The Virtual Private Cloud (VPC) is a private, isolated part of Accelerite CloudPlatform. A VPC can have its own virtual network topology that resembles a traditional physical network. You can launch VMs in the virtual network that can have private addresses in the range of your choice. You can define network tiers within your VPC network range, which in turn enables you to group similar kinds of instances based on IP address range.

A VPC comprises the following network components:

• VPC: A VPC acts as a container for multiple isolated networks that can communicate with each other via its virtual router.
• Network Tiers: Each tier acts as an isolated network with its own VLANs and CIDR list, where you can place groups of resources, such as VMs.
• Public Gateway: The traffic to and from the Internet routed to the VPC through the public gateway.
• Private Gateway: All the traffic to and from a private network routed to the VPC through the private gateway.
• VPN Gateway: The VPC side of a VPN connection.
• Site-to-Site VPN Connection: A hardware-based VPN connection between your VPC and your datacenter, home network, or co-location facility.
• Customer Gateway: The customer side of a VPN Connection.

In the VPC tab, you can see the list of VPCs. In the Details pane, you see the following details:

VPC: Name of the VPC.

CIDR: CIDR range for all the tiers within the VPC.

Zone: Zone where the VPC is available.

Tiers tab: Details of the tiers within the VPC.

Instances tab: Details of the instances deployed to the tiers, filtered by tiers.

IP Address tab: IP addresses associated with the VPC.

VPN Connections tab: List of VPN connections between the VPC and VPN Customer Gateways.

Private Gateways tab: List of private gateways added to the VPC (Private gateways are added by the root administrator and this information is read only).

Adding a VPC

To add a VPC, follow these steps:

1. Log in to CloudPortal Business Manager as user.
2. Click My Services.
3. Select the cloud service and the service instance.
4. Click Manage Resources.
5. Click VPCs and then click Add VPC.
6. Specify the following:
   • VPC Name: A name for the VPC that you are creating.
   • Description: A brief description of the VPC.
   • Zone: Choose the zone where you want the VPC to be available
   • CIDR: Define the CIDR range for all the tiers (guest networks) within the VPC.
   • Network Domain: DNS suffix, if you want to assign a special domain name.
7. Select the check box to accept the terms and conditions and click OK.

Managing VPCs

The following section describes the menu items of the gear wheel icon. The menu shows four actions that you can perform. Select a VPC. Move your cursor over the gear wheel icon. You see a list of actions that you can perform for the selected VPC.

Editing a VPC: Click Edit VPC to modify the name and description of the VPC.

Deleting a VPC: Click Delete VPC and confirm to delete a VPC.

Restarting a VPC: Click Restart VPC to restart the VPC.

Adding a Tier: Tiers are distinct locations within a VPC that act as isolated networks, which do not have access to other tiers by default. Tiers are set up on different VLANs that can communicate with each other by using a virtual router. Tiers provide inexpensive, low latency network connectivity to other tiers within the VPC.

1. Click Add a Tier.
2. Specify the following details:
   • Network name: Name for the network
   • Network Desc: Description of the network
   • Zone: Zone to which the network will be added
   • Network Offering: Network offering to use for the network
   • Gateway: Gateway to be used
   • Netmask: The netmask in use on the subnet
   • Network Domain: Domain where the network will be available
3. Select the check box to accept the terms and conditions and click OK.

Acquiring an IP: When you acquire an IP address, all IP addresses are allocated to VPC, not to the guest networks within the VPC. Click Acquire IP and select the check box to accept the terms and conditions. Click Confirm.

Adding a VPN Connection:

A VPN connection helps you establish a secure connection from an enterprise datacenter to the cloud infrastructure.

To set up a site-to-site VPN connection, you have to first create the VPC, a VPN Customer Gateway, and a VPN connection from the VPC VPN gateway to the Customer VPN gateway (a VPN gateway for the VPC is created automatically, if it does not already exist). If you have not created the VPN Customer Gateway, you are prompted to create it from the VPC Customer Gateway page. Currently, a single VPC can connect to multiple VPN Customer Gateways.

To create a VPN Connection, follow the steps :

1. Select the VPC.
2. Move your cursor over the gear wheel icon and click Add VPN Connection. Alternately, you can click Add VPN Connection in the VPN Connections tab.
3. Select the VPN Customer Gateway.
4. Accept the terms and conditions and click Confirm.

Resetting a VPN Connection: Select the VPN Connection from the VPN Connection tab and click Reset.

Deleting a VPN Connection: Select the VPN Connection from the VPN Connection tab and click Delete. Click Confirm.

Access Control List

Define Access Control List (ACL) on the VPC virtual router to control incoming (ingress) and outgoing (egress) traffic between the VPC tiers, and the tiers and Internet. By default, all incoming and outgoing traffic to the guest networks is blocked. To open the ports, you must create a new network ACL.

Note: The network ACLs can be created for the tiers only if the NetworkACL service is supported.

You can add or delete an ACL list in a VPC. This feature is supported from CloudPlatform 4.2.x onwards. The ACL list contains the rules as items. At the time of VPC tier creation, you can choose an ACL from already created ACL list. You can add/remove more rules to/from ACL list and corresponding rules gets applied to networks.

Adding an ACL to VPC

1. Log in to CloudPortal Business Manager as a user.
2. Click My Services.
3. Click Manage Resources link of the service instance.
4. In the VPCs tab, select the required VPC from the left pane.
5. Place the cursor over the manage icon (that looks like a gear wheel), and click Add Network ACL List.

   Note: You can also add an ACL by clicking on the Add Network ACL List link in the Network ACL list tab.

6. In the Add Network ACL List dialog box, specify the ACL List Name and Description.
7. Click Create.
8. Specify the required details in the Network ACL List tab.

Network ACL List tab

Click on this tab to view and manage the ACL and ACL rules.

Deleting an ACL from VPC: For a specific ACL in the Network ACL List tab, click Delete ACL List option.

Adding an ACL rule in the ACL: For a specific ACL rule in the Network ACL List tab, specify the required details and click the icon that appears as a plus sign).

Deleting an ACL rule in the ACL: For a specific ACL rule in the Network ACL List tab, click the icon that appears as a trash symbol).

Note: For a default ACL, you cannot delete the ACL and the ACL rules associated with it.

Searching and filtering VPCs

The VPCs tab lists all VPCs. As a master user/power user/normal user, you can find a particular VPS/VPCs by using the search and filter options. The option to search and filter is visible in the CPBM UI only if the CloudPlatform Connector version supports search and filter operations for VPCs.

1. Log in to CloudPortal Business Manager UI as master user/power user/normal user.
2. Either click My Services and then click the desired CloudPlatform service instance tab or click Manage Resources and then click the desired CloudPlatform service instance link.
3. Click the VPCs tab.
4. In the Search box, specify the VPC name and click Enter.
5. To filter the list of VPCs:
   1. Click the Filter icon.
   2. Select the filter option zone and select the desired filter parameter from the dropdown list.
   3. Click Go!.