Alibaba Cloud DNS PrivateZone (PrivateZone) is an Alibaba Cloud private domain name resolution and management service based on Virtual Private Cloud (VPC). Smart Access Gateway (SAG) can access PrivateZone through Cloud Enterprise Network (CEN). This topic describes how to enable access to PrivateZone in the CEN console.
Background information
PrivateZone allows you to use private domain names to record and manage Elastic Compute Service (ECS) hostnames, Server Load Balancer instances, Object Storage Service (OSS) buckets, and other Alibaba Cloud services. Private domain names are accessible only within their VPCs. You can connect your on-premise network to a VPC through SAG and CEN and configure PrivateZone in the CEN console to allow the on-premises network and VPC to access each other through private domain names.
Prerequisites
- PrivateZone is activated. For more information, see Quick start.
- A CEN instance is created. For more information, see Create a CEN instance.
- The VPC associated with PrivateZone and the Cloud Connect Network (CCN) instance associated with the on-premises network are connected to transit routers. For more information, see Create a VPC connection and Associate a CCN instance with a transit router.
- An inter-region connection is established between the transit router connected to
the VPC and the transit router connected to the CCN instance. For more information,
see Manage inter-region connections.
Note If both the CCN instance and the VPC are deployed in the Chinese mainland, the system automatically creates an inter-region connection between the transit routers after you connect the VPC and the CCN instance to the transit routers. By default, associated forwarding and route learning are enabled between inter-region connections and the default route table of the transit router where the inter-region connections are created.