This topic describes how to connect different virtual private clouds (VPCs) by using Cloud Enterprise Network (CEN) or VPN Gateway.
CEN
You can use CEN to establish private network connections between VPCs. CEN uses automatic routing and automatic learning to speed up network convergence. This improves the security and quality of cross-network connections and allows different VPCs to communicate with each other. For more information, see Cloud Enterprise Network.
| Scenario | Method |
|---|---|
| Connect VPCs that belong to the same Alibaba Cloud account | Connect VPCs that belong to the same Alibaba Cloud account in the same region |
| Connect VPCs that belong to the same Alibaba Cloud account in different regions | |
| Connect VPCs that belong to different Alibaba Cloud accounts | Connect VPCs that belong to different Alibaba Cloud accounts in the same region |
| Connect VPCs that belong to different Alibaba Cloud accounts in different regions |
- Worldwide connection
CEN allows cloud resources that are deployed in different regions around the world to communicate with each other. CEN ensures that the IP addresses are unique and do not conflict with each other. In addition, CEN automatically forwards and learns multi-node routes through controllers to rapidly converge global routes.
- Low latency and high speed
CEN provides low-latency and high-speed network transmission. CEN ensures that on-premises networks communicate with each other at the highest data transfer rate supported by the device ports. CEN provides network connections with lower latency than Internet connections.
- Nearest access and shortest path transmission
CEN has deployed access points and nodes in more than 60 regions in the world to support nearest access to Alibaba Cloud. Compared with communication over the Internet, CEN connections provides lower network latency.
- Standby connections and disaster recovery
CEN provides at least four standby connections between two nodes. Therefore, CEN ensures high availability for your services. If some connections fail to work, the standby connections take over. This way, CEN ensures that your service is not interrupted and prevents network jitter.
- Systematic management
CEN can monitor networks in a systematic manner and automatically detects route conflicts that are caused by system changes. This ensures the stability of your services.
VPN Gateway
VPN Gateway is an Internet-based networking service that supports route-based IPsec-VPN connections. You can use IPsec-VPN connections to establish secure and reliable communication between VPCs. For more information, see Establish IPsec-VPN connections between two VPCs.
- High security
VPN Gateway uses the IKE and IPsec protocols in data transmission to ensure data security.
- High availability
The active-active architecture enables VPN Gateway to perform failovers within seconds. This ensures that your service and session are not interrupted when errors occur.
- Low cost
VPN Gateway establishes encrypted connections over the Internet, which are more cost-efficient than leased lines.
- Easy to use
VPN Gateway supports an out-of-the-box feature and configurations immediately take effect.