Configure VPC Endpoint">Configure VPC Endpoint
- Configure VPN local-end OBS gateway">Configure VPN local-end OBS gateway

If your disaster recovery environment is interconnected with the production site’s intranet through Huawei Cloud VPN, and the production site needs to access Huawei Cloud HyperBDR and OBS services through VPN during a disaster, then you need to purchase and configure VPC Endpoint services in Huawei Cloud. You need to purchase two VPC Endpoint services, one for OBS and the other for DNS.

Configure VPC Endpoint

Huawei Cloud official definition: If you want to access OBS services from a local data center via VPN or Cloud Connect using an intranet method, you can achieve this by connecting through terminal endpoints to access terminal endpoint services. Document Link：https://support.huaweicloud.com/intl/en-us/qs-vpcep/vpcep_02_0301.html ## Configure DNS Interface Type for Terminal Endpoints | Project | Configuration | | —- | —- | | Region | Choose the Region to activate | | Billing Mode | Pay-per-use | | Service Category | Choose the default “Cloud server,” check com.myhuaweicloud..dns, and set the type as Interface. | | VPC | Choose the VPC interconnecting with the local IDC VPN | | Subnet | Select the subnet for VPN interconnection. | Option 2: Internal VPN Access - Create VPC Endpoint service - 图1

Option 2: Internal VPN Access - Create VPC Endpoint service - 图1

## Selection of OBS Gateway-type Terminal Endpoint | Project | Configuration | | —- | —- | | Region | Choose the Region to activate | | Billing Mode | Pay-per-use | | Service Category | Choose the default “Cloud server,” check com.myhuaweicloud..obs, and set the type as Gateway | | VPC | Choose the VPC interconnecting with the local IDC VPN | | Route Table | default | | Policy | default | :::info Note: In the Service Category section, it may not be possible to directly find the corresponding OBS service for the default Cloud service type. In such cases, you will need to use “Find a service by name” to search. You must enter the complete name of the specific OBS service. Please confirm with Huawei Cloud as the target OBS service terminal endpoints on the Huawei side may have distinctions between v1 and v2 versions. Additionally, the names of each region and the association between v1/v2 versions and the resource pool of the object storage bucket need clarification. If you have purchased v1 OBS terminal endpoints but your object storage bucket is in a v2 cluster, it must be aligned accordingly. Confirm with Huawei in advance regarding the specific version of the object storage bucket’s cluster and OBS terminal endpoints Example: v2 version OBS terminal endpoint name: sa-brazil-1.com.myhuaweicloud.v4.obsv2.lz002

:::

Option 2: Internal VPN Access - Create VPC Endpoint service - 图2

Configure VPN local-end OBS gateway

Add the internal subnet range of the local (Huawei Cloud) OBS service at the VPN connection point. The subnet address for all internal Huawei Cloud OBS services is 100.125.0.0/16.

Option 2: Internal VPN Access - Create VPC Endpoint service - 图3

Option 2: Internal VPN Access - Create VPC Endpoint service - 图4