VPCEP UMN 1201 version

Reviewed-by: Hasko, Vladimir <vladimir.hasko@t-systems.com>
Co-authored-by: Qin Ying, Fan <fanqinying@huawei.com>
Co-committed-by: Qin Ying, Fan <fanqinying@huawei.com>

docs/vpcep/umn/PARAMETERS.txt

@@ -0,0 +1,3 @@
+version=""
+language="en-us"
+type=""

docs/vpcep/umn/en-us_topic_0131645193.html

@@ -0,0 +1,21 @@
+<a name="en-us_topic_0131645193"></a><a name="en-us_topic_0131645193"></a>
+
+<h1 class="topictitle1">Service Overview</h1>
+<div id="body26002650"></div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="en-us_topic_0131645194.html">What Is VPC Endpoint?</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpcep_01_0002.html">Product Advantages</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="en-us_topic_0131645196.html">Application Scenarios</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpcep_01_0005.html">Constraints</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpcep_01_0007.html">VPCEP and Other Services</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="vpcep_01_0009.html">Product Concepts</a></strong><br>
+</li>
+</ul>
+</div>
+

docs/vpcep/umn/en-us_topic_0131645194.html

@@ -0,0 +1,26 @@
+<a name="en-us_topic_0131645194"></a><a name="en-us_topic_0131645194"></a>
+
+<h1 class="topictitle1">What Is VPC Endpoint?</h1>
+<div id="body62269410"><p id="en-us_topic_0131645194__p19572192919239">VPC Endpoint (VPCEP) is a cloud service that provides secure and private channels to connect your VPCs to VPC endpoint services, including cloud services or your private services. It allows you to plan networks flexibly without having to use <span id="en-us_topic_0131645194__text21768513317"></span><span id="en-us_topic_0131645194__text19813125312318">EIP</span>s.</p>
+<div class="section" id="en-us_topic_0131645194__section4935853141712"><h4 class="sectiontitle">Architecture</h4><p id="en-us_topic_0131645194__p10708161316188">There are two types of resources: VPC endpoint services and VPC endpoints.</p>
+<ul id="en-us_topic_0131645194__ul3279314251"><li id="en-us_topic_0131645194__li288619323119">VPC endpoint services are cloud services or private services that you manually configure in VPCEP. You can access these endpoint services using VPC endpoints.<p id="en-us_topic_0131645194__p837625193119"><a name="en-us_topic_0131645194__li288619323119"></a><a name="li288619323119"></a>For more information, see <a href="vpcep_01_0013.html">VPC Endpoint Services</a>.</p>
+</li><li id="en-us_topic_0131645194__li63919166256">VPC endpoints are secure and private channels for connecting VPCs to VPC endpoint services.<p id="en-us_topic_0131645194__p449841373119"><a name="en-us_topic_0131645194__li63919166256"></a><a name="li63919166256"></a>For more information, see <a href="vpcep_01_0006.html">VPC Endpoints</a>.</p>
+</li></ul>
+<div class="fignone" id="en-us_topic_0131645194__fig9414746114011"><a name="en-us_topic_0131645194__fig9414746114011"></a><a name="fig9414746114011"></a><span class="figcap"><b>Figure 1 </b>How VPCEP works</span><br><span><img id="en-us_topic_0131645194__image104149469405" src="en-us_image_0298978917.png"></span></div>
+<p id="en-us_topic_0131645194__p199061334364"><a href="#en-us_topic_0131645194__fig9414746114011">Figure 1</a> shows the process of establishing channels for network communications between:</p>
+<ul id="en-us_topic_0131645194__ul5236181118409"><li id="en-us_topic_0131645194__li6236101164013">VPC 1 (ECS 1) and VPC 3 (ECS 3)</li><li id="en-us_topic_0131645194__li117761746154117">VPC 2 (ECS 2) and cloud services such as OBS and DNS</li><li id="en-us_topic_0131645194__li179653234426">IDC and VPC 2 over VPN or Direct Connect to finally access a cloud service such as OBS or DNS</li></ul>
+<p id="en-us_topic_0131645194__p4903174483116">For more information, see <a href="en-us_topic_0131645196.html">Application Scenarios</a>.</p>
+</div>
+<div class="section" id="en-us_topic_0131645194__section15116958232"><h4 class="sectiontitle">Accessing VPCEP</h4><p id="en-us_topic_0131645194__a13308d6989454b1fa6e456d26ff19269">A web-based console and HTTPS APIs are provided for you to access VPCEP.</p>
+<ul id="en-us_topic_0131645194__u136352496ad94a4a9808a015dcc812c8"><li id="en-us_topic_0131645194__li1086112465376">Web-based console<p id="en-us_topic_0131645194__p17396218398"><a name="en-us_topic_0131645194__li1086112465376"></a><a name="li1086112465376"></a>You can access VPCEP using the web-based console.</p>
+<p id="en-us_topic_0131645194__p686154683713">Upon a quick configuration on the management console, you can start using VPCEP.</p>
+</li><li id="en-us_topic_0131645194__l00238e27b8c14cb08fc6c87ef53ffa3c">APIs<p id="en-us_topic_0131645194__p149121857153715"><a name="en-us_topic_0131645194__l00238e27b8c14cb08fc6c87ef53ffa3c"></a><a name="l00238e27b8c14cb08fc6c87ef53ffa3c"></a>Access VPCEP by calling APIs if you need to integrate VPCEP into a third-party system for secondary development. For details, see <a href="https://docs.otc.t-systems.com/en-us/api/vpcep/vpcep_05_0000.html" target="_blank" rel="noopener noreferrer">VPC Endpoint API Reference</a>.</p>
+</li></ul>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="en-us_topic_0131645193.html">Service Overview</a></div>
+</div>
+</div>
+

docs/vpcep/umn/en-us_topic_0131645196.html

@@ -0,0 +1,37 @@
+<a name="en-us_topic_0131645196"></a><a name="en-us_topic_0131645196"></a>
+
+<h1 class="topictitle1">Application Scenarios</h1>
+<div id="body11469044"><p id="en-us_topic_0131645196__p179211553206">VPCEP establishes a secure and private channel between a VPC endpoint (cloud resources in a VPC) and a VPC endpoint service in the same region.</p>
+<p id="en-us_topic_0131645196__p1299113612224">You can use VPCEP in different scenarios.</p>
+<div class="section" id="en-us_topic_0131645196__section1148381122520"><h4 class="sectiontitle">High-Speed Access to Cloud Services</h4><p id="en-us_topic_0131645196__p11929135652612">After you connect an IDC to a VPC using VPN or Direct Connect, you can use a VPC endpoint to connect the VPC to a cloud service or one of your private services, so that the IDC can access the cloud service or private service.</p>
+<div class="fignone" id="en-us_topic_0131645196__fig08596281506"><a name="en-us_topic_0131645196__fig08596281506"></a><a name="fig08596281506"></a><span class="figcap"><b>Figure 1 </b>Access to cloud services</span><br><span><img id="en-us_topic_0131645196__image1558602415117" src="en-us_image_0298368446.png"></span></div>
+<p id="en-us_topic_0131645196__p1932905713112"><a href="#en-us_topic_0131645196__fig08596281506">Figure 1</a> shows the process of connecting an IDC to VPC 1 over VPN or Direct Connect, for the purpose of:</p>
+<ul id="en-us_topic_0131645196__ul123421452628"><li id="en-us_topic_0131645196__li43427521827">Accessing OBS or DNS using VPC endpoint 1</li><li id="en-us_topic_0131645196__li136651928035">Accessing ECS 1 in the same VPC using VPC endpoint 2</li><li id="en-us_topic_0131645196__li8607249537">Accessing ECS 2 in VPC 2 using VPC endpoint 3</li></ul>
+<p id="en-us_topic_0131645196__p116191162910">For cloud migration, VPCEP has the following advantages:</p>
+<ul id="en-us_topic_0131645196__ul114881591275"><li id="en-us_topic_0131645196__li74891059675">Simple and efficient<p id="en-us_topic_0131645196__p17528192810018"><a name="en-us_topic_0131645196__li74891059675"></a><a name="li74891059675"></a>The IDC is directly connected to the VPC endpoint service over a private network, reducing access latency and improving efficiency.</p>
+</li></ul>
+<ul id="en-us_topic_0131645196__ul115022115819"><li id="en-us_topic_0131645196__li55022011182">Low cost<p id="en-us_topic_0131645196__p65286281018"><a name="en-us_topic_0131645196__li55022011182"></a><a name="li55022011182"></a>With VPCEP, your IDC can access cloud resources over a private network, reducing your costs on public resources.</p>
+</li></ul>
+<p id="en-us_topic_0131645196__p12686103410615">For details, see <a href="vpcep_02_0300.html">Configuring a VPC Endpoint for Accessing OBS Using the OBS Private Address</a>.</p>
+</div>
+<div class="section" id="en-us_topic_0131645196__section19575102912512"><h4 class="sectiontitle">Cross-VPC Connection</h4><p id="en-us_topic_0131645196__p1152512319139">With VPCEP, resources in two different VPCs can communicate with each other despite of logic isolation between them as long as the two VPCs are in the same region.</p>
+<div class="note" id="en-us_topic_0131645196__note126424320396"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="en-us_topic_0131645196__p1784719285410">VPC endpoints and VPC peering connections are different in security, communications methods, route configurations, and more.</p>
+<p id="en-us_topic_0131645196__p3329436134113">For details, see <a href="vpcep_04_0004.html">What Are the Differences Between VPC Endpoints and VPC Peering Connections?</a>.</p>
+</div></div>
+<div class="fignone" id="en-us_topic_0131645196__fig16677101915123"><a name="en-us_topic_0131645196__fig16677101915123"></a><a name="fig16677101915123"></a><span class="figcap"><b>Figure 2 </b>Cross-VPC connection</span><br><span><img id="en-us_topic_0131645196__image121881216256" src="en-us_image_0298376151.png"></span></div>
+<p id="en-us_topic_0131645196__p1637113124133">An ECS in VPC 1 uses a VPC endpoint to access a load balancer in VPC 2 over a private network. <a href="#en-us_topic_0131645196__fig16677101915123">Figure 2</a> shows the connection process.</p>
+<p id="en-us_topic_0131645196__p940316244273">VPCEP has the following advantages:</p>
+<ul id="en-us_topic_0131645196__ul62297110195"><li id="en-us_topic_0131645196__li1022901114195">High performance<p id="en-us_topic_0131645196__p1346918815194"><a name="en-us_topic_0131645196__li1022901114195"></a><a name="li1022901114195"></a>Each gateway supports up to 1 million concurrent connections.</p>
+</li></ul>
+<ul id="en-us_topic_0131645196__ul1168165191"><li id="en-us_topic_0131645196__li16716101919">Simplified operations<p id="en-us_topic_0131645196__p346918819195"><a name="en-us_topic_0131645196__li16716101919"></a><a name="li16716101919"></a>VPCEP resources can be created within seconds and take effect quickly.</p>
+</li></ul>
+<p id="en-us_topic_0131645196__p230552892914">For details, see the following sections:</p>
+<ul id="en-us_topic_0131645196__ul5409754112919"><li id="en-us_topic_0131645196__vpcep_01_0007_li18409195412299"><a href="vpcep_02_0200.html">Configuring a VPC Endpoint for Communications Across VPCs of the Same Domain</a></li><li id="en-us_topic_0131645196__vpcep_01_0007_li1176274153011"><a href="vpcep_02_0203.html">Configuring a VPC Endpoint for Communications Across VPCs of Different Domains</a></li></ul>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="en-us_topic_0131645193.html">Service Overview</a></div>
+</div>
+</div>
+

docs/vpcep/umn/en-us_topic_0138838187.html

@@ -0,0 +1,14 @@
+<a name="en-us_topic_0138838187"></a><a name="en-us_topic_0138838187"></a>
+
+<h1 class="topictitle1">What Should I Do If the VPC Endpoint I Purchased Cannot Connect to a VPC Endpoint Service?</h1>
+<div id="body1541226769221"><ol id="en-us_topic_0138838187__ol1786962215334"><li id="en-us_topic_0138838187__li128697226337">Confirm that the security group of the ECS NIC is correctly configured.<ul id="en-us_topic_0138838187__ul1379211221286"><li id="en-us_topic_0138838187__li37926228819">On the ECS details page, view the security group details.</li><li id="en-us_topic_0138838187__li1269672418814">Check whether the security group permits IP addresses in the 198.19.128.0/17 CIDR block in the inbound direction. If it does not, add inbound rules for this CIDR block based on service requirements.</li></ul>
+</li><li id="en-us_topic_0138838187__li88691022103310">Confirm that the <span id="en-us_topic_0138838187__text6646386211"></span><span id="en-us_topic_0138838187__text112831312926">firewall</span> of the subnet used by the ECS NIC does not block traffic.<p id="en-us_topic_0138838187__p17297373370">If you can configure the <span id="en-us_topic_0138838187__text1556312617210"></span><span id="en-us_topic_0138838187__text9563152613212">firewall</span> on the left part of the VPC console, confirm that the subnet of the associated VPC endpoint allows traffic to pass through.</p>
+<p id="en-us_topic_0138838187__p1444702163118">For details about how to disable the firewall, see <a href="https://docs.otc.t-systems.com/en-us/usermanual/vpc/vpc_acl_0011.html" target="_blank" rel="noopener noreferrer">Enabling or Disabling a Firewall</a> in the <em id="en-us_topic_0138838187__i39651658020">Virtual Private Cloud User Guide</em>.</p>
+</li></ol>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpcep_04_0000.html">FAQ</a></div>
+</div>
+</div>
+

docs/vpcep/umn/en-us_topic_0154804561.html

@@ -0,0 +1,24 @@
+<a name="en-us_topic_0154804561"></a><a name="en-us_topic_0154804561"></a>
+
+<h1 class="topictitle1">What Is a Quota?</h1>
+<div id="body8662426"><div class="section" id="en-us_topic_0154804561__en-us_topic_0118499026_section6321311611"><h4 class="sectiontitle">What Is a Quota?</h4><p id="en-us_topic_0154804561__en-us_topic_0118499026_p2065013487310">Quotas are enforced for service resources on the platform to prevent unforeseen spikes in resource usage. Quotas can limit the number and capacity of resources available to users, for example, how many cloud resources you can create.</p>
+<p id="en-us_topic_0154804561__en-us_topic_0118499026_p16501486319">You can also increase the quota if the existing quota cannot meet your service requirements.</p>
+</div>
+<div class="section" id="en-us_topic_0154804561__en-us_topic_0118499026_section07760615438"><h4 class="sectiontitle">How Do I View My Quotas?</h4><ol id="en-us_topic_0154804561__en-us_topic_0040259342_ol1222775692215"><li id="en-us_topic_0154804561__en-us_topic_0040259342_li5648642910048">Log in to the management console.</li><li id="en-us_topic_0154804561__en-us_topic_0040259342_li464234814566">Click <span><img id="en-us_topic_0154804561__en-us_topic_0040259342_en-us_topic_0014250631_en-us_topic_0014250631_image1733511156361" src="en-us_image_0275513364.png"></span> in the upper left corner and select the desired region and project.</li><li id="en-us_topic_0154804561__en-us_topic_0040259342_li3861581410048">In the upper right corner of the page, click <span><img id="en-us_topic_0154804561__en-us_topic_0040259342_image99377514309" src="en-us_image_0152727234.png"></span>.<p id="en-us_topic_0154804561__en-us_topic_0040259342_p1748884433119">The <strong id="en-us_topic_0154804561__en-us_topic_0040259342_b695801964614">Service Quota</strong> page is displayed.</p>
+</li><li id="en-us_topic_0154804561__en-us_topic_0040259342_li1579070183211">View the used and total quota of each type of resources on the displayed page.<p id="en-us_topic_0154804561__en-us_topic_0040259342_p97891720193417"><a name="en-us_topic_0154804561__en-us_topic_0040259342_li1579070183211"></a><a name="en-us_topic_0040259342_li1579070183211"></a>If a quota cannot meet service requirements, apply for a higher quota.</p>
+</li></ol>
+</div>
+<div class="section" id="en-us_topic_0154804561__en-us_topic_0118499026_section457218466261"><h4 class="sectiontitle">How Do I Apply for a Higher Quota?</h4><p id="en-us_topic_0154804561__en-us_topic_0040259342_p133802054172617">The system does not support online quota adjustment. If you need to adjust a quota, call the hotline or send an email to the customer service mailbox. Customer service personnel will timely process your request for quota adjustment and inform you of the real-time progress by making a call or sending an email.</p>
+<p id="en-us_topic_0154804561__en-us_topic_0040259342_p13745144852611">Before dialing the hotline number or sending an email, make sure that the following information has been obtained:</p>
+<ul id="en-us_topic_0154804561__en-us_topic_0040259342_ul37351029162712"><li id="en-us_topic_0154804561__en-us_topic_0040259342_li12735132932714">Domain name, project name, and project ID, which can be obtained by performing the following operations:<p id="en-us_topic_0154804561__en-us_topic_0040259342_p1973542918275"><a name="en-us_topic_0154804561__en-us_topic_0040259342_li12735132932714"></a><a name="en-us_topic_0040259342_li12735132932714"></a>Log in to the management console using the cloud account, click the username in the upper right corner, select <strong id="en-us_topic_0154804561__en-us_topic_0040259342_b171181053141511">My Credentials</strong> from the drop-down list, and obtain the domain name, project name, and project ID on the <strong id="en-us_topic_0154804561__en-us_topic_0040259342_b1956165671712">My Credentials</strong> page.</p>
+</li><li id="en-us_topic_0154804561__en-us_topic_0040259342_li13735182917270">Quota information, which includes:<ul id="en-us_topic_0154804561__en-us_topic_0040259342_ul6735102912273"><li id="en-us_topic_0154804561__en-us_topic_0040259342_li1073516296277">Service name</li><li id="en-us_topic_0154804561__en-us_topic_0040259342_li6735152972712">Quota type</li><li id="en-us_topic_0154804561__en-us_topic_0040259342_li773592992718">Required quota</li></ul>
+</li></ul>
+<p id="en-us_topic_0154804561__en-us_topic_0040259342_p126761744182712"><a href="https://docs.otc.t-systems.com/en-us/public/learnmore.html" target="_blank" rel="noopener noreferrer">Learn how to obtain the service hotline and email address.</a></p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="vpcep_04_0000.html">FAQ</a></div>
+</div>
+</div>
+