×
Community Blog How to Connect China and the World Using CEN

How to Connect China and the World Using CEN

In this article, we will look at how to connect multi-region servers in under an hour with Alibaba Cloud CEN.

By Oliver Zhang, Solutions Architect

A lot of companies often face connectivity issues when connecting their China offices with their headquarters. Getting a fiber connected to China is an expensive and lengthy process. Instead, using Alibaba Cloud's Cloud Enterprise Network (CEN) is much easier and faster. In this article, we will have a look at how to do it in just 60 minutes to connect to China.

The figure below shows the architecture of our solution.

1

In this demo, we will be using Alibaba Cloud Virtual Private Clouds (VPCs) in Shanghai (SH) and Singapore (SG) to represent the offices in multiple regions. Let's begin.

Step 1: Prepare the VPCs

First, we need to get aliyuncli. If you don't have it ready, please follow the instructions here here.

Configure the aliyuncli environment

aliyuncli configure

Create the VPCs using CLI. Create Beijing VPC.

aliyuncli ecs CreateVpc --CidrBlock '192.168.1.0/24' --RegionId cn-beijing --VpcName VPC-BJ

Create Shanghai VPC.

aliyuncli ecs CreateVpc --CidrBlock '192.168.2.0/24' --RegionId cn-shanghai --VpcName Office-SH

Create Sydney VPC.

aliyuncli ecs CreateVpc --CidrBlock '192.168.3.0/24' --RegionId ap-southeast-2 --VpcName VPC-SYD

Create Singapore VPC.

aliyuncli ecs CreateVpc --CidrBlock '192.168.4.0/24' --RegionId ap-southeast-1 --VpcName Office-SG

2

Step 2: Build the CEN and Connect Beijing and Sydney VPCs

Login to the Alibaba Cloud console. Go to Products and navigate to CEN.

3

Click on "Create CEN Instance".

4

Give the CEN a name and add Beijing-VPC into the CEN.

5

6

7

Click on Manage.

8

Attach the Sydney-VPC.

9

10

11

Purchase a Bandwidth Package.

12

13

14

Go to "Region Connections" then "Set Region Connection".

15

16

17

18

Step 3: Build the VPNs and Configure the Routes

Create VPN gateway in Beijing-VPC

19

20

21

22

23

Follow the sequence of steps similar to the above and create VPN gateways in all 4 VPCs.

Create Customer Gateways in 4 regions. Below are the IP address for the VPN gateways.
AU: 47.91.47.220
SG: 47.88.219.64
BJ: 39.105.70.253
SH: 47.102.129.89

In this case, BJ will add SH's IP as customer gateway, while SH will add BJ's IP as customer gateway. AU will add SG's IP as customer gateway, while SG will add AU's IP as customer gateway.

24

25

26

27

Configure BJ-SH VPN.

28

Configure SH-BJ VPN. Please make sure the preshared keys are the same and encryption protocols are the same.

29

Now the BJ-SH VPN is up

30

Configure the AU-SG VPN

31

Configure the SG-AU VPN

32

The AU-SG VPN is up

33

Create routes in all 4 VPC route tables. For BJ and AU, the routes need to be published into VPC.

  • SG route

    34

  • AU route

    35

  • SH route

    36

  • BJ route

    37

Step 4: Test Connectivity

Build test ECS in SH and SG and allow ping in security groups

38

39

If the ping is working, you should see something similar to the following:

40

41

42

This Demo is only a reference for creating a link to China using Cloud Enterprise Network. It is not optimized to use the optimal route, and therefore the latency may be a bit high. If you are interested in setting up a cross-regional connection for your enterprise, please contact your local Alibaba Cloud team.

1 1 1
Share on

Alibaba Clouder

1,110 posts | 179 followers

You may also like

Comments

Raja_KT March 20, 2019 at 4:47 pm

Interesting to see aliyuncli configure . Commands are used rather than Buttons

Alibaba Clouder

1,110 posts | 179 followers

Related Products

  • CEN

    A global network for rapidly building a distributed business system and hybrid cloud to help users create a network with enterprise level-scalability and the communication capabilities of a cloud network

    Learn More
  • Express Connect

    A dedicated network connection between different cloud environments

    Learn More
  • CDN(Alibaba Cloud CDN)

    A scalable and high-performance content delivery service for accelerated distribution of content to users across the globe

    Learn More