Virtual Private Cloud Video

Virtual Private Cloud (VPC) enables you to create private, isolated virtual networks. You can configure IP address segments, subnets, and security groups in a VPC and apply for elastic IP addresses (EIPs) to build service systems.

Secure and Reliable

Private networks on the cloud are completely isolated. You can create ECSs that are in different availability zones, in the same VPC.

Flexible Configuration

Self-service network management frees you from routine network configurations and allows flexible network deployment.

High-Speed Access

VPC allows high-speed access to services on the cloud.

Interconnection

VPC peering enables interconnection between VPCs.

Application Scenarios

  • Dedicated Networks

  • Web Services

  • Hybrid Cloud Deployment

Dedicated Networks

Dedicated Networks

Leverage the VPC service to build private networks, assign EIPs for network access, and configure and deploy services.

Advantages

  • Flexible Configuration

    Flexibly define networks, configure subnets on demand, and apply for EIPs.

  • Secure Isolation

    Configure access control policies to allow or disallow access to subnets.

Related Services

ECS

Web Services

Web Services

Leverage the VPC service to build private networks and use ELB to provide web services that can be concurrently accessed by a large number of users.

Advantages

  • High Concurrency

    ELB is used together with VPCs to process concurrent connection requests, ensuring reliable service connections.

  • Resource Auto Scaling

    The AS service automatically scales resources, ensuring service availability in the event of traffic spikes.

Related Services

ELB

AS

Hybrid Cloud Deployment

Hybrid Cloud Deployment

With Direct Connect and VPN, you can build a hybrid cloud by connecting VPCs to your local data center and migrating data to HUAWEI CLOUD Stack.

Advantages

  • Multiple Connectivity Options

    Direct Connect provides secure, dedicated, high-speed network connections.
    VPNs offer secure IPsec communication tunnels and are cost-effective.

  • HUAWEI CLOUD Stack and Local DC Connection

    Supports two-way migration of user services and data and availability of user services and data at both locations.

Related Services

VPN

Functions

Isolation and Customization

Tenants are securely isolated on the cloud. VPCs can be customized based on requirements.

  • Tenant isolation

    Achieves complete logical isolation of VPCs using VXLAN.

  • Custom configuration

    Allows subnets, IP address segments and DHCP settings to be fully configurable.

Access Control

Access control is implemented for cloud servers and networks, providing multiple layers of security.

  • Security group

    Controls access to cloud servers by filtering network traffic based on TCP, UDP, and ICMP protocols and source and destination ports.

  • Network ACL

    Uses the blacklist and whitelist to protect VPCs and subnets, and controls network traffic in and out of subnets.

Flexible Networking

Custom routes and VPC peering allow more flexible routing control among and within VPCs.

  • Custom route table

    Supports creation of route tables and custom routes to control packet forwarding within VPCs.

  • VPC peering

    Supports private IP addresses for routing traffic between any two VPCs.

Hybrid Cloud Support

VPN and Direct Connect enable seamless extension of services in local data centers to HUAWEI CLOUD Stack.

  • VPN

    Establishes an IPsec communication tunnel to securely connect your local data center with your VPC.

  • Direct Connect

    Provides a high-speed, stable, and dedicated network connection from your local data center to HUAWEI CLOUD Stack.

Getting Started

  • Apply for VPC

  • Create Subnet

  • Add Default Route

  • View Topology

Apply for VPC

Steps

1. Log in to the ManageOne operation plane, and go to the VPC console.

2. In the upper right corner of the page, click Apply for VPC.

3. Apply for a VPC.

Note

A VPC that has Intranet networks bound provides route passthrough functions.

Create Subnet

Steps

1. On the VPC list page, click a VPC name to go to the VPC details page.

2. On the Subnet tab page, click Create Subnet.

3. Create a subnet.

Note

A VPC provides both an internal subnet and a routing subnet. The internal subnet is not bound to routers and does not provide Layer-2 interconnection capabilities.

Add Default Route

Steps

1. On the VPC list page, click a VPC name to go to the VPC details page.

2. On the Route Tables tab page, click Add Route.

3. Add a default route.

Note

The next-hop address must be an IP address in a subnet of the VPC.

View Topology

Steps

1. On the VPC list page, click a VPC name to go to the VPC details page.

2. Click the Topology tab.

3. View the network topology, and modify the port QoS and security group settings of an ECS.

Video Tutorials

How to Create a Virtual Private Cloud with Internet Access

more>