Ensure layer 2 and layer 3 network isolation between tenants to meet the high-level security isolation requirements of financial and government users. Internal and external network isolation. Through firewall policies and security groups, traffic is filtered from the host and subnet dimensions respectively, which can be accurately configured to the port and protocol to address the needs of business security isolation.
Software-defined network, which can customize network segment division, custom access control policies and support shared bandwidth between multiple machines, improve bandwidth utilization and reduce cost.
Supports the combined use of multiple products (Flexible Public Network IP, VPN Gateway, NAT Gateway, Load Balancing) to easily manage public network entrances and exits and implement hybrid cloud architecture
Custom network segment division, creating subnets and configuring gateways and other operation and maintenance management through the console, eliminating the need to purchase hardware equipment, save costs and simplify work process
Isolation 100% isolated and secure network environment based on Wangsu cloud computing
Customize IP address ranges, network segments, routing tables and gateways to plan and manage the network as needed
Flexible access control for various business scenarios
Security group: with the security group feature, cloud servers in the network can be divided into different network security domains, and security group rules can be defined in individual security domains.
ACL: network ACL is a subnet-level stateless optional packet filtering virtual firewall that is used to control the data flow in and out of the subnet, down to the protocol and port levels.
Support external access of cloud servers without public network IP through NAT gateway
The VPN gateway can be used to interconnect user's data center or office network to establish hybrid cloud services
VPC peering connection: through Ipsec tunnel service, VPC peering connection between different regions and different users can be realized, which supports the interconnection of user networks on cloud computing.
Hybrid cloud architecture: communication between VPC on the cloud and intranet servers can be realized through dedicated connections, which makes it easy to build a hybrid cloud.