Classic Network or VPC, what is the developer's choice?

Classic Network or VPC, what is the developer's choice?

These two days, the discussion on the classic network of public cloud (base network) and private network ARM hosting(private network VPC-Tencent Cloud) has attracted great attention in the technical circle. The cause of the incident was that a developer restricted the database access to the Intranet, but due to the security group Settings, Ali Cloud's neighbor users were hacked and implicated in their own business. To this end, the developer @Left ear Mouse published the "Science Popularization on public cloud Network", pointing out that Ali Cloud default Intranet is a classic network, complex management and configuration errors are high probability events, calling on everyone to adopt the VPC solution to prevent the above accidents from happening again.

The circle of rational discussion is always a good thing, Cloud platfrom provider as opposed to "talking about safe change." This "classic network security debate" makes the VPC solution quickly understood by the majority of developers, and I believe that it will promote the public cloud service providers to accelerate the release of relevant network technologies, then what is the VPC? Is it necessary to migrate from a traditional network to a VPC next? Here's a scientific fact:

1. What is a VPC?

A Virtual Private Cloud (VPC) is a customized logically virtual private cloudisolated network space on a public cloud, similar to a traditional network that users run in a data center. A VPC hosts service resources, such as cloud hosts, load balancers, and cloud databases, on a private cloud. Users can customize network segments, IP addresses, and routing policies to implement multi-layer security protection through security groups and network ACLs. At the same time, the VPC can be connected to the user's data center through VPN or private line, and the hybrid cloud can be flexibly deployed.

2. VPC is different from classic network (basic information network)

Classic Network: All users on a public cloud share a common network resource pool, with no logical isolation between users. Intranet IP addresses of users are distributed uniformly by the system. The same Intranet IP address cannot be distributed to different users.

VPC: Creates a logically isolated virtual network space for users on a public cloud. In a VPC, users can freely define network segments, IP addresses, and routing policies. Security provides access control for network ACLs and security groups, enhancing flexibility and security.

Classic network VPC architecture:

In contrast, we can see that VPCS have obvious advantages. VPC users can freely define network segments, IP addresses, and routing policies. In terms of security, a VPC provides access control over network ACLs and security groups, making it more flexible and secure. It can be applied to scenarios that require high security isolation, host multi-layer web applications, and flexible hybrid cloud deployment, meeting the strong regulatory and data security requirements of financial, government, and enterprise industries.