diff --git a/.wordlist.txt b/.wordlist.txt index bdf90a16b..d80ed712f 100644 --- a/.wordlist.txt +++ b/.wordlist.txt @@ -24,6 +24,7 @@ anycast AnyConnect Apache APCu +API APIs APM approver diff --git a/source/ecloud/vpc/index.rst b/source/ecloud/vpc/index.rst index 2a32bf810..b957bb7b4 100644 --- a/source/ecloud/vpc/index.rst +++ b/source/ecloud/vpc/index.rst @@ -40,7 +40,7 @@ control panel, APIs or command line tools. networks router loadbalancers - vpn + vpn/index firewall-policies network-policies cost-management/index @@ -49,4 +49,4 @@ control panel, APIs or command line tools. .. meta:: :title: eCloud VPC :description: Information relating to eCloud VPC, ANS's VMware-based public cloud platform - :keywords: ans, ecloud, cloud, public, VPC, virtual, server, hosting, vmware, infrastructure + :keywords: ans, ecloud, cloud, public, VPC, virtual, server, hosting, vmware, infrastructure, IaaS diff --git a/source/ecloud/vpc/vpc.md b/source/ecloud/vpc/vpc.md index b2e48ef8a..ccff37430 100644 --- a/source/ecloud/vpc/vpc.md +++ b/source/ecloud/vpc/vpc.md @@ -1,4 +1,4 @@ -# VPC +# VPCs An eCloud Virtual Private Cloud (VPC) is a logical collection of resources defined by its networking. ### How a VPC works diff --git a/source/ecloud/vpc/vpn/files/vpn-p2s-connect-1.png b/source/ecloud/vpc/vpn/files/vpn-p2s-connect-1.png new file mode 100644 index 000000000..73e251db9 Binary files /dev/null and b/source/ecloud/vpc/vpn/files/vpn-p2s-connect-1.png differ diff --git a/source/ecloud/vpc/vpn/files/vpn-p2s-connect-2.png b/source/ecloud/vpc/vpn/files/vpn-p2s-connect-2.png new file mode 100644 index 000000000..c9de136be Binary files /dev/null and b/source/ecloud/vpc/vpn/files/vpn-p2s-connect-2.png differ diff --git a/source/ecloud/vpc/vpn/files/vpn-p2s-deploy-1.png b/source/ecloud/vpc/vpn/files/vpn-p2s-deploy-1.png new file mode 100644 index 000000000..58a7f5faf Binary files /dev/null and b/source/ecloud/vpc/vpn/files/vpn-p2s-deploy-1.png differ diff --git a/source/ecloud/vpc/vpn/files/vpn-p2s-deploy-2.png b/source/ecloud/vpc/vpn/files/vpn-p2s-deploy-2.png new file mode 100644 index 000000000..9c8229752 Binary files /dev/null and b/source/ecloud/vpc/vpn/files/vpn-p2s-deploy-2.png differ diff --git a/source/ecloud/vpc/files/vpn-session.png b/source/ecloud/vpc/vpn/files/vpn-session.png similarity index 100% rename from source/ecloud/vpc/files/vpn-session.png rename to source/ecloud/vpc/vpn/files/vpn-session.png diff --git a/source/ecloud/vpc/files/vpn-vpnendpoint.png b/source/ecloud/vpc/vpn/files/vpn-vpnendpoint.png similarity index 100% rename from source/ecloud/vpc/files/vpn-vpnendpoint.png rename to source/ecloud/vpc/vpn/files/vpn-vpnendpoint.png diff --git a/source/ecloud/vpc/files/vpn-vpnservice.png b/source/ecloud/vpc/vpn/files/vpn-vpnservice.png similarity index 100% rename from source/ecloud/vpc/files/vpn-vpnservice.png rename to source/ecloud/vpc/vpn/files/vpn-vpnservice.png diff --git a/source/ecloud/vpc/files/vpn-vpnview.png b/source/ecloud/vpc/vpn/files/vpn-vpnview.png similarity index 100% rename from source/ecloud/vpc/files/vpn-vpnview.png rename to source/ecloud/vpc/vpn/files/vpn-vpnview.png diff --git a/source/ecloud/vpc/vpn/index.md b/source/ecloud/vpc/vpn/index.md new file mode 100644 index 000000000..50f054c17 --- /dev/null +++ b/source/ecloud/vpc/vpn/index.md @@ -0,0 +1,24 @@ +# VPNs + +In eCloud VPC you have the ability to set up both Site-to-Site and Point-to-Site VPNs (Virtual Private Networks). + +## Site-to-Site VPNs +Site-to-Site VPNs are used to connect two networks together over the internet, this is particularly useful for connecting +on-premises networks to your eCloud VPC networks. + +Learn how to [set up a Site-to-Site VPN](/docs/ecloud/vpc/vpn/site-to-site-vpn/). + + +## Point-to-Site VPNs +Point-to-Site VPNs are used to connect individual devices to a private network from a remote location. +This allows remote workers who need to access resources on your eCloud VPC networks to connect securely. + +Learn how to [set up a Point-to-Site VPN](/docs/ecloud/vpc/vpn/point-to-site-vpn/). + +```eval_rst + .. title:: eCloud VPC VPNs + .. meta:: + :title: eCloud VPC VPNs | ANS Documentation + :description: VPNs in eCloud VPC + :keywords: eCloud, eCloud VPC, ANS GLASS, VPC, Virtual Private Cloud, VPN +``` \ No newline at end of file diff --git a/source/ecloud/vpc/vpn/point-to-site-vpn.md b/source/ecloud/vpc/vpn/point-to-site-vpn.md new file mode 100644 index 000000000..c209d93cd --- /dev/null +++ b/source/ecloud/vpc/vpn/point-to-site-vpn.md @@ -0,0 +1,77 @@ +# Point to Site VPNs + +In eCloud VPC you have the ability to set up Point-to-Site VPNs (Virtual Private Networks), often known as +Remote-Access or Client-Access VPNs, allowing remote workers to connect to your eCloud VPC networks securely from their location. + + +### How it works + +In order to set up a Point-to-Site VPN, you will need to create a VPN Gateway and configure users for the VPN connection. + +The Gateway appliance will be deployed behind your chosen VPC router and will act as the endpoint for the VPN connection and +route traffic to the relevant networks. + +Available in 2 specifications to suit your use case, a small gateway for upto 50 users and a large gateway for upto 250 users. + +In order to help you manage costs, we have split the VPN Gateway billing into two parts, the Gateway itself and the user license packs. +User Licenses are available in packs of 25, with a minimum of 25 users required, and a maximum of 50 or 250 users depending on the Gateway specification you have chosen. + + +### How to create a VPN Gateway + +To create a VPN Gateway, navigate to the VPN Gateway section from the eCloud VPC menu and select `Create Gateway` + +You will be asked to select the VPC Router you wish to deploy the Gateway behind, the Gateway specification and the number of user licenses required. + +![Create VPN Gateway form](files/vpn-p2s-deploy-1.png) + +Your Gateway will then be deployed, this may take a few moments while we configure the networking, you can track +progress via the resource sync state, once complete you will be available to configure your users. + +![Create VPN Gateway confirmation](files/vpn-p2s-deploy-2.png) + + +### Managing your VPN Gateway + +You can manage your VPN Gateway from the VPN Gateway section of the GLASS portal, via the API, Terraform, or CLI tools. + +You can view the status of your Gateway, the access hostname for new connections and view the number of user licenses in use. + + +#### How to configure users + +To configure users for your VPN Gateway, navigate to the VPN Gateway section from the eCloud VPC menu and select the Gateway you wish to configure users for. + +Select the `Users` tab and then `Create User` to create a new user, or select a user to edit or delete. + + +#### Connecting to your VPN + +To connect to your VPN Gateway, you will need to install the Cisco AnyConnect client on your computer, or use a compatible alternative. + +If you do not have a VPN client installed, you can download the AnyConnect Client from your VPN Gateway by accessing +the Gateway in your browser using the hostname provided in the GLASS portal and logging in with your VPN username and password. + +![VPN Gateway Portal](files/vpn-p2s-connect-1.png) + +The VPN Gateway provides users with the installation package and setup instructions for Windows, Mac and Linux devices. + +![AnyConnect Client download](files/vpn-p2s-connect-2.png) + +Once installed, users can connect to your VPN Gateway using the credentials created in the GLASS portal. + + +### Deleting your VPN Gateway + +When you no longer require your VPN Gateway, you can delete it from the GLASS portal by selecting the Gateway and then `Delete Gateway`. + +Any active user sessions will be terminated and the Gateway will be removed from your VPC. + + +```eval_rst + .. title:: eCloud VPC Point-to-Site VPNs + .. meta:: + :title: eCloud VPC Point-to-Site VPNs | ANS Documentation + :description: Point-to-Site VPNs in eCloud VPC + :keywords: eCloud, eCloud VPC, ANS GLASS, VPC, Virtual Private Cloud, VPN, Point-to-Site, Remote Access VPN, VPN Gateway, Cisco, AnyConnect +``` \ No newline at end of file diff --git a/source/ecloud/vpc/vpn.md b/source/ecloud/vpc/vpn/site-to-site-vpn.md similarity index 95% rename from source/ecloud/vpc/vpn.md rename to source/ecloud/vpc/vpn/site-to-site-vpn.md index 10809d6f9..0139cc115 100644 --- a/source/ecloud/vpc/vpn.md +++ b/source/ecloud/vpc/vpn/site-to-site-vpn.md @@ -1,6 +1,7 @@ -# VPNs +# Site to Site VPNs -In eCloud VPC you have the ability to set up Site-to-Site IPsec VPNs (Virtual Private Networks). These can be used to enable connectivity from external networking devices or between different eCloud VPC Routers. +In eCloud VPC you have the ability to set up Site-to-Site IPsec VPNs (Virtual Private Networks). +These can be used to enable connectivity from external networking devices or between different eCloud VPC Routers. VPNs can be set up between eCloud VPC Routers which are in the same or different AZ/Region. @@ -105,9 +106,9 @@ There have been a range of VPN Profiles created, which have various levels of en ``` ```eval_rst - .. title:: eCloud VPC VPNs + .. title:: eCloud VPC Site-to-Site VPNs .. meta:: - :title: eCloud VPC VPNs | ANS Documentation - :description: Site-to-Site IPsec VPNs in eCloud VPC - :keywords: ecloud, ecloud VPC, ANS Portal, ANS Portal, VPC, Virtual Private Cloud, VPN, IPsec, IKE, FIP, Netgate, pfSense + :title: eCloud VPC Site-to-Site VPNs | ANS Documentation + :description: Site-to-Site VPNs in eCloud VPC + :keywords: eCloud, eCloud VPC, ANS GLASS, VPC, Virtual Private Cloud, VPN, Site-to-Site, IPsec, IKE ```