Virtual Private Cloud (VPC)

A Virtual Private Cloud (VPC) is a virtual network, not a virtual server or private compute environment.

In CloudRaya, a VPC defines how your resources communicate by controlling IP ranges, subnets, and traffic rules. All Virtual Machines (VMs) run inside a VPC, whether it is created automatically or configured manually.

What Is a VPC in CloudRaya?

A VPC is an isolated network space within a Cloud Zone that provides:

A private IP address range (CIDR)
One or more subnets
Traffic control using Access Control Lists (ACL)
A network boundary for Virtual Machines

A VPC does not provide compute resources by itself.

It defines the network environment where VMs operate.

How VPC Works with Virtual Machines

Virtual Machines do not exist independently on the network. Each VM in CloudRaya:

Is deployed inside a VPC
Receives a private IP from a subnet
Can optionally have a public IP for internet access
Uses ACL rules to control inbound and outbound traffic

📄 See: VM Networking Basics for VM-level networking behavior.

Default VPC Behavior

To simplify onboarding, CloudRaya automatically manages networking for you.

By default:

A default VPC is created automatically if none exists
A default subnet is assigned
A default ACL is applied with common allow rules (SSH, RDP, HTTP, HTTPS)
Each VM receives:
- One private IP
- An optional public IP (if selected)

This allows you to launch VMs without configuring any networking, while still benefiting from network isolation.

CIDR and Subnet Basics

When creating a custom VPC, you define how IP addresses are structured.

VPC CIDR (Network Size)

Defines the main private IP range for the VPC
Selected using CIDR notation (for example: /19, /20)
Scoped to a single Cloud Zone

Subnets

Subnets are smaller IP ranges inside a VPC
Each subnet has its own CIDR (for example: /24, /25)
Virtual Machines are deployed into a specific subnet
Multiple VMs can share the same subnet

This structure allows you to separate workloads logically within the same VPC.

💡 Note

You do not need to calculate IP ranges manually.
CloudRaya automatically generates valid IP ranges based on the selected CIDR size.

Private IP Address Behavior

Private IP addresses are:

Automatically assigned to VMs from the selected subnet
Used for internal communication within the VPC
Persistent across VM reboots

Important notes:

Private IPs are not managed as standalone resources
They are visible in VM Detail → IP Settings
Private IPs exist because of the VPC and subnet configuration

📄 See: VM Networking Basics

Creating and Managing VPCs

You can create a VPC directly from the CloudRaya Control Panel.

The process guides you through selecting a network size, defining subnets, and configuring access rules.

📄 See: Creating and Managing VPCs

Security Model in a VPC

Traffic inside a VPC is controlled using Access Control Lists (ACL).

ACLs define which ports and protocols are allowed or denied
Rules are applied at the subnet level
All VMs in the same subnet inherit the same ACL rules

📄 See: Access Control List (ACL)

VPC and VPN Connectivity

A VPC can be securely connected to external networks using VPN.

VPN connections terminate at the VPC router
This enables:
- On-premise to cloud connectivity
- Secure remote access to private resources
Each VPN connection is associated with a specific VPC

📄 See: VPN

📄 Creating and Managing VPCs

📄 Access Control List (ACL)

📄 VM Networking Basics

📄 VPN

Virtual Private Cloud (VPC)

On this page