Skip to main content
Cloud platform networks
Last update:

Cloud platform networks

Private networkSegments of a network that are isolated from each other at the L2 layer
Private subnetA range of private IP addresses limited by the size of the CIDR. Different IP addresses (subnets) can be assigned to the same private network. Subnets are used to allocate IP addresses when creating new ports
PortA virtual NIC to which a MAC address+IP address mapping is assigned. The ports are for connecting to the cloud server. One of the ports in a subnet can be connected to a router
Cloud router

Routes traffic between different subnets and the Internet. All subnets connected to the same router can communicate with each other using its IP address as the default route. All subnets connected to the same router can access the Internet using the router's common external IP address. The router performs the NAT function:

  • access from the private network to the Internet (outbound traffic);
  • forward packets for the public IP address to the server to which it is assigned
Shared external IP address on the routerIP address that is assigned to a router port when it is connected to an external network
Public IP addressStatic public IP address that can be associated with the private address of a server or load balancer if it needs to be accessed from the Internet. External traffic goes through the public IP address, is processed by the cloud router (which acts as a 1:1 NAT) and passed to the associated private address. The address is a floating IP because it can be quickly switched between cloud servers. It will not change, nor will it be removed from the panel — if necessary, you can remove it manually
Public subnetA range of public IP addresses limited by the prefix (mask) size. IP addresses from this subnet are not handled by the router, but connect directly to the cloud server

Throughput

Outgoing trafficIncoming traffic
Cloud servers in private subnets, traffic within private network3 Gbps

(1 Gbps — in pool ru-1)		Not limited (depends on cloud server configuration and network conditions)
Cloud servers in private subnets, Internet traffic (public IP addresses)3 Gbit/s

(1 Gbit/s — in pool ru-1)		5 Gbit/s
Cloud servers in public subnets3 Gbit/s

(1 Gbit/s — in pool ru-1)		Not limited (depends on cloud server configuration and network conditions)
Internet traffic via cloud routers5 Gbit/s5 Gbit/s

The list of regions, availability zones and pools can be viewed in the [Selectel Infrastructure] table(/control-panel-actions/infrastructure.mdx).

Bandwidth for cloud servers on private networks can be increased to 10 Gbps — create a ticket.

The speed on a port may drop dramatically, for example, to 0.1 Gbps if the associated IP address is blocked by Selectel security. To increase the speed, create a ticket.

Examples of networks

Internet access

Cloud servers can be connected to a private network without Internet access and can be configured to access the Internet via routers and public IP addresses.

Private network and bastion host

A Bastion host is a host on a network that is a gateway or proxy for all other servers. Such a host is available at an external address and communicates with the rest of the servers over a private network.

Public network

All servers on the public subnet have access to the Internet. Servers communicate with each other through public interfaces.

Load balancer and bastion host

A load balancer can be added to the bastion-host scheme. The Bastion host is used to access the private network and manage the infrastructure, while the balancer performs proxying of requests.

Selectel Global Router

You can use Selectel global router (formerly L3 VPNs) to organize network connectivity between:

  • cloud servers in different pools — including different projects and accounts;
  • or cloud servers and other services — such as dedicated servers.

You can only add, rename or delete networks and subnets in Control Panel under Network ServicesSelectel Global Router.

Global router networks that belong to the cloud platform can be viewed under Cloud PlatformNetworks — they have the tag Global Router.

Cloud servers from the global router network can be connected to the Internet via a public IP address.