The virtual border routers (VBRs) and Cloud Connect Network (CCN) instances attached to Cloud Enterprise Network (CEN) instances can access the cloud services deployed in VPCs through the CEN instances.

Prerequisites

  • The VPC where the cloud services that you want to access are deployed is attached to a CEN instance.
  • The VBR or CCN instance to which your on-premises network is connected is attached to the CEN instance. For more information, see Attach networks.

Background information

Cloud services are the Alibaba Cloud services (such as OSS, Log Service, and DTS) that use the 100.64.0.0/10 CIDR block to provide services. After a VPC and either a VBR or a CCN instance are attached to a CEN instance, you can access the cloud services deployed in the VPC through the CEN instance from your on-premises network.AnyTunnel2.1

Procedure

  1. Log on to the CEN console.
  2. On the Instances page, click the ID of the target CEN instance.
  3. Click the AnyTunnel tab. Then click SetAnyTunnelService.
    AnyTunnel
  4. In the SetAnyTunnelService pane, complete the following settings:
    • Service IP address: Enter an IP address or CIDR block used by the cloud service to be accessed. This IP address or CIDR block must belong to the 100.64.0.0/10 CIDR block. Example: 100.118.28.52/32.
    • Host Region: Select the region to which the cloud service to be accessed belongs.
      Note Ensure that at least one VPC in the selected region is attached to the CEN instance.
    • Host VPC: Select the VPC attached to the CEN instance from the drop-down list.

      After the configuration is completed, the VBR or CCN instance will access the cloud service as the VPC.

    • Access Region: Select the region to which the VBR or CCN instance that needs to access the cloud service belongs.
      Note
      • Ensure that the VBR or CCN instance is attached to the CEN instance.
      • A VBR can only access the cloud services that are deployed within the same region as the VBR through its attached CEN instance.
    • Description: Optional.

      If you enter a service description in this field, ensure that the description is 2 to 256 characters in length and does not start with http:// or https://.

    SetAnyTunnelService
  5. Click OK.
    Note Typically, a cloud service uses multiple IP addresses. Repeat the preceding steps to add routes for all the IP addresses of the cloud service to be accessed.