A Virtual Private Cloud (VPC) is a logically isolated network space. With VPC, you can configure logically isolated network space for your resources such as CVMs and cloud databases. This product provides better cloud resource security and can meet your needs in various scenarios.
This document introduces the core components, connection modes, and security of VPCs.
A VPC instance has three core components: VPC IP ranges, subnets, and route tables.
When you create a VPC, you need to specify a CIDR (classless inter-domain routing) block as the VPC’s IP address group.
Tencent Cloud VPC supports CIDR blocks in any of the following private IP ranges:
A VPC is made up of at least one subnet. All cloud resources in a VPC (such as CVMs and cloud databases) must be deployed in a subnet, and the subnet CIDR block must be within the VPC CIDR block.
A VPC is set up at the region level (such as Guangzhou), while a subnet is set up at the availability zone level (such as Guangzhou Zone 1). You can divide a VPC into one or more subnets. Subnets in the same VPC can interconnect with one another by default, while subnets in different VPCs are isolated by default.
When you create a VPC, the system automatically generates a default route table to ensure that all subnets in the VPC interconnected. If the routing policies in the default route table cannot meet your business needs, you can create a custom route table.
For more information on route tables, see Route Table Overview.
Tencent Cloud provides a wide range of VPC connection solutions for different scenarios.
A VPC is a logically isolated network space in the cloud. Different VPCs are isolated from each other to protect business security.
For more information on VPC security, see Security Management.