Performance et fiabilité
Réseau de diffusion de contenu (CDN) DNS Routage intelligent Argo Équilibrage de charge Optimisations Web Réseau chinois
Diffusion et diffusion vidéo
Cloudflare Stream Distribution de flux
Sécurité avancée
Protection contre les attaques DDoS WAF Bot Management Rate Limiting SSL/TLS DNSSEC Cloudflare Access Cloudflare Spectrum Tunnel Argo
Informations Approfondies
Analyse Cloudflare Logs
Cloudflare pour les développeurs
Cloudflare Workers Cloudflare Workers KV Kit de développement mobile
Enregistrement de nom de domaine
Cloudflare Registrar
Cloudflare Marketplace
Cloudflare Apps
Cloudflare pour tous
1.1.1.1
Performances
Accélérer les applications Internet Accélérer les expériences mobiles Garantir la disponibilité des applications
Sécurité
Atténuer les attaques DDoS Empêcher les violations de données client
Industries
SaaS Éditeurs Secteur public
Partenariats
Programme de partenariat Fournisseur d'hébergement Recommandation Revendeur / MSP OEM / Technologie Programme de partenariat avec les travailleurs Portail Peering Alliance de bande passante
Intégrations
Cloud IBM Wordpress Google Cloud Magento Acquia Rackspace Microsoft Azure Kubernetes Moteur WP
Développer
Guide des API Hub des développeurs Fonds de développement Documentation
Explorer
Études de cas Cloudflare en Chine Carte réseau Webinaires Mises à jour du produit Livres blancs RGPD
Apprendre
Centre d'apprentissage DDoS Centre d'apprentissage CDN Centre d'apprentissage DNS Centre d'apprentissage sécurité Centre d'apprentissage sans serveur Centre d'apprentissage SSL
Connecter
Blog Contacter le service commercial Communauté Support
Contacter

What Is a Virtual Private Cloud (VPC)?

A virtual private cloud (VPC) is a private cloud hosted within a public cloud.

Share facebook icon linkedin icon twitter icon email icon
What Is the Cloud?
What Is Multicloud?
What Is Hybrid Cloud?
What Is a Cloud Firewall?
Glossary

Virtual Private Cloud

Objectifs d’apprentissage

Après avoir lu cet article, vous pourrez :

  • Define virtual private cloud (VPC)
  • Learn how a VPC works
  • Understand the advantages of using a VPC

Contenu associé

What is a Private Cloud?

What is a Public Cloud?

Hybrid Cloud Architecture

Multicloud vs Hybrid Cloud

Cloud Migration

What is a virtual private cloud (VPC)?

virtual private cloud

A virtual private cloud (VPC) is a secure, isolated private cloud hosted within a public cloud. VPC customers can run code, store data, host websites, and do anything else they could do in an ordinary private cloud, but the private cloud is hosted remotely by a public cloud provider. (Not all private clouds are hosted in this fashion.) VPCs combine the scalability and convenience of public cloud computing with the data isolation of private cloud computing.

Imagine a public cloud as a crowded restaurant, and a virtual private cloud as a reserved table in that crowded restaurant. Even though the restaurant is full of people, a table with a "Reserved" sign on it can only be accessed by the party who made the reservation. Similarly, a public cloud is crowded with various cloud customers accessing computing resources – but a VPC reserves some of those resources for use by only one customer.

What is a public cloud? What is a private cloud?

A public cloud is shared cloud infrastructure. Multiple customers of the cloud vendor access that same infrastructure, although their data is not shared – just like every person in a restaurant orders from the same kitchen, but they get different dishes. Public cloud service providers include AWS, Google Cloud Platform, and Microsoft Azure, among others.

The technical term for multiple separate customers accessing the same cloud infrastructure is "multitenancy" (see What Is Multitenancy? to learn more).

A private cloud, however, is single-tenant. A private cloud is a cloud service that is exclusively offered to one organization. A virtual private cloud (VPC) is a private cloud within a public cloud; no one else shares the VPC with the VPC customer.

How is a VPC isolated within a public cloud?

A VPC isolates computing resources from the other computing resources available in the public cloud. The key technologies for isolating a VPC from the rest of the public cloud are:

Subnets: A subnet is a range of IP addresses within a network that are reserved so that they're not available to everyone within the network, essentially dividing part of the network for private use. In a VPC these are private IP addresses that are not accessible via the public Internet, unlike typical IP addresses, which are publicly visible.

VLAN: A LAN is a local area network, or a group of computing devices that are all connected to each other without the use of the Internet. A VLAN is a virtual LAN. Like a subnet, a VLAN is a way of partitioning a network, but the partitioning takes place at a different layer within the OSI model (layer 2 instead of layer 3).

VPN: A virtual private network (VPN) uses encryption to create a private network over the top of a public network. VPN traffic passes through publicly shared Internet infrastructure – routers, switches, etc. – but the traffic is scrambled and not visible to anyone.

A VPC will have a dedicated subnet and VLAN that are only accessible by the VPC customer. This prevents anyone else within the public cloud from accessing computing resources within the VPC – effectively placing the "Reserved" sign on the table. The VPC customer connects via VPN to their VPC, so that data passing into and out of the VPC is not visible to other public cloud users.

Some VPC providers offer additional customization with:

  • Network Address Translation (NAT): This feature matches private IP addresses to a public IP address for connections with the public Internet. With NAT, a public-facing website or application could run in a VPC.
  • BGP route configuration: Some providers allow customers to customize BGP routing tables for connecting their VPC with their other infrastructure. (Learn how BGP works.)

What are the advantages of using a VPC instead of a private cloud?

Scalability: Because a VPC is hosted by a public cloud provider, customers can add more computing resources on demand.

Easy hybrid cloud deployment: It's relatively simple to connect a VPC to a public cloud or to on-premises infrastructure via the VPN. (Learn about hybrid clouds and their advantages.)

Better performance: Cloud-hosted websites and applications typically perform better than those hosted on local on-premises servers.

Better security: The public cloud providers that offer VPCs often have more resources for updating and maintaining the infrastructure, especially for small and mid-market businesses. For large enterprises or any companies that face extremely tight data security regulations, this is less of an advantage.

How does Cloudflare support virtual private clouds?

Cloudflare makes it easy to use any cloud service by providing a single plane of control for performance, security, and reliability services, including bot management, DNS, SSL, and DDoS protection (even for layer 3 traffic). The full Cloudflare stack sits in front of any cloud deployment and accelerates good traffic while blocking bad traffic.

Pour vous garantir une expérience optimale sur notre site Web, il se peut que nous utilisions des cookies, comme décrit ici.
En cliquant sur J’accepte, en fermant cette bannière ou en continuant à naviguer sur notre site Web, vous acceptez l’utilisation de ces cookies.