Got it

What Is Virtual Private Cloud?

Latest reply: Jan 19, 2022 10:11:51 427 5 6 0 0

Overview

The Virtual Private Cloud (VPC) service enables you to provision logically isolated and private virtual networks for cloud resources, such cloud servers, containers, and databases. You can customize subnets, security groups, network ACLs, and assign EIPs and bandwidths. In addition, you can use Direct Connect or VPN to connect your VPC to an on-premises data center to build a hybrid cloud network.

Product Architecture

The product architecture consists of the VPC components, security features, and VPC connectivity options.

Figure 1 Architecture
en-us_image_0209575468.png

VPC Components

Each VPC consists of a private CIDR block, route tables, and at least one subnet.

  • Private CIDR block: When creating a VPC, you need to specify the private CIDR block used by the VPC. The VPC service supports the following CIDR blocks: 10.0.0.0 – 10.255.255.255, 172.16.0.0 – 172.31.255.255, and 192.168.0.0 – 192.168.255.255

  • Subnet: Cloud resources, such as cloud servers and databases, must be deployed in subnets. After you create a VPC, divide the VPC into one or more subnets. Each subnet must be within the VPC. For more information, see Subnet.

  • Route table: When you create a VPC, the system automatically generates a default route table. The route table ensures that all subnets in the VPC can communicate with each other. If the routes in the default route table cannot meet application requirements (for example, an ECS without an elastic IP address (EIP) bound needs to access the Internet), you can create a custom route table. For more information, see Example Custom Route in a VPC and Example Custom Route Outside a VPC.

Security Features

Security groups and network ACLs ensure the security of cloud resources deployed in a VPC. A security group acts as a virtual firewall to provide access rules for instances that have the same security requirements and are mutually trusted in a VPC. For more information, see Security Group Overview. A network ACL can be associated with subnets that have the same access control requirements. You can add inbound and outbound rules to precisely control inbound and outbound traffic at the subnet level. For more information, see Network ACL Overview.

VPC Connectivity

HUAWEI CLOUD provides multiple VPC connectivity options to meet diverse requirements. For details, see Application Scenarios.

  • VPC Peering allows two VPCs in the same region to communicate with each other using private IP addresses.

  • Elastic IP or NAT Gateway allows ECSs in a VPC to communicate with the Internet.

  • Virtual Private Network (VPN), Cloud Connect, or Direct Connect can connect a VPC to your data center.


Accessing the VPC Service

You can access the VPC service through the management console or using HTTPS-based APIs.
  • Management console

    You can use the console to directly perform operations on VPC resources. To access the VPC service, log in to the management console and select Virtual Private Cloud from the console homepage.

  • API

    If you need to integrate the VPC service provided by the cloud system into a third-party system for secondary development, you can use APIs to access the VPC service. For details, see the Virtual Private Cloud API Reference.


  • x
  • convention:

stephen.xu
Admin Created Jan 11, 2022 08:20:39

Thank you for sharing.
View more
  • x
  • convention:

zaheernew
MVE Author Created Jan 11, 2022 08:33:25

useful info
View more
  • x
  • convention:

Saqibaz
Created Jan 12, 2022 15:52:09

Useful information, Thanks
View more
  • x
  • convention:

MahMush
Moderator Author Created Jan 18, 2022 17:02:01

Amazing write up for necessary information
View more
  • x
  • convention:

user_4358465
Created Jan 19, 2022 10:11:51

Helpful bit of information. Thank you!
View more
  • x
  • convention:

Comment

You need to log in to comment to the post Login | Register
Comment

Notice: To protect the legitimate rights and interests of you, the community, and third parties, do not release content that may bring legal risks to all parties, including but are not limited to the following:
  • Politically sensitive content
  • Content concerning pornography, gambling, and drug abuse
  • Content that may disclose or infringe upon others ' commercial secrets, intellectual properties, including trade marks, copyrights, and patents, and personal privacy
Do not share your account and password with others. All operations performed using your account will be regarded as your own actions and all consequences arising therefrom will be borne by you. For details, see " User Agreement."

My Followers

Login and enjoy all the member benefits

Login

Block
Are you sure to block this user?
Users on your blacklist cannot comment on your post,cannot mention you, cannot send you private messages.
Reminder
Please bind your phone number to obtain invitation bonus.
Information Protection Guide
Thanks for using Huawei Enterprise Support Community! We will help you learn how we collect, use, store and share your personal information and the rights you have in accordance with Privacy Policy and User Agreement.