No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search

Reminder

To have a better experience, please upgrade your IE browser.

upgrade

FusionCloud 6.3.0 Solution Description 05

Rate and give feedback:
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
What Is Virtual Private Cloud

What Is Virtual Private Cloud

Definition

The Virtual Private Cloud (VPC) service enables you to provision logically isolated, configurable, and manageable virtual networks for instances, improving the security of resources in the system and simplifying network deployment.

You can select an IP address range, create multiple subnets, configure route tables and gateways, and customize security groups in your VPC. With a VPC, you can manage and configure internal networks and change network configurations flexibly and securely. You can also customize access rules and firewalls to control instance access within a security group and across different security groups to enhance security of instances in the subnet.

In addition, you can create a Virtual Private Network (VPN) to connect your data center or private network to your VPC. With a VPN, you do not need to set up port forwarding using an external IP address.

Network Scheme

Type I: Software is used to implement network virtualization and software switches are used to provide network services.

Type II: Specialized hardware network devices and the centralized controller are used to provide and manage network services.

Functions

  • Private network customization

    You can customize private subnets in your VPC and deploy applications and other services in the subnets accordingly.

  • Flexible security policy configuration

    You can use security groups to divide instances in a VPC into different security zones and configure different access control rules for each security zone.

    An inbound security group rule enables external access to instances in a security group, and an outbound security group rule enables instances in a security group to access the external network. If no access rule is configured for a security group after an instance is added to the security group, the communication between the instance and the external network is blocked.

  • EIP binding

    You can assign an independent EIP in your VPC. Public IP addresses can be bound to instances as required to allow instances to access the Internet. The binding and unbinding operations take effect immediately.

  • VPN access

    By default, instances in a VPC cannot communicate with your physical data center or private network. To enable communication between them, you can create a VPN to smoothly migrate applications to the cloud.

  • VPC peering

    By default, two VPCs cannot communicate with each other. You can create a VPC peering connection to enable communication between two different VPCs.

    Figure 10-1 VPC components
Translation
Download
Updated: 2019-04-23

Document ID: EDOC1100026685

Views: 162415

Downloads: 264

Average rating:
This Document Applies to these Products
Related Version
Related Documents
Share
Previous Next