VPC server connection environment configuration

Prev Next

Available in VPC

This document describes how to configure the VPC server connection environment for each subnet.

VPC server connection environment configuration

Unlike Classic, in a VPC server, you cannot connect through port forwarding. The following shows how to configure a general server connection environment in VPC.

Subnet type How to access
Public Subnet Access through public IP
Private Subnet Bastion Host configuration
IPSec VPN configuration
SSL VPN configuration
Cloud Connect configuration

Server created in a public subnet

For servers created in a public subnet, you can allocate a public IP for public communication. You can access the server with a public IP from outside through the public IP.
The following shows how to access the server through the issued public IP.

  1. Request a public IP.
  2. Add the Source IP and the port needed for accessing the ACG of the server with the public IP allocated.
  3. Access the server through the public IP.

Server created in a private subnet

You can access the server created in a private subnet using the following methods:

Note

For more information on how to use VPC and create subnets, see the following guides:

Bastion Host configuration

Bastion Host is a private access server configured in the public subnet. By configuring and operating Bastion Host, you can easily access the private subnet. You can use various features such as access record logging and authentication key settings by setting the operating system.
vpc-access-bastion

The following describes how to configure a Bastion Host.

  1. Configure the public subnet and private subnet.
  2. Create a server in the public subnet for the Bastion Host.
  3. Allocate a public IP to the Bastion Host and check the admin password of the Bastion Host server.
  4. Add the Source IP for accessing the ACG of Bastion Host and the port needed for access.
  5. Access the allocated public IP through SSH (Linux)/RDP (Windows) or other means.
  6. Re-connect to the address of the destination server (private subnet) in the server accessed through SSH (Linux)/RDP (Windows).
    • Here, you must check the admin password of the server to access in advance as well.

IPsec VPN configuration

You can connect a customer private network to the VPC network through IPsec VPN. When configuring IPsec VPN, you can access not only private subnets, but also servers configured in a public subnet through a private IP.
compute-vpc-server-access-architecture-vpc-access-ipsec_en

The following describes how to configure an IPsec VPN.

  1. Configure the VPC environment.
  2. Configure a VGW.
  3. Configure the IPsec VPN.
  4. Add the Source IP for accessing the ACG of the server to access and the port needed for access.
  5. Access the server of NAVER Cloud Platform on a terminal such as a PC or server of the customer private network.
Note

For more information, see the IPsec VPN user guide of VPC environment.

SSL VPN configuration

If you cannot configure IPsec VPN in a remote place, you can access the server through SSL VPN. SSL VPN provides a client that can directly access the VPC network through encrypted communication from the PC. When configuring SSL VPN, you can access not only private subnets, but also servers configured in a public subnet through a private IP.
compute-vpc-server-access-architecture-vpc-access-sslvpn_en

The following describes how to configure an SSL VPN.

  1. Configure the VPC environment.
  2. Configure the SSL VPN.
  3. Add the Source IP for accessing the ACG of the server to access and the port needed for access.
  4. Access the server of NAVER Cloud Platform through the SSL VPN Client of the customer private network PC.
Note

For more information, see the SSL VPN user guide of VPC environment.

Cloud Connect configuration

Cloud Connect refers to the point of contact where a dedicated external line comes into NAVER Cloud Platform. The method to complete Cloud Connect and access the server is the same as in IPsec VPN.
compute-vpc-server-access-architecture-vpc-access-cc_en

The following describes how to configure Cloud Connect.

  1. Configure the VPC environment.
  2. Configure a VGW.
  3. Complete the configuration of Cloud Connect.
  4. Add the Source IP for accessing the ACG of the server to access and the port needed for access.
  5. Access the server of NAVER Cloud Platform on a terminal such as a PC or server of the customer private network.
Note

For more information, see the Cloud Connect user guide of VPC environment.

Business Registration Number: 129-86-31394 E-commerce Permit Number:No. 2009-GyeonggiSeongnam-0510
CEO: Kim Yuwon Address: NAVER Green Factory 17th–26th Floors, Buljeong-ro 6, Bundang-gu, Seongnam-si, Gyeonggi-do 13561, Republic of Korea. Customer Support Number: 1544-5876
© NAVER Cloud Corp. All Rights Reserved.