Community Blog Multi-Tier Approach With Virtual Private Cloud – Part 3

Multi-Tier Approach With Virtual Private Cloud – Part 3

Part 3 of this 3-part series focuses on the different usage scenarios related to Alibaba Cloud VPC.

By Shantanu Kaushik

Cloud computing and its associated practices support an endless amount of service engagements to develop and define solutions that were unheard of previously. The complexity of these solutions cannot overpower the tremendous functionality that these solutions offer. One of the solutions is the hybridity or hybridization that provides an extraordinary edge to IT engineers.

Whether you are starting your digital transformation journey or planning another phase of upgrades that lead to service expansion in different regions, Alibaba Cloud provides endless opportunities defined by usage scenarios that can define deployment architecture to meet the needs of your enterprise..

This can only be achieved with years of experience in building solutions rather than products. You can adopt a multi-cloud architecture to encompass the edge with redundancy or operations and higher availability scenarios or work your way up using a hybrid cloud setup. In any case, Alibaba Cloud can be a great digital partner for cloud computing.

In the previous articles of this series, we introduced the VPC concept and discussed all the features and functionality related to Alibaba Cloud Virtual Private Cloud (VPC). In this article, we will discuss the different usage scenarios related to Alibaba Cloud VPC.

Usage Scenarios

Hybrid Cloud

Let’s imagine an organization is starting its digital transformation journey or is taking over another organization that deals with similar business ventures. The parent organization has a full-fledged cloud deployment operating in multiple regions across the globe.

Right after taking over the smaller organization, the parent organization sets up a hybrid cloud architecture by letting some of the business resources run from the on-premise data center operating at the facilities of the smaller organization.

In both scenarios, these organizations can create a dedicated connection to connect their VPC-enabled network and connect it to an on-premise data center to expand it. The applications within the on-premise data center can be seamlessly migrated to the cloud, and the organizations do not need to change the access method for these applications.


Once you set up a connection between your on-premise data center, the public cloud setup with Alibaba Cloud, and other data centers or cloud deployments around the world, you have successfully established a hybrid cloud network.

Alibaba Cloud VPC plays a major role here. You can isolate different resources and connect all the resources you want easily and efficiently while using multiple Virtual Private Clouds (VPCs). This provides an efficient way of conducting business and a unified practice along with multiple systems running throughout your practice. You do not have to go out of your way to perform O&M, security, or authorization.

On-Cloud Intranet

In this usage scenario, Alibaba Cloud VPC can use local and on-cloud IDCs for deployment. You can use multiple service modules built on Alibaba Cloud VPC, enabling a fully-isolated on-cloud environment.

On-cloud and off-cloud services interact with each other through the Internet, and you can choose which service module gets access to the Internet. Alibaba Cloud VPC is a software-defined network (SDN) that enables you to customize network settings according to the necessary requirements.


With Alibaba Cloud VPC, the management operations take effect in real-time, and there is no need to wait or restart an instance. Alibaba Cloud VPC instances from different users are fully-isolated from each other and do not share the Internet, providing a clear layer of difference.

External Service Integration

Let’s imagine an organization wants to host some external service access into their cloud practice. They want to work with a specific level of isolation, so the traffic from the outside world and the applications can talk to each other but only allow access to specific resources. This organization can host applications that require access to the Internet in a subnet of a VPC network and route network traffic by using a Network Address Translation (NAT) Gateway. Alibaba Cloud NAT Gateway is an enterprise-level public network gateway that provides proxy services with SNAT and DNAT.

This organization can configure the SNAT rules to allow outbound connectivity from the subnet to the Internet without exposing the private IP addresses of its instances, enabling proper resource isolation. The organization can change the public IP address in SNAT mapping as necessary to prevent targeted attacks, providing better resource security.


The organization can also create multiple applications based on Alibaba Cloud VPC, where each of the applications must provide external services with shared bandwidth among multiple IP addresses to minimize the effect of these network fluctuations.

Alibaba Cloud VPC enables port mapping and IP address mapping to allow ECS instances to provide external services. Multiple VPC ECS instances can share Internet bandwidth to optimize costs, where NAT Gateway provides the large-bandwidth throughput and a large number of connections for a seamless user experience.

Disaster Recovery

Alibaba Cloud provides seamless connectivity and effective disaster recovery scenarios by providing redundant data centers with high availability levels. Alibaba Cloud has enabled multiple availability zones within the same region or data center to provide better availability scenarios.


In this scenario, an organization wants to set up highly effective redundancies and enable better business application availability in the same region while in different zones. Alibaba Cloud VPC can deploy multiple vSwitches that act as subnets with a VPC.

These virtual switches in a VPC network can communicate with each other and host your resources in different zones, allowing you to implement zone-disaster recovery with lower costs and higher efficiency.

Wrapping Up

Alibaba Cloud Virtual Private Cloud provides a host of benefits that enable organizations to deploy services effectively and confidently, without worrying about isolation, privacy, and security. There are a variety of Alibaba Cloud VPC usage scenarios to implement that can connect businesses worldwide.

Upcoming Articles

  1. Hybridity and Distributed Global Networks Using CEN – Part 1
0 0 0
Share on

Alibaba Clouder

2,605 posts | 747 followers

You may also like