0058"></a><a name="vpn_faq_0058"></a>
-
-<h1 class="topictitle1">Does a VPN Allow for Communication Between Two VPCs?</h1>
-<div id="body1714mcpsimp"><p id="vpn_faq_0058__p1715mcpsimp">If the two VPCs are in the same region, you can use a VPC peering connection to enable communication between them.</p>
-<p id="vpn_faq_0058__5.7_What_Is_the_Limitation_on_the_Number">If the two VPCs are in different regions, you can use a VPN to enable communication between the VPCs. The CIDR blocks of the two VPCs are the local and remote subnets, respectively.</p>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="en-us_topic_0035391365.html">FAQs</a></div>
-</div>
-</div>
-
diff --git a/docs/vpn/umn/vpn_qs_00003.html b/docs/vpn/umn/vpn_qs_00003.html
new file mode 100644
index 00000000..e6064f71
--- /dev/null
+++ b/docs/vpn/umn/vpn_qs_00003.html
@@ -0,0 +1,161 @@
+<a name="EN-US_TOPIC_0000002000327309"></a><a name="EN-US_TOPIC_0000002000327309"></a>
+
+<h1 class="topictitle1">Overview</h1>
+<div id="body8662426"><div class="section" id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_section1148710163545"><p id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_p9371164616208">The supported regions are subject to those available on the console.</p>
+</div>
+<div class="section" id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_section51351624184910"><h4 class="sectiontitle">Scenario</h4><p id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_p928019125611">To meet business development requirements, enterprise A needs to implement communication between its on-premises data center and its VPC. In this case, enterprise A can use the VPN service to create connections between the on-premises data center and the VPC.</p>
+<ul id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_ul283415316485"><li id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_li2083473144811">If the on-premises data center has only one customer gateway and this gateway can be configured with only one IP address, it is recommended that the VPN gateway uses the active-active mode. <a href="#EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_fig576114434011">Figure 1</a> shows the networking.<div class="p" id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_p1020614114149">In active-active mode, if connection 1 fails, traffic is automatically switched to connection 2, without affecting enterprise services. After connection 1 recovers, VPN still uses connection 2 for data transmission.<div class="fignone" id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_fig576114434011"><a name="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_fig576114434011"></a><a name="en-us_topic_0000001542494050_fig576114434011"></a><span class="figcap"><b>Figure 1 </b>Active-active mode</span><br><span><img class="imgResize" id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_image1914717302538" src="figure/en-us_image_0000001651244201.png" width="496.09000000000003" height="156.51440000000002" title="Click to enlarge"></span></div>
+</div>
+</li><li id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_li198919534517">If the on-premises data center has two customer gateways or has only one customer gateway that can be configured with two IP addresses, it is recommended that the VPN gateway use the active/standby mode. <a href="#EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_fig4294134917216">Figure 2</a> shows the networking.<div class="p" id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_p2258411197">In active/standby mode, connection 1 is the active link and connection 2 is the standby link. By default, traffic is transmitted only through the active link. If the active link fails, traffic is automatically switched to the standby link, without affecting enterprise services. After the active link recovers, traffic is switched back to the active link.<div class="fignone" id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_fig4294134917216"><a name="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_fig4294134917216"></a><a name="en-us_topic_0000001542494050_fig4294134917216"></a><span class="figcap"><b>Figure 2 </b>Active/Standby mode</span><br><span><img class="imgResize" id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_image183169818275" src="figure/en-us_image_0000001609202724.png" width="496.09000000000003" height="164.5875" title="Click to enlarge"></span></div>
+</div>
+</li></ul>
+</div>
+<div class="section" id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_section134016114511"><h4 class="sectiontitle">Limitations and Constraints</h4><ul id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_ul13711625123816"><li id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_li13576124123817">The customer gateway device must support standard IKE and IPsec protocols.</li><li id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_li2395124613">The interconnection subnets of the on-premises data center neither overlap with those of the VPC nor contain 100.64.0.0/10 or 214.0.0.0/8.<p id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_p86437104616"><a name="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_li2395124613"></a><a name="en-us_topic_0000001542494050_li2395124613"></a>If the VPC uses Direct Cloud or Cloud Connect connections to communicate with other VPCs, the on-premises data center subnets cannot overlap with those of these VPCs.</p>
+</li></ul>
+</div>
+<div class="section" id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_section21439171674"><h4 class="sectiontitle">Data Plan</h4>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_table32211175264" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Data plan</caption><thead align="left"><tr id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_row422214178263"><th align="left" class="cellrowborder" valign="top" width="15.841584158415841%" id="mcps1.3.4.2.2.4.1.1"><p id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_p172222176260">Category</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="18.71187118711871%" id="mcps1.3.4.2.2.4.1.2"><p id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_p3222217122614">Item</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="65.44654465446544%" id="mcps1.3.4.2.2.4.1.3"><p id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_p15222121712269">Data</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_row1222216177265"><td class="cellrowborder" valign="top" width="15.841584158415841%" headers="mcps1.3.4.2.2.4.1.1 "><p id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_p72221417202610">VPC</p>
+</td>
+<td class="cellrowborder" valign="top" width="18.71187118711871%" headers="mcps1.3.4.2.2.4.1.2 "><p id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_p1322221711265">Subnet that needs to access the on-premises data center</p>
+</td>
+<td class="cellrowborder" valign="top" width="65.44654465446544%" headers="mcps1.3.4.2.2.4.1.3 "><p id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_p122214177267">192.168.0.0/16</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_row82221817172614"><td class="cellrowborder" valign="top" width="15.841584158415841%" headers="mcps1.3.4.2.2.4.1.1 "><p id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_p1222201716267">VPN gateway</p>
+</td>
+<td class="cellrowborder" valign="top" width="18.71187118711871%" headers="mcps1.3.4.2.2.4.1.2 "><p id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_p13222717102615">Interconnection subnet</p>
+</td>
+<td class="cellrowborder" valign="top" width="65.44654465446544%" headers="mcps1.3.4.2.2.4.1.3 "><p id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_p62225177260">This subnet is used for communication between the VPN gateway and VPC. Ensure that the selected interconnection subnet has four or more assignable IP addresses.</p>
+<p id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_p022219173262">192.168.2.0/24</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_row622211716263"><td class="cellrowborder" valign="top" width="15.841584158415841%" headers="mcps1.3.4.2.2.4.1.1 "><p id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_p175214323269">VPN gateway</p>
+</td>
+<td class="cellrowborder" valign="top" width="18.71187118711871%" headers="mcps1.3.4.2.2.4.1.2 "><p id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_p9222117142611">HA mode</p>
+</td>
+<td class="cellrowborder" valign="top" width="65.44654465446544%" headers="mcps1.3.4.2.2.4.1.3 "><p id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_p9222121715262">Active-active</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_row32222172261"><td class="cellrowborder" valign="top" width="15.841584158415841%" headers="mcps1.3.4.2.2.4.1.1 "><p id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_p15752113212262">VPN gateway</p>
+</td>
+<td class="cellrowborder" valign="top" width="18.71187118711871%" headers="mcps1.3.4.2.2.4.1.2 "><p id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_p2222141702617">EIP</p>
+</td>
+<td class="cellrowborder" valign="top" width="65.44654465446544%" headers="mcps1.3.4.2.2.4.1.3 "><p id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_p19222171713262">EIPs are automatically generated when you buy them. By default, a VPN gateway uses two EIPs. In this example, the EIPs are as follows:</p>
+<ul id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_ul1922213174267"><li id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_li8222717112615">Active EIP: 11.xx.xx.11</li><li id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_li7222917112610">Active EIP 2: 11.xx.xx.12</li></ul>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_row20222141715264"><td class="cellrowborder" valign="top" width="15.841584158415841%" headers="mcps1.3.4.2.2.4.1.1 "><p id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_p0222171722620">VPN connection</p>
+</td>
+<td class="cellrowborder" valign="top" width="18.71187118711871%" headers="mcps1.3.4.2.2.4.1.2 "><p id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_p1422212171269">Tunnel interface address</p>
+</td>
+<td class="cellrowborder" valign="top" width="65.44654465446544%" headers="mcps1.3.4.2.2.4.1.3 "><p id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_p32221917112614">This address is used by a VPN gateway to establish an IPsec tunnel with a customer gateway. At the two ends of the IPsec tunnel, the configured local and remote tunnel interface addresses must be reversed.</p>
+<ul id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_ul1222517142613"><li id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_li11222817112620">VPN connection 1: 169.254.70.1/30</li><li id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_li1922211782611">VPN connection 2: 169.254.71.1/30</li></ul>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_row8222191762612"><td class="cellrowborder" valign="top" width="15.841584158415841%" headers="mcps1.3.4.2.2.4.1.1 "><p id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_p82231174264">On-premises data center</p>
+</td>
+<td class="cellrowborder" valign="top" width="18.71187118711871%" headers="mcps1.3.4.2.2.4.1.2 "><p id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_p2022317171264">Subnet that needs to access the VPC</p>
+</td>
+<td class="cellrowborder" valign="top" width="65.44654465446544%" headers="mcps1.3.4.2.2.4.1.3 "><p id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_p132231617182618">172.16.0.0/16</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_row422321722611"><td class="cellrowborder" valign="top" width="15.841584158415841%" headers="mcps1.3.4.2.2.4.1.1 "><p id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_p822311175262">Customer gateway</p>
+</td>
+<td class="cellrowborder" valign="top" width="18.71187118711871%" headers="mcps1.3.4.2.2.4.1.2 "><p id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_p6223181752610">Gateway IP address</p>
+</td>
+<td class="cellrowborder" valign="top" width="65.44654465446544%" headers="mcps1.3.4.2.2.4.1.3 "><p id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_p1722341712615">The gateway IP address is assigned by a carrier. In this example, the gateway IP address is:</p>
+<p id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_p172231717112610">22.xx.xx.22</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_row622361715267"><td class="cellrowborder" valign="top" width="15.841584158415841%" headers="mcps1.3.4.2.2.4.1.1 "><p id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_p1868775415269">Customer gateway</p>
+</td>
+<td class="cellrowborder" valign="top" width="18.71187118711871%" headers="mcps1.3.4.2.2.4.1.2 "><p id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_p52231317152610">Tunnel interface address</p>
+</td>
+<td class="cellrowborder" valign="top" width="65.44654465446544%" headers="mcps1.3.4.2.2.4.1.3 "><ul id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_ul152239175260"><li id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_li1822351752612">VPN connection 1: 169.254.70.2/30</li><li id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_li8223131719262">VPN connection 2: 169.254.71.2/30</li></ul>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<div class="section" id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_section174440408441"><h4 class="sectiontitle">Operation Process</h4><p id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_p54681720164418"><a href="#EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_fig10285152624918">Figure 3</a> shows the process of using the VPN service to enable communication between an on-premises data center and a VPC.</p>
+<div class="fignone" id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_fig10285152624918"><a name="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_fig10285152624918"></a><a name="en-us_topic_0000001542494050_fig10285152624918"></a><span class="figcap"><b>Figure 3 </b>Operation process</span><br><span><img class="imgResize" id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_image20285162644919" src="figure/en-us_image_0000001592879305.png" width="497.42" height="77.1799" title="Click to enlarge"></span></div>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_table1766082613110" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Operation process description</caption><thead align="left"><tr id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_row176607263119"><th align="left" class="cellrowborder" valign="top" width="6.350635063506351%" id="mcps1.3.5.4.2.4.1.1"><p id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_p466014261116">No.</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="30.083008300830084%" id="mcps1.3.5.4.2.4.1.2"><p id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_p1566092618117">Step</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="63.56635663566357%" id="mcps1.3.5.4.2.4.1.3"><p id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_p12660162611118">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_row186601926181116"><td class="cellrowborder" valign="top" width="6.350635063506351%" headers="mcps1.3.5.4.2.4.1.1 "><p id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_p6660126111115">1</p>
+</td>
+<td class="cellrowborder" valign="top" width="30.083008300830084%" headers="mcps1.3.5.4.2.4.1.2 "><p id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_p1624754810431"><a href="vpn_03_0204.html#EN-US_TOPIC_0000001963686660">Step 1: Creating a VPN Gateway</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="63.56635663566357%" headers="mcps1.3.5.4.2.4.1.3 "><p id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_p379811329591">Bind two EIPs to the VPN gateway.</p>
+<p id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_p1793092016479">If you have purchased EIPs, you can directly bind them to the VPN gateway.</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_row96601626191113"><td class="cellrowborder" valign="top" width="6.350635063506351%" headers="mcps1.3.5.4.2.4.1.1 "><p id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_p2660152661116">2</p>
+</td>
+<td class="cellrowborder" valign="top" width="30.083008300830084%" headers="mcps1.3.5.4.2.4.1.2 "><p id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_p192468482434"><a href="vpn_qs_00007.html#EN-US_TOPIC_0000002000246717">Step 2: Creating a Customer Gateway</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="63.56635663566357%" headers="mcps1.3.5.4.2.4.1.3 "><p id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_p2929132044714">Configure the VPN device in the on-premises data center as the customer gateway.</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_row106601826131116"><td class="cellrowborder" valign="top" width="6.350635063506351%" headers="mcps1.3.5.4.2.4.1.1 "><p id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_p14660112620112">3</p>
+</td>
+<td class="cellrowborder" valign="top" width="30.083008300830084%" headers="mcps1.3.5.4.2.4.1.2 "><p id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_p172460483435"><a href="vpn_qs_00008.html#EN-US_TOPIC_0000001963846432">Step 3: Creating VPN Connection 1</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="63.56635663566357%" headers="mcps1.3.5.4.2.4.1.3 "><p id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_p3928320144718">Create a VPN connection between the active EIP of the VPN gateway and the customer gateway.</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_row13660102681116"><td class="cellrowborder" valign="top" width="6.350635063506351%" headers="mcps1.3.5.4.2.4.1.1 "><p id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_p2066042681114">4</p>
+</td>
+<td class="cellrowborder" valign="top" width="30.083008300830084%" headers="mcps1.3.5.4.2.4.1.2 "><p id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_p12245048174313"><a href="vpn_03_0335.html#EN-US_TOPIC_0000002000327313">Step 4: Creating VPN Connection 2</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="63.56635663566357%" headers="mcps1.3.5.4.2.4.1.3 "><p id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_p15676182211475">Create a VPN connection between active EIP 2 of the VPN gateway and the customer gateway.</p>
+<p id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_p074816149115">It is recommended that the routing mode, PSK, IKE policy, and IPsec policy settings of the two VPN connections be the same.</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_row17660026171111"><td class="cellrowborder" valign="top" width="6.350635063506351%" headers="mcps1.3.5.4.2.4.1.1 "><p id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_p1066062610112">5</p>
+</td>
+<td class="cellrowborder" valign="top" width="30.083008300830084%" headers="mcps1.3.5.4.2.4.1.2 "><p id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_p142447486439"><a href="vpn_03_0336.html#EN-US_TOPIC_0000001963686664">Step 5: Configuring the Customer Gateway Device</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="63.56635663566357%" headers="mcps1.3.5.4.2.4.1.3 "><ul id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_ul18126272219"><li id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_li151261710217">The local and remote tunnel interface addresses configured on the customer gateway device must be the same as the customer and local tunnel interface addresses of the VPN connection, respectively.</li><li id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_li63541630121">The routing mode, PSK, IKE policy, and IPsec policy settings on the customer gateway device must be same as those of the VPN connection.</li></ul>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_row266042616114"><td class="cellrowborder" valign="top" width="6.350635063506351%" headers="mcps1.3.5.4.2.4.1.1 "><p id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_p19661172619110">6</p>
+</td>
+<td class="cellrowborder" valign="top" width="30.083008300830084%" headers="mcps1.3.5.4.2.4.1.2 "><p id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_p124434854316"><a href="vpn_03_0337.html#EN-US_TOPIC_0000002000246725">Step 6: Verifying Network Connectivity</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="63.56635663566357%" headers="mcps1.3.5.4.2.4.1.3 "><p id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_p196611262117">Log in to an ECS and run the <strong id="EN-US_TOPIC_0000002000327309__en-us_topic_0000001542494050_b7698181010157">ping</strong> command to verify the network connectivity.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_08_1505.html">Enterprise Edition VPN</a></div>
+</div>
+</div>
+
+
+<script language="JavaScript">
+<!--
+image_size('.imgResize');
+var msg_imageMax = "view original image";
+var msg_imageClose = "close";
+//--></script>
\ No newline at end of file
diff --git a/docs/vpn/umn/vpn_qs_00007.html b/docs/vpn/umn/vpn_qs_00007.html
new file mode 100644
index 00000000..8321bef2
--- /dev/null
+++ b/docs/vpn/umn/vpn_qs_00007.html
@@ -0,0 +1,65 @@
+<a name="EN-US_TOPIC_0000002000246717"></a><a name="EN-US_TOPIC_0000002000246717"></a>
+
+<h1 class="topictitle1">Step 2: Creating a Customer Gateway</h1>
+<div id="body8662426"><div class="section" id="EN-US_TOPIC_0000002000246717__en-us_topic_0000001592773901_section67091331264"><h4 class="sectiontitle">Procedure</h4><ol id="EN-US_TOPIC_0000002000246717__en-us_topic_0000001592773901_ol183720576313"><li id="EN-US_TOPIC_0000002000246717__en-us_topic_0000001592773901_li1137212572313"><span><span id="EN-US_TOPIC_0000002000246717__en-us_topic_0000001592773901_ph13723694110">In the navigation pane on the left, choose <span class="menucascade" id="EN-US_TOPIC_0000002000246717__en-us_topic_0000001592773901_en-us_topic_0000001591897601_menucascade1867554123416"><b><span class="uicontrol" id="EN-US_TOPIC_0000002000246717__en-us_topic_0000001592773901_en-us_topic_0000001591897601_uicontrol197779532435">Virtual Private Network</span></b> &gt; <b><span class="uicontrol" id="EN-US_TOPIC_0000002000246717__en-us_topic_0000001592773901_en-us_topic_0000001591897601_uicontrol377711533436">Enterprise – Customer Gateways</span></b></span>.</span></span></li><li id="EN-US_TOPIC_0000002000246717__en-us_topic_0000001592773901_li1213343420620"><span><span id="EN-US_TOPIC_0000002000246717__en-us_topic_0000001592773901_ph23521016154115">On the <span class="wintitle" id="EN-US_TOPIC_0000002000246717__en-us_topic_0000001592773901_en-us_topic_0000001591897601_wintitle547011256429"><b>Customer Gateways</b></span> page, click <span class="uicontrol" id="EN-US_TOPIC_0000002000246717__en-us_topic_0000001592773901_en-us_topic_0000001591897601_uicontrol1088212144341"><b>Create Customer Gateway</b></span>.</span></span></li><li id="EN-US_TOPIC_0000002000246717__en-us_topic_0000001592773901_li1372145714317"><span>Set parameters as prompted and click <strong id="EN-US_TOPIC_0000002000246717__en-us_topic_0000001592773901_b654695085111">OK</strong>.</span><p><p id="EN-US_TOPIC_0000002000246717__en-us_topic_0000001592773901_p52571918334">The following describes only key parameters. </p>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="EN-US_TOPIC_0000002000246717__en-us_topic_0000001592773901_table1279110419197" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Customer gateway parameters</caption><thead align="left"><tr id="EN-US_TOPIC_0000002000246717__en-us_topic_0000001592773901_row37913418193"><th align="left" class="cellrowborder" valign="top" width="21.21%" id="mcps1.3.1.2.3.2.2.2.4.1.1"><p id="EN-US_TOPIC_0000002000246717__en-us_topic_0000001592773901_p5791114161915">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="50.51%" id="mcps1.3.1.2.3.2.2.2.4.1.2"><p id="EN-US_TOPIC_0000002000246717__en-us_topic_0000001592773901_p13791144181910">Description</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="28.28%" id="mcps1.3.1.2.3.2.2.2.4.1.3"><p id="EN-US_TOPIC_0000002000246717__en-us_topic_0000001592773901_p379116481911">Example Value</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="EN-US_TOPIC_0000002000246717__en-us_topic_0000001592773901_row1679119431918"><td class="cellrowborder" valign="top" width="21.21%" headers="mcps1.3.1.2.3.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000002000246717__en-us_topic_0000001592773901_p479112491913">Name</p>
+</td>
+<td class="cellrowborder" valign="top" width="50.51%" headers="mcps1.3.1.2.3.2.2.2.4.1.2 "><p id="EN-US_TOPIC_0000002000246717__en-us_topic_0000001592773901_p137911145191">Name a customer gateway.</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.28%" headers="mcps1.3.1.2.3.2.2.2.4.1.3 "><p id="EN-US_TOPIC_0000002000246717__en-us_topic_0000001592773901_p579110412199">cgw-001</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000002000246717__en-us_topic_0000001592773901_row483393712282"><td class="cellrowborder" valign="top" width="21.21%" headers="mcps1.3.1.2.3.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000002000246717__en-us_topic_0000001592773901_p1573314578114">Routing Mode</p>
+</td>
+<td class="cellrowborder" valign="top" width="50.51%" headers="mcps1.3.1.2.3.2.2.2.4.1.2 "><p id="EN-US_TOPIC_0000002000246717__en-us_topic_0000001592773901_p217610126211">Set the routing mode of the customer gateway.</p>
+<p id="EN-US_TOPIC_0000002000246717__en-us_topic_0000001592773901_p18321845174915">The options include <span class="parmvalue" id="EN-US_TOPIC_0000002000246717__en-us_topic_0000001592773901_parmvalue9291187937"><b>Dynamic (BGP)</b></span> and <span class="parmvalue" id="EN-US_TOPIC_0000002000246717__en-us_topic_0000001592773901_parmvalue128633451311"><b>Static</b></span>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.28%" headers="mcps1.3.1.2.3.2.2.2.4.1.3 "><p id="EN-US_TOPIC_0000002000246717__en-us_topic_0000001592773901_p19733957815">Static</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000002000246717__en-us_topic_0000001592773901_row579116412191"><td class="cellrowborder" valign="top" width="21.21%" headers="mcps1.3.1.2.3.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000002000246717__en-us_topic_0000001592773901_p19743250192814">Gateway IP Address</p>
+</td>
+<td class="cellrowborder" valign="top" width="50.51%" headers="mcps1.3.1.2.3.2.2.2.4.1.2 "><p id="EN-US_TOPIC_0000002000246717__en-us_topic_0000001592773901_p279113411193">Enter the IP address of the customer gateway.</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.28%" headers="mcps1.3.1.2.3.2.2.2.4.1.3 "><p id="EN-US_TOPIC_0000002000246717__en-us_topic_0000001592773901_p383246154020">IP Address, 22.xx.xx.22</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000002000246717__en-us_topic_0000001592773901_row10501214105314"><td class="cellrowborder" valign="top" width="21.21%" headers="mcps1.3.1.2.3.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000002000246717__en-us_topic_0000001592773901_p1780818135503">BGP ASN</p>
+</td>
+<td class="cellrowborder" valign="top" width="50.51%" headers="mcps1.3.1.2.3.2.2.2.4.1.2 "><p id="EN-US_TOPIC_0000002000246717__en-us_topic_0000001592773901_p1957611101747">The BGP ASN needs to be specified only when <span class="parmname" id="EN-US_TOPIC_0000002000246717__en-us_topic_0000001592773901_parmname129804574212"><b>Routing Mode</b></span> is set to <span class="parmvalue" id="EN-US_TOPIC_0000002000246717__en-us_topic_0000001592773901_parmvalue529934544214"><b>Dynamic (BGP)</b></span>.</p>
+<p id="EN-US_TOPIC_0000002000246717__en-us_topic_0000001592773901_p060018203119">Enter the ASN of your on-premises data center or private network.</p>
+<p id="EN-US_TOPIC_0000002000246717__en-us_topic_0000001592773901_p161611923212">The BGP ASN of the customer gateway must be different from that of the VPN gateway.</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.28%" headers="mcps1.3.1.2.3.2.2.2.4.1.3 "><p id="EN-US_TOPIC_0000002000246717__en-us_topic_0000001592773901_p744632810518">65000</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000002000246717__en-us_topic_0000001592773901_row1574145013289"><td class="cellrowborder" valign="top" width="21.21%" headers="mcps1.3.1.2.3.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000002000246717__en-us_topic_0000001592773901_p1447631912">Advanced Settings &gt; Tags</p>
+</td>
+<td class="cellrowborder" valign="top" width="50.51%" headers="mcps1.3.1.2.3.2.2.2.4.1.2 "><p id="EN-US_TOPIC_0000002000246717__en-us_topic_0000001592773901_p1480201695515">Configure <span class="parmvalue" id="EN-US_TOPIC_0000002000246717__en-us_topic_0000001592773901_parmvalue17164132817521"><b>Tags</b></span> in <span class="parmname" id="EN-US_TOPIC_0000002000246717__en-us_topic_0000001592773901_parmname16164122835218"><b>Advanced Settings</b></span>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.28%" headers="mcps1.3.1.2.3.2.2.2.4.1.3 "><p id="EN-US_TOPIC_0000002000246717__en-us_topic_0000001592773901_p28995104110">-</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</p></li></ol>
+</div>
+<div class="section" id="EN-US_TOPIC_0000002000246717__en-us_topic_0000001592773901_section1944091617118"><h4 class="sectiontitle">Verification</h4><p id="EN-US_TOPIC_0000002000246717__en-us_topic_0000001592773901_p168631185115">Check the created customer gateway on the <span class="wintitle" id="EN-US_TOPIC_0000002000246717__en-us_topic_0000001592773901_wintitle1118592514316"><b>Customer Gateways</b></span> page.</p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_08_1505.html">Enterprise Edition VPN</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_qs_00008.html b/docs/vpn/umn/vpn_qs_00008.html
new file mode 100644
index 00000000..4bfc5323
--- /dev/null
+++ b/docs/vpn/umn/vpn_qs_00008.html
@@ -0,0 +1,119 @@
+<a name="EN-US_TOPIC_0000001963846432"></a><a name="EN-US_TOPIC_0000001963846432"></a>
+
+<h1 class="topictitle1">Step 3: Creating VPN Connection 1</h1>
+<div id="body8662426"><div class="section" id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_section6180156161713"><h4 class="sectiontitle">Procedure</h4><ol id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_ol196965716319"><li id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_li569175773117"><span><span id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_ph955355484220">In the navigation pane on the left, choose <span class="menucascade" id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_en-us_topic_0000001591897601_menucascade16881163103614"><b><span class="uicontrol" id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_en-us_topic_0000001591897601_uicontrol1262522084410">Virtual Private Network</span></b> &gt; <b><span class="uicontrol" id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_en-us_topic_0000001591897601_uicontrol7625162018443">Enterprise – VPN Connections</span></b></span>.</span></span></li><li id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_li397716217556"><span>On the <span class="wintitle" id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_wintitle8430654551"><b>VPN Connections</b></span> page, click <span class="uicontrol" id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_uicontrol142418219557"><b>Create VPN Connection</b></span>.</span></li><li id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_li969145793112"><span>Set parameters for VPN connection 1 as prompted and click <span class="uicontrol" id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_uicontrol11668713098"><b>Submit</b></span>.</span><p><p id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_p175446487366">The following describes only key parameters. </p>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_d0e2051" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Parameter settings for VPN connection 1</caption><thead align="left"><tr id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_row3103765"><th align="left" class="cellrowborder" valign="top" width="21.43%" id="mcps1.3.1.2.3.2.2.2.4.1.1"><p id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_p50078427">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="47.24%" id="mcps1.3.1.2.3.2.2.2.4.1.2"><p id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_p29820793">Description</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="31.330000000000002%" id="mcps1.3.1.2.3.2.2.2.4.1.3"><p id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_p66674072">Example Value</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_row1395494514511"><td class="cellrowborder" valign="top" width="21.43%" headers="mcps1.3.1.2.3.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_p10638184514442">Name</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.24%" headers="mcps1.3.1.2.3.2.2.2.4.1.2 "><p id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_p36381845114417">Enter the name of VPN connection 1.</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.330000000000002%" headers="mcps1.3.1.2.3.2.2.2.4.1.3 "><p id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_p863819459443">vpn-001</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_row1047164495120"><td class="cellrowborder" valign="top" width="21.43%" headers="mcps1.3.1.2.3.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_p85584494419">VPN Gateway</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.24%" headers="mcps1.3.1.2.3.2.2.2.4.1.2 "><p id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_p5551443441">Select the VPN gateway created in <a href="vpn_03_0204.html#EN-US_TOPIC_0000001963686660">Step 1: Creating a VPN Gateway</a>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.330000000000002%" headers="mcps1.3.1.2.3.2.2.2.4.1.3 "><p id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_p255444154413">vpngw-001</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_row56484908"><td class="cellrowborder" valign="top" width="21.43%" headers="mcps1.3.1.2.3.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_p11874856">Gateway IP Address</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.24%" headers="mcps1.3.1.2.3.2.2.2.4.1.2 "><p id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_p22339313">Select the active EIP of the VPN gateway.</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.330000000000002%" headers="mcps1.3.1.2.3.2.2.2.4.1.3 "><p id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_p1169414501510">11.xx.xx.11</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_row183244509512"><td class="cellrowborder" valign="top" width="21.43%" headers="mcps1.3.1.2.3.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_p103241150105120">Customer Gateway</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.24%" headers="mcps1.3.1.2.3.2.2.2.4.1.2 "><p id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_p732418503513">Select the customer gateway created in <a href="vpn_qs_00007.html#EN-US_TOPIC_0000002000246717">Step 2: Creating a Customer Gateway</a>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.330000000000002%" headers="mcps1.3.1.2.3.2.2.2.4.1.3 "><p id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_p183241350185117">cgw-001</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_row498015372330"><td class="cellrowborder" valign="top" width="21.43%" headers="mcps1.3.1.2.3.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_p846104794213">VPN Type</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.24%" headers="mcps1.3.1.2.3.2.2.2.4.1.2 "><p id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_p148472313612">Select <span class="parmvalue" id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_parmvalue1129816505106"><b>Static routing</b></span>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.330000000000002%" headers="mcps1.3.1.2.3.2.2.2.4.1.3 "><p id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_p191601542114218">Static routing</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_row7924496"><td class="cellrowborder" valign="top" width="21.43%" headers="mcps1.3.1.2.3.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_p37904428">Customer Subnet</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.24%" headers="mcps1.3.1.2.3.2.2.2.4.1.2 "><p id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_p132013366384">Enter the subnet of the on-premises data center that needs to access the VPC.</p>
+<div class="note" id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_note21518383410"><span class="notetitle"> NOTE: </span><div class="notebody"><ul id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_en-us_topic_0000001592573765_ul17589163714580"><li id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_en-us_topic_0000001592573765_li1640715459592">The customer subnet can overlap with the local subnet but cannot be the same as the local subnet.</li><li id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_en-us_topic_0000001592573765_li2863224201912">A customer subnet cannot be included in the existing subnets of the VPC associated with the VPN gateway. It also cannot be the destination address in the route table of the VPC associated with the VPN gateway.</li><li id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_en-us_topic_0000001592573765_li394172763016">Customer subnets cannot be the reserved CIDR blocks of VPCs, for example, 100.64.0.0/10 or 214.0.0.0/8.</li><li id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_en-us_topic_0000001592573765_li156832021624">If the interconnection subnet is associated with an ACL rule, ensure that the ACL rule permits the TCP port for traffic between all local and customer subnets.</li><li id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_en-us_topic_0000001592573765_li13321746144516">Address groups cannot be used to configure the source and destination subnets in a policy on customer gateway devices.</li></ul>
+</div></div>
+</td>
+<td class="cellrowborder" valign="top" width="31.330000000000002%" headers="mcps1.3.1.2.3.2.2.2.4.1.3 "><p id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_p171813216711">172.16.0.0/16</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_row11187142145316"><td class="cellrowborder" valign="top" width="21.43%" headers="mcps1.3.1.2.3.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_p101871642155312">Interface IP Address Assignment</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.24%" headers="mcps1.3.1.2.3.2.2.2.4.1.2 "><p id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_p179551833144110">The options include <span class="parmvalue" id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_parmvalue3674656151719"><b>Manually specify</b></span> and <span class="parmvalue" id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_parmvalue1367495641714"><b>Automatically assign</b></span>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.330000000000002%" headers="mcps1.3.1.2.3.2.2.2.4.1.3 "><p id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_p17187154219537">Manually specify</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_row19689114513"><td class="cellrowborder" valign="top" width="21.43%" headers="mcps1.3.1.2.3.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_p1568611165115">Local Tunnel Interface Address</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.24%" headers="mcps1.3.1.2.3.2.2.2.4.1.2 "><p id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_p268811115114">Specify the tunnel interface address configured on the VPN gateway.</p>
+<div class="note" id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_note185153120427"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_p254315428">The local and remote interface addresses configured on the customer gateway device must be the same as the values of <strong id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_b158722011116">Customer Tunnel Interface IP Address</strong> and <strong id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_b143131922917">Local Tunnel Interface IP Address</strong>, respectively.</p>
+</div></div>
+</td>
+<td class="cellrowborder" valign="top" width="31.330000000000002%" headers="mcps1.3.1.2.3.2.2.2.4.1.3 "><p id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_p597464319119">169.254.70.2/30</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_row54129138517"><td class="cellrowborder" valign="top" width="21.43%" headers="mcps1.3.1.2.3.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_p141281319517">Customer Tunnel Interface Address</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.24%" headers="mcps1.3.1.2.3.2.2.2.4.1.2 "><p id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_p20412151395111">Specify the tunnel interface address configured on the customer gateway device.</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.330000000000002%" headers="mcps1.3.1.2.3.2.2.2.4.1.3 "><p id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_p1758533318111">169.254.70.1/30</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_row868013580532"><td class="cellrowborder" valign="top" width="21.43%" headers="mcps1.3.1.2.3.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_p17680258175311">Link Detection</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.24%" headers="mcps1.3.1.2.3.2.2.2.4.1.2 "><p id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_p49551120131213">This function is used for route reliability detection in multi-link scenarios.</p>
+<div class="note" id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_note1896215583019"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_p11962185813015">When enabling this function, ensure that the customer gateway supports ICMP and is correctly configured with the customer interface IP address of the VPN connection. Otherwise, VPN traffic will fail to be forwarded.</p>
+</div></div>
+</td>
+<td class="cellrowborder" valign="top" width="31.330000000000002%" headers="mcps1.3.1.2.3.2.2.2.4.1.3 "><p id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_p1568010585539"><strong id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_b106392468319">NQA</strong> enabled</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_row6412487"><td class="cellrowborder" valign="top" width="21.43%" headers="mcps1.3.1.2.3.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_p49649410">PSK, Confirm PSK</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.24%" headers="mcps1.3.1.2.3.2.2.2.4.1.2 "><p id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_p26381448133916">Specify the negotiation key of the VPN connection.</p>
+<p id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_p18498155720469">The PSKs configured on the VPN console and the customer gateway device must be the same.</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.330000000000002%" headers="mcps1.3.1.2.3.2.2.2.4.1.3 "><p id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_p3356754">Test@123</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_row1076135815719"><td class="cellrowborder" valign="top" width="21.43%" headers="mcps1.3.1.2.3.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_p10961601186">Policy Settings</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.24%" headers="mcps1.3.1.2.3.2.2.2.4.1.2 "><p id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_p78946357474">Configure the IKE and IPsec policies, which define the encryption algorithms used by the VPN tunnel.</p>
+<p id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_p17862851694">The policy settings on the VPN console and the customer gateway device must be the same.</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.330000000000002%" headers="mcps1.3.1.2.3.2.2.2.4.1.3 "><p id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_p13551182313452">Default</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</p></li></ol>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_section1944091617118"><h4 class="sectiontitle">Verification</h4><p id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_p168631185115">Check the created VPN connection on the <span class="wintitle" id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_wintitle1118592514316"><b>VPN Connections</b></span> page. The initial state of the VPN connection is <span class="parmvalue" id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_parmvalue1391854916320"><b>Creating</b></span>. As the customer gateway device has not been configured, no VPN connection can be established. After about 2 minutes, the VPN connection state changes to <span class="parmvalue" id="EN-US_TOPIC_0000001963846432__en-us_topic_0000001542014514_parmvalue893641013417"><b>Not connected</b></span>.</p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_08_1505.html">Enterprise Edition VPN</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_ug_00001.html b/docs/vpn/umn/vpn_ug_00001.html
new file mode 100644
index 00000000..bf5e550b
--- /dev/null
+++ b/docs/vpn/umn/vpn_ug_00001.html
@@ -0,0 +1,25 @@
+<a name="EN-US_TOPIC_0000001592573629"></a><a name="EN-US_TOPIC_0000001592573629"></a>
+
+<h1 class="topictitle1">Enterprise Edition VPN Gateway Management</h1>
+<div id="body1586310692805"></div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="vpn_04_0421.html">Creating a VPN Gateway</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_ug_00002.html">Viewing a VPN Gateway</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_ug_00003.html">Modifying a VPN Gateway</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_ug_00004.html">Binding an EIP to a VPN Gateway</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_04_0807.html">Unbinding an EIP from a VPN Gateway</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_ug_00007.html">Deleting a VPN Gateway</a></strong><br>
+</li>
+</ul>
+
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_08_1509.html">Enterprise Edition VPN</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_ug_00002.html b/docs/vpn/umn/vpn_ug_00002.html
new file mode 100644
index 00000000..0f19358c
--- /dev/null
+++ b/docs/vpn/umn/vpn_ug_00002.html
@@ -0,0 +1,26 @@
+<a name="EN-US_TOPIC_0000001542333958"></a><a name="EN-US_TOPIC_0000001542333958"></a>
+
+<h1 class="topictitle1">Viewing a VPN Gateway</h1>
+<div id="body1586310693119"><div class="section" id="EN-US_TOPIC_0000001542333958__section7141367"><h4 class="sectiontitle">Scenario</h4><p class="msonormal" id="EN-US_TOPIC_0000001542333958__p7942332">After creating a VPN gateway, you can view its details.</p>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001542333958__section64272308"><h4 class="sectiontitle">Procedure</h4><ol id="EN-US_TOPIC_0000001542333958__ol39349140"><li id="EN-US_TOPIC_0000001542333958__li1161885112464"><span id="EN-US_TOPIC_0000001542333958__ph149997419367">Log in to the management console.</span></li><li id="EN-US_TOPIC_0000001542333958__li1161895184616"><span id="EN-US_TOPIC_0000001542333958__ph587583114385">Click <span><img id="EN-US_TOPIC_0000001542333958__en-us_topic_0000001591897601_image66709190" src="figure/en-us_image_0000001628070572.png" width="19.950000000000003" height="19.950000000000003" title="Click to enlarge" class="imgResize"></span> in the upper left corner and select the desired region and project.</span></li><li id="EN-US_TOPIC_0000001542333958__li13618165134612"><span id="EN-US_TOPIC_0000001542333958__ph910821143918">Click <span><img id="EN-US_TOPIC_0000001542333958__en-us_topic_0000001591897601_image15446151185815" src="figure/en-us_image_0000001923096425.png"></span> in the upper left corner of the page, and choose <span class="menucascade" id="EN-US_TOPIC_0000001542333958__en-us_topic_0000001591897601_menucascade124471851165812"><b><span class="uicontrol" id="EN-US_TOPIC_0000001542333958__en-us_topic_0000001591897601_uicontrol144755165811">Network</span></b> &gt; <b><span class="uicontrol" id="EN-US_TOPIC_0000001542333958__en-us_topic_0000001591897601_uicontrol644725116587">Virtual Private Network</span></b></span>.</span></li><li id="EN-US_TOPIC_0000001542333958__li6618185120465"><span id="EN-US_TOPIC_0000001542333958__ph152910598390">In the navigation pane on the left, choose <span class="menucascade" id="EN-US_TOPIC_0000001542333958__en-us_topic_0000001591897601_menucascade326450115820"><b><span class="uicontrol" id="EN-US_TOPIC_0000001542333958__en-us_topic_0000001591897601_uicontrol25222024174318">Virtual Private Network</span></b> &gt; <b><span class="uicontrol" id="EN-US_TOPIC_0000001542333958__en-us_topic_0000001591897601_uicontrol6523132419431">Enterprise – VPN Gateways</span></b></span>.</span></li><li id="EN-US_TOPIC_0000001542333958__li20417550">On the <span class="wintitle" id="EN-US_TOPIC_0000001542333958__wintitle13236155735610"><b>VPN Gateways</b></span> tab page, view the VPN gateway list.</li><li id="EN-US_TOPIC_0000001542333958__li661811510469">Click the name of a VPN gateway to view its details.<ul id="EN-US_TOPIC_0000001542333958__ul89135201537"><li id="EN-US_TOPIC_0000001542333958__li19913132085318">For a VPN gateway of the public network type, you can view the basic information and EIPs. </li><li id="EN-US_TOPIC_0000001542333958__li7713457165315">For VPN gateways of the private network type, you can view the basic information and advanced settings.</li></ul>
+<div class="fignone" id="EN-US_TOPIC_0000001542333958__fig121633101813"><span class="figcap"><b>Figure 1 </b>Viewing a VPN gateway</span><br><span><img id="EN-US_TOPIC_0000001542333958__image821610311184" src="figure/en-us_image_0000001987536262.png" height="86.2239" width="497.42" title="Click to enlarge" class="imgResize"></span></div>
+<div class="fignone" id="EN-US_TOPIC_0000001542333958__fig74501242152213"><span class="figcap"><b>Figure 2 </b>Viewing details about a VPN gateway</span><br><span><img id="EN-US_TOPIC_0000001542333958__image191712208187" src="figure/en-us_image_0000001987376506.png" height="195.1775" width="497.42" title="Click to enlarge" class="imgResize"></span></div>
+</li></ol>
+<div class="note" id="EN-US_TOPIC_0000001542333958__note1746633011819"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="EN-US_TOPIC_0000001542333958__p17718174091714">In the VPN gateway list, you can click a public IP address in the <strong id="EN-US_TOPIC_0000001542333958__b1738612404262">Gateway IP Address</strong> column of a VPN gateway to go to the EIP page, where you can check EIP metrics by clicking <span><img id="EN-US_TOPIC_0000001542333958__image63885426171" src="figure/en-us_image_0000001911324937.png"></span>.</p>
+</div></div>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_ug_00001.html">Enterprise Edition VPN Gateway Management</a></div>
+</div>
+</div>
+
+
+<script language="JavaScript">
+<!--
+image_size('.imgResize');
+var msg_imageMax = "view original image";
+var msg_imageClose = "close";
+//--></script>
\ No newline at end of file
diff --git a/docs/vpn/umn/vpn_ug_00003.html b/docs/vpn/umn/vpn_ug_00003.html
new file mode 100644
index 00000000..42654e76
--- /dev/null
+++ b/docs/vpn/umn/vpn_ug_00003.html
@@ -0,0 +1,102 @@
+<a name="EN-US_TOPIC_0000001542014738"></a><a name="EN-US_TOPIC_0000001542014738"></a>
+
+<h1 class="topictitle1">Modifying a VPN Gateway</h1>
+<div id="body1586310693396"><div class="section" id="EN-US_TOPIC_0000001542014738__section5803637"><h4 class="sectiontitle">Scenario</h4><p id="EN-US_TOPIC_0000001542014738__p182891749192615">You can modify basic information about a VPN gateway, including the name and local subnet.</p>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001542014738__section77001029111717"><h4 class="sectiontitle">Procedure</h4><ol id="EN-US_TOPIC_0000001542014738__ol16883705"><li id="EN-US_TOPIC_0000001542014738__li17735620"><span id="EN-US_TOPIC_0000001542014738__ph149997419367">Log in to the management console.</span></li><li id="EN-US_TOPIC_0000001542014738__li25402858"><span id="EN-US_TOPIC_0000001542014738__ph587583114385">Click <span><img id="EN-US_TOPIC_0000001542014738__en-us_topic_0000001591897601_image66709190" src="figure/en-us_image_0000001628070572.png" width="19.950000000000003" height="19.950000000000003" title="Click to enlarge" class="imgResize"></span> in the upper left corner and select the desired region and project.</span></li><li id="EN-US_TOPIC_0000001542014738__li44365583"><span id="EN-US_TOPIC_0000001542014738__ph910821143918">Click <span><img id="EN-US_TOPIC_0000001542014738__en-us_topic_0000001591897601_image15446151185815" src="figure/en-us_image_0000001923096425.png"></span> in the upper left corner of the page, and choose <span class="menucascade" id="EN-US_TOPIC_0000001542014738__en-us_topic_0000001591897601_menucascade124471851165812"><b><span class="uicontrol" id="EN-US_TOPIC_0000001542014738__en-us_topic_0000001591897601_uicontrol144755165811">Network</span></b> &gt; <b><span class="uicontrol" id="EN-US_TOPIC_0000001542014738__en-us_topic_0000001591897601_uicontrol644725116587">Virtual Private Network</span></b></span>.</span></li><li id="EN-US_TOPIC_0000001542014738__li63745928"><span id="EN-US_TOPIC_0000001542014738__ph152910598390">In the navigation pane on the left, choose <span class="menucascade" id="EN-US_TOPIC_0000001542014738__en-us_topic_0000001591897601_menucascade326450115820"><b><span class="uicontrol" id="EN-US_TOPIC_0000001542014738__en-us_topic_0000001591897601_uicontrol25222024174318">Virtual Private Network</span></b> &gt; <b><span class="uicontrol" id="EN-US_TOPIC_0000001542014738__en-us_topic_0000001591897601_uicontrol6523132419431">Enterprise – VPN Gateways</span></b></span>.</span></li><li id="EN-US_TOPIC_0000001542014738__li20417550">Locate the row that contains the target VPN gateway, and click <span class="uicontrol" id="EN-US_TOPIC_0000001542014738__uicontrol590154917325"><b>Modify Basic Information</b></span> in the <strong id="EN-US_TOPIC_0000001542014738__b990749163215">Operation</strong> column.<p id="EN-US_TOPIC_0000001542014738__p4814195114815">To modify only the name of a VPN gateway, you can also click <span><img id="EN-US_TOPIC_0000001542014738__image11393155604915" src="figure/en-us_image_0000001542334214.png"></span> on the right of the VPN gateway name.</p>
+</li><li id="EN-US_TOPIC_0000001542014738__li63146583">Modify the name and local subnet of the VPN gateway as prompted.</li><li id="EN-US_TOPIC_0000001542014738__li31448343">Click <span class="uicontrol" id="EN-US_TOPIC_0000001542014738__uicontrol24151535165719"><b>OK</b></span>.</li></ol>
+<div class="fignone" id="EN-US_TOPIC_0000001542014738__fig138011638141915"><span class="figcap"><b>Figure 1 </b>Modifying a VPN gateway</span><br><span><img id="EN-US_TOPIC_0000001542014738__image18801173814191" src="figure/en-us_image_0000002023936425.png" height="392.01750000000004" width="523.6875" title="Click to enlarge" class="imgResize"></span></div>
+<p id="EN-US_TOPIC_0000001542014738__p8412113833320"><a href="#EN-US_TOPIC_0000001542014738__table135441110101713">Table 1</a> describes the parameters for modifying the VPN gateway.</p>
+
+<div class="tablenoborder"><a name="EN-US_TOPIC_0000001542014738__table135441110101713"></a><a name="table135441110101713"></a><table cellpadding="4" cellspacing="0" summary="" id="EN-US_TOPIC_0000001542014738__table135441110101713" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Parameters for modifying the VPN gateway</caption><thead align="left"><tr id="EN-US_TOPIC_0000001542014738__row155440107171"><th align="left" class="cellrowborder" valign="top" width="24.740000000000002%" id="mcps1.3.2.5.2.4.1.1"><p id="EN-US_TOPIC_0000001542014738__p1732553313619">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="39%" id="mcps1.3.2.5.2.4.1.2"><p id="EN-US_TOPIC_0000001542014738__p0544191012174">Description</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="36.26%" id="mcps1.3.2.5.2.4.1.3"><p id="EN-US_TOPIC_0000001542014738__p13544131017176">Modifiable or Not</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="EN-US_TOPIC_0000001542014738__row1854561041718"><td class="cellrowborder" valign="top" width="24.740000000000002%" headers="mcps1.3.2.5.2.4.1.1 "><p id="EN-US_TOPIC_0000001542014738__p18886102511112">Name</p>
+</td>
+<td class="cellrowborder" valign="top" width="39%" headers="mcps1.3.2.5.2.4.1.2 "><p id="EN-US_TOPIC_0000001542014738__p241913166108">Name of a VPN connection. The value can contain only letters, digits, underscores (_), hyphens (-), and periods (.).</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.26%" headers="mcps1.3.2.5.2.4.1.3 "><p id="EN-US_TOPIC_0000001542014738__p5836123715118">Y</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001542014738__row9707201174013"><td class="cellrowborder" valign="top" width="24.740000000000002%" headers="mcps1.3.2.5.2.4.1.1 "><p id="EN-US_TOPIC_0000001542014738__p937507113517">Local Subnet</p>
+</td>
+<td class="cellrowborder" valign="top" width="39%" headers="mcps1.3.2.5.2.4.1.2 "><p id="EN-US_TOPIC_0000001542014738__p23301451175717">VPC subnets with which your on-premises data center needs to communicate through the customer gateway.</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.26%" headers="mcps1.3.2.5.2.4.1.3 "><p id="EN-US_TOPIC_0000001542014738__p15375187153514">Y</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001542014738__row269419493106"><td class="cellrowborder" valign="top" width="24.740000000000002%" headers="mcps1.3.2.5.2.4.1.1 "><p id="EN-US_TOPIC_0000001542014738__p75458105174">Region</p>
+</td>
+<td class="cellrowborder" valign="top" width="39%" headers="mcps1.3.2.5.2.4.1.2 "><p id="EN-US_TOPIC_0000001542014738__p66761030">For low network latency and fast resource access, select the region nearest to your target users.</p>
+<p id="EN-US_TOPIC_0000001542014738__p4603103545611">Resources cannot be shared across regions.</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.26%" headers="mcps1.3.2.5.2.4.1.3 "><p id="EN-US_TOPIC_0000001542014738__p12695134917105">N</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001542014738__row6172336131016"><td class="cellrowborder" valign="top" width="24.740000000000002%" headers="mcps1.3.2.5.2.4.1.1 "><p id="EN-US_TOPIC_0000001542014738__p1254517102175">Associate With</p>
+</td>
+<td class="cellrowborder" valign="top" width="39%" headers="mcps1.3.2.5.2.4.1.2 "><p id="EN-US_TOPIC_0000001542014738__p54371058123017">Select <span class="parmvalue" id="EN-US_TOPIC_0000001542014738__parmvalue11563849141815"><b>VPC</b></span>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.26%" headers="mcps1.3.2.5.2.4.1.3 "><p id="EN-US_TOPIC_0000001542014738__p15173143601017">N</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001542014738__row16887164771019"><td class="cellrowborder" valign="top" width="24.740000000000002%" headers="mcps1.3.2.5.2.4.1.1 "><p id="EN-US_TOPIC_0000001542014738__p15457102179">VPC</p>
+</td>
+<td class="cellrowborder" valign="top" width="39%" headers="mcps1.3.2.5.2.4.1.2 "><p id="EN-US_TOPIC_0000001542014738__p16887147201012">VPC that the on-premises data center needs to access.</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.26%" headers="mcps1.3.2.5.2.4.1.3 "><p id="EN-US_TOPIC_0000001542014738__p118871247161019">N</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001542014738__row3917450191115"><td class="cellrowborder" valign="top" width="24.740000000000002%" headers="mcps1.3.2.5.2.4.1.1 "><p id="EN-US_TOPIC_0000001542014738__p11545161051717">Interconnection Subnet</p>
+</td>
+<td class="cellrowborder" valign="top" width="39%" headers="mcps1.3.2.5.2.4.1.2 "><p id="EN-US_TOPIC_0000001542014738__p13918165011113">This subnet is used for communication between the VPN gateway and VPC. Ensure that the selected interconnection subnet has four or more assignable IP addresses.</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.26%" headers="mcps1.3.2.5.2.4.1.3 "><p id="EN-US_TOPIC_0000001542014738__p9918185011111">N</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001542014738__row14744115221119"><td class="cellrowborder" valign="top" width="24.740000000000002%" headers="mcps1.3.2.5.2.4.1.1 "><p id="EN-US_TOPIC_0000001542014738__p654513101176">BGP ASN</p>
+</td>
+<td class="cellrowborder" valign="top" width="39%" headers="mcps1.3.2.5.2.4.1.2 "><p id="EN-US_TOPIC_0000001542014738__p6745552191118">BGP AS number.</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.26%" headers="mcps1.3.2.5.2.4.1.3 "><p id="EN-US_TOPIC_0000001542014738__p16745175231120">N</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001542014738__row3769135441116"><td class="cellrowborder" valign="top" width="24.740000000000002%" headers="mcps1.3.2.5.2.4.1.1 "><p id="EN-US_TOPIC_0000001542014738__p343654417168">Specification</p>
+</td>
+<td class="cellrowborder" valign="top" width="39%" headers="mcps1.3.2.5.2.4.1.2 "><p id="EN-US_TOPIC_0000001542014738__p19491635475">Three options are available: <strong id="EN-US_TOPIC_0000001542014738__b11444630163519">Basic</strong>, <strong id="EN-US_TOPIC_0000001542014738__b7444330143511">Professional 1</strong> and <strong id="EN-US_TOPIC_0000001542014738__b19444030143518">Professional 2</strong>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.26%" headers="mcps1.3.2.5.2.4.1.3 "><p id="EN-US_TOPIC_0000001542014738__p843710441169">N</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001542014738__row58127156126"><td class="cellrowborder" valign="top" width="24.740000000000002%" headers="mcps1.3.2.5.2.4.1.1 "><p id="EN-US_TOPIC_0000001542014738__p2054541019171">AZ</p>
+</td>
+<td class="cellrowborder" valign="top" width="39%" headers="mcps1.3.2.5.2.4.1.2 "><p id="EN-US_TOPIC_0000001542014738__p199681998502">An AZ is a geographic location with independent power supply and network facilities in a region. AZs in the same VPC are interconnected through private networks and are physically isolated.</p>
+<ul id="EN-US_TOPIC_0000001542014738__ul137361211762"><li id="EN-US_TOPIC_0000001542014738__li10785371258">If two or more AZs are available, select two AZs.<p id="EN-US_TOPIC_0000001542014738__p2068613862517"><a name="EN-US_TOPIC_0000001542014738__li10785371258"></a><a name="li10785371258"></a>The VPN gateway deployed in two AZs has higher availability. You are advised to select the AZs where resources in the VPC are located.</p>
+</li><li id="EN-US_TOPIC_0000001542014738__li723184892517">If only one AZ is available, select this AZ.</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="36.26%" headers="mcps1.3.2.5.2.4.1.3 "><p id="EN-US_TOPIC_0000001542014738__p28131915151213">N</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_ug_00001.html">Enterprise Edition VPN Gateway Management</a></div>
+</div>
+</div>
+
+
+<script language="JavaScript">
+<!--
+image_size('.imgResize');
+var msg_imageMax = "view original image";
+var msg_imageClose = "close";
+//--></script>
\ No newline at end of file
diff --git a/docs/vpn/umn/vpn_ug_00004.html b/docs/vpn/umn/vpn_ug_00004.html
new file mode 100644
index 00000000..222898db
--- /dev/null
+++ b/docs/vpn/umn/vpn_ug_00004.html
@@ -0,0 +1,26 @@
+<a name="EN-US_TOPIC_0000001592573533"></a><a name="EN-US_TOPIC_0000001592573533"></a>
+
+<h1 class="topictitle1">Binding an EIP to a VPN Gateway</h1>
+<div id="body1606292158838"><div class="section" id="EN-US_TOPIC_0000001592573533__section7141367"><h4 class="sectiontitle">Scenario</h4><p class="msonormal" id="EN-US_TOPIC_0000001592573533__p7942332">You can bind EIPs to a VPN gateway that has been created.</p>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001592573533__section11751173522910"><h4 class="sectiontitle">Procedure</h4><ol id="EN-US_TOPIC_0000001592573533__ol39349140"><li id="EN-US_TOPIC_0000001592573533__li1161885112464"><span id="EN-US_TOPIC_0000001592573533__ph149997419367">Log in to the management console.</span></li><li id="EN-US_TOPIC_0000001592573533__li1161895184616"><span id="EN-US_TOPIC_0000001592573533__ph587583114385">Click <span><img id="EN-US_TOPIC_0000001592573533__en-us_topic_0000001591897601_image66709190" src="figure/en-us_image_0000001628070572.png" width="19.950000000000003" height="19.950000000000003" title="Click to enlarge" class="imgResize"></span> in the upper left corner and select the desired region and project.</span></li><li id="EN-US_TOPIC_0000001592573533__li13618165134612"><span id="EN-US_TOPIC_0000001592573533__ph910821143918">Click <span><img id="EN-US_TOPIC_0000001592573533__en-us_topic_0000001591897601_image15446151185815" src="figure/en-us_image_0000001923096425.png"></span> in the upper left corner of the page, and choose <span class="menucascade" id="EN-US_TOPIC_0000001592573533__en-us_topic_0000001591897601_menucascade124471851165812"><b><span class="uicontrol" id="EN-US_TOPIC_0000001592573533__en-us_topic_0000001591897601_uicontrol144755165811">Network</span></b> &gt; <b><span class="uicontrol" id="EN-US_TOPIC_0000001592573533__en-us_topic_0000001591897601_uicontrol644725116587">Virtual Private Network</span></b></span>.</span></li><li id="EN-US_TOPIC_0000001592573533__li6618185120465"><span id="EN-US_TOPIC_0000001592573533__ph152910598390">In the navigation pane on the left, choose <span class="menucascade" id="EN-US_TOPIC_0000001592573533__en-us_topic_0000001591897601_menucascade326450115820"><b><span class="uicontrol" id="EN-US_TOPIC_0000001592573533__en-us_topic_0000001591897601_uicontrol25222024174318">Virtual Private Network</span></b> &gt; <b><span class="uicontrol" id="EN-US_TOPIC_0000001592573533__en-us_topic_0000001591897601_uicontrol6523132419431">Enterprise – VPN Gateways</span></b></span>.</span></li><li id="EN-US_TOPIC_0000001592573533__li2684517131515">Locate the row that contains the target VPN gateway, and click <span class="uicontrol" id="EN-US_TOPIC_0000001592573533__uicontrol662912359345"><b>Bind EIP</b></span> in the <strong id="EN-US_TOPIC_0000001592573533__b8629163503410">Operation</strong> column.<ul id="EN-US_TOPIC_0000001592573533__ul535065017570"><li id="EN-US_TOPIC_0000001592573533__li173505500573">If the VPN gateway uses the active-active mode, the VPN gateway can have an active EIP and active EIP 2 bound.</li><li id="EN-US_TOPIC_0000001592573533__li30552155713">If the VPN gateway uses the active/standby mode, the VPN gateway can have an active EIP and a standby EIP bound.</li></ul>
+</li><li id="EN-US_TOPIC_0000001592573533__li661811510469">Select the desired EIP and click <span class="uicontrol" id="EN-US_TOPIC_0000001592573533__uicontrol412719318594"><b>OK</b></span>.</li></ol>
+<div class="fignone" id="EN-US_TOPIC_0000001592573533__fig11280173463810"><span class="figcap"><b>Figure 1 </b>Binding the active EIP in active-active mode</span><br><span><img id="EN-US_TOPIC_0000001592573533__image9281173493814" src="figure/en-us_image_0000002023936993.png" width="523.6875" height="296.777663" title="Click to enlarge" class="imgResize"></span></div>
+<div class="fignone" id="EN-US_TOPIC_0000001592573533__fig1954216116433"><span class="figcap"><b>Figure 2 </b>Binding active EIP 2 in active-active mode</span><br><span><img id="EN-US_TOPIC_0000001592573533__image10543114438" src="figure/en-us_image_0000001987536950.png" height="267.33000000000004" width="523.6875" title="Click to enlarge" class="imgResize"></span></div>
+<div class="fignone" id="EN-US_TOPIC_0000001592573533__fig157951442174719"><span class="figcap"><b>Figure 3 </b>Binding the active EIP in active/standby mode</span><br><span><img id="EN-US_TOPIC_0000001592573533__image3202712184717" src="figure/en-us_image_0000001987537386.png" height="286.2825" width="523.6875" title="Click to enlarge" class="imgResize"></span></div>
+<div class="fignone" id="EN-US_TOPIC_0000001592573533__fig1232061111481"><span class="figcap"><b>Figure 4 </b>Binding the standby EIP in active/standby mode</span><br><span><img id="EN-US_TOPIC_0000001592573533__image19651828488" src="figure/en-us_image_0000002024056937.png" height="265.33500000000004" width="523.6875" title="Click to enlarge" class="imgResize"></span></div>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_ug_00001.html">Enterprise Edition VPN Gateway Management</a></div>
+</div>
+</div>
+
+
+<script language="JavaScript">
+<!--
+image_size('.imgResize');
+var msg_imageMax = "view original image";
+var msg_imageClose = "close";
+//--></script>
\ No newline at end of file
diff --git a/docs/vpn/umn/vpn_ug_00007.html b/docs/vpn/umn/vpn_ug_00007.html
new file mode 100644
index 00000000..117c99f0
--- /dev/null
+++ b/docs/vpn/umn/vpn_ug_00007.html
@@ -0,0 +1,25 @@
+<a name="EN-US_TOPIC_0000001592773781"></a><a name="EN-US_TOPIC_0000001592773781"></a>
+
+<h1 class="topictitle1">Deleting a VPN Gateway</h1>
+<div id="body0000001348041022"><div class="section" id="EN-US_TOPIC_0000001592773781__section13176183482415"><h4 class="sectiontitle">Scenario</h4><p id="EN-US_TOPIC_0000001592773781__p1292174962513">You can delete a VPN gateway that is no longer required.</p>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001592773781__section1442712917136"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="EN-US_TOPIC_0000001592773781__ul1642710921315"><li id="EN-US_TOPIC_0000001592773781__li1942749111318">The delete operation is not supported for a VPN gateway that is being created, updated, or deleted.</li><li id="EN-US_TOPIC_0000001592773781__li14427294131">If a VPN gateway has VPN connections configured, you need to delete all the VPN connections before deleting the VPN gateway.<p id="EN-US_TOPIC_0000001592773781__p144271981311"><a name="EN-US_TOPIC_0000001592773781__li14427294131"></a><a name="li14427294131"></a>For details about how to delete a VPN connection, see <a href="vpn_04_1003.html">Deleting a VPN Connection</a>.</p>
+</li></ul>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001592773781__section35089332475"><h4 class="sectiontitle">Procedure</h4><ol id="EN-US_TOPIC_0000001592773781__ol195081933154712"><li id="EN-US_TOPIC_0000001592773781__li697017340180"><span id="EN-US_TOPIC_0000001592773781__ph149997419367">Log in to the management console.</span></li><li id="EN-US_TOPIC_0000001592773781__li297083418186"><span id="EN-US_TOPIC_0000001592773781__ph587583114385">Click <span><img id="EN-US_TOPIC_0000001592773781__en-us_topic_0000001591897601_image66709190" src="figure/en-us_image_0000001628070572.png" width="19.950000000000003" height="19.950000000000003" title="Click to enlarge" class="imgResize"></span> in the upper left corner and select the desired region and project.</span></li><li id="EN-US_TOPIC_0000001592773781__li756320276717"><span id="EN-US_TOPIC_0000001592773781__ph910821143918">Click <span><img id="EN-US_TOPIC_0000001592773781__en-us_topic_0000001591897601_image15446151185815" src="figure/en-us_image_0000001923096425.png"></span> in the upper left corner of the page, and choose <span class="menucascade" id="EN-US_TOPIC_0000001592773781__en-us_topic_0000001591897601_menucascade124471851165812"><b><span class="uicontrol" id="EN-US_TOPIC_0000001592773781__en-us_topic_0000001591897601_uicontrol144755165811">Network</span></b> &gt; <b><span class="uicontrol" id="EN-US_TOPIC_0000001592773781__en-us_topic_0000001591897601_uicontrol644725116587">Virtual Private Network</span></b></span>.</span></li><li id="EN-US_TOPIC_0000001592773781__li17314121020514"><span id="EN-US_TOPIC_0000001592773781__ph152910598390">In the navigation pane on the left, choose <span class="menucascade" id="EN-US_TOPIC_0000001592773781__en-us_topic_0000001591897601_menucascade326450115820"><b><span class="uicontrol" id="EN-US_TOPIC_0000001592773781__en-us_topic_0000001591897601_uicontrol25222024174318">Virtual Private Network</span></b> &gt; <b><span class="uicontrol" id="EN-US_TOPIC_0000001592773781__en-us_topic_0000001591897601_uicontrol6523132419431">Enterprise – VPN Gateways</span></b></span>.</span></li><li id="EN-US_TOPIC_0000001592773781__li99375519349">If the number of bound EIPs is less than or equal to 1, choose <span class="menucascade" id="EN-US_TOPIC_0000001592773781__menucascade18395301206"><b><span class="uicontrol" id="EN-US_TOPIC_0000001592773781__uicontrol1239519014204">More</span></b> &gt; <b><span class="uicontrol" id="EN-US_TOPIC_0000001592773781__uicontrol16395160142012">Delete</span></b></span> in the <strong id="EN-US_TOPIC_0000001592773781__b183968019207">Operation</strong> column of the target VPN gateway.<p id="EN-US_TOPIC_0000001592773781__p15730145918341">If the number of bound EIPs is greater than 1, click <strong id="EN-US_TOPIC_0000001592773781__b1890019172010">Delete</strong> in the <strong id="EN-US_TOPIC_0000001592773781__b390115916206">Operation</strong> column of the target VPN gateway.</p>
+</li><li id="EN-US_TOPIC_0000001592773781__li76241828113516">In the displayed dialog box, click <strong id="EN-US_TOPIC_0000001592773781__b1999154883919">Yes</strong>.</li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_ug_00001.html">Enterprise Edition VPN Gateway Management</a></div>
+</div>
+</div>
+
+
+<script language="JavaScript">
+<!--
+image_size('.imgResize');
+var msg_imageMax = "view original image";
+var msg_imageClose = "close";
+//--></script>
\ No newline at end of file
diff --git a/docs/vpn/umn/vpn_ug_00008.html b/docs/vpn/umn/vpn_ug_00008.html
new file mode 100644
index 00000000..cc845709
--- /dev/null
+++ b/docs/vpn/umn/vpn_ug_00008.html
@@ -0,0 +1,21 @@
+<a name="EN-US_TOPIC_0000001542173998"></a><a name="EN-US_TOPIC_0000001542173998"></a>
+
+<h1 class="topictitle1">Customer Gateway Management of Enterprise Edition VPN</h1>
+<div id="body1586310694409"></div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="vpn_04_0431.html">Creating a Customer Gateway</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_ug_00009.html">Viewing a Customer Gateway</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_ug_00010.html">Modifying a Customer Gateway</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_ug_00011.html">Deleting a Customer Gateway</a></strong><br>
+</li>
+</ul>
+
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_08_1509.html">Enterprise Edition VPN</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_ug_00009.html b/docs/vpn/umn/vpn_ug_00009.html
new file mode 100644
index 00000000..1536f2b1
--- /dev/null
+++ b/docs/vpn/umn/vpn_ug_00009.html
@@ -0,0 +1,24 @@
+<a name="EN-US_TOPIC_0000001542174362"></a><a name="EN-US_TOPIC_0000001542174362"></a>
+
+<h1 class="topictitle1">Viewing a Customer Gateway</h1>
+<div id="body1586310694412"><div class="section" id="EN-US_TOPIC_0000001542174362__section7141367"><h4 class="sectiontitle">Scenario</h4><p class="msonormal" id="EN-US_TOPIC_0000001542174362__p7942332">After creating a customer gateway, you can view its details.</p>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001542174362__section161546712813"><h4 class="sectiontitle">Procedure</h4><ol id="EN-US_TOPIC_0000001542174362__ol39349140"><li id="EN-US_TOPIC_0000001542174362__li1161885112464"><span id="EN-US_TOPIC_0000001542174362__ph149997419367">Log in to the management console.</span></li><li id="EN-US_TOPIC_0000001542174362__li1161895184616"><span id="EN-US_TOPIC_0000001542174362__ph587583114385">Click <span><img id="EN-US_TOPIC_0000001542174362__en-us_topic_0000001591897601_image66709190" src="figure/en-us_image_0000001628070572.png" width="19.950000000000003" height="19.950000000000003" title="Click to enlarge" class="imgResize"></span> in the upper left corner and select the desired region and project.</span></li><li id="EN-US_TOPIC_0000001542174362__li13618165134612"><span id="EN-US_TOPIC_0000001542174362__ph910821143918">Click <span><img id="EN-US_TOPIC_0000001542174362__en-us_topic_0000001591897601_image15446151185815" src="figure/en-us_image_0000001923096425.png"></span> in the upper left corner of the page, and choose <span class="menucascade" id="EN-US_TOPIC_0000001542174362__en-us_topic_0000001591897601_menucascade124471851165812"><b><span class="uicontrol" id="EN-US_TOPIC_0000001542174362__en-us_topic_0000001591897601_uicontrol144755165811">Network</span></b> &gt; <b><span class="uicontrol" id="EN-US_TOPIC_0000001542174362__en-us_topic_0000001591897601_uicontrol644725116587">Virtual Private Network</span></b></span>.</span></li><li id="EN-US_TOPIC_0000001542174362__li6618185120465"><span id="EN-US_TOPIC_0000001542174362__ph13723694110">In the navigation pane on the left, choose <span class="menucascade" id="EN-US_TOPIC_0000001542174362__en-us_topic_0000001591897601_menucascade1867554123416"><b><span class="uicontrol" id="EN-US_TOPIC_0000001542174362__en-us_topic_0000001591897601_uicontrol197779532435">Virtual Private Network</span></b> &gt; <b><span class="uicontrol" id="EN-US_TOPIC_0000001542174362__en-us_topic_0000001591897601_uicontrol377711533436">Enterprise – Customer Gateways</span></b></span>.</span></li><li id="EN-US_TOPIC_0000001542174362__li20417550">On the <span class="wintitle" id="EN-US_TOPIC_0000001542174362__wintitle116291715181310"><b>Customer Gateways</b></span> page, view the customer gateway list.</li><li id="EN-US_TOPIC_0000001542174362__li798514261772">Click the name of a customer gateway to view its details.<ul id="EN-US_TOPIC_0000001542174362__ul18961550191119"><li id="EN-US_TOPIC_0000001542174362__li19964506113">In the <strong id="EN-US_TOPIC_0000001542174362__b955019181430">Basic Information</strong> area, you can view the <strong id="EN-US_TOPIC_0000001542174362__b19660112517501">Name</strong>, <strong id="EN-US_TOPIC_0000001542174362__b1092215591504">ID</strong>, <strong id="EN-US_TOPIC_0000001542174362__b8704201665117">Routing Mode</strong>, <strong id="EN-US_TOPIC_0000001542174362__b6584192018517">BGP ASN</strong>, <strong id="EN-US_TOPIC_0000001542174362__b3607125195118">Gateway IP Address</strong>, and <strong id="EN-US_TOPIC_0000001542174362__b109742316512">VPN Connection</strong> of the customer gateway.</li></ul>
+<div class="fignone" id="EN-US_TOPIC_0000001542174362__fig1938584342111"><span class="figcap"><b>Figure 1 </b>Viewing a customer gateway</span><br><span><img id="EN-US_TOPIC_0000001542174362__image3386443172117" src="figure/en-us_image_0000001888117061.png" height="77.69860000000001" width="497.42" title="Click to enlarge" class="imgResize"></span></div>
+<p id="EN-US_TOPIC_0000001542174362__p59670915016"><span><img id="EN-US_TOPIC_0000001542174362__image9583416165911" src="figure/en-us_image_0000001841927836.png" height="199.91230000000002" width="497.42" title="Click to enlarge" class="imgResize"></span></p>
+</li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_ug_00008.html">Customer Gateway Management of Enterprise Edition VPN</a></div>
+</div>
+</div>
+
+
+<script language="JavaScript">
+<!--
+image_size('.imgResize');
+var msg_imageMax = "view original image";
+var msg_imageClose = "close";
+//--></script>
\ No newline at end of file
diff --git a/docs/vpn/umn/vpn_ug_00010.html b/docs/vpn/umn/vpn_ug_00010.html
new file mode 100644
index 00000000..2d7d8fd2
--- /dev/null
+++ b/docs/vpn/umn/vpn_ug_00010.html
@@ -0,0 +1,55 @@
+<a name="EN-US_TOPIC_0000001592773721"></a><a name="EN-US_TOPIC_0000001592773721"></a>
+
+<h1 class="topictitle1">Modifying a Customer Gateway</h1>
+<div id="body1606359501108"><div class="section" id="EN-US_TOPIC_0000001592773721__section7141367"><h4 class="sectiontitle">Scenario</h4><p class="msonormal" id="EN-US_TOPIC_0000001592773721__p7942332">After creating a customer gateway, you can modify its name. </p>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001592773721__section161546712813"><h4 class="sectiontitle">Procedure</h4><ol id="EN-US_TOPIC_0000001592773721__ol39349140"><li id="EN-US_TOPIC_0000001592773721__li1161885112464"><span id="EN-US_TOPIC_0000001592773721__ph149997419367">Log in to the management console.</span></li><li id="EN-US_TOPIC_0000001592773721__li1161895184616"><span id="EN-US_TOPIC_0000001592773721__ph587583114385">Click <span><img id="EN-US_TOPIC_0000001592773721__en-us_topic_0000001591897601_image66709190" src="figure/en-us_image_0000001628070572.png" width="19.950000000000003" height="19.950000000000003" title="Click to enlarge" class="imgResize"></span> in the upper left corner and select the desired region and project.</span></li><li id="EN-US_TOPIC_0000001592773721__li13618165134612"><span id="EN-US_TOPIC_0000001592773721__ph910821143918">Click <span><img id="EN-US_TOPIC_0000001592773721__en-us_topic_0000001591897601_image15446151185815" src="figure/en-us_image_0000001923096425.png"></span> in the upper left corner of the page, and choose <span class="menucascade" id="EN-US_TOPIC_0000001592773721__en-us_topic_0000001591897601_menucascade124471851165812"><b><span class="uicontrol" id="EN-US_TOPIC_0000001592773721__en-us_topic_0000001591897601_uicontrol144755165811">Network</span></b> &gt; <b><span class="uicontrol" id="EN-US_TOPIC_0000001592773721__en-us_topic_0000001591897601_uicontrol644725116587">Virtual Private Network</span></b></span>.</span></li><li id="EN-US_TOPIC_0000001592773721__li6618185120465"><span id="EN-US_TOPIC_0000001592773721__ph13723694110">In the navigation pane on the left, choose <span class="menucascade" id="EN-US_TOPIC_0000001592773721__en-us_topic_0000001591897601_menucascade1867554123416"><b><span class="uicontrol" id="EN-US_TOPIC_0000001592773721__en-us_topic_0000001591897601_uicontrol197779532435">Virtual Private Network</span></b> &gt; <b><span class="uicontrol" id="EN-US_TOPIC_0000001592773721__en-us_topic_0000001591897601_uicontrol377711533436">Enterprise – Customer Gateways</span></b></span>.</span></li><li id="EN-US_TOPIC_0000001592773721__li20417550">On the <span class="wintitle" id="EN-US_TOPIC_0000001592773721__wintitle1182132791416"><b>Customer Gateways</b></span> page, click <span><img id="EN-US_TOPIC_0000001592773721__image16732153571616" src="figure/en-us_image_0000001542494178.png"></span> next to the name of a customer gateway.</li><li id="EN-US_TOPIC_0000001592773721__li127112467163">Enter a new name for the customer gateway and click <strong id="EN-US_TOPIC_0000001592773721__b57661534124610">OK</strong>.<div class="p" id="EN-US_TOPIC_0000001592773721__p6439628143117"><a href="#EN-US_TOPIC_0000001592773721__table135441110101713">Table 1</a> describes the parameters related to customer gateway modification.
+<div class="tablenoborder"><a name="EN-US_TOPIC_0000001592773721__table135441110101713"></a><a name="table135441110101713"></a><table cellpadding="4" cellspacing="0" summary="" id="EN-US_TOPIC_0000001592773721__table135441110101713" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Parameters related to customer gateway modification</caption><thead align="left"><tr id="EN-US_TOPIC_0000001592773721__row155440107171"><th align="left" class="cellrowborder" valign="top" width="24.860000000000003%" id="mcps1.3.2.2.6.2.2.2.4.1.1"><p id="EN-US_TOPIC_0000001592773721__p1732553313619">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="38.93000000000001%" id="mcps1.3.2.2.6.2.2.2.4.1.2"><p id="EN-US_TOPIC_0000001592773721__p0544191012174">Description</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="36.21%" id="mcps1.3.2.2.6.2.2.2.4.1.3"><p id="EN-US_TOPIC_0000001592773721__p13544131017176">Modifiable or Not</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="EN-US_TOPIC_0000001592773721__row1854561041718"><td class="cellrowborder" valign="top" width="24.860000000000003%" headers="mcps1.3.2.2.6.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000001592773721__p18886102511112">Name</p>
+</td>
+<td class="cellrowborder" valign="top" width="38.93000000000001%" headers="mcps1.3.2.2.6.2.2.2.4.1.2 "><p id="EN-US_TOPIC_0000001592773721__p241913166108">Name of a VPN connection. The value can contain only letters, digits, underscores (_), hyphens (-), and periods (.).</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.21%" headers="mcps1.3.2.2.6.2.2.2.4.1.3 "><p id="EN-US_TOPIC_0000001592773721__p5836123715118">Y</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001592773721__row857855191015"><td class="cellrowborder" valign="top" width="24.860000000000003%" headers="mcps1.3.2.2.6.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000001592773721__li21781935103010p0">BGP ASN</p>
+</td>
+<td class="cellrowborder" valign="top" width="38.93000000000001%" headers="mcps1.3.2.2.6.2.2.2.4.1.2 ">The BGP ASN needs to be specified only when <span class="parmname" id="EN-US_TOPIC_0000001592773721__parmname1361741173115"><b>Routing Mode</b></span> is set to <span class="parmvalue" id="EN-US_TOPIC_0000001592773721__parmvalue10613419313"><b>Dynamic (BGP)</b></span>.</td>
+<td class="cellrowborder" valign="top" width="36.21%" headers="mcps1.3.2.2.6.2.2.2.4.1.3 "><p id="EN-US_TOPIC_0000001592773721__p13579155113109">N</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001592773721__row269419493106"><td class="cellrowborder" valign="top" width="24.860000000000003%" headers="mcps1.3.2.2.6.2.2.2.4.1.1 "><p id="EN-US_TOPIC_0000001592773721__p478511571048">Gateway IP Address</p>
+</td>
+<td class="cellrowborder" valign="top" width="38.93000000000001%" headers="mcps1.3.2.2.6.2.2.2.4.1.2 "><p id="EN-US_TOPIC_0000001592773721__p1739971954">IP address used by the customer gateway to communicate with the VPN gateway. The value must be a static address.</p>
+<p id="EN-US_TOPIC_0000001592773721__p16393719516">Ensure that UDP port 4500 is permitted in a firewall rule on the customer gateway in your on-premises data center or private network.</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.21%" headers="mcps1.3.2.2.6.2.2.2.4.1.3 "><p id="EN-US_TOPIC_0000001592773721__p12695134917105">N</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+</li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_ug_00008.html">Customer Gateway Management of Enterprise Edition VPN</a></div>
+</div>
+</div>
+
+
+<script language="JavaScript">
+<!--
+image_size('.imgResize');
+var msg_imageMax = "view original image";
+var msg_imageClose = "close";
+//--></script>
\ No newline at end of file
diff --git a/docs/vpn/umn/vpn_ug_00011.html b/docs/vpn/umn/vpn_ug_00011.html
new file mode 100644
index 00000000..ba968ce9
--- /dev/null
+++ b/docs/vpn/umn/vpn_ug_00011.html
@@ -0,0 +1,23 @@
+<a name="EN-US_TOPIC_0000001592694113"></a><a name="EN-US_TOPIC_0000001592694113"></a>
+
+<h1 class="topictitle1">Deleting a Customer Gateway</h1>
+<div id="body1606359501108"><div class="section" id="EN-US_TOPIC_0000001592694113__section7141367"><h4 class="sectiontitle">Scenario</h4><p class="msonormal" id="EN-US_TOPIC_0000001592694113__p7942332">You can delete a customer gateway that you have created.</p>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001592694113__section75739444311"><h4 class="sectiontitle">Notes and Constraints</h4><p id="EN-US_TOPIC_0000001592694113__p340654513319">Before deleting a customer gateway associated with a VPN connection, remove the customer gateway from the VPN connection.</p>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001592694113__section161546712813"><h4 class="sectiontitle">Procedure</h4><ol id="EN-US_TOPIC_0000001592694113__ol39349140"><li id="EN-US_TOPIC_0000001592694113__li1161885112464"><span id="EN-US_TOPIC_0000001592694113__ph149997419367">Log in to the management console.</span></li><li id="EN-US_TOPIC_0000001592694113__li1161895184616"><span id="EN-US_TOPIC_0000001592694113__ph587583114385">Click <span><img id="EN-US_TOPIC_0000001592694113__en-us_topic_0000001591897601_image66709190" src="figure/en-us_image_0000001628070572.png" width="19.950000000000003" height="19.950000000000003" title="Click to enlarge" class="imgResize"></span> in the upper left corner and select the desired region and project.</span></li><li id="EN-US_TOPIC_0000001592694113__li13618165134612"><span id="EN-US_TOPIC_0000001592694113__ph910821143918">Click <span><img id="EN-US_TOPIC_0000001592694113__en-us_topic_0000001591897601_image15446151185815" src="figure/en-us_image_0000001923096425.png"></span> in the upper left corner of the page, and choose <span class="menucascade" id="EN-US_TOPIC_0000001592694113__en-us_topic_0000001591897601_menucascade124471851165812"><b><span class="uicontrol" id="EN-US_TOPIC_0000001592694113__en-us_topic_0000001591897601_uicontrol144755165811">Network</span></b> &gt; <b><span class="uicontrol" id="EN-US_TOPIC_0000001592694113__en-us_topic_0000001591897601_uicontrol644725116587">Virtual Private Network</span></b></span>.</span></li><li id="EN-US_TOPIC_0000001592694113__li6618185120465"><span id="EN-US_TOPIC_0000001592694113__ph13723694110">In the navigation pane on the left, choose <span class="menucascade" id="EN-US_TOPIC_0000001592694113__en-us_topic_0000001591897601_menucascade1867554123416"><b><span class="uicontrol" id="EN-US_TOPIC_0000001592694113__en-us_topic_0000001591897601_uicontrol197779532435">Virtual Private Network</span></b> &gt; <b><span class="uicontrol" id="EN-US_TOPIC_0000001592694113__en-us_topic_0000001591897601_uicontrol377711533436">Enterprise – Customer Gateways</span></b></span>.</span></li><li id="EN-US_TOPIC_0000001592694113__li20417550">On the <span class="wintitle" id="EN-US_TOPIC_0000001592694113__wintitle1182132791416"><b>Customer Gateways</b></span> page, locate the customer gateway to delete, and click <strong id="EN-US_TOPIC_0000001592694113__b13937161374718">Delete</strong> in the <strong id="EN-US_TOPIC_0000001592694113__b13937613174711">Operation</strong> column.</li><li id="EN-US_TOPIC_0000001592694113__li127112467163">Click <strong id="EN-US_TOPIC_0000001592694113__b0991121619473">Yes</strong>.</li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_ug_00008.html">Customer Gateway Management of Enterprise Edition VPN</a></div>
+</div>
+</div>
+
+
+<script language="JavaScript">
+<!--
+image_size('.imgResize');
+var msg_imageMax = "view original image";
+var msg_imageClose = "close";
+//--></script>
\ No newline at end of file
diff --git a/docs/vpn/umn/vpn_ug_00012.html b/docs/vpn/umn/vpn_ug_00012.html
new file mode 100644
index 00000000..b964cf0f
--- /dev/null
+++ b/docs/vpn/umn/vpn_ug_00012.html
@@ -0,0 +1,23 @@
+<a name="EN-US_TOPIC_0000001542334078"></a><a name="EN-US_TOPIC_0000001542334078"></a>
+
+<h1 class="topictitle1">Enterprise Edition VPN Connection Management</h1>
+<div id="body1586310691866"></div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="vpn_04_0441.html">Creating a VPN Connection</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_ug_00023.html">Configuring Health Check</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_ug_00013.html">Viewing a VPN Connection</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_ug_00014.html">Modifying a VPN Connection</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_04_1003.html">Deleting a VPN Connection</a></strong><br>
+</li>
+</ul>
+
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_08_1509.html">Enterprise Edition VPN</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_ug_00013.html b/docs/vpn/umn/vpn_ug_00013.html
new file mode 100644
index 00000000..275e0f4b
--- /dev/null
+++ b/docs/vpn/umn/vpn_ug_00013.html
@@ -0,0 +1,25 @@
+<a name="EN-US_TOPIC_0000001542333826"></a><a name="EN-US_TOPIC_0000001542333826"></a>
+
+<h1 class="topictitle1">Viewing a VPN Connection</h1>
+<div id="body1586310692155"><div class="section" id="EN-US_TOPIC_0000001542333826__section4807291"><h4 class="sectiontitle">Scenario</h4><p class="msonormal" id="EN-US_TOPIC_0000001542333826__p24625548">After creating a VPN connection, you can view its details.</p>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001542333826__section43265626"><h4 class="sectiontitle">Procedure</h4><ol id="EN-US_TOPIC_0000001542333826__ol48512395"><li id="EN-US_TOPIC_0000001542333826__li33958374"><span id="EN-US_TOPIC_0000001542333826__ph149997419367">Log in to the management console.</span></li><li id="EN-US_TOPIC_0000001542333826__li912018211531"><span id="EN-US_TOPIC_0000001542333826__ph587583114385">Click <span><img id="EN-US_TOPIC_0000001542333826__en-us_topic_0000001591897601_image66709190" src="figure/en-us_image_0000001628070572.png" width="19.950000000000003" height="19.950000000000003" title="Click to enlarge" class="imgResize"></span> in the upper left corner and select the desired region and project.</span></li><li id="EN-US_TOPIC_0000001542333826__li66273811"><span id="EN-US_TOPIC_0000001542333826__ph910821143918">Click <span><img id="EN-US_TOPIC_0000001542333826__en-us_topic_0000001591897601_image15446151185815" src="figure/en-us_image_0000001923096425.png"></span> in the upper left corner of the page, and choose <span class="menucascade" id="EN-US_TOPIC_0000001542333826__en-us_topic_0000001591897601_menucascade124471851165812"><b><span class="uicontrol" id="EN-US_TOPIC_0000001542333826__en-us_topic_0000001591897601_uicontrol144755165811">Network</span></b> &gt; <b><span class="uicontrol" id="EN-US_TOPIC_0000001542333826__en-us_topic_0000001591897601_uicontrol644725116587">Virtual Private Network</span></b></span>.</span></li><li id="EN-US_TOPIC_0000001542333826__li59593390"><span id="EN-US_TOPIC_0000001542333826__ph955355484220">In the navigation pane on the left, choose <span class="menucascade" id="EN-US_TOPIC_0000001542333826__en-us_topic_0000001591897601_menucascade16881163103614"><b><span class="uicontrol" id="EN-US_TOPIC_0000001542333826__en-us_topic_0000001591897601_uicontrol1262522084410">Virtual Private Network</span></b> &gt; <b><span class="uicontrol" id="EN-US_TOPIC_0000001542333826__en-us_topic_0000001591897601_uicontrol7625162018443">Enterprise – VPN Connections</span></b></span>.</span></li><li id="EN-US_TOPIC_0000001542333826__li66578464">On the <span class="wintitle" id="EN-US_TOPIC_0000001542333826__wintitle194599148541"><b>VPN Connections</b></span> page, view the VPN connection list.</li><li id="EN-US_TOPIC_0000001542333826__li12505135992112">Click the name of a VPN connection to view its basic information and policy configuration.</li></ol>
+<div class="fignone" id="EN-US_TOPIC_0000001542333826__fig17878192017251"><span class="figcap"><b>Figure 1 </b>Viewing a VPN connection</span><br><span><img id="EN-US_TOPIC_0000001542333826__image416819388416" src="figure/en-us_image_0000001888252021.png" height="145.9143" width="497.42" title="Click to enlarge" class="imgResize"></span></div>
+<p id="EN-US_TOPIC_0000001542333826__p499454611418"><span><img id="EN-US_TOPIC_0000001542333826__image9994134613414" src="figure/en-us_image_0000001841932888.png" height="166.7554" width="497.42" title="Click to enlarge" class="imgResize"></span></p>
+<div class="note" id="EN-US_TOPIC_0000001542333826__note1746633011819"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="EN-US_TOPIC_0000001542333826__ul11713203516912"><li id="EN-US_TOPIC_0000001542333826__li127135358919">In the VPN connection list, locate the target VPN connection, and choose <strong id="EN-US_TOPIC_0000001542333826__b81061819777">More</strong> &gt; <strong id="EN-US_TOPIC_0000001542333826__b151061192711">Modify Policy Settings</strong> on the right to view IKE and IPsec policies of the VPN connection.</li></ul>
+</div></div>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_ug_00012.html">Enterprise Edition VPN Connection Management</a></div>
+</div>
+</div>
+
+
+<script language="JavaScript">
+<!--
+image_size('.imgResize');
+var msg_imageMax = "view original image";
+var msg_imageClose = "close";
+//--></script>
\ No newline at end of file
diff --git a/docs/vpn/umn/vpn_ug_00014.html b/docs/vpn/umn/vpn_ug_00014.html
new file mode 100644
index 00000000..618f2804
--- /dev/null
+++ b/docs/vpn/umn/vpn_ug_00014.html
@@ -0,0 +1,198 @@
+<a name="EN-US_TOPIC_0000001592773861"></a><a name="EN-US_TOPIC_0000001592773861"></a>
+
+<h1 class="topictitle1">Modifying a VPN Connection</h1>
+<div id="body1586310692469"><div class="section" id="EN-US_TOPIC_0000001592773861__section1499555"><h4 class="sectiontitle">Scenario</h4><p class="msonormal" id="EN-US_TOPIC_0000001592773861__p7664981">A VPN connection is an encrypted communications channel established between a VPN gateway in a VPC and a customer gateway in your on-premises data center. You can modify a VPN connection when required.</p>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001592773861__section13496002"><h4 class="sectiontitle">Procedure</h4><ol id="EN-US_TOPIC_0000001592773861__ol16883705"><li id="EN-US_TOPIC_0000001592773861__li17735620"><span id="EN-US_TOPIC_0000001592773861__ph149997419367">Log in to the management console.</span></li><li id="EN-US_TOPIC_0000001592773861__li25402858"><span id="EN-US_TOPIC_0000001592773861__ph587583114385">Click <span><img id="EN-US_TOPIC_0000001592773861__en-us_topic_0000001591897601_image66709190" src="figure/en-us_image_0000001628070572.png" width="19.950000000000003" height="19.950000000000003" title="Click to enlarge" class="imgResize"></span> in the upper left corner and select the desired region and project.</span></li><li id="EN-US_TOPIC_0000001592773861__li44365583"><span id="EN-US_TOPIC_0000001592773861__ph910821143918">Click <span><img id="EN-US_TOPIC_0000001592773861__en-us_topic_0000001591897601_image15446151185815" src="figure/en-us_image_0000001923096425.png"></span> in the upper left corner of the page, and choose <span class="menucascade" id="EN-US_TOPIC_0000001592773861__en-us_topic_0000001591897601_menucascade124471851165812"><b><span class="uicontrol" id="EN-US_TOPIC_0000001592773861__en-us_topic_0000001591897601_uicontrol144755165811">Network</span></b> &gt; <b><span class="uicontrol" id="EN-US_TOPIC_0000001592773861__en-us_topic_0000001591897601_uicontrol644725116587">Virtual Private Network</span></b></span>.</span></li><li id="EN-US_TOPIC_0000001592773861__li63745928"><span id="EN-US_TOPIC_0000001592773861__ph955355484220">In the navigation pane on the left, choose <span class="menucascade" id="EN-US_TOPIC_0000001592773861__en-us_topic_0000001591897601_menucascade16881163103614"><b><span class="uicontrol" id="EN-US_TOPIC_0000001592773861__en-us_topic_0000001591897601_uicontrol1262522084410">Virtual Private Network</span></b> &gt; <b><span class="uicontrol" id="EN-US_TOPIC_0000001592773861__en-us_topic_0000001591897601_uicontrol7625162018443">Enterprise – VPN Connections</span></b></span>.</span></li><li id="EN-US_TOPIC_0000001592773861__li36842448">On the <span class="wintitle" id="EN-US_TOPIC_0000001592773861__wintitle024216355718"><b>VPN Connections</b></span> page, locate the VPN connection to modify, and click <span class="uicontrol" id="EN-US_TOPIC_0000001592773861__uicontrol330017510567"><b>Modify VPN Connection</b></span> or <span class="uicontrol" id="EN-US_TOPIC_0000001592773861__uicontrol6564171210208"><b>Modify Policy Settings</b></span>.</li><li id="EN-US_TOPIC_0000001592773861__li63146583">Modify VPN connection parameters as prompted.</li><li id="EN-US_TOPIC_0000001592773861__li31448343">Click <span class="uicontrol" id="EN-US_TOPIC_0000001592773861__uicontrol1183320135214"><b>OK</b></span>.</li></ol>
+<div class="fignone" id="EN-US_TOPIC_0000001592773861__fig183919415240"><span class="figcap"><b>Figure 1 </b>Modifying a VPN connection</span><br><span><img id="EN-US_TOPIC_0000001592773861__image59514541058" src="figure/en-us_image_0000001888093441.png" height="273.8204" width="497.42" title="Click to enlarge" class="imgResize"></span></div>
+<div class="caution" id="EN-US_TOPIC_0000001592773861__note265919131155"><span class="cautiontitle"><img src="public_sys-resources/caution_3.0-en-us.png"> </span><div class="cautionbody"><p id="EN-US_TOPIC_0000001592773861__p1265991318510">If you change the PSK or modify the IKE or IPsec policy of a VPN connection, ensure that the new configurations are consistent with those on the customer gateway. Otherwise, the VPN connection will be interrupted.</p>
+</div></div>
+<p id="EN-US_TOPIC_0000001592773861__p11801140141513">Only some of the parameters take effect immediately after being modified, as described in <a href="#EN-US_TOPIC_0000001592773861__table19349926165716">Table 1</a>.</p>
+
+<div class="tablenoborder"><a name="EN-US_TOPIC_0000001592773861__table19349926165716"></a><a name="table19349926165716"></a><table cellpadding="4" cellspacing="0" summary="" id="EN-US_TOPIC_0000001592773861__table19349926165716" width="100%" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Time when new parameter settings take effect</caption><thead align="left"><tr id="EN-US_TOPIC_0000001592773861__row13349112610571"><th align="left" class="cellrowborder" valign="top" width="17.71%" id="mcps1.3.2.6.2.5.1.1"><p id="EN-US_TOPIC_0000001592773861__p14349132695711">Item</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="12.29%" id="mcps1.3.2.6.2.5.1.2"><p id="EN-US_TOPIC_0000001592773861__p23491926185713">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="39.95%" id="mcps1.3.2.6.2.5.1.3"><p id="EN-US_TOPIC_0000001592773861__p1234911263577">When New Settings Take Effect</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="30.049999999999997%" id="mcps1.3.2.6.2.5.1.4"><p id="EN-US_TOPIC_0000001592773861__p6349112635715">How to Modify</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="EN-US_TOPIC_0000001592773861__row1834942675710"><td class="cellrowborder" valign="top" width="17.71%" headers="mcps1.3.2.6.2.5.1.1 "><p id="EN-US_TOPIC_0000001592773861__p1349102685713">-</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.29%" headers="mcps1.3.2.6.2.5.1.2 "><p id="EN-US_TOPIC_0000001592773861__p234912611575">PSK</p>
+</td>
+<td class="cellrowborder" valign="top" width="39.95%" headers="mcps1.3.2.6.2.5.1.3 "><ul id="EN-US_TOPIC_0000001592773861__ul834912675719"><li id="EN-US_TOPIC_0000001592773861__li43492268579">When IKEv1 is used, the new setting takes effect in the next negotiation period.</li><li id="EN-US_TOPIC_0000001592773861__li53492026185713">When IKEv2 is used, the new setting takes effect after the VPN connection is re-established.</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="30.049999999999997%" headers="mcps1.3.2.6.2.5.1.4 "><ul id="EN-US_TOPIC_0000001592773861__ul3349122635719"><li id="EN-US_TOPIC_0000001592773861__li18350132695712">When IKEv1 is used:<p id="EN-US_TOPIC_0000001592773861__p235020261577"><a name="EN-US_TOPIC_0000001592773861__li18350132695712"></a><a name="li18350132695712"></a>Locate the VPN connection to modify, choose <strong id="EN-US_TOPIC_0000001592773861__b1694316046">More</strong> &gt; <strong id="EN-US_TOPIC_0000001592773861__b1476599564">Reset PSK</strong> in the <strong id="EN-US_TOPIC_0000001592773861__b2228193604315">Operation</strong> column, and change the PSK as prompted.</p>
+</li><li id="EN-US_TOPIC_0000001592773861__li19350122611577">When IKEv2 is used:<ol id="EN-US_TOPIC_0000001592773861__ol9350526155719"><li id="EN-US_TOPIC_0000001592773861__li1035092645712">Delete the current VPN connection.</li><li id="EN-US_TOPIC_0000001592773861__li4350326145716">Create a new VPN connection.</li></ol>
+</li></ul>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001592773861__row73508263574"><td class="cellrowborder" valign="top" width="17.71%" headers="mcps1.3.2.6.2.5.1.1 "><p id="EN-US_TOPIC_0000001592773861__p16350142614578">IKEv1 policy</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.29%" headers="mcps1.3.2.6.2.5.1.2 "><ul id="EN-US_TOPIC_0000001592773861__ul38074151303"><li id="EN-US_TOPIC_0000001592773861__li1980819151502">Encryption Algorithm</li><li id="EN-US_TOPIC_0000001592773861__li1880813151401">Authentication Algorithm</li><li id="EN-US_TOPIC_0000001592773861__li880810150010">DH Algorithm</li><li id="EN-US_TOPIC_0000001592773861__li148088159012">Negotiation Mode</li><li id="EN-US_TOPIC_0000001592773861__li28083154013">Local ID</li><li id="EN-US_TOPIC_0000001592773861__li7808141520016">Customer ID</li><li id="EN-US_TOPIC_0000001592773861__li78086156011">Lifetime (s)</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="39.95%" headers="mcps1.3.2.6.2.5.1.3 "><p id="EN-US_TOPIC_0000001592773861__p035072635713">The new settings take effect in the next negotiation period.</p>
+</td>
+<td class="cellrowborder" valign="top" width="30.049999999999997%" headers="mcps1.3.2.6.2.5.1.4 "><p id="EN-US_TOPIC_0000001592773861__p8350126125713">Locate the VPN connection to delete, and choose <strong id="EN-US_TOPIC_0000001592773861__b05122364418">More</strong> &gt; <span class="uicontrol" id="EN-US_TOPIC_0000001592773861__uicontrol12783185223510"><b>Modify Policy Settings</b></span> in the <strong id="EN-US_TOPIC_0000001592773861__b127621238174419">Operation</strong> column.</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001592773861__row193506269573"><td class="cellrowborder" valign="top" width="17.71%" headers="mcps1.3.2.6.2.5.1.1 "><p id="EN-US_TOPIC_0000001592773861__p1935375310574">IKEv1 policy</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.29%" headers="mcps1.3.2.6.2.5.1.2 "><p id="EN-US_TOPIC_0000001592773861__p14351162618570">Version</p>
+</td>
+<td class="cellrowborder" valign="top" width="39.95%" headers="mcps1.3.2.6.2.5.1.3 "><p id="EN-US_TOPIC_0000001592773861__p10351182655712">The new setting takes effect immediately.</p>
+</td>
+<td class="cellrowborder" valign="top" width="30.049999999999997%" headers="mcps1.3.2.6.2.5.1.4 "><p id="EN-US_TOPIC_0000001592773861__p2017641315589">Locate the VPN connection to delete, and choose <strong id="EN-US_TOPIC_0000001592773861__b18773145744412">More</strong> &gt; <span class="uicontrol" id="EN-US_TOPIC_0000001592773861__uicontrol37731057154419"><b>Modify Policy Settings</b></span> in the <strong id="EN-US_TOPIC_0000001592773861__b10773105794414">Operation</strong> column.</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001592773861__row1335112635716"><td class="cellrowborder" valign="top" width="17.71%" headers="mcps1.3.2.6.2.5.1.1 "><p id="EN-US_TOPIC_0000001592773861__p435122665710">IKEv2 policy</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.29%" headers="mcps1.3.2.6.2.5.1.2 "><ul id="EN-US_TOPIC_0000001592773861__ul10836938321"><li id="EN-US_TOPIC_0000001592773861__li78361038929">Encryption Algorithm</li><li id="EN-US_TOPIC_0000001592773861__li188361338527">Authentication Algorithm</li><li id="EN-US_TOPIC_0000001592773861__li183663819217">DH Algorithm</li><li id="EN-US_TOPIC_0000001592773861__li283619384214">Lifetime (s)</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="39.95%" headers="mcps1.3.2.6.2.5.1.3 "><p id="EN-US_TOPIC_0000001592773861__p1335182685716">The new settings take effect in the next negotiation period.</p>
+<p id="EN-US_TOPIC_0000001592773861__p14351102615716"></p>
+</td>
+<td class="cellrowborder" valign="top" width="30.049999999999997%" headers="mcps1.3.2.6.2.5.1.4 "><p id="EN-US_TOPIC_0000001592773861__p173511826145714">Locate the VPN connection to delete, and choose <strong id="EN-US_TOPIC_0000001592773861__b681135712443">More</strong> &gt; <span class="uicontrol" id="EN-US_TOPIC_0000001592773861__uicontrol12811115774418"><b>Modify Policy Settings</b></span> in the <strong id="EN-US_TOPIC_0000001592773861__b8811757144417">Operation</strong> column.</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001592773861__row635152615717"><td class="cellrowborder" valign="top" width="17.71%" headers="mcps1.3.2.6.2.5.1.1 "><p id="EN-US_TOPIC_0000001592773861__p22815464016">IKEv2 policy</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.29%" headers="mcps1.3.2.6.2.5.1.2 "><p id="EN-US_TOPIC_0000001592773861__p193511226175716">Version</p>
+</td>
+<td class="cellrowborder" valign="top" width="39.95%" headers="mcps1.3.2.6.2.5.1.3 "><p id="EN-US_TOPIC_0000001592773861__p14351202619570">The new setting takes effect immediately.</p>
+</td>
+<td class="cellrowborder" valign="top" width="30.049999999999997%" headers="mcps1.3.2.6.2.5.1.4 "><p id="EN-US_TOPIC_0000001592773861__p189491525312">Locate the VPN connection to delete, and choose <strong id="EN-US_TOPIC_0000001592773861__b15812155718448">More</strong> &gt; <span class="uicontrol" id="EN-US_TOPIC_0000001592773861__uicontrol1481285719447"><b>Modify Policy Settings</b></span> in the <strong id="EN-US_TOPIC_0000001592773861__b128121957194416">Operation</strong> column.</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001592773861__row2351192619575"><td class="cellrowborder" valign="top" width="17.71%" headers="mcps1.3.2.6.2.5.1.1 "><p id="EN-US_TOPIC_0000001592773861__p172819461308">IKEv2 policy</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.29%" headers="mcps1.3.2.6.2.5.1.2 "><ul id="EN-US_TOPIC_0000001592773861__ul421217423214"><li id="EN-US_TOPIC_0000001592773861__li192127421721">Local ID</li><li id="EN-US_TOPIC_0000001592773861__li1621212421210">Customer ID</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="39.95%" headers="mcps1.3.2.6.2.5.1.3 "><p id="EN-US_TOPIC_0000001592773861__p13521426195719">The new settings take effect after the VPN connection is re-established.</p>
+</td>
+<td class="cellrowborder" valign="top" width="30.049999999999997%" headers="mcps1.3.2.6.2.5.1.4 "><ol id="EN-US_TOPIC_0000001592773861__ol1335262610578"><li id="EN-US_TOPIC_0000001592773861__li635232605713">Delete the current VPN connection.</li><li id="EN-US_TOPIC_0000001592773861__li5352152625714">Create a new VPN connection.</li></ol>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001592773861__row193521926115716"><td class="cellrowborder" valign="top" width="17.71%" headers="mcps1.3.2.6.2.5.1.1 "><p id="EN-US_TOPIC_0000001592773861__p435212264577">IPsec policy</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.29%" headers="mcps1.3.2.6.2.5.1.2 "><ul id="EN-US_TOPIC_0000001592773861__ul289814432316"><li id="EN-US_TOPIC_0000001592773861__li589819431735">Encryption Algorithm</li><li id="EN-US_TOPIC_0000001592773861__li17898184317314">Authentication Algorithm</li><li id="EN-US_TOPIC_0000001592773861__li198985438319">PFS</li><li id="EN-US_TOPIC_0000001592773861__li188984431431">Lifetime (s)</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="39.95%" headers="mcps1.3.2.6.2.5.1.3 "><p id="EN-US_TOPIC_0000001592773861__p14352172610579">The new settings take effect in the next negotiation period.</p>
+</td>
+<td class="cellrowborder" valign="top" width="30.049999999999997%" headers="mcps1.3.2.6.2.5.1.4 "><p id="EN-US_TOPIC_0000001592773861__p035272665718">Locate the VPN connection to delete, and choose <strong id="EN-US_TOPIC_0000001592773861__b148138573444">More</strong> &gt; <span class="uicontrol" id="EN-US_TOPIC_0000001592773861__uicontrol1481375710447"><b>Modify Policy Settings</b></span> in the <strong id="EN-US_TOPIC_0000001592773861__b108131357174414">Operation</strong> column.</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001592773861__row9352102619572"><td class="cellrowborder" valign="top" width="17.71%" headers="mcps1.3.2.6.2.5.1.1 "><p id="EN-US_TOPIC_0000001592773861__p1882562019314">IPsec policy</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.29%" headers="mcps1.3.2.6.2.5.1.2 "><p id="EN-US_TOPIC_0000001592773861__p23521926115713">Transfer Protocol</p>
+</td>
+<td class="cellrowborder" valign="top" width="39.95%" headers="mcps1.3.2.6.2.5.1.3 "><p id="EN-US_TOPIC_0000001592773861__p3352426205711">This parameter cannot be modified on the management console.</p>
+</td>
+<td class="cellrowborder" valign="top" width="30.049999999999997%" headers="mcps1.3.2.6.2.5.1.4 "><p id="EN-US_TOPIC_0000001592773861__p104143210316">Locate the VPN connection to delete, and choose <strong id="EN-US_TOPIC_0000001592773861__b88141157104413">More</strong> &gt; <span class="uicontrol" id="EN-US_TOPIC_0000001592773861__uicontrol78146573443"><b>Modify Policy Settings</b></span> in the <strong id="EN-US_TOPIC_0000001592773861__b881495764417">Operation</strong> column.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+<p id="EN-US_TOPIC_0000001592773861__p6439628143117"><a href="#EN-US_TOPIC_0000001592773861__table135441110101713">Table 2</a> describes the parameters related to VPN connection modification.</p>
+
+<div class="tablenoborder"><a name="EN-US_TOPIC_0000001592773861__table135441110101713"></a><a name="table135441110101713"></a><table cellpadding="4" cellspacing="0" summary="" id="EN-US_TOPIC_0000001592773861__table135441110101713" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Parameters related to VPN connection modification</caption><thead align="left"><tr id="EN-US_TOPIC_0000001592773861__row155440107171"><th align="left" class="cellrowborder" valign="top" width="24.86%" id="mcps1.3.2.8.2.4.1.1"><p id="EN-US_TOPIC_0000001592773861__p1732553313619">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="38.879999999999995%" id="mcps1.3.2.8.2.4.1.2"><p id="EN-US_TOPIC_0000001592773861__p0544191012174">Description</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="36.26%" id="mcps1.3.2.8.2.4.1.3"><p id="EN-US_TOPIC_0000001592773861__p13544131017176">Modifiable or Not</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="EN-US_TOPIC_0000001592773861__row1854561041718"><td class="cellrowborder" valign="top" width="24.86%" headers="mcps1.3.2.8.2.4.1.1 "><p id="EN-US_TOPIC_0000001592773861__p18886102511112">Name</p>
+</td>
+<td class="cellrowborder" valign="top" width="38.879999999999995%" headers="mcps1.3.2.8.2.4.1.2 "><p id="EN-US_TOPIC_0000001592773861__p241913166108">Name of a VPN connection. The value can contain only letters, digits, underscores (_), hyphens (-), and periods (.).</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.26%" headers="mcps1.3.2.8.2.4.1.3 "><p id="EN-US_TOPIC_0000001592773861__p5836123715118">Y</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001592773861__row857855191015"><td class="cellrowborder" valign="top" width="24.86%" headers="mcps1.3.2.8.2.4.1.1 "><p id="EN-US_TOPIC_0000001592773861__p174564520200">Customer Gateway</p>
+</td>
+<td class="cellrowborder" valign="top" width="38.879999999999995%" headers="mcps1.3.2.8.2.4.1.2 "><p id="EN-US_TOPIC_0000001592773861__en-us_topic_0236580449_p61136090">Gateway used for communicating with a VPC through VPN.</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.26%" headers="mcps1.3.2.8.2.4.1.3 "><p id="EN-US_TOPIC_0000001592773861__p187511912111">Y</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001592773861__row269419493106"><td class="cellrowborder" valign="top" width="24.86%" headers="mcps1.3.2.8.2.4.1.1 "><p id="EN-US_TOPIC_0000001592773861__p1179114942020">Customer Subnet</p>
+</td>
+<td class="cellrowborder" valign="top" width="38.879999999999995%" headers="mcps1.3.2.8.2.4.1.2 "><p id="EN-US_TOPIC_0000001592773861__p132013366384">Subnet in the on-premises data center that needs to access the VPC.</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.26%" headers="mcps1.3.2.8.2.4.1.3 "><p id="EN-US_TOPIC_0000001592773861__p1588061962110">Y</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001592773861__row6180134015208"><td class="cellrowborder" valign="top" width="24.86%" headers="mcps1.3.2.8.2.4.1.1 "><p id="EN-US_TOPIC_0000001592773861__p10771174520206">Policy Settings</p>
+</td>
+<td class="cellrowborder" valign="top" width="38.879999999999995%" headers="mcps1.3.2.8.2.4.1.2 "><p id="EN-US_TOPIC_0000001592773861__p4775174513206">There are IKE and IPsec policies.</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.26%" headers="mcps1.3.2.8.2.4.1.3 "><p id="EN-US_TOPIC_0000001592773861__p13884101922118">Y</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001592773861__row121540122118"><td class="cellrowborder" valign="top" width="24.86%" headers="mcps1.3.2.8.2.4.1.1 "><p id="EN-US_TOPIC_0000001592773861__p31519018215">PSK</p>
+</td>
+<td class="cellrowborder" valign="top" width="38.879999999999995%" headers="mcps1.3.2.8.2.4.1.2 "><p id="EN-US_TOPIC_0000001592773861__p62179278">The PSKs configured for the VPN gateway and customer gateway must be the same.</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.26%" headers="mcps1.3.2.8.2.4.1.3 "><p id="EN-US_TOPIC_0000001592773861__p1815130142119">Y</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001592773861__row185088272116"><td class="cellrowborder" valign="top" width="24.86%" headers="mcps1.3.2.8.2.4.1.1 "><p id="EN-US_TOPIC_0000001592773861__p550814282113">VPN Gateway</p>
+</td>
+<td class="cellrowborder" valign="top" width="38.879999999999995%" headers="mcps1.3.2.8.2.4.1.2 "><p id="EN-US_TOPIC_0000001592773861__p205089242110">VPN gateway that has been created.</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.26%" headers="mcps1.3.2.8.2.4.1.3 "><p id="EN-US_TOPIC_0000001592773861__p45087215211">N</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001592773861__row7157119142119"><td class="cellrowborder" valign="top" width="24.86%" headers="mcps1.3.2.8.2.4.1.1 "><p id="EN-US_TOPIC_0000001592773861__p478511571048">Gateway IP Address</p>
+</td>
+<td class="cellrowborder" valign="top" width="38.879999999999995%" headers="mcps1.3.2.8.2.4.1.2 "><p id="EN-US_TOPIC_0000001592773861__p1739971954">IP address used by the customer gateway to communicate with the VPN gateway. The value must be a static address.</p>
+<p id="EN-US_TOPIC_0000001592773861__p16393719516">Ensure that UDP port 4500 is permitted in a firewall rule on the customer gateway in your on-premises data center or private network.</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.26%" headers="mcps1.3.2.8.2.4.1.3 "><p id="EN-US_TOPIC_0000001592773861__p559124517223">N</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001592773861__row1231314718219"><td class="cellrowborder" valign="top" width="24.86%" headers="mcps1.3.2.8.2.4.1.1 "><p id="EN-US_TOPIC_0000001592773861__p1310112106520">Interface IP Address Assignment</p>
+</td>
+<td class="cellrowborder" valign="top" width="38.879999999999995%" headers="mcps1.3.2.8.2.4.1.2 "><p id="EN-US_TOPIC_0000001592773861__en-us_topic_0236580449_p59152153916">Mode in which IP addresses of the local and customer interfaces are assigned. The options include <strong id="EN-US_TOPIC_0000001592773861__b1197210551824">Manually specify</strong> and <strong id="EN-US_TOPIC_0000001592773861__b9957195313210">Automatically assign</strong>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.26%" headers="mcps1.3.2.8.2.4.1.3 "><p id="EN-US_TOPIC_0000001592773861__p16364510224">N</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001592773861__row1456512534516"><td class="cellrowborder" valign="top" width="24.86%" headers="mcps1.3.2.8.2.4.1.1 "><p id="EN-US_TOPIC_0000001592773861__p171013102055">Local Tunnel Interface Address</p>
+</td>
+<td class="cellrowborder" valign="top" width="38.879999999999995%" headers="mcps1.3.2.8.2.4.1.2 "><p id="EN-US_TOPIC_0000001592773861__p1583933165018">Tunnel interface IP address configured on the VPN gateway.</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.26%" headers="mcps1.3.2.8.2.4.1.3 "><p id="EN-US_TOPIC_0000001592773861__p1356522519455">N</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001592773861__row2192123914513"><td class="cellrowborder" valign="top" width="24.86%" headers="mcps1.3.2.8.2.4.1.1 "><p id="EN-US_TOPIC_0000001592773861__p38761593620">Customer Tunnel Interface Address</p>
+</td>
+<td class="cellrowborder" valign="top" width="38.879999999999995%" headers="mcps1.3.2.8.2.4.1.2 "><p id="EN-US_TOPIC_0000001592773861__p17980416282">Tunnel interface IP address configured on the customer gateway device.</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.26%" headers="mcps1.3.2.8.2.4.1.3 "><p id="EN-US_TOPIC_0000001592773861__p15193163984515">N</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_ug_00012.html">Enterprise Edition VPN Connection Management</a></div>
+</div>
+</div>
+
+
+<script language="JavaScript">
+<!--
+image_size('.imgResize');
+var msg_imageMax = "view original image";
+var msg_imageClose = "close";
+//--></script>
\ No newline at end of file
diff --git a/docs/vpn/umn/vpn_ug_00016.html b/docs/vpn/umn/vpn_ug_00016.html
new file mode 100644
index 00000000..db689b3e
--- /dev/null
+++ b/docs/vpn/umn/vpn_ug_00016.html
@@ -0,0 +1,17 @@
+<a name="EN-US_TOPIC_0000001921096261"></a><a name="EN-US_TOPIC_0000001921096261"></a>
+
+<h1 class="topictitle1">Audit</h1>
+<div id="body8662426"></div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="vpn_ug_00017.html">VPN Operations That Can Be Recorded by CTS</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpn_ug_00018.html">Querying CTS Traces</a></strong><br>
+</li>
+</ul>
+
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_04_0000.html">Management</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_ug_00017.html b/docs/vpn/umn/vpn_ug_00017.html
new file mode 100644
index 00000000..c07c83d8
--- /dev/null
+++ b/docs/vpn/umn/vpn_ug_00017.html
@@ -0,0 +1,106 @@
+<a name="EN-US_TOPIC_0000001921215913"></a><a name="EN-US_TOPIC_0000001921215913"></a>
+
+<h1 class="topictitle1">VPN Operations That Can Be Recorded by CTS</h1>
+<div id="body8662426">
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="EN-US_TOPIC_0000001921215913__en-us_topic_0000001592879145_table240142916533" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Enterprise Edition <span id="EN-US_TOPIC_0000001921215913__en-us_topic_0000001592879145_ph121963651817">VPN</span>-related operations that can be recorded by CTS</caption><thead align="left"><tr id="EN-US_TOPIC_0000001921215913__en-us_topic_0000001592879145_row16631029175315"><th align="left" class="cellrowborder" valign="top" width="25%" id="mcps1.3.1.2.4.1.1"><p id="EN-US_TOPIC_0000001921215913__en-us_topic_0000001592879145_p763529105311">Operation</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="22%" id="mcps1.3.1.2.4.1.2"><p id="EN-US_TOPIC_0000001921215913__en-us_topic_0000001592879145_p156315296535">Resource Type</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="53%" id="mcps1.3.1.2.4.1.3"><p id="EN-US_TOPIC_0000001921215913__en-us_topic_0000001592879145_p206332912536">Trace Name</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="EN-US_TOPIC_0000001921215913__en-us_topic_0000001592879145_row86312290535"><td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.1.2.4.1.1 "><p id="EN-US_TOPIC_0000001921215913__en-us_topic_0000001592879145_p19171715417">Creating a customer gateway</p>
+</td>
+<td class="cellrowborder" valign="top" width="22%" headers="mcps1.3.1.2.4.1.2 "><p id="EN-US_TOPIC_0000001921215913__en-us_topic_0000001592879145_p8176735416">customer-gateway</p>
+</td>
+<td class="cellrowborder" valign="top" width="53%" headers="mcps1.3.1.2.4.1.3 "><p id="EN-US_TOPIC_0000001921215913__en-us_topic_0000001592879145_p1417276544">createCgw</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001921215913__en-us_topic_0000001592879145_row1563129125318"><td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.1.2.4.1.1 "><p id="EN-US_TOPIC_0000001921215913__en-us_topic_0000001592879145_p517157155411">Updating a customer gateway</p>
+</td>
+<td class="cellrowborder" valign="top" width="22%" headers="mcps1.3.1.2.4.1.2 "><p id="EN-US_TOPIC_0000001921215913__en-us_topic_0000001592879145_p1173755413">customer-gateway</p>
+</td>
+<td class="cellrowborder" valign="top" width="53%" headers="mcps1.3.1.2.4.1.3 "><p id="EN-US_TOPIC_0000001921215913__en-us_topic_0000001592879145_p191720715542">updateCgw</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001921215913__en-us_topic_0000001592879145_row182410113542"><td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.1.2.4.1.1 "><p id="EN-US_TOPIC_0000001921215913__en-us_topic_0000001592879145_p21712713542">Deleting a customer gateway</p>
+</td>
+<td class="cellrowborder" valign="top" width="22%" headers="mcps1.3.1.2.4.1.2 "><p id="EN-US_TOPIC_0000001921215913__en-us_topic_0000001592879145_p2177715549">customer-gateway</p>
+</td>
+<td class="cellrowborder" valign="top" width="53%" headers="mcps1.3.1.2.4.1.3 "><p id="EN-US_TOPIC_0000001921215913__en-us_topic_0000001592879145_p1117157175414">deleteCgw</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001921215913__en-us_topic_0000001592879145_row42411014548"><td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.1.2.4.1.1 "><p id="EN-US_TOPIC_0000001921215913__en-us_topic_0000001592879145_p5171765418">Creating a VPN gateway</p>
+</td>
+<td class="cellrowborder" valign="top" width="22%" headers="mcps1.3.1.2.4.1.2 "><p id="EN-US_TOPIC_0000001921215913__en-us_topic_0000001592879145_p117127125417">vpn-gateway</p>
+</td>
+<td class="cellrowborder" valign="top" width="53%" headers="mcps1.3.1.2.4.1.3 "><p id="EN-US_TOPIC_0000001921215913__en-us_topic_0000001592879145_p201715765410">createVgw</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001921215913__en-us_topic_0000001592879145_row8397163125419"><td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.1.2.4.1.1 "><p id="EN-US_TOPIC_0000001921215913__en-us_topic_0000001592879145_p1017147105410">Updating a VPN gateway</p>
+</td>
+<td class="cellrowborder" valign="top" width="22%" headers="mcps1.3.1.2.4.1.2 "><p id="EN-US_TOPIC_0000001921215913__en-us_topic_0000001592879145_p51787185417">vpn-gateway</p>
+</td>
+<td class="cellrowborder" valign="top" width="53%" headers="mcps1.3.1.2.4.1.3 "><p id="EN-US_TOPIC_0000001921215913__en-us_topic_0000001592879145_p21713785417">updateVgw</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001921215913__en-us_topic_0000001592879145_row4161663546"><td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.1.2.4.1.1 "><p id="EN-US_TOPIC_0000001921215913__en-us_topic_0000001592879145_p191715712542">Deleting a VPN gateway</p>
+</td>
+<td class="cellrowborder" valign="top" width="22%" headers="mcps1.3.1.2.4.1.2 "><p id="EN-US_TOPIC_0000001921215913__en-us_topic_0000001592879145_p41713719547">vpn-gateway</p>
+</td>
+<td class="cellrowborder" valign="top" width="53%" headers="mcps1.3.1.2.4.1.3 "><p id="EN-US_TOPIC_0000001921215913__en-us_topic_0000001592879145_p71747155412">deleteVgw</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001921215913__en-us_topic_0000001592879145_row124420316148"><td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.1.2.4.1.1 "><p id="EN-US_TOPIC_0000001921215913__en-us_topic_0000001592879145_p987544913363">Updating the VPN gateway status</p>
+</td>
+<td class="cellrowborder" valign="top" width="22%" headers="mcps1.3.1.2.4.1.2 "><p id="EN-US_TOPIC_0000001921215913__en-us_topic_0000001592879145_p10875114963614">vpn-gateway</p>
+</td>
+<td class="cellrowborder" valign="top" width="53%" headers="mcps1.3.1.2.4.1.3 "><p id="EN-US_TOPIC_0000001921215913__en-us_topic_0000001592879145_p1687504953615">UpdateResourceState</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001921215913__en-us_topic_0000001592879145_row1316156145414"><td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.1.2.4.1.1 "><p id="EN-US_TOPIC_0000001921215913__en-us_topic_0000001592879145_p9171672545">Creating a VPN connection</p>
+</td>
+<td class="cellrowborder" valign="top" width="22%" headers="mcps1.3.1.2.4.1.2 "><p id="EN-US_TOPIC_0000001921215913__en-us_topic_0000001592879145_p1217571546">vpn-connection</p>
+</td>
+<td class="cellrowborder" valign="top" width="53%" headers="mcps1.3.1.2.4.1.3 "><p id="EN-US_TOPIC_0000001921215913__en-us_topic_0000001592879145_p20174755411">createVpnConnection</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001921215913__en-us_topic_0000001592879145_row016117611545"><td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.1.2.4.1.1 "><p id="EN-US_TOPIC_0000001921215913__en-us_topic_0000001592879145_p3170735416">Updating a VPN connection</p>
+</td>
+<td class="cellrowborder" valign="top" width="22%" headers="mcps1.3.1.2.4.1.2 "><p id="EN-US_TOPIC_0000001921215913__en-us_topic_0000001592879145_p0179785414">vpn-connection</p>
+</td>
+<td class="cellrowborder" valign="top" width="53%" headers="mcps1.3.1.2.4.1.3 "><p id="EN-US_TOPIC_0000001921215913__en-us_topic_0000001592879145_p1717379541">updateVpnConnection</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001921215913__en-us_topic_0000001592879145_row13162668542"><td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.1.2.4.1.1 "><p id="EN-US_TOPIC_0000001921215913__en-us_topic_0000001592879145_p21737135410">Deleting a VPN connection</p>
+</td>
+<td class="cellrowborder" valign="top" width="22%" headers="mcps1.3.1.2.4.1.2 "><p id="EN-US_TOPIC_0000001921215913__en-us_topic_0000001592879145_p617187145416">vpn-connection</p>
+</td>
+<td class="cellrowborder" valign="top" width="53%" headers="mcps1.3.1.2.4.1.3 "><p id="EN-US_TOPIC_0000001921215913__en-us_topic_0000001592879145_p121727105411">deleteVpnConnection</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001921215913__en-us_topic_0000001592879145_row3181204934216"><td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.1.2.4.1.1 "><p id="EN-US_TOPIC_0000001921215913__en-us_topic_0000001592879145_p518114499428">Creating a resource tag</p>
+</td>
+<td class="cellrowborder" valign="top" width="22%" headers="mcps1.3.1.2.4.1.2 "><p id="EN-US_TOPIC_0000001921215913__en-us_topic_0000001592879145_p4117191718284">instance</p>
+</td>
+<td class="cellrowborder" valign="top" width="53%" headers="mcps1.3.1.2.4.1.3 "><p id="EN-US_TOPIC_0000001921215913__en-us_topic_0000001592879145_p2181134918423">createResourceTag</p>
+</td>
+</tr>
+<tr id="EN-US_TOPIC_0000001921215913__en-us_topic_0000001592879145_row1081212184414"><td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.1.2.4.1.1 "><p id="EN-US_TOPIC_0000001921215913__en-us_topic_0000001592879145_p11812521440">Deleting a resource tag</p>
+</td>
+<td class="cellrowborder" valign="top" width="22%" headers="mcps1.3.1.2.4.1.2 "><p id="EN-US_TOPIC_0000001921215913__en-us_topic_0000001592879145_p20921017102816">instance</p>
+</td>
+<td class="cellrowborder" valign="top" width="53%" headers="mcps1.3.1.2.4.1.3 "><p id="EN-US_TOPIC_0000001921215913__en-us_topic_0000001592879145_p198127264416">deleteResourceTag</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_ug_00016.html">Audit</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_ug_00018.html b/docs/vpn/umn/vpn_ug_00018.html
new file mode 100644
index 00000000..9b00b7f4
--- /dev/null
+++ b/docs/vpn/umn/vpn_ug_00018.html
@@ -0,0 +1,12 @@
+<a name="EN-US_TOPIC_0000001875296746"></a><a name="EN-US_TOPIC_0000001875296746"></a>
+
+<h1 class="topictitle1">Querying CTS Traces</h1>
+<div id="body8662426"><p id="EN-US_TOPIC_0000001875296746__en-us_topic_0000001592773677_p790565114818">After you enable CTS and the management tracker is created, CTS starts recording operations performed on VPN resources. You can view the operation records in the last seven days on the CTS console.</p>
+<p id="EN-US_TOPIC_0000001875296746__en-us_topic_0000001592773677_p836173951119">For details about how to view audit logs, see the <em id="EN-US_TOPIC_0000001875296746__en-us_topic_0000001592773677_i850717133811">Cloud Trace Service User Guide</em>.</p>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_ug_00016.html">Audit</a></div>
+</div>
+</div>
+
diff --git a/docs/vpn/umn/vpn_ug_00023.html b/docs/vpn/umn/vpn_ug_00023.html
new file mode 100644
index 00000000..972b917c
--- /dev/null
+++ b/docs/vpn/umn/vpn_ug_00023.html
@@ -0,0 +1,21 @@
+<a name="EN-US_TOPIC_0000001671018948"></a><a name="EN-US_TOPIC_0000001671018948"></a>
+
+<h1 class="topictitle1">Configuring Health Check</h1>
+<div id="body0000001671018948"><div class="section" id="EN-US_TOPIC_0000001671018948__section418483610268"><h4 class="sectiontitle">Scenario</h4><p id="EN-US_TOPIC_0000001671018948__p915912375265">After VPN connections are created, you can configure health check to enable the VPN gateway to send probe packets to the customer gateway to collect statistics about the round-trip time and packet loss rate of physical links. The statistics help you learn about the VPN connection quality. The Cloud Eye service monitors the round-trip time and packet loss rate of VPN links. For details, see <a href="vpn_04_0702.html">Metrics (Enterprise Edition VPN)</a>.</p>
+</div>
+<div class="section" id="EN-US_TOPIC_0000001671018948__section1445217186271"><h4 class="sectiontitle">Procedure</h4><ol id="EN-US_TOPIC_0000001671018948__ol114114249279"><li id="EN-US_TOPIC_0000001671018948__li33958374"><span id="EN-US_TOPIC_0000001671018948__ph149997419367">Log in to the management console.</span></li><li id="EN-US_TOPIC_0000001671018948__li912018211531"><span id="EN-US_TOPIC_0000001671018948__ph587583114385">Click <span><img id="EN-US_TOPIC_0000001671018948__en-us_topic_0000001591897601_image66709190" src="figure/en-us_image_0000001628070572.png" width="19.950000000000003" height="19.950000000000003" title="Click to enlarge" class="imgResize"></span> in the upper left corner and select the desired region and project.</span></li><li id="EN-US_TOPIC_0000001671018948__li66273811"><span id="EN-US_TOPIC_0000001671018948__ph910821143918">Click <span><img id="EN-US_TOPIC_0000001671018948__en-us_topic_0000001591897601_image15446151185815" src="figure/en-us_image_0000001923096425.png"></span> in the upper left corner of the page, and choose <span class="menucascade" id="EN-US_TOPIC_0000001671018948__en-us_topic_0000001591897601_menucascade124471851165812"><b><span class="uicontrol" id="EN-US_TOPIC_0000001671018948__en-us_topic_0000001591897601_uicontrol144755165811">Network</span></b> &gt; <b><span class="uicontrol" id="EN-US_TOPIC_0000001671018948__en-us_topic_0000001591897601_uicontrol644725116587">Virtual Private Network</span></b></span>.</span></li><li id="EN-US_TOPIC_0000001671018948__li59593390"><span id="EN-US_TOPIC_0000001671018948__ph955355484220">In the navigation pane on the left, choose <span class="menucascade" id="EN-US_TOPIC_0000001671018948__en-us_topic_0000001591897601_menucascade16881163103614"><b><span class="uicontrol" id="EN-US_TOPIC_0000001671018948__en-us_topic_0000001591897601_uicontrol1262522084410">Virtual Private Network</span></b> &gt; <b><span class="uicontrol" id="EN-US_TOPIC_0000001671018948__en-us_topic_0000001591897601_uicontrol7625162018443">Enterprise – VPN Connections</span></b></span>.</span></li><li id="EN-US_TOPIC_0000001671018948__li73579284276">On the <span class="wintitle" id="EN-US_TOPIC_0000001671018948__wintitle194599148541"><b>VPN Connections</b></span> page, click the name of the target VPN connection. On the <span class="uicontrol" id="EN-US_TOPIC_0000001671018948__uicontrol19377192811519"><b>Summary</b></span> tab page, click <span class="uicontrol" id="EN-US_TOPIC_0000001671018948__uicontrol14893239958"><b>Add</b></span> in the <span class="uicontrol" id="EN-US_TOPIC_0000001671018948__uicontrol178311734172915"><b>Health Check</b></span> area.</li><li id="EN-US_TOPIC_0000001671018948__li134041139103019">In the <span class="wintitle" id="EN-US_TOPIC_0000001671018948__wintitle1997215373110"><b>Add Health Check</b></span> dialog box, click <span class="uicontrol" id="EN-US_TOPIC_0000001671018948__uicontrol173345583303"><b>OK</b></span>.</li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpn_ug_00012.html">Enterprise Edition VPN Connection Management</a></div>
+</div>
+</div>
+
+
+<script language="JavaScript">
+<!--
+image_size('.imgResize');
+var msg_imageMax = "view original image";
+var msg_imageClose = "close";
+//--></script>
\ No newline at end of file