OSS on CloudBox brings Object Storage Service (OSS) to your data center, providing local storage, local access, and local data processing for unstructured data. It uses the same OSS APIs and SDKs as Alibaba Cloud public cloud, so your existing code works without modification.
How it works
CloudBox is a fully managed cloud service provided by Alibaba Cloud. The hardware and software of Alibaba Cloud public cloud are integrated into your data center, giving you cloud capabilities on your own premises.
To store data in OSS on CloudBox:
Create a bucket in OSS on CloudBox. Each CloudBox deployment has its own region, and buckets are region-specific.
Access the bucket through an internal endpoint within your CloudBox Virtual Private Cloud (VPC). OSS on CloudBox does not support public endpoints.
Upload, download, and manage objects using the standard OSS APIs and SDKs—the same interfaces you use on Alibaba Cloud public cloud.
To transfer data between OSS on CloudBox and Alibaba Cloud public cloud, establish a network connection between CloudBox and Alibaba Cloud public cloud, then use ossimport.
For more information about CloudBox, see What is CloudBox?
Benefits
| Benefit | Description |
|---|---|
| Data security | Data stays in your data centers, meeting regulatory requirements for local data residency. |
| Local data processing | Process data on-premises without uploading it to Alibaba Cloud public cloud, reducing data transfer costs. |
| Low latency | CloudBox is physically close to your local devices and applications, enabling near real-time interactions. |
| Exclusive resources | Storage resources are not shared with other customers, making it suitable for sensitive data. |
Billing
For billing methods, scale-up rules, and billing examples, see OSS resources.
Limitations
Quotas
| Resource | Limit |
|---|---|
| Buckets per Alibaba Cloud account | 100 (region-specific) |
Unsupported features
| Feature | Limitation |
|---|---|
| Storage class | Only Standard is supported. Other storage classes are not available. |
| Server-side encryption | Only SSE-OSS is supported. SSE-KMS is not supported. |
| Endpoint type | Only internal endpoints are supported. Public endpoints are not supported. |
Endpoints
OSS on CloudBox uses two types of endpoints, accessed through a CloudBox VPC:
Control endpoints: For bucket-level operations only (create, delete, configure buckets). Control endpoints do not support object operations.
Format:
<Cloudbox-Id>.<Region>.oss-cloudbox-control.aliyuncs.comExample:
cb-f8z7yvzgwfkl9q0h****.cn-shenzhen.oss-cloudbox-control.aliyuncs.com
Data endpoints: For both bucket-level and object-level operations.
Format:
<Cloudbox-Id>.<Region>.oss-cloudbox.aliyuncs.comExample:
cb-f8z7yvzgwfkl9q0h****.cn-shenzhen.oss-cloudbox.aliyuncs.com
If you create a VPC in CloudBox and need to use OSS within that VPC, contact technical support to enable the endpoints.
API operations supported by control endpoints
Control endpoints support bucket-level operations only.
| Category | API | Description |
|---|---|---|
| Basic operations | PutBucket | Creates a bucket. |
| DeleteBucket | Deletes a bucket. | |
| GetBucketInfo | Queries bucket information. | |
| GetBucketLocation | Queries the region of a bucket. | |
| Access control list (ACL) | PutBucketAcl | Sets the ACL of a bucket. |
| GetBucketAcl | Queries the ACL of a bucket. | |
| Lifecycle | PutBucketLifecycle | Configures lifecycle rules for a bucket. |
| GetBucketLifecycle | Queries lifecycle rules of a bucket. | |
| DeleteBucketLifecycle | Deletes lifecycle rules of a bucket. | |
| Versioning | PutBucketVersioning | Sets the versioning status of a bucket. |
| GetBucketVersioning | Queries the versioning status of a bucket. | |
| Bucket policy | PutBucketPolicy | Configures a bucket policy. |
| GetBucketPolicy | Queries bucket policies. | |
| DeleteBucketPolicy | Deletes a bucket policy. | |
| Logging | PutBucketLogging | Enables logging for a bucket. |
| GetBucketLogging | Queries logging configurations of a bucket. | |
| DeleteBucketLogging | Disables logging for a bucket. | |
| Static website hosting | PutBucketWebsite | Enables static website hosting for a bucket. |
| GetBucketWebsite | Queries static website hosting configurations. | |
| DeleteBucketWebsite | Disables static website hosting for a bucket. | |
| Hotlink protection | PutBucketReferer | Configures hotlink protection for a bucket. |
| GetBucketReferer | Queries hotlink protection configurations. | |
| Encryption | PutBucketEncryption | Configures encryption rules for a bucket. |
| GetBucketEncryption | Queries encryption rules of a bucket. | |
| DeleteBucketEncryption | Deletes encryption rules of a bucket. |
API operations supported by data endpoints
Data endpoints support service-level, bucket-level, and object-level operations.
Service-level operations
| API | Description |
|---|---|
| ListBuckets (GetService) | Lists all buckets owned by the requester. |
Bucket-level operations
Data endpoints support all bucket-level operations listed for control endpoints, plus the following:
| Category | API | Description |
|---|---|---|
| Basic operations | GetBucket (ListObjects) | Lists all objects in a bucket. |
| ListObjectsV2 (GetBucketV2) | Lists all objects in a bucket. | |
| Versioning | ListObjectVersions (GetBucketVersions) | Lists all object versions in a bucket. |
Object-level operations
| Category | API | Description |
|---|---|---|
| Basic operations | PutObject | Uploads an object. |
| GetObject | Queries an object. | |
| CopyObject | Copies an object. | |
| AppendObject | Uploads an object using append upload. | |
| DeleteObject | Deletes an object. | |
| DeleteMultipleObjects | Deletes multiple objects in a single request. | |
| HeadObject | Queries object metadata only. | |
| GetObjectMeta | Queries basic object metadata: ETag, size, and last modified time. | |
| Multipart upload | InitiateMultipartUpload | Initiates a multipart upload task. |
| UploadPart | Uploads a part by object name and upload ID. | |
| UploadPartCopy | Copies data from an existing object to upload a part by adding the x-oss-copy-source request header to an UploadPart request. | |
| CompleteMultipartUpload | Completes a multipart upload task. | |
| AbortMultipartUpload | Cancels a multipart upload task and deletes uploaded parts. | |
| ListMultipartUploads | Lists all ongoing multipart upload tasks, including tasks that are initiated but not completed or canceled. | |
| ListParts | Lists all parts uploaded under a specific upload ID. | |
| ACL | PutObjectACL | Sets the ACL of an object. |
| GetObjectACL | Queries the ACL of an object. | |
| Symbolic link | PutSymlink | Creates a symbolic link. |
| GetSymlink | Queries a symbolic link. | |
| Tagging | PutObjectTagging | Adds or updates object tags. |
| GetObjectTagging | Queries object tags. | |
| DeleteObjectTagging | Deletes object tags. |