Help Center> Direct Connect> Getting Started> Step 3: Create a Virtual Interface
Updated on 2024-05-20 GMT+08:00

Step 3: Create a Virtual Interface

Scenarios

After the connection and the gateway are ready, you need to create a virtual interface so that your network can access the VPC.

Procedure

  1. Log in to the management console.
  2. On the console homepage, click in the upper left corner and select the desired region and project.
  3. Hover on to display Service List and choose Networking > Direct Connect.
  4. In the navigation pane on the left, choose Direct Connect > Virtual Interfaces.
  5. Click Create Virtual Interface.
    Configure the parameters based on Table 1.
    Figure 1 Creating a virtual interface
    Table 1 Parameters for creating a virtual interface

    Parameter

    Description

    Region

    Specifies the region where the connection resides. You can also change the region in the upper left corner of the console.

    Name

    Specifies the virtual interface name.

    The name can contain 1 to 64 characters.

    Virtual Interface Priority

    Specifies whether the virtual interface will be used prior to other virtual interfaces. There are two options: Preferred and Standard.

    If multiple virtual interfaces are associated with one Direct Connect device, load is balanced among virtual interfaces with the same priority, while virtual interfaces with different priorities are working in active/standby pairs.

    Connection

    Specifies the connection you can use to connect your on-premises network to Huawei Cloud.

    Virtual Gateway

    Specifies the virtual gateway that the virtual interface connects to.

    VLAN

    Specifies the ID of the VLAN for the virtual interface.

    You need to configure the VLAN if you create a connection on your own.

    The VLAN for a hosted connection will be allocated by the carrier or partner. You do not need to configure the VLAN.

    Bandwidth

    Specifies the bandwidth that can be used by the virtual interface, in Mbit/s. The bandwidth cannot exceed that of the connection.

    Enable Rate Limiting

    Limits the highest bandwidth that can be used by the virtual interface. If this option is enabled, the rate limit gradients are as follows:

    • If the bandwidth is less than or equal to 100 Mbit/s, the rate limit gradient is 10 Mbit/s.
    • If the bandwidth is greater than 100 Mbit/s but is less than or equal to 1,000 Mbit/s, the rate limit gradient is 100 Mbit/s.
    • If the bandwidth is greater than 1,000 Mbit/s but is less than or equal to 100 Gbit/s, the rate limit gradient is 1 Gbit/s.
    • If the bandwidth is greater than 100 Gbit/s, the rate limit gradient is 10 Gbit/s.

    For example, if the bandwidth is 52 Mbit/s, the actual rate limit is 60 Mbit/s. If the bandwidth is 115 Mbit/s, the actual rate limit is 200 Mbit/s.

    NOTE:

    Bandwidth limiting of virtual interfaces is being and will be launched in each region. You can view the regions where the option is rolled out on the management console.

    Enterprise Project

    Provides a cloud resource management mode where cloud resources and members are centrally managed by project.

    Tag

    Identifies the virtual interface. A tag consists of a key and one or more values. You can add 20 tags to a virtual interface.

    Tag keys and values must meet the requirements listed in Table 2.

    NOTE:

    If a predefined tag has been created on TMS, you can directly select the corresponding tag key and value.

    For details about predefined tags, see Predefined Tag Overview.

    If you have configured tag policies for Direct Connect, you need to add tags to your virtual interfaces based on the tag policies. If you add a tag that does not comply with the tag policies, virtual interfaces may fail to be created. Contact your administrator to learn more about tag policies.

    IP Address Family

    Specifies the address type of the virtual interface.

    IPv4 is selected by default.

    Local Gateway

    Specifies the gateway on the Huawei Cloud network.

    Remote Gateway

    Specifies the gateway on your on-premises network.

    The remote gateway must be in the same IP address range as the local gateway. Generally, a subnet with a 30-bit mask is recommended.

    Remote Subnet

    Specifies the subnets and masks of your on-premises network. If there are multiple subnets, use commas (,) to separate them.

    Routing Mode

    Specifies whether static routing or dynamic routing is used to route traffic between your on-premises network and the cloud network.

    If there are or will be two or more connections, select BGP routing to achieve higher availability.

    BGP ASN

    Specifies the autonomous system number (ASN) of the BGP peer.

    This parameter is required when BGP routing is selected.

    BGP MD5 Authentication Key

    Specifies the password used to authenticate the BGP peer using MD5.

    This parameter is mandatory when BGP routing is selected, and the parameter values on both gateways must be the same.

    The key contains 8 to 255 characters and must contain at least two types of the following characters:

    • Uppercase letters
    • Lowercase letters
    • Digits
    • Special characters ~!, .:;-_"(){}[]/@#$ %^&*+\|=

    Description

    Provides supplementary information about the virtual interface.

    Table 2 Tag naming requirements

    Parameter

    Requirements

    Key

    • Cannot be left blank.
    • Must be unique for each resource.
    • Can contain a maximum of 36 characters.
    • Can contain only letters, digits, hyphens, and underscores.

    Value

    • Can be left blank.
    • Can contain a maximum of 43 characters.
    • Can contain only letters, digits, periods, hyphens, and underscores.
    If you want to create a virtual interface for other accounts, configure the parameters based on Table 3.
    Table 3 Parameters for creating a virtual interface for another account

    Parameter

    Description

    Virtual Interface Account

    Specifies the account that owns the virtual interface. You create a virtual interface for another account so that this account can use your connection to access the VPC.

    Region

    Specifies the region where the connection resides. You can also change the region in the upper left corner of the console.

    Name

    Specifies the virtual interface name.

    The name can contain 1 to 64 characters.

    Virtual Interface Priority

    Specifies whether the virtual interface will be used prior to other virtual interfaces. There are two options: Preferred and Standard.

    If multiple virtual interfaces are associated with one Direct Connect device, load is balanced among virtual interfaces with the same priority, while virtual interfaces with different priorities are working in active/standby pairs.

    Connection

    Specifies the connection you can use to connect your on-premises network to Huawei Cloud.

    Project ID

    Specifies the ID of the project that the virtual gateway belongs to. On the management console, hover the cursor on the account name in the upper right corner and select My Credentials. On the My Credentials page, view the project ID.

    ID

    Specifies the ID of the virtual gateway. In the virtual gateway list, hover the cursor on the virtual gateway name and view the name and ID of the virtual gateway.

    VLAN

    Specifies the ID of the VLAN for the virtual interface.

    You need to configure the VLAN if you create a self-service connection.

    The VLAN for a hosted connection will be allocated by the carrier or partner. You do not need to configure the VLAN.

    Bandwidth

    Specifies the bandwidth that can be used by the virtual interface, in Mbit/s. The bandwidth cannot exceed that of the connection.

    Enable Rate Limiting

    Limits the highest bandwidth that can be used by the virtual interface. If this option is enabled, the rate limit gradients are as follows:

    • If the bandwidth is less than or equal to 100 Mbit/s, the rate limit gradient is 10 Mbit/s.
    • If the bandwidth is greater than 100 Mbit/s but is less than or equal to 1,000 Mbit/s, the rate limit gradient is 100 Mbit/s.
    • If the bandwidth is greater than 1,000 Mbit/s but is less than or equal to 100 Gbit/s, the rate limit gradient is 1 Gbit/s.
    • If the bandwidth is greater than 100 Gbit/s, the rate limit gradient is 10 Gbit/s.

    For example, if the bandwidth is 52 Mbit/s, the actual rate limit is 60 Mbit/s. If the bandwidth is 115 Mbit/s, the actual rate limit is 200 Mbit/s.

    Tag

    Identifies the virtual interface. A tag consists of a key and one or more values. You can add 20 tags to a virtual interface.

    Tag keys and values must meet the requirements listed in Table 4.

    NOTE:

    If a predefined tag has been created on TMS, you can directly select the corresponding tag key and value.

    For details about predefined tags, see Predefined Tag Overview.

    If you have configured tag policies for Direct Connect, you need to add tags to your virtual interfaces based on the tag policies. If you add a tag that does not comply with the tag policies, virtual interfaces may fail to be created. Contact your administrator to learn more about tag policies.

    IP Address Family

    Specifies the address type of the virtual interface.

    IPv4 is selected by default.

    Local Gateway

    Specifies the gateway on the Huawei Cloud network.

    Remote Gateway

    Specifies the gateway on your on-premises network.

    The remote gateway must be in the same IP address range as the local gateway. Generally, a subnet with a 30-bit mask is recommended.

    Remote Subnet

    Specifies the subnets and masks of your on-premises network. If there are multiple subnets, use commas (,) to separate them.

    Routing Mode

    Specifies whether static routing or dynamic routing is used to route traffic between your on-premises network and the cloud network.

    If there are or will be two or more connections, select BGP routing to achieve higher availability.

    BGP ASN

    Specifies the ASN of the BGP peer.

    This parameter is required when BGP routing is selected.

    BGP MD5 Authentication Key

    Specifies the password used to authenticate the BGP peer using MD5.

    This parameter is mandatory when BGP routing is selected, and the parameter values on both gateways must be the same.

    The key contains 8 to 255 characters and must contain at least two types of the following characters:

    • Uppercase letters
    • Lowercase letters
    • Digits
    • Special characters ~!, .:;-_"(){}[]/@#$ %^&*+\|=

    Description

    Provides supplementary information about the virtual interface.

    Table 4 Tag naming requirements

    Parameter

    Requirements

    Key

    • Cannot be left blank.
    • Must be unique for each resource.
    • Can contain a maximum of 36 characters.
    • Can contain only letters, digits, hyphens, and underscores.

    Value

    • Can be left blank.
    • Can contain a maximum of 43 characters.
    • Can contain only letters, digits, periods, hyphens, and underscores.

    When you configure the local and remote gateways, note the following:

    • The local gateway is used by Huawei Cloud for connecting to your equipment room. After you configure Local Gateway on the console, the configuration will be automatically delivered to the gateway used by Huawei Cloud.
    • The remote gateway is used by your equipment room for connecting to Huawei Cloud. After you configure Remote Gateway on the console, you also need to configure the gateway deployed in your equipment room.
    • The local and remote gateways must use the same CIDR block and cannot conflict with service IP addresses on the network.
  6. Click Create Now.

    Ensure that the virtual interface is in the Normal state.

  7. Ping the IP address of a server in the VPC from your on-premises data center to check network connectivity.