Virtual Private Cloud
Virtual Private Cloud
All results for "
" in this service
All results for "
" in this service
What's New
Function Overview
Service Overview
VPC Infographics
What Is Virtual Private Cloud?
VPC Advantages
Application Scenarios
VPC Functions
Security
Shared Responsibilities
Identity Authentication and Access Control
Auditing and Logging
Risk Monitoring
Notes and Constraints
VPC and Related Services
Billing
Permissions
Basic Concepts
Subnet
Elastic IP
Route Table
Security Group
VPC Peering Connection
Network ACL
Virtual IP Address
Elastic Network Interface
Supplementary Network Interface
IP Address Group
Region and AZ
Getting Started
Setting Up an IPv4 Network in a VPC
Setting Up an IPv4/IPv6 Dual-Stack Network in a VPC
Common Practices
User Guide
Permissions Management
Creating an IAM User and Granting VPC Permissions
VPC Custom Policies
VPC and Subnet
VPC and Subnet Planning
VPC Connectivity Options
Overview
Connecting VPCs
Connecting VPCs to the Public Network
Connecting VPCs to On-Premises Data Centers
VPC
Creating a VPC and Subnet
Adding a Secondary IPv4 CIDR Block to a VPC
Obtaining a VPC ID
Modifying a VPC
Viewing a VPC Topology
Exporting VPCs
Managing VPC Tags
Deleting a Secondary IPv4 CIDR Block from a VPC
Deleting a VPC
Subnet
Creating a Subnet for an Existing VPC
Modifying a Subnet
Exporting Subnets
Viewing and Deleting Resources in a Subnet
Viewing IP Addresses in a Subnet
Managing Subnet Tags
Deleting a Subnet
Route Table and Route
Route Table and Route Overview
Managing Route Tables
Creating a Custom Route Table
Associating a Route Table with a Subnet
Changing the Route Table Associated with a Subnet
Viewing the Route Table Associated with a Subnet
Viewing Route Table Information
Deleting a Route Table
Managing Routes
Adding Routes to a Route Table
Modifying a Route
Replicating a Route
Deleting a Route
Route Configuration Examples
Configuring an SNAT Server to Enable ECSs to Share an EIP to Access the Internet
Virtual IP Address
Virtual IP Address Overview
Assigning a Virtual IP Address
Binding a Virtual IP Address to an Instance or EIP
Unbinding a Virtual IP Address from an Instance or EIP
Releasing a Virtual IP Address
Virtual IP Address Configuration Example
Using a Virtual IP Address and Keepalived to Set Up a High-Availability Web Cluster
Elastic Network Interface and Supplementary Network Interface
Elastic Network Interface
Elastic Network Interface Overview
Creating a Network Interface
Viewing the Basic Information About a Network Interface
Attaching a Network Interface to a Cloud Server
Binding an EIP to a Network Interface
Binding a Network Interface to a Virtual IP Address
Detaching a Network Interface from an Instance or Unbinding an EIP from a Network Interface
Changing Security Groups That Are Associated with a Network Interface
Deleting a Network Interface
Supplementary Network Interfaces
Supplementary Network Interface Overview
Creating a Supplementary Network Interface
Viewing the Basic Information About a Supplementary Network Interface
Binding or Unbinding an EIP to or from a Supplementary Network Interface
Changing Security Groups That Are Associated with a Supplementary Network Interface
Deleting a Supplementary Network Interface
Network Interface Configuration Examples
Binding an EIP to the Extension NIC of an ECS to Enable Internet Access
Configuring Policy-based Routes for an ECS with Multiple Network Interfaces
Overview
Collecting ECS Network Information
Configuring IPv4 and IPv6 Policy-based Routes for a Linux ECS with Multiple Network Interfaces (CentOS)
Configuring IPv4 and IPv6 Policy-based Routes for a Linux ECS with Multiple Network Interfaces (Ubuntu)
Configuring IPv4 and IPv6 Policy-based Routes for a Windows ECS with Multiple Network Interfaces
Access Control
Access Control Overview
Security Group
Security Group and Security Group Rule Overview
Default Security Groups
Security Group Examples
Common ECS Ports
Managing a Security Group
Creating a Security Group
Cloning a Security Group
Modifying a Security Group
Viewing the Details of a Security Group
Managing Security Group Tags
Deleting a Security Group
Managing Security Group Rules
Adding a Security Group Rule
Fast-Adding Security Group Rules
Allowing Common Ports with a Few Clicks
Modifying a Security Group Rule
Replicating a Security Group Rule
Importing and Exporting Security Group Rules
Deleting a Security Group Rule
Querying Security Group Rule Changes
Managing Instances Added to a Security Group
Adding an Instance to or Removing an Instance from a Security Group
Changing the Security Group of an ECS
Network ACL
Network ACL Overview
Network ACL Configuration Examples
Managing Network ACLs
Creating a Network ACL
Modifying a Network ACL
Enabling or Disabling a Network ACL
Viewing a Network ACL
Managing Network ACL Tags
Deleting a Network ACL
Managing Network ACL Rules
Adding a Network ACL Rule
Modifying a Network ACL Rule
Enabling or Disabling a Network ACL Rule
Exporting and Importing Network ACL Rules
Deleting a Network ACL Rule
Managing Subnets Associated with a Network ACL
Associating Subnets with a Network ACL
Disassociating Subnets from a Network ACL
IP Address Group
IP Address Group Overview
Managing an IP Address Group
Creating an IP Address Group
Associating an IP Address Group with Resources
Disassociating an IP Address Group from Resources
Modifying an IP Address Group
Exporting IP Address Group Details
Viewing the Details of an IP Address Group
Managing IP Address Group Tags
Deleting an IP Address Group
Managing IP Addresses in an IP Address Group
Adding IP Addresses to an IP Address Group
Modifying IP Addresses in an IP Address Group
Importing IP Addresses to an IP Address Group in Batches
Deleting IP Addresses from an IP Address Group
IP Address Group Configuration Examples
Using IP Address Groups to Reduce the Number of Security Group Rules
VPC Peering Connection
VPC Peering Connection Overview
VPC Peering Connection Usage
VPC Peering Connection Usage Examples
Using a VPC Peering Connection to Connect Two VPCs
Using a VPC Peering Connection to Connect Subnets in Two VPCs
Using a VPC Peering Connection to Connect ECSs in Two VPCs
Unsupported VPC Peering Configurations
Creating a VPC Peering Connection to Connect Two VPCs in the Same Account
Creating a VPC Peering Connection to Connect Two VPCs in Different Accounts
Obtaining the Peer Project ID of a VPC Peering Connection
Modifying a VPC Peering Connection
Viewing VPC Peering Connections
Deleting a VPC Peering Connection
Modifying Routes Configured for a VPC Peering Connection
Viewing Routes Configured for a VPC Peering Connection
Deleting Routes Configured for a VPC Peering Connection
VPC Sharing
VPC Sharing Overview
Usage Examples for VPC Sharing
Sharing a Subnet with Other Accounts
Viewing the Details of a Shared Subnet
Stopping Sharing a Subnet
Edge Gateway
Edge Gateway Overview
Buying an Edge Gateway
Associating VPCs with or Disassociating VPCs from an Edge Gateway
Managing Edge Gateways
Managing the Tags of an Edge Gateway
Creating an Edge Connection
Binding or Unbinding a Global Connection Bandwidth to and from an Edge Connection
Managing Edge Connections
IPv4/IPv6 Dual-Stack Network
VPC Flow Log
VPC Flow Log
Creating a VPC Flow Log
Viewing a VPC Flow Log
Enabling or Disabling VPC Flow Log
Deleting a VPC Flow Log
Traffic Mirroring
Traffic Mirroring
Mirror Filters
Creating a Mirror Filter
Adding an Inbound or Outbound Mirror Filter Rule
Modifying an Inbound or Outbound Mirror Filter Rule
Deleting an Inbound or Outbound Mirror Filter Rule
Modifying the Basic Information About a Mirror Filter
Viewing the Details About a Mirror Filter
Deleting a Mirror Filter
Mirror Sessions
Creating a Mirror Session
Enabling or Disabling a Mirror Session
Associating Mirror Sources with a Mirror Session
Disassociating Mirror Sources from a Mirror Session
Changing the Mirror Filter for a Mirror Session
Changing the Mirror Target of a Mirror Session
Modifying the Basic Information About a Mirror Session
Viewing the Details About a Mirror Session
Deleting a Mirror Session
Traffic Mirroring Example Scenarios
Mirroring Inbound TCP Traffic to a Single Network Interface
Mirroring Inbound TCP and UDP Traffic to Multiple Network Interfaces
Mirroring Inbound and Outbound TCP Traffic to a Network Interface in a Different VPC
Mirroring Inbound and Outbound TCP Traffic to a Load Balancer
Monitoring and Auditing
Cloud Eye Monitoring
Supported Metrics
Viewing Metrics
Creating an Alarm Rule
CTS Auditing
Key Operations Recorded by CTS
Viewing Traces
Managing Quotas
Best Practices
Lower Network Costs
VPC Security
Using a Third-Party Firewall to Scrub Traffic for VPCs Connected by VPC Peering Connections
Using Third-Party Firewalls to Filter Traffic When Connecting an On-premises Data Center to the Cloud
Deploying Containers that Can Communicate with Each Other on Huawei Cloud ECSs
API Reference
Before You Start
Overview
API Calling
Endpoints
Notes and Constraints
Concepts
Selecting an API Type
API Overview
Calling APIs
Making an API Request
Authentication
Response
APIs
Virtual Private Cloud
Creating a VPC
Querying VPC Details
Querying VPCs
Updating a VPC
Deleting a VPC
Subnet
Creating a Subnet
Querying Subnet Details
Querying Subnets
Updating Subnet Information
Deleting a Subnet
Quota
Querying Quotas
Private IP Address
Assigning a Private IP Address
Querying Private IP Address Details
Querying Private IP Addresses
Deleting a Private IP Address
Security Group
Creating a Security Group
Querying Security Group Details
Querying Security Groups
Deleting a Security Group
Adding a Security Group Rule
Querying Security Group Rule Details
Querying Security Group Rules
Deleting a Security Group Rule
Port
Creating a Port
Querying a Port
Querying Ports
Updating a Port
Deleting a Port
VPC Peering Connection
Querying VPC Peering Connections
Querying a VPC Peering Connection
Creating a VPC Peering Connection
Accepting a VPC Peering Connection
Refusing a VPC Peering Connection
Updating a VPC Peering Connection
Deleting a VPC Peering Connection
VPC Route
Querying VPC Routes
Querying a VPC Route
Creating a VPC Route
Deleting a VPC Route
Route Table
Querying Route Tables
Querying a Route Table
Creating a Route Table
Updating a Route Table
Associating Subnets with a Route Table
Disassociating Subnets from a Route Table
Deleting a Route Table
VPC Tag Management
Adding a Tag to a VPC
Querying VPC Tags
Deleting a Tag from a VPC
Batch Adding or Deleting VPC Tags
Querying VPCs by Tag
Querying VPC Tags in a Specified Project
Subnet Tag Management
Adding a Tag to a Subnet
Querying Subnet Tags
Deleting a Tag from a Subnet
Batch Adding or Deleting Subnet Tags
Querying Subnets by Tag
Querying Subnet Tags in a Specified Project
Security Group Tag Management
Querying Security Groups by Tag
Batch Adding Tags to a Security Group
Batch Deleting Tags from a Security Group
Querying Security Group Tags
Adding a Tag to a Security Group
Deleting a Tag from a Security Group
Querying Security Group Tags in a Specified Project
Querying IP Address Usage
Querying IP Address Usage on a Specified Network
VPC Flow Log
Creating a VPC Flow Log
Querying VPC Flow Logs
Querying a VPC Flow Log
Updating a VPC Flow Log
Deleting a VPC Flow Log
API V3
VPC
Querying VPCs
Querying the Details of a VPC
Adding a Secondary CIDR Block to a VPC
Removing a Secondary CIDR Block from a VPC
Security Group
Creating a Security Group
Querying Security Groups
Querying the Details of a Security Group
Updating a Security Group
Deleting a Security Group
Security Group Rule
Creating a Security Group Rule
Querying Security Group Rules
Querying a Security Group Rule
Deleting a Security Group Rule
Adding Rules to a Specified Security Group
IP Address Group
Creating an IP Address Group
Querying IP Address Groups
Querying an IP Address Group
Updating an IP Address Group
Deleting an IP Address Group
Forcibly Deleting an IP Address Group
Supplementary Network Interface
Creating a Supplementary Network Interface
Creating Supplementary Network Interfaces in Batches
Querying Supplementary Network Interfaces
Querying the Details of a Supplementary Network Interface
Querying the Number of Supplementary Network Interfaces
Updating a Supplementary Network Interface
Deleting a Supplementary Network Interface
Traffic Mirror Sessions
Querying Traffic Mirror Sessions
Querying Details About a Traffic Mirror Session
Creating a Traffic Mirror Session
Updating a Traffic Mirror Session
Deleting a Traffic Mirror Session
Disassociating a Traffic Mirror Source from a Traffic Mirror Session
Associating a Traffic Mirror Source with a Traffic Mirror Session
Traffic Mirror Filters
Creating a Traffic Mirror Filter
Querying Traffic Mirror Filters
Querying Details About a Traffic Mirror Filter
Updating a Traffic Mirror Filter
Deleting a Traffic Mirror Filter
Traffic Mirror Filter Rules
Querying Traffic Mirror Filter Rules
Querying Details About a Traffic Mirror Filter Rule
Creating a Traffic Mirror Filter Rule
Updating a Traffic Mirror Filter Rule
Deleting a Traffic Mirror Filter Rule
Network ACL
Creating a Network ACL
Querying Network ACLs
Query the Details of a Network ACL
Updating a Network ACL
Deleting a Network ACL
Updating a Network ACL Rule
Inserting a Network ACL Rule
Deleting a Network ACL Rule
Associating a Subnet with a Network ACL
Disassociating a Subnet from a Network ACL
Network ACL Tag Management
Querying the Number of Network ACLs Using Tags
Querying Network ACLs Using Tags
Adding a Tag to a Network ACL
Delete a Tag from a Network ACL
Querying Tags of Network ACLs
Adding Tags to a Network ACL in Batches
Deleting Tags from a Network ACL in Batches
Querying Tags of Network ACLs in a Project
Port
Adding a Security Group to the Security Group List of a Port
Removing a Security Group from the Security Group List of a Port
Native OpenStack Neutron APIs (V2.0)
API Version Information
Querying API Versions
Pagination
Port
Querying Ports
Querying a Port
Creating a Port
Updating a Port
Deleting a Port
Network
Querying Networks
Querying Network Details
Creating a Network
Updating a Network
Deleting a Network
Subnet
Querying Subnets
Querying a Subnet
Creating a Subnet
Updating a Subnet
Deleting a Subnet
Router
Querying Routers
Querying a Router
Creating a Router
Updating a Router
Deleting a Router
Adding an Interface to a Router
Removing an Interface from a Router
Network ACL
Querying Network ACL Rules
Querying a Network ACL Rule
Creating a Network ACL Rule
Updating a Network ACL Rule
Deleting a Network ACL Rule
Querying Network ACL Policies
Querying a Network ACL Policy
Creating a Network ACL Policy
Updating a Network ACL Policy
Deleting a Network ACL Policy
Inserting a Network ACL Rule
Removing a Network ACL Rule
Querying Network ACL Groups
Querying a Network ACL Group
Creating a Network ACL Group
Updating a Network ACL Group
Deleting a Network ACL Group
Security Group
Querying Security Groups
Querying a Security Group
Creating a Security Group
Updating a Security Group
Deleting a Security Group
Querying Security Group Rules
Querying a Security Group Rule
Adding a Security Group Rule
Deleting a Security Group Rule
Application Examples
Example 1: Creating a VPC and Subnet for an ECS
Example 2: Configuring a Security Group for an ECS
Example 3: Assigning a Virtual IP Address to an ECS for HA
Example 4: Assigning a Virtual IPv6 Address to ECSs for HA
Permissions and Supported Actions
Introduction
VPC
Subnet
Port
VPC Peering Connection
VPC Route
Route Table
Quota
Private IP Address
Security Group
Security Group Rule
VPC Tag
Subnet Tag
VPC Flow Log
Port (OpenStack Neutron API)
Network (OpenStack Neutron API)
Subnet (OpenStack Neutron API)
Router (OpenStack Neutron API)
Network ACL (OpenStack Neutron API)
Security Group (OpenStack Neutron API)
VPC (V3)
Security Group (V3)
Security Group Rule (V3)
IP Address Group (V3)
Supplementary Network Interface (V3)
Mirror Session (V3)
Mirror Filter (V3)
Mirror Filter Rule (V3)
Network ACL (V3)
Network ACL Tag (V3)
Port (V3)
Precautions for API Permissions
FAQs
What Are the Differences Between the VPC Subnet API and the OpenStack Neutron Subnet API?
What Are the Relationships Among Network ACL Groups, Policies, and Rules?
Out-of-Date APIs
Port (Discarded)
Creating a Port (Discarded)
Querying a Port (Discarded)
Querying Ports (Discarded)
Updating a Port (Discarded)
Deleting a Port (Discarded)
Appendix
ICMP-Port Range Relationship Table
VPC Monitoring Metrics
Status Codes
Error Codes
Obtaining a Project ID
SDK Reference
SDK Overview
FAQs
Billing and Payments
Will I Be Billed for Using the VPC Service?
Why Is My VPC Still Being Billed After It Was Deleted?
How Do I View My VPC Bills?
How Is an EIP Charged?
How Do I Change My EIP Billing Mode Between Pay-per-Use and Yearly/Monthly?
How Do I Change the Billing Option of a Pay-per-Use EIP Between By Bandwidth and By Traffic?
VPCs and Subnets
What Is Virtual Private Cloud?
Which CIDR Blocks Are Available for the VPC Service?
How Many VPCs Can I Create?
Can Subnets Communicate with Each Other?
What Subnet CIDR Blocks Are Available?
Can I Change the CIDR Block of a Subnet?
How Many Subnets Can I Create?
How Do I Make the Changed DHCP Lease Time of a Subnet Take Effect Immediately?
How Can I Make a Domain Name in a Subnet Take Effect Immediately After Being Changed?
Why Can't I Delete My VPCs and Subnets?
Can I Change the VPC of an ECS?
Why Is the ECS IP Address Released After the System Time Is Changed?
How Do I Change the DNS Server Address of an ECS?
EIPs
How Do I Assign or Retrieve a Specific EIP?
What Are the Differences Between EIP, Private IP Address, and Virtual IP Address?
Can I Change the Dedicated Bandwidth Used by an EIP to a Shared Bandwidth?
How Many ECSs Can I Bind an EIP To?
How Do I Access an ECS with an EIP Bound from the Internet?
What Is the EIP Assignment Policy?
Can I Bind an EIP of an ECS to Another ECS?
Can I Buy a Specific EIP?
How Do I Query the Region of My EIPs?
How Can I Unbind an Existing EIP from an Instance and Bind Another EIP to the Instance?
Can I Bind an EIP to a Cloud Resource in Another Region?
Can I Change the Region of an EIP?
VPC Peering Connections
How Many VPC Peering Connections Can I Create in an Account?
Can a VPC Peering Connection Connect VPCs in Different Regions?
Why Did Communication Fail Between VPCs That Were Connected by a VPC Peering Connection?
Virtual IP Addresses
Why Can't the Virtual IP Address Be Pinged After It Is Bound to an ECS NIC?
How Do I Bind a Virtual IP Address on Huawei Cloud to a Server in an On-premises Data Center?
Why Is the Network Disconnected Between Servers Using a Virtual IP Address After an Active/Standby Switchover?
Bandwidth
What Are Inbound Bandwidth and Outbound Bandwidth?
What Are the Differences Among Static BGP, Dynamic BGP, and Premium BGP?
How Do I Know If My EIP Bandwidth Limit Has Been Exceeded?
What Are the Differences Between Public Bandwidth and Private Bandwidth?
What Bandwidth Types Are Available?
What Are the Differences Between a Dedicated Bandwidth and a Shared Bandwidth?
How Many EIPs Can I Add to Each Shared Bandwidth?
Can I Increase a Yearly/Monthly Bandwidth and Decrease It Later?
What Is the Relationship Between Bandwidth and Upload/Download Rate?
Connectivity
Does a VPN Allow Communication Between Two VPCs?
Why Cannot I Access Public Websites Through Domain Names or Access Internal Domain Names on the Cloud When My ECS Has Multiple NICs?
What Are the Priorities of the Custom Route and EIP If Both Are Configured for an ECS to Enable the ECS to Access the Internet?
Why Are There Intermittent Interruptions When a Local Host Accesses a Website Built on an ECS?
Why Do ECSs Using Private IP Addresses in the Same Subnet Only Support One-Way Communication?
Why Does Communication Fail Between Two ECSs in the Same VPC or Packet Loss Occur When They Communicate?
Why Can't My ECS Use Cloud-init?
Why Can't My ECS Access the Internet Even After an EIP Is Bound?
Why Is My ECS Unable to Communicate at a Layer 2 or Layer 3 Network?
How Do I Handle a BMS Network Failure?
Why Does My ECS Fail to Obtain an IP Address?
How Do I Handle a VPN or Direct Connect Connection Network Failure?
Why Can My Server Be Accessed from the Internet But Cannot Access the Internet?
Why Can't I Access Websites Using IPv6 Addresses After IPv4/IPv6 Dual Stack Is Configured?
Why Does My ECS Fail to Communicate with Other After It Has Firewall Installed?
Routing
How Do I Configure Policy-Based Routes for an ECS with Multiple NICs?
Can a Route Table Span Multiple VPCs?
Are There Any Restrictions on Using a Route Table?
Security
Does a Modified Security Group Rule or a Network ACL Rule Take Effect Immediately for Existing Connections?
Why Is Outbound Access on TCP Port 25 Blocked?
How Do I Know the Instances Associated with a Security Group?
Why Can't I Delete a Security Group?
Can I Change the Security Group of an ECS?
How Do I Configure a Security Group for Multi-Channel Protocols?
Why Are Some Ports of ECSs Inaccessible?
Why Is Access from a Specific IP Address Still Allowed After a Network ACL Rule That Denies the Access from the IP Address Has Been Added?
Why Are My Security Group Rules Not Working?
Videos
Glossary
More Documents
User Guide (ME-Abu Dhabi Region)
Service Overview
What Is Virtual Private Cloud?
Application Scenarios
VPC Connectivity
VPC and Other Services
Basic Concepts
Subnet
Elastic IP
Route Table
Security Group
VPC Peering Connection
Network ACL
Virtual IP Address
Elastic Network Interface
Supplementary Network Interface
Region and AZ
Getting Started
Quick Start
Typical Application Scenarios
Configuring a VPC for ECSs That Do Not Require Internet Access
Overview
Step 1: Create a VPC
Step 2: Create a Subnet for the VPC
Step 3: Create a Security Group
Step 4: Add a Security Group Rule
Configuring a VPC for ECSs That Access the Internet Using EIPs
Overview
Step 1: Create a VPC
Step 2: Create a Subnet for the VPC
Step 3: Assign an EIP and Bind It to an ECS
Step 4: Create a Security Group
Step 5: Add a Security Group Rule
Setting up an IPv6 Network
VPC and Subnet
VPC and Subnet Planning Suggestions
VPC
Creating a VPC
Adding a Secondary IPv4 CIDR Block to a VPC
Modifying a VPC
Managing VPC Tags
Obtaining a VPC ID
Viewing a VPC Topology
Exporting VPC List
Deleting a Secondary IPv4 CIDR Block from a VPC
Deleting a VPC
Subnet
Creating a Subnet for the VPC
Modifying a Subnet
Managing Subnet Tags
Viewing and Deleting Resources in a Subnet
Viewing IP Addresses in a Subnet
Exporting Subnet List
Deleting a Subnet
IPv4 and IPv6 Dual-Stack Network
Route Tables
Route Tables and Routes
Managing Route Tables
Creating a Custom Route Table
Associating a Route Table with a Subnet
Changing the Route Table Associated with a Subnet
Viewing the Route Table Associated with a Subnet
Viewing Route Table Information
Exporting Route Table Information
Deleting a Route Table
Managing Routes
Adding a Custom Route
Modifying a Route
Replicating a Route
Deleting a Route
Configuring an SNAT Server
Virtual IP Address
Virtual IP Address Overview
Assigning a Virtual IP Address
Binding a Virtual IP Address to an EIP or ECS
Binding a Virtual IP Address to an EIP
Unbinding a Virtual IP Address from an Instance
Unbinding a Virtual IP Address from an EIP
Releasing a Virtual IP Address
Disabling IP Forwarding on the Standby ECS
Disabling Source/Destination Check for an ECS NIC
Elastic Network Interface and Supplementary Network Interface
Elastic Network Interface
Elastic Network Interface Overview
Creating a Network Interface
Viewing Basic Information About a Network Interface
Attaching a Network Interface to an Instance
Binding a Network Interface to an EIP
Binding a Network Interface to a Virtual IP Address
Detaching a Network Interface from an Instance or Unbinding an EIP from a Network Interface
Changing Security Groups That Are Associated with a Network Interface
Deleting a Network Interface
Supplementary Network Interfaces
Supplementary Network Interface Overview
Creating a Supplementary Network Interface
Viewing Basic Information About a Supplementary Network Interface
Binding or Unbinding a Supplementary Network Interface to or from an EIP
Changing Security Groups That Are Associated with a Supplementary Network Interface
Deleting a Supplementary Network Interface
Access Control
What Is Access Control?
Security Group
Security Groups and Security Group Rules
Default Security Group and Rules
Security Group Configuration Examples
Managing a Security Group
Creating a Security Group
Cloning a Security Group
Modifying a Security Group
Deleting a Security Group
Managing Security Group Rules
Adding a Security Group Rule
Fast-Adding Security Group Rules
Modifying a Security Group Rule
Replicating a Security Group Rule
Importing and Exporting Security Group Rules
Deleting a Security Group Rule
Managing Instances Associated with a Security Group
Adding an Instance to or Removing an Instance from a Security Group
Changing the Security Group of an ECS
Network ACL
Network ACL Overview
Network ACL Configuration Examples
Managing Network ACLs
Creating a Network ACL
Modifying a Network ACL
Enabling or Disabling a Network ACL
Viewing a Network ACL
Deleting a Network ACL
Management Network ACL Rules
Adding a Network ACL Rule
Modifying a Network ACL Rule
Changing the Sequence of a Network ACL Rule
Enabling or Disabling a Network ACL Rule
Exporting and Importing Network ACL Rules
Deleting a Network ACL Rule
Managing Subnets Associated with a Network ACL
Associating Subnets with a Network ACL
Disassociating Subnets from a Network ACL
VPC Peering Connection
VPC Peering Connection Overview
VPC Peering Connection Usage Examples
Creating a VPC Peering Connection with Another VPC in Your Account
Creating a VPC Peering Connection with a VPC in Another Account
Obtaining the Peer Project ID of a VPC Peering Connection
Modifying a VPC Peering Connection
Viewing VPC Peering Connections
Deleting a VPC Peering Connection
Modifying Routes Configured for a VPC Peering Connection
Viewing Routes Configured for a VPC Peering Connection
Deleting Routes Configured for a VPC Peering Connection
VPC Flow Log
VPC Flow Log Overview
Creating a VPC Flow Log
Viewing a VPC Flow Log
Enabling or Disabling VPC Flow Log
Deleting a VPC Flow Log
Elastic IP
Assigning an EIP and Binding It to an ECS
Unbinding an EIP from an ECS and Releasing the EIP
Modifying an EIP Bandwidth
Exporting EIP Information
Managing EIP Tags
Shared Bandwidth
Shared Bandwidth Overview
Assigning a Shared Bandwidth
Adding EIPs to a Shared Bandwidth
Removing EIPs from a Shared Bandwidth
Modifying a Shared Bandwidth
Deleting a Shared Bandwidth
Monitoring
Supported Metrics
Viewing Metrics
Creating an Alarm Rule
FAQ
General Questions
What Is a Quota?
VPCs and Subnets
What Is Virtual Private Cloud?
Which CIDR Blocks Are Available for the VPC Service?
Can Subnets Communicate with Each Other?
What Subnet CIDR Blocks Are Available?
How Many Subnets Can I Create?
Why Can't I Delete My VPCs and Subnets?
EIPs
Can I Bind an EIP to Multiple ECSs?
How Do I Access an ECS with an EIP Bound from the Internet?
Can I Bind an EIP of an ECS to Another ECS?
Can I Bind an EIP to a Cloud Resource in Another Region?
Can I Change the Region of My EIP?
VPC Peering Connections
How Many VPC Peering Connections Can I Create in an Account?
Can a VPC Peering Connection Connect VPCs in Different Regions?
Why Did Communication Fail Between VPCs That Were Connected by a VPC Peering Connection?
Bandwidth
How Do I Know If My EIP Bandwidth Limit Has Been Exceeded?
What Is the Bandwidth Size Range?
What Bandwidth Types Are Available?
What Is the Relationship Between Bandwidth and Upload/Download Rate?
Connectivity
Does a VPN Allow Communication Between Two VPCs?
Why Are Internet or Internal Domain Names in the Cloud Inaccessible Through Domain Names When My ECS Has Multiple NICs?
What Are the Priorities of the Custom Route and EIP If Both Are Configured for an ECS to Enable the ECS to Access the Internet?
Why Can't My ECS Access the Internet Even After an EIP Is Bound?
Routing
Can a Route Table Span Multiple VPCs?
How Many Routes Can a Route Table Contain?
Are There Any Restrictions on Using a Route Table?
Do the Same Routing Priorities Apply to Direct Connect Connections and Custom Routes in the Same VPC?
Are There Different Routing Priorities of the VPN and Custom Routes in the Same VPC?
Security
Does a Modified Security Group Rule or a Network ACL Rule Take Effect Immediately for Existing Connections?
Why Can't I Delete a Security Group?
Can I Change the Security Group of an ECS?
How Do I Configure a Security Group for Multi-Channel Protocols?
Change History
API Reference (ME-Abu Dhabi Region)
Before You Start
Overview
API Calling
Endpoints
Notes and Constraints
Concepts
Selecting an API Type
API Overview
Calling APIs
Making an API Request
Authentication
Response
Getting Started
Creating a VPC
APIs
Virtual Private Cloud
Creating a VPC
Querying VPC Details
Querying VPCs
Updating VPC Information
Deleting a VPC
Subnet
Creating a Subnet
Querying Subnet Details
Querying Subnets
Updating Subnet Information
Deleting a Subnet
Quota
Querying Quotas
Private IP Address
Assigning a Private IP Address
Querying Private IP Address Details
Querying Private IP Addresses
Deleting a Private IP Address
Security Group
Creating a Security Group
Querying Security Group Details
Querying Security Groups
Deleting a Security Group
Creating a Security Group Rule
Querying Security Group Rule Details
Querying Security Group Rules
Deleting a Security Group Rule
Port
Creating a Port
Querying a Port
Querying Ports
Updating a Port
Deleting a Port
Updating the Port IP Address
VPC Peering Connection
Querying VPC Peering Connections
Querying a VPC Peering Connection
Creating a VPC Peering Connection
Accepting a VPC Peering Connection
Refusing a VPC Peering Connection
Updating a VPC Peering Connection
Deleting a VPC Peering Connection
VPC Route
Querying VPC Routes
Querying a VPC Route
Creating a VPC Route
Deleting a VPC Route
VPC Tag Management
Creating a Tag for a VPC
Querying VPC Tags
Deleting a VPC Tag
Batch Creating or Deleting VPC Tags
Querying VPCs by Tag
Querying VPC Tags in a Specified Project
Subnet Tag Management
Creating a Tag for a Subnet
Querying Subnet Tags
Deleting a Subnet Tag
Batch Creating or Deleting Subnet Tags
Querying Subnets by Tag
Querying Subnet Tags in a Specified Project
Native OpenStack Neutron APIs (V2.0)
API Version Information
Querying API Versions
Pagination
Port
Querying Ports
Querying a Port
Creating a Port
Updating a Port
Deleting a Port
Network
Querying Networks
Querying Network Details
Creating a Network
Updating a Network
Deleting a Network
Subnet
Querying Subnets
Querying a Subnet
Creating a Subnet
Updating a Subnet
Deleting a Subnet
Router
Querying Routers
Querying a Router
Creating a Router
Updating a Router
Deleting a Router
Adding an Interface to a Router
Removing an Interface from a Router
Network ACL
Querying Network ACL Rules
Querying a Network ACL Rule
Creating a Network ACL Rule
Updating a Network ACL Rule
Deleting a Network ACL Rule
Querying Network ACL Policies
Querying a Network ACL Policy
Creating a Network ACL Policy
Updating a Network ACL Policy
Deleting a Network ACL Policy
Inserting a Network ACL Rule
Removing a Network ACL Rule
Querying Network ACL Groups
Querying a Network ACL Group
Creating a Network ACL Group
Updating a Network ACL Group
Deleting a Network ACL Group
Security Group
Querying Security Groups
Querying a Security Group
Creating a Security Group
Updating a Security Group
Deleting a Security Group
Querying Security Group Rules
Querying a Security Group Rule
Creating a Security Group Rule
Deleting a Security Group Rule
Permissions Policies and Supported Actions
VPC
Subnet
Port
VPC Peering Connection
Quota
Private IP Address
Security Group
Security Group Rule
VPC Tags
Subnet Tags
Port (OpenStack Neutron API)
Network (OpenStack Neutron API)
Subnet (OpenStack Neutron API)
Router (OpenStack Neutron API)
(OpenStack Neutron API)
Security Group (OpenStack Neutron API)
Precautions for API Permissions
Public Parameters
Status Codes
Error Codes
Out-of-Date APIs
Port (Discarded)
Creating a Port (Discarded)
Querying a Port (Discarded)
Querying Ports (Discarded)
Updating a Port (Discarded)
Deleting a Port (Discarded)
Appendix
ICMP-Port Range Relationship Table
VPC Monitoring Metrics
Obtaining a Project ID
Change History
User Guide (Paris Regions)
Service Overview
What Is Virtual Private Cloud?
Application Scenarios
Functions
VPC Connectivity
VPC and Other Services
User Permissions
Billing
Basic Concepts
Subnet
Elastic IP
Route Table
SNAT
Security Group
VPC Peering Connection
Network ACL
Virtual IP Address
Region and AZ
Getting Started
Quick Start
Typical Application Scenarios
Configuring a VPC for ECSs That Do Not Require Internet Access
Overview
Step 1: Create a VPC
Step 2: Create a Subnet for the VPC
Step 3: Create a Security Group
Step 4: Add a Security Group Rule
Configuring a VPC for ECSs That Access the Internet Using EIPs
Overview
Step 1: Create a VPC
Step 2: Create a Subnet for the VPC
Step 3: Assign an EIP and Bind It to an ECS
Step 4: Create a Security Group
Step 5: Add a Security Group Rule
Setting up an IPv6 Network
VPC and Subnet
VPC and Subnet Planning Suggestions
VPC
Creating a VPC
Modifying a VPC
Adding a Secondary IPv4 CIDR Block to a VPC
Deleting a Secondary IPv4 CIDR Block from a VPC
Deleting a VPC
Exporting VPC List
Obtaining a VPC ID
Viewing a VPC Topology
Subnet
Creating a Subnet for the VPC
Modifying a Subnet
Managing Subnet Tags
Exporting Subnet List
Viewing and Deleting Resources in a Subnet
Viewing IP Addresses in a Subnet
Deleting a Subnet
IPv4 and IPv6 Dual-Stack Network
Access Control
Differences Between Security Groups and Network ACLs
Security Group
Security Groups and Security Group Rules
Default Security Group
Security Group Configuration Examples
Managing a Security Group
Creating a Security Group
Cloning a Security Group
Modifying a Security Group
Deleting a Security Group
Managing Security Group Rules
Adding a Security Group Rule
Fast-Adding Security Group Rules
Modifying a Security Group Rule
Replicating a Security Group Rule
Importing and Exporting Security Group Rules
Deleting a Security Group Rule
Managing Instances Associated with a Security Group
Adding an Instance to or Removing an Instance from a Security Group
Viewing the Security Group of an ECS
Changing the Security Group of an ECS
Network ACL
Network ACL Overview
Network ACL Configuration Examples
Managing Network ACLs
Creating a Network ACL
Modifying a Network ACL
Enabling or Disabling a Network ACL
Viewing a Network ACL
Deleting a Network ACL
Management Network ACL Rules
Adding a Network ACL Rule
Modifying a Network ACL Rule
Changing the Sequence of a Network ACL Rule
Enabling or Disabling a Network ACL Rule
Exporting and Importing Network ACL Rules
Deleting a Network ACL Rule
Managing Subnets Associated with a Network ACL
Associating Subnets with a Network ACL
Disassociating Subnets from a Network ACL
Elastic IP
EIP Overview
Assigning an EIP and Binding It to an ECS
Unbinding an EIP from an ECS and Releasing the EIP
Modifying an EIP Bandwidth
Exporting EIP Information
Managing EIP Tags
Shared Bandwidth
Shared Bandwidth Overview
Assigning a Shared Bandwidth
Adding EIPs to a Shared Bandwidth
Removing EIPs from a Shared Bandwidth
Modifying a Shared Bandwidth
Deleting a Shared Bandwidth
Route Tables
Route Tables and Routes
Managing Route Tables
Creating a Custom Route Table
Associating a Route Table with a Subnet
Changing the Route Table Associated with a Subnet
Viewing the Route Table Associated with a Subnet
Viewing Route Table Information
Exporting Route Table Information
Deleting a Route Table
Managing Routes
Adding a Custom Route
Modifying a Route
Replicating a Route
Deleting a Route
Configuring an SNAT Server
VPC Peering Connection
VPC Peering Connection Overview
VPC Peering Connection Usage Examples
Creating a VPC Peering Connection with Another VPC in Your Account
Creating a VPC Peering Connection with a VPC in Another Account
Obtaining the Peer Project ID of a VPC Peering Connection
Modifying a VPC Peering Connection
Viewing VPC Peering Connections
Deleting a VPC Peering Connection
Modifying Routes Configured for a VPC Peering Connection
Viewing Routes Configured for a VPC Peering Connection
Deleting Routes Configured for a VPC Peering Connection
VPC Flow Log
VPC Flow Log Overview
Creating a VPC Flow Log
Viewing a VPC Flow Log
Enabling or Disabling VPC Flow Log
Deleting a VPC Flow Log
Virtual IP Address
Virtual IP Address Overview
Assigning a Virtual IP Address
Binding a Virtual IP Address to an EIP or ECS
Binding a Virtual IP Address to an EIP
Unbinding a Virtual IP Address from an Instance
Unbinding a Virtual IP Address from an EIP
Releasing a Virtual IP Address
Disabling IP Forwarding on the Standby ECS
Disabling Source/Destination Check for an ECS NIC
Interconnecting with CTS
Supported VPC Operations
Viewing Traces
Monitoring
Supported Metrics
Viewing Metrics
Creating an Alarm Rule
VPC Custom Policies
FAQ
General Questions
What Is a Quota?
Billing and Payments
Will I Be Billed for Using the VPC Service?
How Is an EIP Billed?
How Do I Change a Pay-per-Use EIP from Billing By Bandwidth to Traffic or from Billing By Traffic to Bandwidth?
Why Is My VPC Still Being Billed After It Was Deleted?
VPCs and Subnets
What Is Virtual Private Cloud?
Which CIDR Blocks Are Available for the VPC Service?
Can Subnets Communicate with Each Other?
What Subnet CIDR Blocks Are Available?
How Many Subnets Can I Create?
Why Can't I Delete My VPCs and Subnets?
Can I Change the VPC of an ECS?
EIPs
What Are the Differences Between EIP, Private IP Address, and Virtual IP Address?
How Do I Access the Internet Using an EIP Bound to an Extension NIC?
What Are the Differences Between the Primary and Extension NICs of ECSs?
Can an EIP That Uses Dedicated Bandwidth Be Changed to Use Shared Bandwidth?
Can I Bind an EIP to Multiple ECSs?
How Do I Access an ECS with an EIP Bound from the Internet?
Can I Bind an EIP of an ECS to Another ECS?
How Do I Unbind an EIP from an Instance and Bind a New EIP to the Instance?
Can I Bind an EIP to a Cloud Resource in Another Region?
Can I Change the Region of My EIP?
VPC Peering Connections
How Many VPC Peering Connections Can I Create in an Account?
Can a VPC Peering Connection Connect VPCs in Different Regions?
Why Did Communication Fail Between VPCs That Were Connected by a VPC Peering Connection?
Virtual IP Addresses
Why Can't the Virtual IP Address Be Pinged After It Is Bound to an ECS NIC?
Why Is the Network Disconnected Between Servers Using a Virtual IP Address After an Active/Standby Switchover?
Bandwidth
What Are Inbound Bandwidth and Outbound Bandwidth?
How Do I Know If My EIP Bandwidth Limit Has Been Exceeded?
What Are the Differences Between Public Bandwidth and Private Bandwidth?
What Is the Bandwidth Size Range?
What Bandwidth Types Are Available?
What Are the Differences Between a Dedicated Bandwidth and a Shared Bandwidth?
Is There a Limit to the Number of EIPs That Can Be Added to Each Shared Bandwidth?
What Is the Relationship Between Bandwidth and Upload/Download Rate?
Connectivity
Does a VPN Allow Communication Between Two VPCs?
Why Are Internet or Internal Domain Names in the Cloud Inaccessible Through Domain Names When My ECS Has Multiple NICs?
What Are the Priorities of the Custom Route and EIP If Both Are Configured for an ECS to Enable the ECS to Access the Internet?
Why Are There Intermittent Interruptions When a Local Host Accesses a Website Built on an ECS?
Why Do ECSs Using Private IP Addresses in the Same Subnet Only Support One-Way Communication?
Why Does Communication Fail Between Two ECSs in the Same VPC or Packet Loss Occur When They Communicate?
Why Can't My ECS Use Cloud-init?
Why Can't My ECS Access the Internet Even After an EIP Is Bound?
Why Does My ECS Fail to Obtain an IP Address?
How Do I Handle a VPN or Direct Connect Connection Network Failure?
Why Can My Server Be Accessed from the Internet But Cannot Access the Internet?
Why Can't I Access Websites Using IPv6 Addresses After IPv4/IPv6 Dual Stack Is Configured?
Why Does My ECS Fail to Communicate with Other After It Has Firewall Installed?
Routing
How Do I Configure Policy-Based Routes for an ECS with Multiple NICs?
Can a Route Table Span Multiple VPCs?
How Many Routes Can a Route Table Contain?
Are There Any Restrictions on Using a Route Table?
Do the Same Routing Priorities Apply to Direct Connect Connections and Custom Routes in the Same VPC?
Are There Different Routing Priorities of the VPN and Custom Routes in the Same VPC?
Security
Are the Security Group Rules Considered the Same If All Parameters Except Their Description Are the Same?
How Do I Know the Instances Associated with a Security Group?
Why Can't I Delete a Security Group?
Can I Change the Security Group of an ECS?
How Do I Configure a Security Group for Multi-Channel Protocols?
Does a Modified Security Group Rule or a Network ACL Rule Take Effect Immediately for Existing Connections?
Which Security Group Rule Has a High Priority When Multiple Security Group Rules Conflict?
Why Is Access from a Specific IP Address Still Allowed After a Network ACL Rule That Denies the Access from the IP Address Has Been Added?
Why Do My Security Group Rules Not Take Effect?
Change History
API Reference (Paris Regions)
Before You Start
Overview
API Calling
Endpoints
Notes and Constraints
Concepts
API Overview
Calling APIs
Making an API Request
Authentication
Response
Getting Started
Creating a VPC
APIs
Virtual Private Cloud
Creating a VPC
Querying VPC Details
Querying VPCs
Updating VPC Information
Deleting a VPC
Subnet
Creating a Subnet
Querying Subnet Details
Querying Subnets
Updating Subnet Information
Deleting a Subnet
EIP
Assigning an EIP
Querying an EIP
Querying EIPs
Updating an EIP
Releasing an EIP
Bandwidth
Querying a Bandwidth
Querying Bandwidths
Updating a Bandwidth
Bandwidth (V2.0)
Assigning a Shared Bandwidth
Deleting a Shared Bandwidth
Adding an EIP to a Shared Bandwidth
Removing an EIP from a Shared Bandwidth
Quota
Querying Quotas
Private IP Address
Assigning a Private IP Address
Querying Private IP Address Details
Querying Private IP Addresses
Deleting a Private IP Address
Security Group
Creating a Security Group
Querying Security Group Details
Querying Security Groups
Deleting a Security Group
Creating a Security Group Rule
Querying Security Group Rule Details
Querying Security Group Rules
Deleting a Security Group Rule
VPC Peering Connection
Querying VPC Peering Connections
Querying a VPC Peering Connection
Creating a VPC Peering Connection
Accepting a VPC Peering Connection
Refusing a VPC Peering Connection
Updating a VPC Peering Connection
Deleting a VPC Peering Connection
VPC Route
Querying VPC Routes
Querying a VPC Route
Creating a VPC Route
Deleting a VPC Route
Route Table
Querying Route Tables
Querying a Route Table
Creating a Route Table
Updating a Route Table
Associating Subnets with a Route Table
Disassociating Subnets from a Route Table
Deleting a Route Table
VPC Tag Management
Creating a Tag for a VPC
Querying VPC Tags
Deleting a VPC Tag
Batch Creating or Deleting VPC Tags
Querying VPCs by Tag
Querying VPC Tags in a Specified Project
Subnet Tag Management
Creating a Tag for a Subnet
Querying Subnet Tags
Deleting a Subnet Tag
Batch Creating or Deleting Subnet Tags
Querying Subnets by Tag
Querying Subnet Tags in a Specified Project
EIP Tag Management
Creating a Tag for an EIP
Querying EIP Tags
Deleting an EIP Tag
Batch Creating or Deleting EIP Tags
Querying EIPs by Tag
Querying EIP Tags in a Specified Project
VPC Flow Log
Creating a VPC Flow Log
Querying VPC Flow Logs
Querying a VPC Flow Log
Updating a VPC Flow Log
Deleting a VPC Flow Log
Virtual IP Address
Virtual IP Address Overview
Binding an ECS to a Virtual IP Address
Accessing a Virtual IP Address Using an EIP
Using a VPN to Access the Virtual IP Address
Using a Direct Connect Connection to Access the Virtual IP Address
Using a VPC Peering Connection to Access the Virtual IP Address
Disabling Source and Destination Check (HA Load Balancing Cluster Scenario)
API V3
VPC
Querying VPCs
Querying Details About a VPC
Adding a Secondary CIDR Block to a VPC
Removing a Secondary CIDR Block from a VPC
Native OpenStack Neutron APIs (V2.0)
API Version Information
Querying API Versions
Pagination
Port
Querying Ports
Querying a Port
Creating a Port
Updating a Port
Deleting a Port
Network
Querying Networks
Querying Network Details
Creating a Network
Updating a Network
Deleting a Network
Subnet
Querying Subnets
Querying a Subnet
Creating a Subnet
Updating a Subnet
Deleting a Subnet
Router
Querying Routers
Querying a Router
Creating a Router
Updating a Router
Deleting a Router
Adding an Interface to a Router
Removing an Interface from a Router
Floating IP Address
Querying Floating IP Addresses
Querying a Floating IP Address
Assigning a Floating IP Address
Updating a Floating IP Address
Deleting a Floating IP Address
Network ACL
Querying Network ACL Rules
Querying a Network ACL Rule
Creating a Network ACL Rule
Updating a Network ACL Rule
Deleting a Network ACL Rule
Querying Network ACL Policies
Querying a Network ACL Policy
Creating a Network ACL Policy
Updating a Network ACL Policy
Deleting a Network ACL Policy
Inserting a Network ACL Rule
Removing a Network ACL Rule
Querying Network ACL Groups
Querying a Network ACL Group
Creating a Network ACL Group
Updating a Network ACL Group
Deleting a Network ACL Group
Security Group
Querying Security Groups
Querying a Security Group
Creating a Security Group
Updating a Security Group
Deleting a Security Group
Querying Security Group Rules
Querying a Security Group Rule
Creating a Security Group Rule
Deleting a Security Group Rule
Application Examples
Assigning a Virtual IPv6 Address to ECSs for HA
Permissions Policies and Supported Actions
VPC
Subnet
EIP
Bandwidth
Bandwidth (V2.0)
EIP V3
VPC Peering Connection
VPC Route
Route Table
Quota
Private IP Address
Security Group
VPC Flow Log
Port (OpenStack Neutron API)
Network (OpenStack Neutron API)
Subnet (OpenStack Neutron API)
Router (OpenStack Neutron API)
Floating IP Address (OpenStack Neutron API)
Network ACL (OpenStack Neutron API)
Security Group (OpenStack Neutron API)
Precautions for API Permissions
Appendix
ICMP-Port Range Relationship Table
VPC Monitoring Metrics
Status Codes
Error Codes
Obtaining a Project ID
Change History
User Guide (Kuala Lumpur Region)
Service Overview
What Is Virtual Private Cloud?
Application Scenarios
VPC Connectivity
VPC and Other Services
Basic Concepts
Subnet
Elastic IP
Route Table
Security Group
VPC Peering Connection
Network ACL
Virtual IP Address
Region and AZ
Getting Started
Typical Application Scenarios
Configuring a VPC for ECSs That Do Not Require Internet Access
Overview
Step 1: Create a VPC
Step 2: Create a Subnet for the VPC
Step 3: Create a Security Group
Step 4: Add a Security Group Rule
Configuring a VPC for ECSs That Access the Internet Using EIPs
Overview
Step 1: Create a VPC
Step 2: Create a Subnet for the VPC
Step 3: Assign an EIP and Bind It to an ECS
Step 4: Create a Security Group
Step 5: Add a Security Group Rule
VPC and Subnet
VPC and Subnet Planning Suggestions
VPC
Creating a VPC
Modifying a VPC
Managing VPC Tags
Obtaining a VPC ID
Viewing a VPC Topology
Exporting VPC List
Deleting a VPC
Subnet
Creating a Subnet for the VPC
Modifying a Subnet
Managing Subnet Tags
Viewing and Deleting Resources in a Subnet
Viewing IP Addresses in a Subnet
Exporting Subnet List
Deleting a Subnet
IPv4 and IPv6 Dual-Stack Network
Route Tables
Route Tables and Routes
Managing Route Tables
Creating a Custom Route Table
Associating a Route Table with a Subnet
Changing the Route Table Associated with a Subnet
Viewing the Route Table Associated with a Subnet
Viewing Route Table Information
Exporting Route Table Information
Deleting a Route Table
Managing Routes
Adding a Custom Route
Modifying a Route
Replicating a Route
Deleting a Route
Configuring an SNAT Server
Virtual IP Address
Virtual IP Address Overview
Assigning a Virtual IP Address
Binding a Virtual IP Address to an EIP or ECS
Binding a Virtual IP Address to an EIP
Releasing a Virtual IP Address
Disabling IP Forwarding on the Standby ECS
Disabling Source/Destination Check for an ECS NIC
Access Control
What Is Access Control?
Security Group
Security Groups and Security Group Rules
Default Security Group and Rules
Security Group Configuration Examples
Managing a Security Group
Creating a Security Group
Cloning a Security Group
Modifying a Security Group
Deleting a Security Group
Managing Security Group Rules
Adding a Security Group Rule
Fast-Adding Security Group Rules
Modifying a Security Group Rule
Replicating a Security Group Rule
Importing and Exporting Security Group Rules
Deleting a Security Group Rule
Managing Instances Associated with a Security Group
Adding an Instance to or Removing an Instance from a Security Group
Changing the Security Group of an ECS
Network ACL
Network ACL Overview
Network ACL Configuration Examples
Managing Network ACLs
Creating a Network ACL
Modifying a Network ACL
Enabling or Disabling a Network ACL
Viewing a Network ACL
Deleting a Network ACL
Management Network ACL Rules
Adding a Network ACL Rule
Modifying a Network ACL Rule
Changing the Sequence of a Network ACL Rule
Enabling or Disabling a Network ACL Rule
Exporting and Importing Network ACL Rules
Deleting a Network ACL Rule
Managing Subnets Associated with a Network ACL
Associating Subnets with a Network ACL
Disassociating Subnets from a Network ACL
VPC Peering Connection
VPC Peering Connection Overview
VPC Peering Connection Usage Examples
Creating a VPC Peering Connection with Another VPC in Your Account
Creating a VPC Peering Connection with a VPC in Another Account
Obtaining the Peer Project ID of a VPC Peering Connection
Modifying a VPC Peering Connection
Viewing VPC Peering Connections
Deleting a VPC Peering Connection
Modifying Routes Configured for a VPC Peering Connection
Viewing Routes Configured for a VPC Peering Connection
Deleting Routes Configured for a VPC Peering Connection
VPC Flow Log
VPC Flow Log Overview
Creating a VPC Flow Log
Viewing a VPC Flow Log
Enabling or Disabling VPC Flow Log
Deleting a VPC Flow Log
Elastic IP
Assigning an EIP and Binding It to an ECS
Unbinding an EIP from an ECS and Releasing the EIP
Modifying an EIP Bandwidth
Exporting EIP Information
Managing EIP Tags
Shared Bandwidth
Shared Bandwidth Overview
Assigning a Shared Bandwidth
Adding EIPs to a Shared Bandwidth
Removing EIPs from a Shared Bandwidth
Modifying a Shared Bandwidth
Deleting a Shared Bandwidth
Interconnecting with CTS
Supported VPC Operations
Viewing Traces
Monitoring
Supported Metrics
Viewing Metrics
Creating an Alarm Rule
FAQ
General Questions
What Is a Quota?
VPCs and Subnets
What Is Virtual Private Cloud?
Which CIDR Blocks Are Available for the VPC Service?
Can Subnets Communicate with Each Other?
What Subnet CIDR Blocks Are Available?
How Many Subnets Can I Create?
Why Can't I Delete My VPCs and Subnets?
EIPs
Can I Bind an EIP to Multiple ECSs?
How Do I Access an ECS with an EIP Bound from the Internet?
Can I Bind an EIP of an ECS to Another ECS?
Can I Bind an EIP to a Cloud Resource in Another Region?
Can I Change the Region of My EIP?
VPC Peering Connections
How Many VPC Peering Connections Can I Create in an Account?
Can a VPC Peering Connection Connect VPCs in Different Regions?
Why Did Communication Fail Between VPCs That Were Connected by a VPC Peering Connection?
Bandwidth
What Is the Bandwidth Size Range?
What Bandwidth Types Are Available?
What Is the Relationship Between Bandwidth and Upload/Download Rate?
Connectivity
Does a VPN Allow Communication Between Two VPCs?
Why Are Internet or Internal Domain Names in the Cloud Inaccessible Through Domain Names When My ECS Has Multiple NICs?
What Are the Priorities of the Custom Route and EIP If Both Are Configured for an ECS to Enable the ECS to Access the Internet?
Routing
Can a Route Table Span Multiple VPCs?
How Many Routes Can a Route Table Contain?
Are There Any Restrictions on Using a Route Table?
Do the Same Routing Priorities Apply to Direct Connect Connections and Custom Routes in the Same VPC?
Are There Different Routing Priorities of the VPN and Custom Routes in the Same VPC?
Security
Does a Modified Security Group Rule or a Network ACL Rule Take Effect Immediately for Existing Connections?
Why Can't I Delete a Security Group?
Can I Change the Security Group of an ECS?
How Do I Configure a Security Group for Multi-Channel Protocols?
Change History
API Reference (Kuala Lumpur Region)
Before You Start
Overview
API Calling
Endpoints
Notes and Constraints
Concepts
Selecting an API Type
API Overview
Calling APIs
Making an API Request
Authentication
Response
Getting Started
Creating a VPC
APIs
Virtual Private Cloud
Creating a VPC
Querying VPC Details
Querying VPCs
Updating a VPC
Deleting a VPC
Subnet
Creating a Subnet
Querying Subnet Details
Querying Subnets
Updating Subnet Information
Deleting a Subnet
Quota
Querying Quotas
Private IP Address
Assigning a Private IP Address
Querying Private IP Address Details
Querying Private IP Addresses
Deleting a Private IP Address
Security Group
Creating a Security Group
Querying Security Group Details
Querying Security Groups
Deleting a Security Group
Creating a Security Group Rule
Querying Security Group Rule Details
Querying Security Group Rules
Deleting a Security Group Rule
Port
Creating a Port
Querying a Port
Querying Ports
Updating a Port
Deleting a Port
VPC Peering Connection
Querying VPC Peering Connections
Querying a VPC Peering Connection
Creating a VPC Peering Connection
Accepting a VPC Peering Connection
Refusing a VPC Peering Connection
Updating a VPC Peering Connection
Deleting a VPC Peering Connection
VPC Route
Querying VPC Routes
Querying a VPC Route
Creating a VPC Route
Deleting a VPC Route
VPC Tag Management
Adding a Tag to a VPC
Querying VPC Tags
Deleting a Tag from a VPC
Batch Adding or Deleting VPC Tags
Querying VPCs by Tag
Querying VPC Tags in a Specified Project
Subnet Tag Management
Adding a Tag to a Subnet
Querying Subnet Tags
Deleting a Tag from a Subnet
Batch Adding or Deleting Subnet Tags
Querying Subnets by Tag
Querying Subnet Tags in a Specified Project
Native OpenStack Neutron APIs (V2.0)
API Version Information
Querying API Versions
Pagination
Port
Querying Ports
Querying a Port
Creating a Port
Updating a Port
Deleting a Port
Network
Querying Networks
Querying Network Details
Creating a Network
Updating a Network
Deleting a Network
Subnet
Querying Subnets
Querying a Subnet
Creating a Subnet
Updating a Subnet
Deleting a Subnet
Router
Querying Routers
Querying a Router
Creating a Router
Updating a Router
Deleting a Router
Adding an Interface to a Router
Removing an Interface from a Router
Network ACL
Querying Network ACL Rules
Querying a Network ACL Rule
Creating a Network ACL Rule
Updating a Network ACL Rule
Deleting a Network ACL Rule
Querying Network ACL Policies
Querying a Network ACL Policy
Creating a Network ACL Policy
Updating a Network ACL Policy
Deleting a Network ACL Policy
Inserting a Network ACL Rule
Removing a Network ACL Rule
Querying Network ACL Groups
Querying a Network ACL Group
Creating a Network ACL Group
Updating a Network ACL Group
Deleting a Network ACL Group
Security Group
Querying Security Groups
Querying a Security Group
Creating a Security Group
Updating a Security Group
Deleting a Security Group
Querying Security Group Rules
Querying a Security Group Rule
Creating a Security Group Rule
Deleting a Security Group Rule
Permissions Policies and Supported Actions
VPC
Subnet
Port
VPC Peering Connection
Quota
Private IP Address
Security Group
Security Group Rule
VPC Tags
Subnet Tags
Port (OpenStack Neutron API)
Network (OpenStack Neutron API)
Subnet (OpenStack Neutron API)
Router (OpenStack Neutron API)
Network ACL (OpenStack Neutron API)
Security Group (OpenStack Neutron API)
Precautions for API Permissions
Out-of-Date APIs
Port (Discarded)
Creating a Port (Discarded)
Querying a Port (Discarded)
Querying Ports (Discarded)
Updating a Port (Discarded)
Deleting a Port (Discarded)
Appendix
ICMP-Port Range Relationship Table
VPC Monitoring Metrics
Status Codes
Error Codes
Obtaining a Project ID
Change History
User Guide (Ankara Region)
Service Overview
What Is Virtual Private Cloud?
Product Advantages
Application Scenarios
VPC Connectivity
VPC and Other Services
Permissions
Basic Concepts
Subnet
Elastic IP
Route Table
SNAT
Security Group
VPC Peering Connection
Network ACL
Virtual IP Address
Region and AZ
Getting Started
Typical Application Scenarios
Configuring a VPC for ECSs That Do Not Require Internet Access
Overview
Step 1: Create a VPC
Step 2: Create a Subnet for the VPC
Step 3: Create a Security Group
Step 4: Add a Security Group Rule
Configuring a VPC for ECSs That Access the Internet Using EIPs
Overview
Step 1: Create a VPC
Step 2: Create a Subnet for the VPC
Step 3: Assign an EIP and Bind It to an ECS
Step 4: Create a Security Group
Step 5: Add a Security Group Rule
VPC and Subnet
VPC
Creating a VPC
Adding a Secondary IPv4 CIDR Block to a VPC
Modifying a VPC
Obtaining a VPC ID
Viewing a VPC Topology
Exporting VPC List
Deleting a Secondary IPv4 CIDR Block from a VPC
Deleting a VPC
Subnet
Creating a Subnet for the VPC
Modifying a Subnet
Viewing and Deleting Resources in a Subnet
Viewing IP Addresses in a Subnet
Exporting Subnet List
Deleting a Subnet
IPv4 and IPv6 Dual-Stack Network
Route Tables
Route Tables and Routes
Managing Route Tables
Creating a Custom Route Table
Associating a Route Table with a Subnet
Changing the Route Table Associated with a Subnet
Viewing the Route Table Associated with a Subnet
Viewing Route Table Information
Exporting Route Table Information
Deleting a Route Table
Managing Routes
Adding a Custom Route
Modifying a Route
Replicating a Route
Deleting a Route
Configuring an SNAT Server
Virtual IP Address
Virtual IP Address Overview
Assigning a Virtual IP Address
Binding a Virtual IP Address to an EIP or ECS
Binding a Virtual IP Address to an EIP
Unbinding a Virtual IP Address from an Instance
Unbinding a Virtual IP Address from an EIP
Releasing a Virtual IP Address
Disabling IP Forwarding on the Standby ECS
Disabling Source/Destination Check for an ECS NIC
Elastic Network Interface and Supplementary Network Interface
Elastic Network Interface
Elastic Network Interface Overview
Creating a Network Interface
Viewing Basic Information About a Network Interface
Attaching a Network Interface to an Instance
Binding a Network Interface to an EIP
Binding a Network Interface to a Virtual IP Address
Detaching a Network Interface from an Instance or Unbinding an EIP from a Network Interface
Changing Security Groups That Are Associated with a Network Interface
Deleting a Network Interface
Supplementary Network Interfaces
Supplementary Network Interface Overview
Creating a Supplementary Network Interface
Viewing Basic Information About a Supplementary Network Interface
Binding or Unbinding a Supplementary Network Interface to or from an EIP
Changing Security Groups That Are Associated with a Supplementary Network Interface
Deleting a Supplementary Network Interface
Access Control
What Is Access Control?
Security Group
Security Groups and Security Group Rules
Default Security Group and Rules
Security Group Configuration Examples
Managing a Security Group
Creating a Security Group
Deleting a Security Group
Managing Security Group Rules
Adding a Security Group Rule
Fast-Adding Security Group Rules
Allowing Common Ports with A Few Clicks
Modifying a Security Group Rule
Replicating a Security Group Rule
Importing and Exporting Security Group Rules
Deleting a Security Group Rule
Managing Instances Associated with a Security Group
Adding an Instance to or Removing an Instance from a Security Group
Changing the Security Group of an ECS
Network ACL
Network ACL Overview
Network ACL Configuration Examples
Managing Network ACLs
Creating a Network ACL
Modifying a Network ACL
Enabling or Disabling a Network ACL
Viewing a Network ACL
Deleting a Network ACL
Management Network ACL Rules
Adding a Network ACL Rule
Modifying a Network ACL Rule
Changing the Sequence of a Network ACL Rule
Enabling or Disabling a Network ACL Rule
Deleting a Network ACL Rule
Managing Subnets Associated with a Network ACL
Associating Subnets with a Network ACL
Disassociating Subnets from a Network ACL
VPC Peering Connection
VPC Peering Connection Overview
VPC Peering Connection Usage Examples
Creating a VPC Peering Connection with Another VPC in Your Account
Creating a VPC Peering Connection with a VPC in Another Account
Obtaining the Peer Project ID of a VPC Peering Connection
Modifying a VPC Peering Connection
Viewing VPC Peering Connections
Deleting a VPC Peering Connection
Modifying Routes Configured for a VPC Peering Connection
Viewing Routes Configured for a VPC Peering Connection
Deleting Routes Configured for a VPC Peering Connection
VPC Flow Log
VPC Flow Log Overview
Creating a VPC Flow Log
Viewing a VPC Flow Log
Enabling or Disabling VPC Flow Log
Deleting a VPC Flow Log
Elastic IP
Assigning an EIP and Binding It to an ECS
Unbinding an EIP from an ECS and Releasing the EIP
Modifying an EIP Bandwidth
IPv6 EIP
Shared Bandwidth
Shared Bandwidth Overview
Assigning a Shared Bandwidth
Adding EIPs to a Shared Bandwidth
Removing EIPs from a Shared Bandwidth
Modifying a Shared Bandwidth
Deleting a Shared Bandwidth
Monitoring
Supported Metrics
Viewing Metrics
Creating an Alarm Rule
Permissions Management
Creating a User and Granting VPC Permissions
VPC Custom Policies
FAQ
General Questions
What Is a Quota?
VPCs and Subnets
What Is Virtual Private Cloud?
Which CIDR Blocks Are Available for the VPC Service?
Can Subnets Communicate with Each Other?
What Subnet CIDR Blocks Are Available?
How Many Subnets Can I Create?
Why Can't I Delete My VPCs and Subnets?
EIPs
Can I Bind an EIP to Multiple ECSs?
How Do I Access an ECS with an EIP Bound from the Internet?
Can I Change the Region of My EIP?
VPC Peering Connections
How Many VPC Peering Connections Can I Create in an Account?
Can a VPC Peering Connection Connect VPCs in Different Regions?
Why Did Communication Fail Between VPCs That Were Connected by a VPC Peering Connection?
Bandwidth
What Is the Bandwidth Size Range?
Is There a Limit to the Number of EIPs That Can Be Added to Each Shared Bandwidth?
Connectivity
Why Are Internet or Internal Domain Names in the Cloud Inaccessible Through Domain Names When My ECS Has Multiple NICs?
What Are the Priorities of the Custom Route and EIP If Both Are Configured for an ECS to Enable the ECS to Access the Internet?
Routing
How Many Routes Can a Route Table Contain?
Are There Any Restrictions on Using a Route Table?
Security
Does a Modified Security Group Rule or a Network ACL Rule Take Effect Immediately for Existing Connections?
Why Can't I Delete a Security Group?
Can I Change the Security Group of an ECS?
How Do I Configure a Security Group for Multi-Channel Protocols?
Which Security Group Rule Has a High Priority When Multiple Security Group Rules Conflict?
Change History
API Reference (Ankara Region)
Before You Start
Overview
API Calling
Endpoints
Notes and Constraints
Concepts
API Overview
Calling APIs
Making an API Request
Authentication
Response
Getting Started
Creating a VPC
APIs
Virtual Private Cloud
Creating a VPC
Querying VPC Details
Querying VPCs
Updating a VPC
Deleting a VPC
Subnet
Creating a Subnet
Querying Subnet Details
Querying Subnets
Updating Subnet Information
Deleting a Subnet
EIP
Assigning an EIP
Querying an EIP
Querying EIPs
Updating an EIP
Releasing an EIP
Bandwidth
Querying a Bandwidth
Querying Bandwidths
Updating a Bandwidth
Bandwidth (V2.0)
Assigning a Shared Bandwidth
Assigning Multiple Shared Bandwidths
Deleting a Shared Bandwidth
Adding an EIP to a Shared Bandwidth
Removing an EIP from a Shared Bandwidth
Quota
Querying Quotas
Private IP Address
Assigning a Private IP Address
Querying Private IP Address Details
Querying Private IP Addresses
Deleting a Private IP Address
Security Group
Creating a Security Group
Querying Security Group Details
Querying Security Groups
Deleting a Security Group
Creating a Security Group Rule
Querying Security Group Rule Details
Querying Security Group Rules
Deleting a Security Group Rule
Port
Creating a Port
Querying a Port
Querying Ports
Updating a Port
Deleting a Port
VPC Peering Connection
Querying VPC Peering Connections
Querying a VPC Peering Connection
Creating a VPC Peering Connection
Accepting a VPC Peering Connection
Refusing a VPC Peering Connection
Updating a VPC Peering Connection
Deleting a VPC Peering Connection
VPC Route
Querying VPC Routes
Querying a VPC Route
Creating a VPC Route
Deleting a VPC Route
Route Table
Querying Route Tables
Querying a Route Table
Creating a Route Table
Updating a Route Table
Associating Subnets with a Route Table
Disassociating Subnets from a Route Table
Deleting a Route Table
Querying IP Address Usage
Querying IP Address Usage on a Specified Network
API V3
VPC
Querying VPCs
Querying Details About a VPC
Adding a Secondary CIDR Block to a VPC
Removing a Secondary CIDR Block from a VPC
Security Group
Creating a Security Group
Querying Security Groups
Querying a Security Group
Updating a Security Group
Deleting a Security Group
Security Group Rule
Creating a Security Group Rule
Querying Security Group Rules
Querying a Security Group Rule
Deleting a Security Group Rule
IP Address Group
Creating an IP Address Group
Querying IP Address Groups
Querying Details of an IP Address Group
Updating an IP Address Group
Deleting an IP Address Group
Forcibly Deleting an IP Address Group
Native OpenStack Neutron APIs (V2.0)
API Version Information
Querying API Versions
Pagination
Port
Querying Ports
Querying a Port
Creating a Port
Updating a Port
Deleting a Port
Network
Querying Networks
Querying Network Details
Creating a Network
Updating a Network
Deleting a Network
Subnet
Querying Subnets
Querying a Subnet
Creating a Subnet
Updating a Subnet
Deleting a Subnet
Router
Querying Routers
Querying a Router
Creating a Router
Updating a Router
Deleting a Router
Adding an Interface to a Router
Removing an Interface from a Router
Floating IP Address
Querying Floating IP Addresses
Querying a Floating IP Address
Assigning a Floating IP Address
Updating a Floating IP Address
Deleting a Floating IP Address
Network ACL
Querying Network ACL Rules
Querying a Network ACL Rule
Creating a Network ACL Rule
Updating a Rule
Deleting a Network ACL Rule
Querying Network ACL Policies
Querying a Network ACL Policy
Creating a Network ACL Policy
Updating a Network ACL Policy
Deleting a Network ACL Policy
Inserting a Network ACL Rule
Removing a Network ACL Rule
Querying Network ACL Groups
Querying a Network ACL Group
Creating a Network ACL Group
Updating a Network ACL Group
Deleting a Network ACL Group
Security Group
Querying Security Groups
Querying a Security Group
Creating a Security Group
Updating a Security Group
Deleting a Security Group
Querying Security Group Rules
Querying a Security Group Rule
Creating a Security Group Rule
Deleting a Security Group Rule
Permissions Policies and Supported Actions
Introduction
VPC
Subnet
EIP
Bandwidth
Bandwidth (V2.0)
EIP V3
Port
VPC Peering Connection
VPC Route
Route Table
Quota
Private IP Address
Security Group
Security Group Rule
Port (OpenStack Neutron API)
Network (OpenStack Neutron API)
Subnet (OpenStack Neutron API)
Router (OpenStack Neutron API)
Floating IP Address (OpenStack Neutron API)
Network ACL (OpenStack Neutron API)
Security Group (OpenStack Neutron API)
Precautions for API Permissions
Appendix
ICMP-Port Range Relationship Table
VPC Monitoring Metrics
Status Codes
Error Codes
Obtaining a Project ID
Change History
General Reference
Glossary
Service Level Agreement
White Papers
Endpoints
Permissions