The Virtual Private Cloud (VPC) is a private, isolated part of Citrix CloudPlatform. A VPC can have its own virtual network topology that resembles a traditional physical network. You can launch VMs in the virtual network that can have private addresses in the range of your choice. You can define network tiers within your VPC network range, which in turn enables you to group similar kinds of instances based on IP address range.
A VPC comprises the following network components:
In the VPC tab, you can see the list of VPCs. In the Details pane, you see the following details:
VPC: Name of the VPC.
CIDR: CIDR range for all the tiers within the VPC.
Zone: Zone where the VPC is available.
Tiers tab: Details of the tiers within the VPC.
Instances tab: Details of the instances deployed to the tiers, filtered by tiers.
IP Address tab: IP addresses associated with the VPC.
VPN Connections tab: List of VPN connections between the VPC and VPN Customer Gateways.
Private Gateways tab: List of private gateways added to the VPC (Private gateways are added by the root administrator and this information is read only).
To add a VPC, follow these steps:
The following section describes the menu items of the gear wheel icon. The menu shows four actions that you can perform. Select a VPC. Move your cursor over the gear wheel icon. You see a list of actions that you can perform for the selected VPC.
Editing a VPC: Click Edit VPC to modify the name and description of the VPC.
Deleting a VPC: Click Delete VPC and confirm to delete a VPC.
Restarting a VPC: Click Restart VPC to restart the VPC.
Adding a Tier: Tiers are distinct locations within a VPC that act as isolated networks, which do not have access to other tiers by default. Tiers are set up on different VLANs that can communicate with each other by using a virtual router. Tiers provide inexpensive, low latency network connectivity to other tiers within the VPC.
Acquiring an IP: When you acquire an IP address, all IP addresses are allocated to VPC, not to the guest networks within the VPC. Click Acquire IP and select the check box to accept the terms and conditions. Click Confirm.
Adding a VPN Connection:
A VPN connection helps you establish a secure connection from an enterprise datacenter to the cloud infrastructure.
To set up a site-to-site VPN connection, you have to first create the VPC, a VPN Customer Gateway, and a VPN connection from the VPC VPN gateway to the Customer VPN gateway (a VPN gateway for the VPC is created automatically, if it does not already exist). If you have not created the VPN Customer Gateway, you are prompted to create it from the VPC Customer Gateway page. Currently, a single VPC can connect to multiple VPN Customer Gateways.
To create a VPN Connection, follow the steps :
Resetting a VPN Connection: Select the VPN Connection from the VPN Connection tab and click Reset.
Deleting a VPN Connection: Select the VPN Connection from the VPN Connection tab and click Delete. Click Confirm.
Define Access Control List (ACL) on the VPC virtual router to control incoming (ingress) and outgoing (egress) traffic between the VPC tiers, and the tiers and Internet. By default, all incoming and outgoing traffic to the guest networks is blocked. To open the ports, you must create a new network ACL.
Note: The network ACLs can be created for the tiers only if the NetworkACL service is supported.
You can add or delete an ACL list in a VPC. This feature is supported from Citrix CloudPlatform 4.2.x onwards. The ACL list contains the rules as items. At the time of VPC tier creation, you can choose an ACL from already created ACL list. You can add/remove more rules to/from ACL list and corresponding rules gets applied to networks.
Adding an ACL to VPC
Note: You can also add an ACL by clicking on the Add Network ACL List link in the Network ACL list tab.
Network ACL List tab
Click on this tab to view and manage the ACL and ACL rules.
Deleting an ACL from VPC: For a specific ACL in the Network ACL List tab, click Delete ACL List option.
Adding an ACL rule in the ACL: For a specific ACL rule in the Network ACL List tab, specify the required details and click the icon that appears as a plus sign).
Deleting an ACL rule in the ACL: For a specific ACL rule in the Network ACL List tab, click the icon that appears as a trash symbol).
Note: For a default ACL, you cannot delete the ACL and the ACL rules associated with it.
The VPCs tab lists all VPCs. As a master user/power user/normal user, you can find a particular VPS/VPCs by using the search and filter options. The option to search and filter is visible in the CPBM UI only if the CCP Connector version supports search and filter operations for VPCs.