What is a virtual private Cloud? What is a VPC?

What is a virtual private Cloud? What is a VPC?

A Virtual Private Cloud (VPC) is an isolated, ARM hostingprivate virtual network environment for cloud resources such as cloud servers, cloud containers, and cloud databases. A VPC provides diversified functions to flexibly manage cloud networks, including creating subnets, setting security groups and network ACLs, managing routing tables, and applying for flexible public IP addresses and bandwidths. In addition, a VPC can be connected to a traditional data center through services such as private cloud lines and VPNS to flexibly integrate resources and build a hybrid cloud network.

VPC uses information network virtualization technology, Cloud platfrom providerlink redundancy, distributed system gateway management cluster, and multi-AZ deployment to ensure enterprise network security, stability, and high availability.

Product architecture

The virtual private cloud VPC product architecture includes VPC composition, virtual private cloudsecurity, and VPC connectivity.

VPC Components

Each virtual private cloud VPC consists of a private network segment, a routing table, and at least one subnet.

Private network segment: When creating a virtual private cloud VPC, you need to specify the private network segment used by the virtual private cloud VPC. Currently, virtual private cloud VPCS support 10.0.0u002F8 ~24, 172.16.0.0u002F12~24, and 192.168.0.0u002F16~24.

Subnet: Cloud resources (such as cloud servers and databases). It must be deployed on a subnet. Therefore, after creating a virtual private cloud VPC, you need to create one or more subnets for the virtual private cloud VPC. The subnets must be within the private network segment.

Routing table: The default routing table is automatically generated when a virtual private cloud VPC is created. The default routing table ensures that all subnets in the same virtual private cloud VPC are connected. When the routing policy in the default routing table does not satisfy your application (for example, a cloud server with unbound elastic public IP needs to access an extranet), you can solve the problem by creating a custom routing table.

Access control lists (ACLs) are used to ensure the security of cloud resources deployed in virtual private cloud VPCS. A security group is similar to a virtual firewall and provides access policies for cloud resources with the same security protection requirements and mutual trust in the same VPC. You can associate the same network ACL of a subnet with the same network traffic control and accurately control the traffic in and out of the subnet by setting direction and incoming direction rules.

VPC connection

A VPC provides multiple connection schemes to meet enterprise users' requirements in different scenarios.

The VPC peer-to-peer function enables private network IP addresses in different VPCS in the same region to communicate with each other.

Through an EIP or NAT gateway, a VPC's cloud server can communicate with the public Internet.

Connect your VPC to your data center with the Virtual Private Network VPN, Cloud Connectivity, Cloud Lines, and VPC Layer 2 connectivity Gateway capabilities.