Virtual Private Cloud
Sometimes you need your own space...
GMX Virtual Private Cloud (VPC) lets you provision a logically isolated section of the GMX Cloud Platform where you can launch resources in a virtual network that you define. You have complete control over your virtual networking environment, including selection of your own IP address range, creation of subnets, and configuration of route tables and network gateways.
You can easily customize the network configuration for your GMX Private Cloud. For example, you can create a public-facing subnet for your servers that has access to the Internet, and place your backend systems such as databases or application servers in a private-facing subnet with no Internet access. You can leverage multiple layers of security, including security groups and network access control lists, to help control access to GMX Compute instances in each subnet.
Additionally, you can create a Hardware Virtual Private Network (VPN) connection between your corporate datacenter and your VPC and leverage the GMX cloud as an extension of your corporate data center.
Features and Benefits
Secure
GMX VPC provides advanced security features such as security groups and network access control lists to enable inbound and outbound filtering at the instance level and subnet level. In addition, you can store data in GMX cloudstore and restrict access so that it’s only accessible from instances in your VPC. Optionally, you can also choose to launch dedicated instances which run on hardware dedicated to a single customer for additional isolation.
Simple
You can create a VPC quickly and easily using the GMX Management Console. You can select one of the common network setups that best match your needs and press "Start VPC Wizard." Subnets, IP ranges, route tables, and security groups are automatically created for you, so you can concentrate on creating the applications to run in your VPC.
Scalability and Reliability
GMX VPC provides all the same benefits as the rest of the GMX platform. You can instantly scale your resources up or down, select GMX Compute instances types and sizes that are right for your applications, and pay only for the resources you use - all within GMX's proven infrastructure.
Enhanced Security
The GMX VPC allows you to secure your virtual networking environment, including your IP addresses, subnets and network gateways.
Improved Performance
Prioritize the network traffic of select applications to optimize their performance, helping to eliminate congestion and potential bottlenecks.
Data Control
Your VPC is isolated from other clouds at the network layer, so you eliminate the risk of mixing with the data of other entities, by controlling your data.
On-Demand Flexibility
You can design the cloud architecture that fits your company. For example, you can set up your VPC for contractors to use individual direct connections that aren’t routed through your internal network.
Connect directly to the Internet
(public subnets)– You can launch instances into a publicly accessible subnet where they can send and receive traffic from the Internet.
Connect to the Internet using Network Address Translation (private subnets)– Private subnets can be used for instances that you do not want to be directly addressable from the Internet. Instances in a private subnet can access the Internet without exposing their private IP address by routing their traffic through a Network Address Translation (NAT) gateway in a public subnet.
Connect securely to your corporate datacenter– All traffic to and from instances in your VPC can be routed to your corporate datacenter over an industry standard, encrypted IPsec hardware VPN connection.
Connect privately to other VPCs- Peer VPCs together to share resources across multiple virtual networks owned by your or other GMX accounts.
Connect to GMX store without using an internet gateway or NAT, and control what resources, requests, or users are allowed through a VPC endpoint.
Combine connectivity methods to match the needs of your application – You can connect your VPC to both the Internet and your corporate datacenter and configure GMX VPC route tables to direct all traffic to its proper destination.
Use Cases
Host a simple, public-facing website
You can host a basic web application, such as a blog or simple website in a VPC, and gain the additional layers of privacy and security afforded by GMX VPC. You can help secure the website by creating security group rules which allow the webserver to respond to inbound HTTP and SSL requests from the Internet while simultaneously prohibiting the webserver from initiating outbound connections to the Internet. You can create a VPC that supports this use case by selecting " VPC with a Single Public Subnet Only" from the GMX VPC console wizard.
Host multi-tier web applications
You can use GMX VPC to host multi-tier web applications and strictly enforce access and security restrictions between your web servers, application servers, and databases. You can launch web servers in a publicly accessible subnet and application servers and databases in non-publicly accessible subnets. The application servers and databases can’t be directly accessed from the Internet, but they can still access the Internet via a NAT gateway to download patches, for example. You can control access between the servers and subnets using inbound and outbound packet filtering provided by network access control lists and security groups. To create a VPC that supports this use case, you can select "VPC with Public and Private Subnets" in the GMX VPC console wizard.
Host scalable web applications in the GMX cloud that are connected to your datacenter
You can create a VPC where instances in one subnet, such as web servers, communicate with the Internet while instances in another subnet, such as application servers, communicate with databases on your corporate network. An IPsec VPN connection between your VPC and your corporate network helps secure all communication between the application servers in the cloud and databases in your datacenter. Web Servers and application servers in your VPC can leverage GMX Compute elasticity and Auto Scaling features to grow and shrink as needed. You can create a VPC to support this use case by selecting "VPC with Public and Private Subnets and Hardware VPN Access" in the GMX VPC console wizard.
Extend your corporate network into the cloud
You can move corporate applications to the cloud , launch additional web servers, or add more compute capacity to your network by connecting your VPC to your corporate network. Because your VPC can be hosted behind your corporate firewall, you can seamlessly move your IT resources into the cloud without changing how your users access these applications. You can select "VPC with a Private Subnet Only and Hardware VPN Access" from the GMX VPC console wizard to create a VPC that supports this use case.
Disaster Recovery
You can periodically backup your mission critical data from your datacenter to a small number of GMX Compute instances with Elastic Block Store (EBS) volumes, or import your virtual machine images to GMX Compute. In the event of a disaster in your own datacenter, you can quickly launch replacement compute capacity in GMX to ensure business continuity. When the disaster is over, you can send your mission critical data back to your datacenter and terminate the GMX Compute instances that you no longer need. By using GMX VPC for disaster recovery, you can have all the benefits of a disaster recovery site at a fraction of the normal cost.