Virtual Private Cloud (VPC)
Basis of your individual Cloud
In cloud environments, the virtual resources for the various users must be separated from one another. To do this, the users set up Virtual Private Clouds. With the Virtual Private Cloud, a separate IP address range which only the user in question can access is reserved within the Open Telekom Cloud. This prevents other users from accessing the services stored there – even accidentally. The Virtual Private Cloud thus becomes an individual (small) cloud for the user. Setting up a Virtual Private Cloud is an effective basic security measure. Without a VPC, the resources in the Open Telekom Cloud cannot be allocated or administered. Every user requires at least one VPC.
Software-defined networking is used within the Open Telekom Cloud. Among other things, this technology allows the virtualization of the network resources within the cloud. The network isolation disconnects individual users’ network resources completely from those of other users.
Within their own VPC, users can additionally set up multi-dimensional access protection using security groups and firewalls, and thus restrict access accordingly. This function is particularly in demand in the enterprise environment.
The network configuration and configuration of the DHCP (Dynamic Host Configuration Protocol) service allows a Virtual Private Cloud to be connected to other networks - including the Internet, of course. Here, the corresponding ports are released within the Open Telekom Cloud. The resources or services can be released for specific user groups via IP VPN or Elastic IP.
The Open Telekom Cloud supports the IPv6 protocol and the SNAT (Source Network Address Translation) procedure. The latter allows several private IP addresses (in the Open Telekom Cloud) can be addressed via a shared public IP address. SNAT is easily available via an integrated NAT gateway.
Securing Elastic Cloud Servers via a Virtual Private Network
You can further secure access to the Elastic Cloud Servers by configuring a “Virtual Private Network”. This enables provisioning of a logically separated, configurable and administrable virtual network that improves the security of the resources connected to it and simplifies network management in Enterprise environments.
- Retain full control over the Virtual Private Network or the creation and configuration of DHCP services.
- Configure groups to make network security even better still.
- Configure the Elastic IP service to connect the Virtual Private Network to public networks such as the Internet.
- Use a Virtual Private Network to connect another data center or an on-premises environment to the Virtual Private Network; this is for example recommended for a particularly extensive and smooth migration to the cloud.
All Open Telekom Cloud Services at a glance
Security & Management
Cloud Eye (CES)
Identity and Access Management (IAM)
Price Online Display (POD)
Tag Management Service
Distributed Message Service (DMS)
Key Management Service (KMS)
Simple Message Notification (SMN)
Mobile Storage Solution (MSS)