Access Resources via VPC Private Network
This document will guide you on how to connect Lighthouse instances with Tencent Cloud VPC private networks through the private network interconnection capability, enabling internal network access to CloudBase resources and other Tencent Cloud services.
Overview
Through the Private Network Interconnection capability, you can connect Lighthouse instances with Tencent Cloud VPC private networks to achieve low-latency, high-bandwidth internal network communication.
Accessible Resources
After connecting to the VPC private network, you can access the following CloudBase resources:
- SQL Database: Access CloudBase MySQL database through the internal network, improving access speed and reducing public network traffic costs
You can also further access other resources purchased on Tencent Cloud, such as:
- Cloud databases (MySQL, Redis, MongoDB, etc.)
- Caching products (Memcached, etc.)
- Message queues (CKafka, TDMQ, etc.)
- Other cloud services within the VPC
Prerequisites
- Lighthouse Instance: You need to create a Lighthouse instance first. See Create and Manage Lighthouse Instances for details
- Region Requirement: Currently CloudBase only provides Lighthouse instances in the Shanghai region, so only private network interconnection in the Shanghai region is supported
- VPC Network: A VPC private network must already be created in the Shanghai region
Configuration Steps
Step 1: Access the Lighthouse Console
- Log in to the CloudBase Console, select "Cloud Functions/CloudRun" in the left navigation bar, and click "Lighthouse"
- Find the target instance and click "Manage" to enter the Lighthouse console
Step 2: Configure Private Network Interconnection
- In the Lighthouse console, select "Private Network Interconnection"
- Click "Associate Cloud Connect Network"
- Select a VPC private network in the Shanghai region to associate
Step 3: Verify Connectivity
After configuration is complete, you can verify whether the private network interconnection is effective through the following method:
# Ping the internal IP of a resource in the VPC from the Lighthouse instance
ping <target-resource-internal-IP>
After the private network interconnection configuration is complete, the Lighthouse instance can directly access resources within the VPC through internal IPs without going through the public network, resulting in lower access latency and higher security.
Notes
- Private network interconnection uses the Cloud Connect Network service to establish network connectivity
- The Cloud Connect Network service may incur additional fees. For details, please refer to Cloud Connect Network Billing
| Item | Description |
|---|---|
| Region Limitation | Currently only supports private network interconnection in the Shanghai region |
| Security Group Configuration | Ensure the security group of the target resource has allowed the internal IP of the Lighthouse instance |
| Effective Time | Usually takes effect within seconds after configuration |