Help Center/ Workspace/ User Guide(Administrator)/ Common Function Configuration/ Configuring Workspace to Access the Enterprise Intranet
Updated on 2023-12-04 GMT+08:00

Configuring Workspace to Access the Enterprise Intranet

Scenario

After you purchase a cloud desktop, the cloud desktop is in the VPC subnet by default and cannot access the enterprise intranet. You need to configure Direct Connect or VPN so that users can access the enterprise intranet from cloud desktops after accessing cloud desktops.

Prerequisites

You have used Direct Connect to connect the enterprise intranet to the VPC where the cloud desktop resides by referring to Direct Connect Getting Started. Alternatively, you have connected the local data center to the VPC where the cloud desktop resides by referring to VPN Administrator Guide, for example, Using TheGreenBow IPsec VPN Client to Configure On- and Off-Cloud Communication.

Constraints

If a firewall is used, ensure that ports 8443 and 443 in the outbound direction of the firewall are enabled.

Procedure

  1. Log in to the Workspace console.
  2. In the navigation pane, choose Tenant Configuration.
  3. In the Network Configuration area, click Enable next to Direct Connect Access Address.
  4. In the displayed dialog box, configure Direct Connect network segment.

    • Using Direct Connect:
      • Check whether the service subnet of the cloud desktop and the subnet of the Direct Connect are in the same range.

        If yes, you do not need to configure the Direct Connect network segment.

        If no, you need to configure the Direct Connect CIDR block in the Direct Connect network segment area. You can view the service subnet of the cloud desktop and the subnet network segment of the Direct Connect on the VPC page.

      • A maximum of five network segments can be configured. Use semicolons (;) to separate multiple network segments.
      • The network segment is as follows:

        192.168.11.0/24;172.10.240.0/20

    • Using a VPN connection:

      Enter the network segment of the local data center to be connected, for example, 10.119.156.0/24. The network segment of the local data center cannot conflict with that of the VPC where the cloud desktop is located.

  5. In the Enabling Direct Connect Access Addresses dialog box, select I have confirmed, VPC endpoints need to be created when Direct Connect access is enabled. (Creating VPC endpoints is charged.).
  6. Click OK.
  7. Notify end users to use the Direct Connect access address to access cloud desktops.