Help Center

Elastic Cloud Server

Product Overview
User Guide
Beginner's Guide
Subscription Guide
Quick Start
ECS Instance
Monitoring the Cloud Server
Best Practices
Troubleshooting
FAQs
Agreements

Network

2026-03-23 09:05:38

VPC

Virtual Private Cloud (VPC) is an isolated and private network environment that you apply for on eSurfing Cloud. You can efficiently manage and utilize cloud resources in a secure, controllable, and isolated network environment. The VPC has a wealth of product features, allowing you to customize network addresses, route tables, security groups, etc. At the same time, the VPC offers a variety of network connections that can meet network scenarios such as inter-VPC visits in the cloud, public Internet Access, and interconnections with offline IDCs via dedicated lines or VPNs.

For more information, please refer to the VPC-Product Introduction.

Subnet

Cloud resources (such as cloud servers, physical machines, etc.) must be deployed within a subnet. You can create one or more subnets within a VPC, but the subnet's CIDR block must be within the VPC's CIDR block range. Networks within the same subnet are default interconnected, and subnets within the same VPC are also default interconnected. Once a subnet's CIDR block is created, it cannot be modified, so please plan your network carefully.

For more information, please refer to the Subnet Management-Advanced Subnet Configuration.

Virtual IP

A Virtual IP (VIP) is an Intranet IP address allocated from a subnet that is not assigned to the NIC of a real ECS. A Virtual IP address has the same network access capabilities as a private IP address. Users can also access the elastic cloud server through the Virtual IP, just like the primary private network IP address.

You can bind a Virtual IP with primary and secondary Cloud Servers, and depending on whether public network access is needed, bind an Elastic IP to the Virtual IP. By using it in conjunction with high availability software (such as Keepalived), you can achieve high availability for your services.

Note:If not using Keepalived, be cautious when removing the primary server or NIC bound to the Virtual IP, as it may cause the backup server or NIC to become inaccessible or experience traffic issues.


For more information, please refer to the Virtual IP Overview - Virtual IP Overview.

Security Group

A security group is a network security protection mechanism designed to prevent unauthorized access and protect computer networks from malicious attacks. It is a virtual firewall used to restrict inbound and outbound network traffic. A security group operates at the network and transport layers, determining whether to allow traffic through by inspecting the data packet's source address, destination address, protocol type, and port numbers, among other information. After a security group is created, users can define various access rules within the security group. Once an elastic cloud server is added to the security group, it is protected by these access rules.

For more information, please refer to the Security Group - Security Group Overview.

Elastic IP

Elastic IP (EIP) is a public IP address that can be independently applied for. By binding and unbinding the Elastic IP address with various cloud resources in the subnet, it is possible to enable cloud resources in the VPC to communicate with the internet through a fixed public IP address. Elastic IPs include public IP addresses and offer bandwidth services. Combined with other bandwidth products, they enable public network access while reducing costs.

Elastic IPs must be used in the same region as the cloud resources they are bound to and are not allowed to be used across regions.

For more information, please refer to the Elastic IP-Product Introduction.


The previous article -  Cloud-init
The next article -  Elastic Volume Service
2yogdPzPSTT0