Articles on: Infrastructure

Infrastructure Networking

This guide explains how to set up and manage networks in Gozunga Cloud, ensuring secure and efficient connectivity for your resources.

Network Basics

Overview

Virtual machine instances on the Gozunga Cloud platform can have multiple network ports, ranging from Internet access, to any number of internal private networks as needed by your applications. Networks work in that they contain one or more subnets. For example, you may make an Internal network, with a subnet for app, and another for db, to introduce segmentation and different IP subnets. These subnets interconnect via virtual routers, where you can apply policy and other access control to meet your needs.

Virtual Machine instances include 1 Internet IPv4 address. You will be subject to additional fees for IP addresses in excess of the included IP if you add additional Internet ports

Virtual Networks

Private, isolated networks for your cloud resources.

Creating a Network

Navigate to Networking → Networks
Click "Create Network"
Specify:

- Network name
- Description
- IP range (CIDR)
- DNS servers
- Optional: Enable DHCP

Subnets

Creating Subnets

- Navigate to the network details
- Click "Add Subnet"
- Define subnet CIDR
- Configure DHCP options

Managing Subnets

- Modify DHCP settings
- Update routes
- Configure gateways

Security

Security Groups

Network firewalls that control inbound and outbound traffic.

Modifying the included default-security-group, or applying additional security groups are necessary for any new virtual machines. This is a security-minded default

Creating Security Groups

Navigate to Networking → Security Groups
Click "Create Security Group"
Add rules:

- Direction (Inbound/Outbound)
- Protocol (TCP/UDP/ICMP)
- Port range
- Source/Destination

Common Security Group Rules

# Web Server
Inbound TCP 80 (HTTP)
Inbound TCP 443 (HTTPS)
  
# SSH Access
Inbound TCP 22
  
# Database
Inbound TCP 3306 (MySQL)
Inbound TCP 5432 (PostgreSQL)

Floating IPs

Public IP addresses that can be assigned to instances.

Allocating

- Navigate to Network → Floating IPs
- Click "Allocate IP"
- Select network

Managing

- Associate with instances
- Release when not needed
- Monitor usage

Advanced Features

Load Balancers

Distribute traffic across multiple instances.

Creating Load Balancer

- Navigate to Network → Load Balancers
- Select protocol and port
- Configure health checks
- Add backend instances

SSL/TLS Termination

- Upload certificates
- Configure listeners
- Set security policies

VPN Connections

Secure connections between your infrastructure and Gozunga Cloud.

Site-to-Site VPN

- Configure VPN gateway
- Set up tunnels
- Define routes

Client VPN

- Set up VPN server
- Configure client access
- Manage certificates

Best Practices

Security

Network Isolation

- Use separate networks for different environments
- Implement network segmentation
- Regular security audits

Access Control

- Least privilege principle
- Regular review of security groups
- Monitor network traffic

Performance

Network Design

- Proper subnet sizing
- Efficient routing
- Load balancer optimization

Monitoring

- Track bandwidth usage
- Monitor latency
- Set up alerts

Troubleshooting

Common Issues

Connectivity Problems

- Check security groups
- Verify network routes
- Test DNS resolution

Performance Issues

- Monitor bandwidth
- Check for network congestion
- Review instance limits

Diagnostic Tools

# Check connectivity
ping <target>
traceroute <target>
telnet <host> <port>
  
# DNS resolution
nslookup <domain>
dig <domain>
  
# Network interface
ip addr show
netstat -tulpn

Next Steps

Need help? Contact our support team or check our network troubleshooting guide.

Updated on: 20/01/2025

Was this article helpful?

Thank you!