This topic describes how to configure PrivateZone access for a Cloud Enterprise Network (CEN) instance. After you configure PrivateZone access for a CEN instance, the network instances attached to the CEN instance can access the PrivateZone service that resolves and manages private domain names.

Prerequisites

At least one VPC, VBR, or CCN instance in the host region and the access region is attached to the CEN instance.

Procedure

  1. Log on to the CEN console.
  2. Click the ID of the target CEN instance.
  3. Click the PrivateZone tab, and then click Authorization.
    Note You need to grant permissions to the Smart Access Gateway only when you configure PrivateZone access for the first time.
  4. On the Cloud Resource Access Authorization page, click Confirm Authorization Policy to allow local branches associated with a CCN (a component of the Smart Access Gateway) in the CEN instance to access the PrivateZone service.


  5. Click Set Private Zone, and then set the following parameters on the Set Private Zone page:
    1. Host Region: Select the region to which the VPC configured with the PrivateZone service belongs.
    2. Host VPC: Select the VPC configured with the PrivateZone service.

      The PrivateZone service can be accessed only after the VPC in the host region is selected.

    3. Access Region: Select the region where access is initiated.
      Note
      • The access region can be the host region or a CCN. The target network instance in the selected access region must be attached to the CEN instance.
      • If you select a CCN whose account is different from that of the VPC or CEN, you must authorize the CCN. For more information, see Grant permissions to CCN.
    4. Click OK.