Citrix Systems 4.2 Switch User Manual


 
About Virtual Private Clouds
205
Private Gateway: All the traffic to and from a private network routed to the VPC through the private
gateway. For more information, see Section 16.27.5, “Adding a Private Gateway to a VPC”.
VPN Gateway: The VPC side of a VPN connection.
Site-to-Site VPN Connection: A hardware-based VPN connection between your VPC and your
datacenter, home network, or co-location facility. For more information, see Section 16.24.4,
“Setting Up a Site-to-Site VPN Connection”.
Customer Gateway: The customer side of a VPN Connection. For more information, see
Section 16.24.4.1, “Creating and Updating a VPN Customer Gateway”.
NAT Instance: An instance that provides Port Address Translation for instances to access the
Internet via the public gateway. For more information, see Section 16.27.10, “Enabling or Disabling
Static NAT on a VPC”.
Network Architecture in a VPC
In a VPC, the following four basic options of network architectures are present:
VPC with a public gateway only
VPC with public and private gateways
VPC with public and private gateways and site-to-site VPN access
VPC with a private gateway only and site-to-site VPN access
Connectivity Options for a VPC
You can connect your VPC to:
The Internet through the public gateway.
The corporate datacenter by using a site-to-site VPN connection through the VPN gateway.
Both the Internet and your corporate datacenter by using both the public gateway and a VPN
gateway.
VPC Network Considerations
Consider the following before you create a VPC:
A VPC, by default, is created in the enabled state.
A VPC can be created in Advance zone only, and can't belong to more than one zone at a time.
The default number of VPCs an account can create is 20. However, you can change it by using the
max.account.vpcs global parameter, which controls the maximum number of VPCs an account is
allowed to create.
The default number of tiers an account can create within a VPC is 3. You can configure this number
by using the vpc.max.networks parameter.
Each tier should have an unique CIDR in the VPC. Ensure that the tier's CIDR should be within the
VPC CIDR range.
A tier belongs to only one VPC.