Help Center/ Cloud Application Engine/ User Guide/ System Settings/ Configuring System Network/ Configuring System Network (New Version)/ Accessing the User VPC and Public Network in the CAE Environment
Updated on 2025-10-22 GMT+08:00
View PDF
Share

Accessing the User VPC and Public Network in the CAE Environment

Scenario

You can configure the CAE environment to access both the user VPC and the public network. This allows you to access service data and resources within the VPC, such as databases in the VPC subnet, and connect to the public network to obtain external services, like downloading public data. This setup enables the collaborative use of internal and external network resources.

What Is User VPC?

A user VPC is selected when creating an environment and cannot be changed after the environment is created. A subnet is an outbound subnet specified during environment creation and cannot be changed after the environment is created.

Constraints

  • This function is available only in CN North-Beijing4, CN South-Guangzhou, CN East-Shanghai1, ME-Riyadh, TR-Istanbul, AF-Johannesburg, LA-Mexico City2, and LA-Sao Paulo1.
  • The network segment of the user VPC to be accessed by CAE components cannot conflict with the network segments reserved in CAE. Internal reserved network segments of CAE: 10.247.0.0/16 and 180.0.0.0/8.
  • By default, two EIPs need to be bound to the subnet.

Configuring Outbound Access

  1. Log in to CAE.
  2. Choose System Settings.
  3. Click Edit in the System Network Configuration module.
  4. Select Outbound Configuration and set outbound configurations by referring to Table 1.

    Table 1 Outbound configuration parameters

    Parameter

    Description

    Virtual Private Cloud

    VPC is used to build an isolated and private virtual network environment.

    This VPC is the one you selected when creating the environment and cannot be changed.

    Subnet

    The subnet is the outbound subnet specified when you create the environment and cannot be changed.

    Internet Access

    You can select an EIP from the drop-down list. This parameter is optional and can be updated or unbound later. Note that you must comply with the following rules when selecting EIPs: You can only select two EIPs or do not select any EIP.

    You can configure multiple load balancers if you have multiple components and each component requires a different point of entry. Only network load balancers (TCP/UDP) are supported. Application load balancers (HTTP/HTTPS) are not supported.

    If the components in the CAE environment do not need to access the Internet, or SNAT has been configured for the VPC, you do not need to configure Internet access.

    If you have not created an EIP, click Create EIP to create one on the EIP console. For details, see Assigning an EIP.

  5. Click Save.