Got it
Huawei Enterprise Support Community
Community Forums Cloud & Big Data
Huawei Cloud Varies Netwo...

Huawei Cloud Varies Network Service Overview

Latest reply: Dec 18, 2021 16:37:20 870 19 15 0 2
display all floors 1#

HUAWEI CLOUD provides various network services to help you build secure and scalable networks on the cloud, connect cloud and on-premises networks in a high-speed and reliable way, and connect your on-premises data center to the Internet.

Network servicesFigure-1: Network services


Virtual Private Cloud (VPC)

    A VPC is logically isolated, configurable, and manageable virtual network for cloud servers, cloud containers, and cloud databases. It improves resource security and simplifies network deployment on the cloud.

    Each VPC consists of a private CIDR block, route tables, and at least one subnet. When you create a VPC, you need to specify a CIDR block for the VPC and the system automatically generates a default route table for the VPC. All resources in a VPC must be deployed on subnets. The default route table ensures that all subnets in the VPC can communicate with each other.

VPC

Figure-2: VPC

VPC can work together with other network services for network connectivity.

  • Connecting to the Internet: Resources in a VPC can communicate with the Internet through elastic IP addresses (EIPs). You can also use a NAT gateway to enable resources in a VPC to share an EIP.

  • Connecting a VPC and an on-premises network: Direct Connect, Virtual Private Network (VPN), or L2CG can be used to connect a VPC to an on-premises data center.

  • Connecting VPCs: A VPC peering connection enables communication between two VPCs in the same region. Cloud Connect enables high-speed and stable communication between VPCs in different regions. 



Elastic IP (EIP) 

    The EIP service enables your cloud resources to communicate with the Internet using static public IP addresses and scalable bandwidths. EIPs can be bound to or unbound from ECSs, BMSs, virtual IP addresses, load balancers, and NAT gateways.

You can also purchase the following for your EIPs:

  • Shared bandwidth: Shared bandwidth allows ECSs, BMSs, and load balancers that are bound with EIPs in the same region to share the same bandwidth.

  • Shared data package: A shared data package provides a quota for data usage. Shared data packages take effect immediately after your purchase. If you have subscribed to pay-per-use EIPs billed by traffic in a region and buy a shared data package in the same region, the EIPs will use the shared data package. After the package quota is used up or the package expires, the EIPs will continue to be billed on a pay-per-use basis.

  • Bandwidth add-on package: A bandwidth add-on package is used to temporarily increase the maximum bandwidth of a yearly/monthly EIP.

ELB



NAT Gateway

Public NAT gateway

    Public NAT gateways provide network address translation (NAT) with 10 Gbit/s of bandwidth for servers in a VPC, such as ECSs, Bare Metal Servers (BMSs), and Workspace desktops, or for servers that connect to a VPC through Direct Connect or VPN in on-premises data centers, allowing these servers to share EIPs to access the Internet or to provide services accessible from the Internet.

    

Public NAT gateways support both source NAT (SNAT) and destination NAT (DNAT).

  • SNAT: SNAT translates private IP addresses into EIPs, allowing servers in a VPC to share an EIP to access the Internet in a secure and efficient way.

  • DNAT: DNAT enables servers in a VPC to share an EIP to provide services accessible from the Internet through IP address mapping or port mapping.

Public NAT

Figure-3: Public NAT


Private NAT gateway

    Private NAT gateways provide network address translation (NAT) for servers, such as ECSs, BMSs, and Workspace desktops, in a VPC, and allow multiple servers to share a private IP address to access or provide services accessible from an on-premises data center or a remote VPC.

    A private NAT gateway translates IP addresses between your VPC and your on-premises data center or another VPC, allowing you to keep legacy networks unchanged after migrating some of your workloads to the cloud.


Private NAT gateways support SNAT and DNAT.

  • SNAT allows multiple servers across AZs in a VPC to share the transit IP address to access an on-premises data center or a remote VPC.

  • DNAT enables servers that share the same transit IP address in a VPC to provide services accessible from an on-premises data center or a remote VPC through IP address or port mapping.

Private NAT

Figure-4: Private NAT





Elastic Load Balance (ELB)

    ELB automatically distributes incoming traffic across multiple backend servers based on configured listening rules. ELB expands the capacities of your applications and improves their availability by eliminating single points of failure (SPOFs).

ELB

Figure-5: ELB




Direct Connect

    Direct Connect allows you to establish a dedicated network connection between your on-premises data center and a VPC. With Direct Connect, you can easily build a secure and reliable hybrid cloud. Direct Connect establishes a dedicated connection, and your data will not be transferred over the Internet.

You can connect your data center to the cloud using either type of connection:

  • Standard connection: You have more than one connection terminated at different locations. These connections work as a backup for each other, improving the reliability of connections. If you can select only one carrier due to special requirements, you must configure different physical routes. A standard connection provides an exclusive port. You can create standard connections on the management console.

  • Hosted connection: After the partner connects to your on-premises data center and HUAWEI CLOUD, the partner provisions a connection for you. You share the port with others.


Figure-6 Direct Connect

Figure-6: Direct Connect




Virtual Private Network (VPN)


    VPN establishes a secure, encrypted communication tunnel between your data center and your VPC. With VPN, you can connect to a VPC and access the resources deployed there.


Different from Direct Connect, VPN establishes an encrypted tunnel that transfers data over the Internet


VPN

Figure-7: VPN






Layer 2 Connection Gateway (L2CG)


    A L2CG is a virtual tunnel gateway that works with Direct Connect or VPN to establish network communications between cloud and on-premises networks. The gateway allows you to migrate data center or private cloud services to the cloud without changing subnets and IP addresses.


    Direct Connect or VPN establishes a Layer 3 network tunnel between cloud and on-premises networks, but the subnets on the cloud and on-premises networks must not overlap. If the cloud and on-premises networks are on the same subnet and need to communicate with each other, you can use a L2CG to enable the communication at a Layer 2 network.

8 L2CG

Figure-8: L2CG





Cloud Connect


    Cloud Connect allows you to quickly build high-quality networks that can connect VPCs across regions and work with Direct Connect to connect VPCs and on-premises data centers. With Cloud Connect, you can build a globally connected cloud network with enterprise-class scalability and communications capabilities.


9 Cloud Connect

Figure-9: Cloud Connect




VPC Endpoint (VPCEP)


    The VPCEP service provides secure and private channels to connect your VPC to VPC endpoint services (cloud services or your private services) without having to use EIPs.


VPCEP applies to the following scenarios:

  • Access to your private services in a VPC through a VPC endpoint service. You can create a VPC endpoint service to allow your services provided by ELB, ECS, and BMS in a VPC to be accessible. A service consumer uses a VPC endpoint to access the endpoint service.


  • Access to HUAWEI CLOUD services from a VPC through a VPC endpoint. You can create a VPC endpoint to access the VPC endpoint services.


  • Access to HUAWEI CLOUD services from an on-premises data center through a VPC endpoint and VPN or Direct Connect VPN or Direct Connect can work together with a VPC endpoint to allow access to cloud services, such as OBS, DNS, and SWR, from an on-premises data center.

10 VPCEP

Figure-10: VPCEP




VPC Peering


    By default, VPCs cannot communicate with each other. A VPC peering connection enables two VPCs in the same region to communicate with each other using private IP addresses as if they were in the same VPC. You can create a VPC peering connection between your own VPCs, or between your VPC and a VPC of another account within the same region. A VPC peering connection between VPCs in different regions will not take effect.



11 VPCPeering

Figure-11: VPC Peering







Source:
huaweicloud





huaweicloud
  • x
  • convention:

Like (15) Dislike (0) Favorite(2) Share Report
Previous: Al Definition !
Next: The most interesting application of AI
MahMush
Moderator Author Created Jul 15, 2021 17:39:39

Very nice content thanks for sharing
View more
  • x
  • convention:

hemin88
hemin88 Created Jul 15, 2021 18:42:29 (0) (0)
Thank you brother for your support  
BAZ
BAZ Created Jul 15, 2021 18:57:29 (0) (0)
Yes great  
LucianoNhantumbo
Moderator Created Jul 15, 2021 17:44:44

Congratulations on the publication, we will explore the knowledge by you shared Hermin.
View more
  • x
  • convention:

hemin88
hemin88 Created Jul 15, 2021 18:42:50 (0) (0)
Thank you mate for your comment and support  
little_fish
Admin Created Jul 16, 2021 00:32:56

very good.
View more
  • x
  • convention:

hemin88
hemin88 Created Jul 16, 2021 06:24:56 (0) (0)
Thank you so much  
olive.zhao
Admin Created Jul 16, 2021 00:48:18

Thanks for your sharing!
View more
  • x
  • convention:

hemin88
hemin88 Created Jul 16, 2021 06:25:34 (0) (0)
Thank you  
NTan33
Created Jul 16, 2021 06:20:33

A good overview in a single location.
View more
  • x
  • convention:

hemin88
hemin88 Created Jul 16, 2021 06:25:57 (0) (0)
Thank you, Huawei cloud is great !!  
Kh_Elias65
Created Jul 16, 2021 06:29:32

the post is encouraging me to start Huawei cloud studying, thank you for sharing
View more
  • x
  • convention:

hemin88
hemin88 Created Jul 16, 2021 08:05:45 (0) (0)
I recommend you start into cloud world as soon as possible  
sachandio
Created Jul 16, 2021 10:46:48

Great work is done by you, thanks for sharing
View more
  • x
  • convention:
Unicef
MVE Created Jul 16, 2021 13:40:38

GOOD
View more
  • x
  • convention:
alopez
MVE Created Jul 16, 2021 18:43:13

Nice article. Thanks for sharing this valuable information!!Huawei Cloud Varies Network Service Overview-4036643-1
View more
  • x
  • convention:
12
Back to list

Comment

Advanced
B Color Image Link Quote Code Smilies
You need to log in to comment to the post Login | Register
Comment

Notice: To protect the legitimate rights and interests of you, the community, and third parties, do not release content that may bring legal risks to all parties, including but are not limited to the following:
  • Politically sensitive content
  • Content concerning pornography, gambling, and drug abuse
  • Content that may disclose or infringe upon others ' commercial secrets, intellectual properties, including trade marks, copyrights, and patents, and personal privacy
Do not share your account and password with others. All operations performed using your account will be regarded as your own actions and all consequences arising therefrom will be borne by you. For details, see " User Agreement."

My Followers

Login and enjoy all the member benefits

Login
Huawei Website Support About Huawei Privacy User Agreement Terms of Use Cookies Cookie Settings
Huawei Enterprise Huawei Carrier Forum Training & Certification

Contact Us: e_online@huawei.com Copyright © 2022 Huawei Technologies Co., Ltd. All rights reserved.

APP

Block
Are you sure to block this user?
Users on your blacklist cannot comment on your post,cannot mention you, cannot send you private messages.
Reminder
Please bind your phone number to obtain invitation bonus.
Information Protection Guide
Thanks for using Huawei Enterprise Support Community! We will help you learn how we collect, use, store and share your personal information and the rights you have in accordance with Privacy Policy and User Agreement.