Infrastructure Networking
This guide explains how to set up and manage networks in Gozunga Cloud, ensuring secure and efficient connectivity for your resources.
Virtual machine instances on the Gozunga Cloud platform can have multiple network ports, ranging from Internet access, to any number of internal private networks as needed by your applications. Networks work in that they contain one or more subnets. For example, you may make an Internal network, with a subnet for app, and another for db, to introduce segmentation and different IP subnets. These subnets interconnect via virtual routers, where you can apply policy and other access control to meet your needs.
Virtual Machine instances include 1 Internet IPv4 address. You will be subject to additional fees for IP addresses in excess of the included IP if you add additional Internet ports
Private, isolated networks for your cloud resources.
Navigate to Networking → Networks
Click "Create Network"
Specify:
- Network name
- Description
- IP range (CIDR)
- DNS servers
- Optional: Enable DHCP
Creating Subnets
- Navigate to the network details
- Click "Add Subnet"
- Define subnet CIDR
- Configure DHCP options
Managing Subnets
- Modify DHCP settings
- Update routes
- Configure gateways
Network firewalls that control inbound and outbound traffic.
Modifying the included default-security-group, or applying additional security groups are necessary for any new virtual machines. This is a security-minded default
Navigate to Networking → Security Groups
Click "Create Security Group"
Add rules:
- Direction (Inbound/Outbound)
- Protocol (TCP/UDP/ICMP)
- Port range
- Source/Destination
Public IP addresses that can be assigned to instances.
Allocating
- Navigate to Network → Floating IPs
- Click "Allocate IP"
- Select network
Managing
- Associate with instances
- Release when not needed
- Monitor usage
Distribute traffic across multiple instances.
Creating Load Balancer
- Navigate to Network → Load Balancers
- Select protocol and port
- Configure health checks
- Add backend instances
SSL/TLS Termination
- Upload certificates
- Configure listeners
- Set security policies
Secure connections between your infrastructure and Gozunga Cloud.
Site-to-Site VPN
- Configure VPN gateway
- Set up tunnels
- Define routes
Client VPN
- Set up VPN server
- Configure client access
- Manage certificates
Network Isolation
- Use separate networks for different environments
- Implement network segmentation
- Regular security audits
Access Control
- Least privilege principle
- Regular review of security groups
- Monitor network traffic
Network Design
- Proper subnet sizing
- Efficient routing
- Load balancer optimization
Monitoring
- Track bandwidth usage
- Monitor latency
- Set up alerts
Connectivity Problems
- Check security groups
- Verify network routes
- Test DNS resolution
Performance Issues
- Monitor bandwidth
- Check for network congestion
- Review instance limits
- Configure Load Balancing
- Set up VPN
- Network Monitoring
Need help? Contact our support team or check our network troubleshooting guide.
Network Basics
Overview
Virtual machine instances on the Gozunga Cloud platform can have multiple network ports, ranging from Internet access, to any number of internal private networks as needed by your applications. Networks work in that they contain one or more subnets. For example, you may make an Internal network, with a subnet for app, and another for db, to introduce segmentation and different IP subnets. These subnets interconnect via virtual routers, where you can apply policy and other access control to meet your needs.
Virtual Machine instances include 1 Internet IPv4 address. You will be subject to additional fees for IP addresses in excess of the included IP if you add additional Internet ports
Virtual Networks
Private, isolated networks for your cloud resources.
Creating a Network
Navigate to Networking → Networks
Click "Create Network"
Specify:
- Network name
- Description
- IP range (CIDR)
- DNS servers
- Optional: Enable DHCP
Subnets
Creating Subnets
- Navigate to the network details
- Click "Add Subnet"
- Define subnet CIDR
- Configure DHCP options
Managing Subnets
- Modify DHCP settings
- Update routes
- Configure gateways
Security
Security Groups
Network firewalls that control inbound and outbound traffic.
Modifying the included default-security-group, or applying additional security groups are necessary for any new virtual machines. This is a security-minded default
Creating Security Groups
Navigate to Networking → Security Groups
Click "Create Security Group"
Add rules:
- Direction (Inbound/Outbound)
- Protocol (TCP/UDP/ICMP)
- Port range
- Source/Destination
Common Security Group Rules
# Web Server
Inbound TCP 80 (HTTP)
Inbound TCP 443 (HTTPS)
# SSH Access
Inbound TCP 22
# Database
Inbound TCP 3306 (MySQL)
Inbound TCP 5432 (PostgreSQL)Floating IPs
Public IP addresses that can be assigned to instances.
Allocating
- Navigate to Network → Floating IPs
- Click "Allocate IP"
- Select network
Managing
- Associate with instances
- Release when not needed
- Monitor usage
Advanced Features
Load Balancers
Distribute traffic across multiple instances.
Creating Load Balancer
- Navigate to Network → Load Balancers
- Select protocol and port
- Configure health checks
- Add backend instances
SSL/TLS Termination
- Upload certificates
- Configure listeners
- Set security policies
VPN Connections
Secure connections between your infrastructure and Gozunga Cloud.
Site-to-Site VPN
- Configure VPN gateway
- Set up tunnels
- Define routes
Client VPN
- Set up VPN server
- Configure client access
- Manage certificates
Best Practices
Security
Network Isolation
- Use separate networks for different environments
- Implement network segmentation
- Regular security audits
Access Control
- Least privilege principle
- Regular review of security groups
- Monitor network traffic
Performance
Network Design
- Proper subnet sizing
- Efficient routing
- Load balancer optimization
Monitoring
- Track bandwidth usage
- Monitor latency
- Set up alerts
Troubleshooting
Common Issues
Connectivity Problems
- Check security groups
- Verify network routes
- Test DNS resolution
Performance Issues
- Monitor bandwidth
- Check for network congestion
- Review instance limits
Diagnostic Tools
# Check connectivity
ping <target>
traceroute <target>
telnet <host> <port>
# DNS resolution
nslookup <domain>
dig <domain>
# Network interface
ip addr show
netstat -tulpnNext Steps
- Configure Load Balancing
- Set up VPN
- Network Monitoring
Need help? Contact our support team or check our network troubleshooting guide.
Updated on: 20/01/2025
Thank you!