: Create a VPC and Configure Networks
Focus
Focus

Create a VPC and Configure Networks

Table of Contents

Create a VPC and Configure Networks

Learn how to create a VPC, VSwitches, security groups, and security group rules.
Use the Alibaba Cloud console to create a VPC, VSwitches, security groups, and security group rules.
  1. Open the VPC console and select your region from the menu. It must be the same region you used when you created the custom image for the VM-Series firewall.
  2. In the Alibaba Cloud Console home, select
    Products
    , and from the Networking category, select
    Virtual Private Cloud
    .
  3. Create a VPC
    .
    In this step you create a VPC and Management, Untrust, and Trust VSwitches. The ECS console creates a VPC and a switch in the same form.
    1. Create the VPC.
      Specify the VPC name, an IPv4 CIDR Block, and a description.
    2. Create the Management VSwitch.
      • Name the VSwitch
        Management
        .
      • Choose the Zone, specify an IPv4 CIDR Block, and specify a description.
      • At the bottom, click
        Add
        to add another vSwitch.
    3. Create the Untrust VSwitch in the same manner.
    4. Create the Trust VSwitch.
    5. Click
      OK
      .
  4. Create security groups and security group rules.
    • In the Alibaba Cloud Console home, select
      Elastic Compute Service
      , and from the
      Networks and Security
      menu, select
      Security Groups
      .
    • On the upper right, click
      Create Security Group
    1. Create the management security group.
      Refer to Create a security group to fill out this form.
      Property
      Value
      Template
      Customize
      Security Group Name
      Management
      Network Type
      VPC
      VPC
      Select the VPC you created earlier.
      • Complete the form and click
        OK
        .
        ECS console prompts you to create rules for this security group.
      • Click
        Create Rules Now
        .
        This procedure describes some basic security group rules. You can create other rules to enforce your network security requirements.
        • Select the Ingress tab, and select
          Add Security Group Rule
          .
        • Create an ingress rule to allow HTTPS in this security group. For example:
      • Create an ingress rule to allow SSH on the management interface.
        • Choose the SSH (22) protocol type and name the rule accordingly.
        • Click
          OK
          and return to the Security Groups list.
    2. Create the Untrust security group.
      When prompted, create a rule for the untrust security group.
    3. Create the Trust security group.
      When prompted, create the following rule for the trust security group.

Recommended For You