Prerequisites

• You have created an exclusive cluster.
• You have information about the peer VPC.

Establishing a VPC Peering Connection Between Two VPCs of an Account

1. In the navigation tree on the left pane of the CS management console, click Cluster Management to switch to the Cluster Management page.
2. In the row of the cluster you want to query, click the cluster name in the Name column to switch to the cluster details page. Click the VPC Peering tab.
   Figure 1 VPC peering connection
   

3. Click Create VPC Peering Connection. In the displayed Create VPC Peering Connection dialog box, specify parameters as follows:
   Figure 2 Creating a VPC peering connection for the current account
   
   • Name: Enter a VPC peering connection name.
   • Tenant: Select Current Tenant.
   • Peer VPC: Select the target peer VPC from the drop-down list box.
   • Accept Request: Choose whether to accept the request for the VPC peering connection. By default, the request is accepted.

4. Click OK. The VPC Peering page is displayed.
5. (Optional) If you chose to not accept the request for the VPC peering connection in 3, locate the row where the VPC peering connection you created is located and click Accept Request in the Operation column. If you chose to accept, skip this step.
6. After the status of the VPC peering connection becomes Accepted, click Add Route. In the displayed dialog box, specify parameters in Local Route and Peer Route, and click OK.
   Figure 3 Adding a route
   
   

   • Parameters Destination in Local Route and Peer Route have been automatically set by the system. Generally, retain the default values. If there are custom requirements, modify them as required.
   • You can click View Peer VPC or View Local VPC to view details about the peer or local VPC.
   • After a VPC peering connection is created, you can run the job used for accessing ECSs in the peer VPC in the current cluster. However, ECS security groups may have different configurations and you may not be allowed to access ports on the peer end. In this case, configure the security group rule of the corresponding ECS and add rules on corresponding ports in inbound and outbound directions. For details about how to configure the security group rule for an ECS, see Configuring a Security Group Rule in the Elastic Cloud Server User Guide.
   • CIDRs must not overlap at both ends of a VPC peering connection. During cluster creation, you can configure the VPC network segment where the cluster resides. Ensure that the configured network segment does not conflict with that of the peer end.

7. (Optional) If the VPC peering connection is not required, click Delete in the Operation column.

   After the VPC peering connection is deleted, communication between CS clusters and the peer end will be interrupted. Exercise caution when deleting a VPC peering connection.

Establishing a VPC Peering Connection Between Two VPCs of Two Accounts

Before establishing a VPC peering connection with the VPC of another account, ensure that you have obtained the project ID and VPC ID of the peer VPC from the peer account.

The following example illustrates how to create a VPC peering connection between VPCs of two different accounts, A and B.

1. Log in to the CS management console as account A and create a VPC peering connection with the VPC of account B.
   1. In the navigation tree on the left pane of the CS management console, click Cluster Management to switch to the Cluster Management page.
   2. Locate the row where the target cluster is located and click the cluster name in the Name column to switch to the cluster details page. Click VPC Peering Connections.
   3. Click Create VPC Peering Connection. In the displayed Create VPC Peering Connection dialog box, specify parameters as follows:
      Figure 4 Creating a VPC peering connection for another account
      
      • Name: Enter a VPC peering connection name.
      • Tenant: Select Other Tenant.
      • Peer Project ID: Enter the project ID of the peer VPC.
      • Peer VPC ID: Enter the peer VPC ID.
   4. Click OK. The VPC Peering page is displayed. The status of the new VPC peering connection is Awaiting Acceptance.

2. Log in to the VPC management console as account B and configure the VPC peering connection.
   1. In the left navigation pane of the VPC management console, click VPC Peering to switch to the VPC Peering page.
   2. In the VPC peering connection list, locate the row where the VPC peering connection created in 1 is located and click Accept Request in the Operation column.

      After the request is accepted, the status of the VPC peering connection changes to Accepted.

   3. In the VPC peering connection list, click the name of the VPC peering connection in the VPC Peering Name/ID column to display details about the VPC peering connection.
   4. Save the Local VPC CIDR Block and Peer VPC CIDR Block settings of the VPC peering connection.
   5. Click Add Local Route. In the displayed Add Local Route dialog box, specify Destination and click OK.
      

      The value of Destination is that of Peer VPC CIDR Block obtained in 2.d.

3. Log in to the CS management console as account A.
   1. Switch to the VPC Peering Connections tab page for the cluster where the new VPC peering connection was created, locate the row where the new VPC peering connection is located, and click the Add Route in the Operation column.
   2. In the displayed Add Route dialog box, specify Destination and click OK.
      

      The value of Destination is that of Local VPC CIDR Block obtained in 2.d.

4. (Optional) If the VPC peering connection is not required, click Delete in the Operation column.

   After the VPC peering connection is deleted, communication between CS clusters and the peer end will be interrupted. Exercise caution when deleting a VPC peering connection.