This topic describes how to use leased lines and CEN to connect an on-premises data center to Alibaba Cloud and enable the data center to communicate with VPCs in different regions.
- Build redundant leased lines
Create redundant leased lines to connect the on-premises data center to Alibaba Cloud. Configure static routes between the on-premises data center and the VBRs.
- Configure health checks (required)
Configure health checks. Therefore, the traffic can be automatically routed to the standby link when the active link fails. When configuring health checks, you can set any unused private IP address in a VPC attached to the CEN instance as the source IP address, and set the IP address of the CPE interface connected to the VBR as the destination IP address. For more information, see Health check.
- Attach networks
Attach the VBRs and VPCs to the created CEN instance.
- Configure and publish routes
Configure routes in the on-premises data center and VPCs. For more information, see Static route configurations of the on-premises data center and VBRs.
- The on-premises data center is already connected to the VBRs through two leased lines. Configure static routes between the on-premises data center and the VBRs.
- Three VPCs are already created in the China (Beijing), China (Shanghai), and China (Hong Kong) regions.
- The CIDR blocks of networks used in this topic are as follows:
Network CIDR block On-premises data center 10.1.1.0/24 Beijing VPC 192.168.1.0/24 Hong Kong VPC 192.168.2.0/24 Shanghai VPC 192.168.3.0/24
Static route configurations of the on-premises data center and VBRs
- On-premises data center route configuration
Configure a static route pointing to Alibaba Cloud on CPE1 and CPE2 respectively.
Configuration CPE1 CPE2 Destination CIDR block 192.168.0.0/16 192.168.0.0/16 Next hop 172.16.1.2/24 (VBR1) 172.16.2.2/24 (VBR2)
- VBR route configuration
Configure a static route pointing to the on-premises data center on VBR1 and VBR2 respectively.
Configuration VBR1 VBR2 Destination CIDR block 10.1.1.0/24 10.1.1.0/24 Next hop 172.16.1.1/24 172.16.2.1/24
- CEN routes
After configuring routes for the VBRs, the CEN publishes the configured static routes to the CEN. In CEN, the two leased lines form ECMP and are in active-active status.
Redundant disaster tolerance
When a leased line fails (such as the line from VBR1 to CPE1), data from Alibaba Cloud to the on-premises data center is forwarded to VBR2. This solution achieves disaster tolerance by automatically switching the link.