Connect an IDC to an ENS VPC via ENA - Edge Network Acceleration

Example scenario

A company has an on-premise IDC in Macao (China) with the private CIDR block 172.16.100.0/24. The company also created a VPC with the CIDR block 192.168.200.0/24 on the ENS China Macao-1 node. To connect them, ENA is used to establish a private 100 Mbps link, and Border Gateway Protocol (BGP) to allow the IDC to exchange routing information with an Edge Virtual Border Router (EVBR).

The following table describes the CIDR block in this example. You can plan your own CIDR blocks. Make sure they do not overlap.

Organization	CIDR block planning	Server or client address
On-premise IDC	`172.16.100.0/24`	Client address: `172.16.100.1`
ENS VPC	`192.168.200.0/24`	ENS instance address: `192.168.200.1`
EVBR	VLAN: 100 EVBR-side IPv4 peer IP address: `10.0.0.2/30` Customer-side IPv4 peer IP address: `10.0.0.1/30`	Not applicable

Prerequisites

Make sure that your Alibaba Cloud account has passed verification. You can log on to the Alibaba Cloud Management Console and check the verification at the Account Center.
You have created a VPC and a vSwitch on the Alibaba Cloud ENS China Macao-1 node, and deployed your services on cloud resources such as ENS instances in the VPC. For more information, see Create and manage VPCs and vSwitches.
You have connected edge access ports and lines to your on-premises IDC. For more information, see Edge access ports and lines.
You understand the billing rules for ENA. For information about the fees for edge access ports, edge access lines, and edge multi-point connection bandwidth, see:
- Pricing for edge access ports and lines
- Price of Edge Private Network

Procedure

Step 1: Create an Edge Private Network (EPN) instance

Create and activate an EPN instance.

Log on to the ENA console, and choose Business Instances > EPN Instances.
On the Edge Private Network Instance page, click Create EPN Instance and configure the following parameters.
Parameter
Description
Name
The name of the instance.
Region
Select Global (Outside Chinese Mainland).
Description
The description of the instance.
After you complete the configuration, click OK.
After the instance is created, click OK in the pop-up window to activate the instance, then click Buy Now on the payment page.
Note
The service is pay-as-you-go, so you do not need to pay any fees for creating an instance. For details about the billing method of EPN, see Price of Edge Private Network.
On the order confirmation page, click Enable Now.

Step 2: Create an EVBR on the edge access port and configure routing

On the Edge Private Network Instance page, find the instance that you created and click Details.

On the details page, click the Create EVBR and configure the following parameters.

Note

The parameters in this topic are for reference only. Adjust the values as needed. For more information about the parameters, see Create an access point.

Parameter	Description	Example value
Edge Access Port	Select the edge access port on which you want to create the EVBR.	The edge access port instance on which you want to create the EVBR. Note If the edge access port instance does not exist, see Edge network resources to create one.
VLAN ID	Set the VLAN ID for the EVBR.	100
Bandwidth	Set the bandwidth for the EVBR in Mbps.	100
Route Method	Select whether to use BGP or static routing.	BGP
Client AS Number	Set the BGP AS number for the peer of the EVBR.	65001
Edge Cloud Peer IP Address	Set the IPv4 address for the EVBR side.	`10.0.0.2/30`
Client Peer IP Address	Set the IPv4 address for the EVBR to connect.	`10.0.0.1/30`

Configure routing for the on-premises IDC.
1. Configure the BGP protocol on the on-premises gateway device. The AS number for the ENA EVBR is 45103.
2. Announce the 172.16.100.0/24 route to the EVBR neighbor over BGP.

Step 3: Create an Edge Node Service Gateway and associate a vSwitch

On the Edge Private Network Instance page, find the instance that you created and click Details.
On the details page, click Add ENSGW and configure the following parameters.
Parameter
Description
Example value
Node
Select the ENS node on which you want to create the ENSGW.
mo-taipa-1
Rate Limit (Mbit/s)
Set the throttling bandwidth for the ENSGW.
100
On the instance details page, verify that the status of the ENSGW that you created is running.
Click Associate vSwitch on the right side of the corresponding ENSGW and configure the following parameters.
Note
After the ENSGW is created, you need to associate an ENS vSwitch to add the VPC to the network.
Parameter
Description
vSwitch
Select the ENS vSwitch that you want to add to the EPN instance.
Note
You can view ENS vSwitches in the ENS console.
After you confirm the information, select I Have Confirmed the vSwitch Information and click OK.

Step 4: Test connection

Perform the following steps:

On the host with the IP address 172.16.100.1 in the on-premises IDC, open a command-line window.
Run the ping 192.168.200.1 command to ping the ENS instance IP address. A reply message indicates that the on-premises IDC can communicate with the ENS VPC 192.168.200.0/24.

Parameter	Description
Name	The name of the instance.
Region	Select Global (Outside Chinese Mainland).
Description	The description of the instance.

Parameter	Description	Example value
Node	Select the ENS node on which you want to create the ENSGW.	`mo-taipa-1`
Rate Limit (Mbit/s)	Set the throttling bandwidth for the ENSGW.	100

Parameter	Description
vSwitch	Select the ENS vSwitch that you want to add to the EPN instance. Note You can view ENS vSwitches in the ENS console.