- Print
- PDF
VPC server connection environment configuration
- Print
- PDF
Available in VPC
This document describes how to configure the VPC server connection environment for each subnet.
VPC server connection environment configuration
Unlike Classic, in a VPC server, you cannot connect through port forwarding. The following shows how to configure a general server connection environment in VPC.
Subnet type | How to access |
---|---|
Public Subnet | Access through public IP |
Private Subnet | Bastion Host configuration |
IPSec VPN configuration | |
SSL VPN configuration | |
Cloud Connect configuration |
Server created in a public subnet
For servers created in a public subnet, you can allocate a public IP for public communication. You can access the server with a public IP from outside through the public IP.
The following shows how to access the server through the issued public IP.
- Request a public IP.
- Add the Source IP and the port needed for accessing the ACG of the server with the public IP allocated.
- See Set ACG
- Access the server through the public IP.
- See Access server
Server created in a private subnet
You can access the server created in a private subnet using the following methods:
For more information on how to use VPC and create subnets, see the following guides:
Bastion Host configuration
Bastion Host is a private access server configured in the public subnet. By configuring and operating Bastion Host, you can easily access the private subnet. You can use various features such as access record logging and authentication key settings by setting the operating system.
The following describes how to configure a Bastion Host.
- Configure the public subnet and private subnet.
- Create a server in the public subnet for the Bastion Host.
- Allocate a public IP to the Bastion Host and check the admin password of the Bastion Host server.
- Add the Source IP for accessing the ACG of Bastion Host and the port needed for access.
- See ACG
- Access the allocated public IP through SSH (Linux)/RDP (Windows) or other means.
- See Access server
- Re-connect to the address of the destination server (private subnet) in the server accessed through SSH (Linux)/RDP (Windows).
- Here, you must check the admin password of the server to access in advance as well.
IPsec VPN configuration
You can connect a customer private network to the VPC network through IPsec VPN. When configuring IPsec VPN, you can access not only private subnets, but also servers configured in a public subnet through a private IP.
The following describes how to configure an IPsec VPN.
- Configure the VPC environment.
- Configure a VGW.
- Configure the IPsec VPN.
- Add the Source IP for accessing the ACG of the server to access and the port needed for access.
- See ACG
- Access the server of NAVER Cloud Platform on a terminal such as a PC or server of the customer private network.
- See Access server
For more information, see the IPsec VPN user guide of VPC environment.
SSL VPN configuration
If you cannot configure IPsec VPN in a remote place, you can access the server through SSL VPN. SSL VPN provides a client that can directly access the VPC network through encrypted communication from the PC. When configuring SSL VPN, you can access not only private subnets, but also servers configured in a public subnet through a private IP.
The following describes how to configure an SSL VPN.
- Configure the VPC environment.
- Configure the SSL VPN.
- Add the Source IP for accessing the ACG of the server to access and the port needed for access.
- See ACG
- Access the server of NAVER Cloud Platform through the SSL VPN Client of the customer private network PC.
- See Access server
For more information, see the SSL VPN user guide of VPC environment.
Cloud Connect configuration
Cloud Connect refers to the point of contact where a dedicated external line comes into NAVER Cloud Platform. The method to complete Cloud Connect and access the server is the same as in IPsec VPN.
The following describes how to configure Cloud Connect.
- Configure the VPC environment.
- Configure a VGW.
- Complete the configuration of Cloud Connect.
- Add the Source IP for accessing the ACG of the server to access and the port needed for access.
- See ACG
- Access the server of NAVER Cloud Platform on a terminal such as a PC or server of the customer private network.
- See Access server
For more information, see the Cloud Connect user guide of VPC environment.