tencent cloud

Virtual Private Cloud
A stable, flexible and secure private network space in the cloud that offers a full range of network solutions
Get StartedContact Sales
Overview
Benefits
Features
Scenarios
Pricing

Overview

Overview

Benefits

Features

Scenarios

Pricing

Overview

Virtual Private Cloud (VPC) helps you build an independent network space in Tencent Cloud and allows you to customize network segment classification, IP addresses, and routing policies. You can establish VPN tunnels through the public network/Direct Connect to connect the private network to other cloud resources and flexibly deploy hybrid clouds.

VPC Documentation
Benefits
High Availability

Leveraging sophisticated technologies such as network virtualization, linkage redundancy, primarycondary gateway and VPC-based cross-availability zone deployment, Tencent Cloud ensures high network availability and comprehensively protects network security and reliability at the linkage, network and IDC levels.

Complete Isolation

Utilizing overlay technology, Tencent Cloud helps you build a completely isolated private network environment with 100% logical isolation among different VPCs, meeting the security isolation needs of your businesses.

Diversified Access

VPC provides you with various network access methods to connect your local IDC to Tencent Cloud resources such as Direct Connect and VPN Connection.

High-performance Internet

Tencent Cloud enables ultra high-performance Internet access through NAT Gateway which supports up to 10 million concurrent connections, helping you easily break through bottlenecks with Internet access performance. Additionally, NAT gateways can be used alongside other Tencent Cloud products such as elastic Load Balance and Anycast Internet Acceleration for an improved business access experience.

Multi-dimensional Security

VPC supports multi-dimensional network security control. VPC allows you to achieve resource access control at the port and instance levels through network ACLs and security groups. It also allows you to grant minimum account permissions through CAM, helping you achieve high network security.

Visual Management

VPC supports the visualization of network topology, which can monitor the network status in real time, set traffic alarms and help you easily, comprehensively and intelligently manage networks together with Flow Logs.

Elastic Scalability

Tencent Cloud supports VPC elastic scaling, eliminating the need to purchase, install and debug additional network devices, allowing for the flexible scaling of network resources as business scale changes and enhancing business development.

Optimal Costs

Most VPC functions are available free of charge, allowing you to enjoy high-standard IDC-grade network resources without needing to purchase additional dedicated network devices. For optimal configurations, Tencent Cloud offers a variety of flexible billing methods and packages.

Service Integration

VPC can be deeply integrated with most Tencent Cloud services such as CVM, CDB and TBDS to provide you with a comprehensive cloud solution.

Features
Software-defined Network

The IP address range, subnet IP address range and routing strategies of VPC can be customized through the Tencent Cloud console or APIs. VPC can be further divided into multiple subnets for the deployment of applications and services. The deployment and OPS of underlying network devices and the optimization of network performance are maintained by Tencent Cloud's professional technical team, allowing you to focus on defining instantly available networks with software to build transparent, agile and intelligent networks with ease.

Internet Connection

VPC provides you with flexible and high-performance Internet connectivity, including Elastic IP (EIP) and NAT Gateway.

EIP is a public IP address that can be independently applied for and used for Internet access. It supports the dynamic binding and unbinding of instances (such as CVM and NAT Gateway) for blocking instance faults.

NAT Gateway (NG) is a method through which VPC can access the Internet. It can translate the private IP address in VPC to a public IP address if the private and public networks are isolated from each other. A typical use case of NG is to achieve high-bandwidth and high-availability Internet access. NG supports up to 10 million concurrent connections, 10 Gbps bandwidth and 10 EIPs and features dual-server hot backup, automatic disaster recovery and 99.99% service availability, making it ideal for Internet access scenarios that require high bandwidth and have large volumes of public IP addresses and multiple deployed services.

Hybrid Cloud Deployment

VPN Connection and Direct Connect can be used to establish stable and reliable connections between Tencent Cloud computing resources and local IDCs to create a hybrid cloud.

VPN Connection is a service that connects your IDC to VPC through an encrypted public IPsec tunnel, helping you to quickly and securely deploy a hybrid cloud.

Direct Connect is a service that connects your IDC to Tencent Cloud computing resources through physical connections and supports dual-server hot backup, satisfying the need for high-quality network connections in industries such as finance.

Interconnection with Cloud Resources

You can interconnect resources in VPC with other cloud resources through Peering Connection (PC) and Classiclink.

PC is a service that connects two VPCs and supports the traffic interconnection of cross-account and cross-region VPCs, enabling resources such as CVMs and CDBs to access each other at both ends. Using PC, you can easily deploy unified global servers and 2-region-3-DC disaster recovery solutions.

Classiclink is a service that associates CVMs on a basic network to a specified VPC and enables network communication between the CVMs and the VPC, helping you seamlessly connect to Tencent Cloud resources.

Security Control

You can implement resource access control at the port and instance levels through network ACLs and security groups and grant minimum account permissions through CAM to comprehensively improve your network security.

Network ACL is a stateless virtual firewall that can filter selected packets and control the inbound and outbound data traffic on a subnet at the protocol and port levels.

A security group is a stateful packet-filtering virtual firewall that controls the inbound and outbound traffic of one or multiple CVMs at the protocol and port levels.

Scenarios

High-traffic Video and Live Broadcasting Business

VPC helps you easily build a cloud-based interactive live broadcasting platform that supports the real-time transmission of over 100 GB of video, satisfies the live broadcasting needs of one-to-many elastic transcoding on private networks and ensures a smooth user experience in different scenarios.

● With the help of VPC, you can build a high-performance 10 Gbps cloud network that supports one-to-many transcoding.

● High-bandwidth Elastic IP supports the transmission of video over 3 GB.

● Using Bandwidth Package, you can achieve bandwidth sharing among multiple IPs to reduce costs.

IoT Business

The IoT service architecture built in Tencent Cloud makes it easy to process billions of connection requests generated by numerous shared IoT devices such as shared portable chargers, shared bicycles and unmanned stores.

● CLB supports high volumes of concurrent requests to meet massive IoT demands.

● Over 35 BGP lines fulfill access by IoT devices in any region.

● NG protects private network resources when accessing the Internet.

Gaming Acceleration

Online games typically have players all over the world and servers deployed in multiple regions. PC makes it easy for games to cope with network latency-sensitive scenarios such as cross-server PvP battles and improve the player experience.

● PC can build stable networks with low latency, meeting the cross-server gaming needs of global players.

● Tencent Cloud boasts 45 availability zones across 25 geographical regions around the world, allowing for proximity-based business deployment that satisfies the access needs of players in different regions.

2-region-3-DC Cloud-based Disaster Recovery

PC enables you to build a VPC-based 2-region-3-DC disaster recovery solution that meets the security and high availability needs of in-cloud financial services.

● Businesses can be deployed across regions, enabling intra-city active-active disaster recovery.

● PC also supports cross-region disaster recovery.

● Multi-level security protection based on ACL, security groups and CAM implements the security isolation of business regions.

Building a Hybrid Cloud Solution

Using Direct Connect or VPN Connection, you can build multiple cloud IDCs in Tencent Cloud and connect them to local IDCs to create a hybrid cloud that supports cloud-based disaster recovery and elastic business deployment.

● VPN Connection/Direct Connect support multi-linkage access.

● Elastic business deployment in the cloud helps you navigate business changes with ease.

Pricing

Virtual Private Cloud (VPC) is free of charge. However, while using VPC, fees for other related products such as NAT Gateway, VPN Connection and Peering Connection may be incurred. View more.