This is the multi-page printable view of this section. Click here to print.

Return to the regular view of this page.

VPC

1: Overview

1.1: ServiceWatch Metrics

2: How-to guides

2.1: Subnet
2.2: Port
2.3: Internet Gateway
2.4: NAT Gateway
2.5: Public IP
2.6: Private NAT
2.7: VPC Endpoint
2.8: VPC Peering
2.9: Transit Gateway
2.10: PrivateLink Service
2.11: PrivateLink Endpoint
2.12: NAT Logging

3: API Reference

4: CLI Reference

5: Release Note

1 - Overview

Service Overview

Samsung Cloud Platform provides VPC service to support the use of logically isolated customer-dedicated private network spaces in the cloud environment.
VPC (Virtual Private Cloud) is a service that provides logically isolated customer-dedicated private network spaces in the cloud environment. You can create General Subnets for public or private use, and Local Subnets for server-to-server communication according to your purpose. You can freely choose NAT Gateway and Internet Gateway to configure various networks. You can create multiple VPCs and operate them independently. You can configure connections between VPCs through VPC Peering.

Service Architecture

Components

Subnet

Subnet refers to the IP address range of a VPC. You can create subnets for public or private use using General Subnets according to your purpose. It is a service that allows users to subdivide networks according to their purpose/scale within a VPC. Subnet provides General Subnet and Local Subnet for server-to-server communication.

General Subnet Create/View/Delete: This is the subnet created by default when creating a VPC, and you use the subnet according to your purpose. For example, you can distinguish and use it as a Public Subnet that can access the internet and a Private Subnet that cannot access the internet.
VPC Endpoint Subnet Create/View/Delete: You can create an entry point to the VPC that allows access to Samsung Cloud Platform through a private connection from an external network connected to the VPC.
Local Subnet Create/View/Delete: This is a subnet that allows only direct connections between Virtual Server-Virtual Server or Bare Metal Server-Bare Metal Server without connecting to other subnets or external access. Only Virtual Server-Virtual Server settings within the VPC are possible.

Subnet Types

Sub_network refers to a subdivided IP address area in small units for use in an IP network. Subnet types are divided according to how routing for the subnet is configured.

Type	Description
Public Subnet	Can configure a subnet that can access the internet as a General Subnet
Private Subnet	Can configure a subnet that cannot access the internet as a General Subnet
VPC Endpoint Subnet	Can configure a subnet that can be used as a VPC Endpoint
Local Subnet	Can configure a subnet that cannot connect to other subnets or external access

Table. Subnet Types

Internet Gateway

You can create an Internet Gateway and connect it to a VPC, view detailed information, or delete unused Internet Gateways. You can connect VPC resources to the internet using the Internet Gateway.
You can assign a Public IP to instances and load balancers that can be connected from the outside by connecting to the internet.

NAT Gateway

You can create a NAT Gateway and connect it to a subnet, view detailed information, or delete unused NAT Gateways.
To create a NAT Gateway for a subnet, you must first create an Internet Gateway and connect it to the VPC. When you create a NAT Gateway, internet access is allowed for all resources belonging to the subnet. Apply firewall rules to restrict internet access.
NAT Gateway can be created for the General type, and it is a service that maps one representative public IP for Virtual Servers without public IP NAT mapping for outbound internet use.

Public IP

If you want to use the same IP address every time you stop and start an instance, you reserve and assign a Public IP.
It is a service that creates a desired public IP within Samsung Cloud Platform’s available Public IP Pool and assigns it to Compute resources.
Even if the Compute resource assigned with the specified Public IP is rebooted, the IP does not change.

Port

Provides a connection point to connect a single device, such as a server’s NIC, to a network. This allows additional devices beyond the default NIC.

VPC Endpoint

Provides an entry point to the VPC that allows access to Samsung Cloud Platform through a private connection from an external network connected to the VPC.

VPC Peering

You can communicate via IP through a 1:1 private route between VPCs. By default, peering between VPCs of the same account is provided, and only one connection between different accounts is allowed.

Private NAT

Compute resources within a VPC can connect by mapping customer network IPs using Direct Connect.

Transit Gateway

Transit Gateway is a gateway service that easily connects customer networks and Samsung Cloud Platform’s networks and acts as a connection hub for multiple VPCs within the cloud environment.
Through Transit Gateway, you can configure various network topologies as desired. In addition, you can thoroughly manage security by providing independent firewall configuration and routing functions for each connected network section.

PrivateLink

It is a service that connects a private path between the VPC and SCP services without exposing internal data of Samsung Cloud Platform to the internet.

PrivateLink Service is for service providers, and PrivateLink Endpoint is for service users.

Constraints

Samsung Cloud Platform’s VPC limits the number of VPCs and Subnets created as follows.

Category	Default Quota	Description
VPC	5	Default VPC creation limit per account
VPC IP Range	6	IP range creation limit per VPC (default 1 + additional 5)
VPC Peering	5	VPC Peering creation limit per account
Subnet	3	Default Subnet creation limit per VPC
Private NAT	3	Default Private NAT creation limit per VPC
Transit Gateway	3	Transit Gateway creation limit per account
VPC to Transit Gateway Connection	5	VPC connection limit per Transit Gateway (only same account can be connected)

Table. VPC Constraints

Prerequisites

VPC has no prerequisites.

1.1 - ServiceWatch Metrics

VPC - Internet Gateway sends metrics to ServiceWatch. The metrics provided as basic monitoring are data collected at 5-minute intervals.

Note

For how to view metrics in ServiceWatch, refer to the ServiceWatch guide.

Basic Metrics

Internet Gateway

The following are the basic metrics for the namespace Internet Gateway.

The metrics with bold metric names below are metrics selected as key metrics among the basic metrics provided by Internet Gateway. Key metrics are used to configure service dashboards that are automatically built for each service in ServiceWatch.

For each metric, the user guide informs which statistical value is meaningful when querying that metric, and the statistical value marked in bold among meaningful statistics is the key statistical value. In the service dashboard, you can view key metrics through key statistical values.

Performance Item	Description	Unit	Meaningful Statistics
Network In Total Bytes_Internet	Cumulative traffic volume from Internet Gateway → VPC	Bytes	Sum Average Maximum Minimum
Network Out Total Bytes _Internet	Cumulative traffic volume from VPC → Internet Gateway	Bytes	Sum Average Maximum Minimum
Network In Total Bytes _Internet_Delta	Cumulative traffic volume from Internet Gateway → VPC over 5 minutes (Internet)	Bytes	Sum Average Maximum
Network Out Total Bytes _Internet_Delta	Cumulative traffic volume from VPC → Internet Gateway over 5 minutes (Internet)	Bytes	Sum Average Maximum Minimum

Table. VPC - Internet Gateway Basic Metrics

2 - How-to guides

Users can create VPC services by entering required information and selecting detailed options through the Samsung Cloud Platform Console.

Create VPC

You can create and use VPC services in the Samsung Cloud Platform Console.

To create a VPC, follow these steps:

Click All Services > Networking > VPC menu. You will be redirected to the VPC Service Home page.

Click the Create VPC button on the Service Home page. You will be redirected to the Create VPC page.

Enter or select the required information in the Service Information section.

Category	Required	Description
VPC Name	Required	Name of the VPC to create Enter 3-20 characters using uppercase/lowercase letters and numbers
IP Range	Required	IP range to use Enter in IP range format within `/16 ~ /28` range Example: `192.168.0.0/24`
Description	Optional	Enter description for VPC

Table. VPC Service Information Input Items

Enter or select the required information in the Additional Information section.
Category
Required
Description
Tags Optional Add tags
Up to 50 tags per resource
Click Add Tag button and enter or select Key, Value values
Table. VPC Additional Information Input Items

On the Summary panel, verify the detailed information and estimated billing amount, then click the Create button.
- After creation is complete, verify the created resource on the VPC List page.

Category	Required	Description
Tags	Optional	Add tags Up to 50 tags per resource Click Add Tag button and enter or select Key, Value values

View VPC Details

VPC services allow you to view and modify the entire resource list and detailed information. The VPC Details page consists of Details, IP Range Management, Tags, Operation History tabs.

To view VPC details, follow these steps:

Click All Services > Networking > VPC menu. You will be redirected to the VPC Service Home page.
Click the VPC menu on the Service Home page. You will be redirected to the VPC List page.

Click the resource for which you want to view detailed information on the VPC List page. You will be redirected to the VPC Details page.

The VPC Details page displays status information and additional feature information, and consists of Details, IP Range Management, Tags, Operation History tabs.

Category	Description
Status	VPC status Active: Operating normally Deleting: Deletion in progress Creating: Creation in progress Error: Current status cannot be confirmed If it occurs continuously, contact the registered administrator
Terminate Service	Button to terminate the service Since terminating the service may immediately stop the operating service, proceed with the termination operation after fully considering the impact caused by service interruption

Category

Description

Status

VPC status

Active: Operating normally

Deleting: Deletion in progress

Creating: Creation in progress

Error: Current status cannot be confirmed
- If it occurs continuously, contact the registered administrator

Terminate Service

Button to terminate the service

Since terminating the service may immediately stop the operating service, proceed with the termination operation after fully considering the impact caused by service interruption

Table. VPC Status Information and Additional Features

Details

On the VPC List page, you can view the detailed information of the selected resource and modify it if necessary.

Category	Description
Service	Service name
Resource Type	Resource type
SRN	Unique resource ID in Samsung Cloud Platform In VPC, it means VPC SRN
Resource Name	VPC name
Resource ID	Unique resource ID of VPC
Creator	User who created the VPC
Created At	Date and time when VPC was created
Modifier	User who modified VPC information
Modified At	Date and time when VPC information was modified
VPC Name	VPC resource name
VPC ID	VPC unique ID
External Connection	Information about resources connected externally
IP Range	VPC IP range
Description	VPC description Can modify description by clicking Edit icon

Table. VPC Details Tab Items

IP Range Management

On the VPC List page, you can view the IP range information connected to the selected resource and add IP ranges.

Category	Description
IP Range	Added IP range information
Created At	Date and time when IP range was added
Add IP Range	Can add IP range Enter within 0.0.0.0/16 - 0.0.0.0/28 range Example: 192.168.0.0/16

Category

Description

IP Range

Added IP range information

Created At

Date and time when IP range was added

Add IP Range

Can add IP range

Enter within 0.0.0.0/16 - 0.0.0.0/28 range

Example: 192.168.0.0/16

Table. VPC IP Range Management Tab Items

Note

When adding an IP range to a VPC, you cannot add it if it falls under the following conditions:

IP range currently in use in the VPC
Range added with destination as peer VPC in VPC Peering rules connected to the current VPC
Range added with destination as remote in Direct Connect rules connected to the current VPC
Range added with destination as remote in Transit Gateway rules connected to the current VPC
NAT IP range in use in Private NAT connected to the current VPC

Category	Description
Tag List	Tag list Can verify Key, Value information of tags Up to 50 tags per resource When entering tags, search and select from previously created Key and Value lists

Operation History

On the VPC List page, you can view the operation history of the selected resource.

Category	Description
Operation History List	Resource change history Verify operation date/time, resource name, operation details, operation result, operator information

Table. VPC Operation History Tab Detailed Information Items

Terminate VPC

You can reduce operating costs by terminating unused VPCs.

Warning

VPC cannot be terminated if there are connected Subnet, Internet Gateway, or Direct Connect resources.
VPC service can only be terminated when the status is Active or Error.
Terminating the service may immediately stop the operating service. Proceed with the termination operation after fully considering the impact caused by service interruption.

To terminate a VPC, follow these steps:

Click All Services > Networking > VPC menu. You will be redirected to the VPC Service Home page.
Click the VPC menu on the Service Home page. You will be redirected to the VPC List page.
Select the resource to terminate on the VPC List page and click the Terminate Service button.
After termination is complete, verify that the resource has been terminated on the VPC List page.

2.1 - Subnet

Create Subnet

You can create and use VPC Subnet services in the Samsung Cloud Platform Console.

To create a Subnet, follow these steps:

Click All Services > Networking > VPC menu. You will be redirected to the VPC Service Home page.

Click the Create Subnet button on the Service Home page. You will be redirected to the Create Subnet page.

Enter or select the required information in the Service Information section.

Category	Required	Description
Subnet Type	Required	Select subnet type General: Can configure Public and Private Local: Can specify by selecting between Virtual Server and Bare Metal Server Local Subnet is a subnet for server-to-server communication only and cannot communicate externally VPC Endpoint: Can configure VPC Endpoint
VPC Name	Required	Select the VPC to connect the subnet from the list of currently created VPCs Click + Create New to create a VPC and then select
VPC IP Range	Optional	Automatically enters the CIDR range of the selected VPC
Subnet Name	Required	Name of the Subnet to create Enter 3-20 characters using uppercase/lowercase letters and numbers
IP Range	Required	IP range to use Enter in IP range format within `/16 ~ /28` range Example: `192.168.0.0/24` IP range cannot be used in duplicate with IP ranges currently in use in the VPC (other subnets)
Gateway IP	Required	Displays the Gateway IP address of the Subnet The first IP of the entered IP range is automatically entered Cannot be modified after service creation

Table. Subnet Service Information Input Items

Enter or select the required information in the Additional Information section.

Category	Required	Description
Description	Optional	Enter description for Subnet
IP Allocation Range	Optional	Can set range within the IP range to use Select from entire IP range or individual specification Subnet child resources are assigned IPs within the entered entire IP range or the range individually specified by the user When selecting individual specification, enter the start IP address and end IP address
DNS Name Server	Optional	Enter DNS Name Server IP after selecting Enable
Host Route	Optional	Enter host route after selecting Enable Enter destination IP range and Next Hop IP address Destination IP ranges must not overlap with each other
Tags	Optional	Add tags Up to 50 tags per resource Click Add Tag button and enter or select Key, Value values

Table. Subnet Additional Information Input Items

On the Summary panel, verify the detailed information and estimated billing amount, then click the Create button.
- After creation is complete, verify the created resource on the Subnet List page.

View Subnet Details

Subnet services allow you to view and modify the entire resource list and detailed information. The Subnet Details page consists of Details, Virtual IP Management, Tags, Operation History tabs.

To view Subnet details, follow these steps:

Click All Services > Networking > VPC menu. You will be redirected to the VPC Service Home page.
Click the Subnet button on the Service Home page. You will be redirected to the Subnet List page.

Click the resource for which you want to view detailed information on the Subnet List page. You will be redirected to the Subnet Details page.

The Subnet Details page displays status information and additional feature information, and consists of Details, Virtual IP Management, Tags, Operation History tabs.

Category	Description
Status	Subnet status Creating: Creation in progress Active: Operating normally Editing: Modification in progress Deleting: Deletion in progress Failed: Failed to create Error: Current status unknown If it occurs continuously, contact the registered administrator
Delete Subnet	Subnet deletion button

Category

Description

Status

Subnet status

Creating: Creation in progress

Active: Operating normally

Editing: Modification in progress

Deleting: Deletion in progress

Failed: Failed to create

Error: Current status unknown
- If it occurs continuously, contact the registered administrator

Delete Subnet

Subnet deletion button

Table. Subnet Status Information and Additional Features

Details

On the Subnet List page, you can view the operation history of the selected resource.

Category	Description
Service	Service name
Resource Type	Resource type
SRN	Unique resource ID in Samsung Cloud Platform In Subnet, it means Subnet SRN
Resource Name	Subnet resource name
Resource ID	Unique resource ID in the service
Creator	User who created the Subnet
Created At	Date and time when Subnet was created
Modifier	User who modified Subnet information
Modified At	Date and time when Subnet information was modified
Subnet Type	Subnet type
VPC Name	VPC to which the subnet belongs
Subnet Name	Subnet name
Subnet ID	Subnet unique ID
IP Range	IP range in use
Gateway IP	Gateway IP address of the Subnet
DHCP IP	Second IP address among the IP ranges in use Can modify by clicking Edit icon
Description	Subnet additional description Can modify by clicking Edit icon
IP Allocation Range	IP allocation range
DNS Name Server	Whether DNS Name Server is used
Host Route	Host route (destination IP range, Next Hop IP address) information

Table. Subnet Details Tab Items

Virtual IP Management

On the Subnet List page, you can view the virtual IP information of the selected resource, reserve, or delete it.

Category	Description
Reserve Virtual IP	Reserve Virtual IP for use
Virtual IP	Virtual IP information Click the IP to go to the Virtual IP details page
Public NAT IP	Public NAT IP information
Connected Port Count	Number of ports connected to the IP
Reserved At	Date and time when Virtual IP was reserved
Release	Virtual IP release button Select multiple items and click the Release button at the top of the list to release in batch

Table. Subnet Virtual IP Management Tab Items

Warning

Cannot release if Port or NAT IP is connected to Virtual IP. Delete the connected resource first.
Can only release Virtual IP when Subnet status is Active or Error.

Category	Description
Tag List	Tag list Can verify Key, Value information of tags Up to 50 tags per resource When entering tags, search and select from previously created Key and Value lists

Operation History

On the Subnet List page, you can view the operation history of the selected resource.

Category	Description
Operation History List	Resource change history Verify operation date/time, resource name, operation details, operation result, operator information

Table. Subnet Operation History Tab Detailed Information Items

Manage Virtual IP

You can reserve or manage Virtual IPs to use in the Subnet.

Reserve Virtual IP

You can reserve a Virtual IP to use in the Subnet.

To reserve a Virtual IP, follow these steps:

Click All Services > Networking > VPC menu. You will be redirected to the VPC Service Home page.
Click the Subnet button on the Service Home page. You will be redirected to the Subnet List page.
Click the resource for which you want to reserve a Virtual IP on the Subnet List page. You will be redirected to the Subnet Details page.
Click the Virtual IP Management tab on the Subnet Details page. You will be redirected to the Virtual IP Management tab page.
Click the Reserve Virtual IP button on the Virtual IP Management tab page. The Virtual IP reservation window opens.
Set the detailed items in the Reserve Virtual IP window and click Confirm.
- Virtual IP: If you select Auto Generate, the automatically generated IP is reserved. If you select Input, you can reserve the IP you entered directly.
- Description: Enter additional description for the Virtual IP.
When the reservation confirmation window appears, click Confirm.

View Virtual IP Details

You can view the detailed information of a Virtual IP.

To view the detailed information of a Virtual IP, follow these steps:

Click All Services > Networking > VPC menu. You will be redirected to the VPC Service Home page.
Click the Subnet button on the Service Home page. You will be redirected to the Subnet List page.
Click the resource for which you want to reserve a Virtual IP on the Subnet List page. You will be redirected to the Subnet Details page.
Click the Virtual IP Management tab on the Subnet Details page. You will be redirected to the Virtual IP Management tab page.

Click the resource you want to view on the Virtual IP Management tab page. You will be redirected to the Virtual IP Details page.

The Virtual IP Details page displays connected ports and detailed information.

Category	Description
Virtual IP	Virtual IP address
Public NAT IP	Public NAT IP address and status Can modify by clicking Edit icon After setting Enable, can select existing IP or create and add Public NAT IP cannot be modified after setting, needs to be reset when changing
Connected Port	Port information connected to Virtual IP Click Add button to add connected port, can connect existing port or create and add Click Delete button to delete connected port
Description	Virtual IP description Can modify by clicking Edit icon
Creator	User who reserved the Virtual IP
Created At	Date and time when Virtual IP was reserved
Modifier	User who modified Virtual IP information
Modified At	Date and time when Virtual IP information was modified

Table. Virtual IP Details Items

Delete Subnet

You can delete unused Subnets.

Warning

Cannot terminate the service if there are connected resources. Delete the connected resources first.
Can only delete the service when the service status is Active or Error.
Data cannot be recovered after service deletion, so proceed with the deletion operation after fully considering the impact caused by Subnet deletion.

To delete a Subnet, follow these steps:

Click All Services > Networking > VPC menu. You will be redirected to the VPC Service Home page.
Click the Subnet menu on the Service Home page. You will be redirected to the Subnet List page.
Click the resource to delete on the Subnet List page. You will be redirected to the Subnet Details page.
Click the Delete button on the Subnet Details page.
After deletion is complete, verify that the resource has been deleted on the Subnet List.

Prerequisites

This is a list of services that must be configured in advance before creating this service. Please prepare in advance by referring to the guides provided for each service for more details.

Service Category	Service	Description
Networking	VPC	Service that provides independent virtual networks in the cloud environment

Table. Subnet Prerequisites

2.2 - Port

Create Port

You can create and use Port services in the Samsung Cloud Platform Console.

To create a Port, follow these steps:

Click All Services > Networking > VPC menu. You will be redirected to the VPC Service Home page.

Click the Create Port button on the Service Home page. You will be redirected to the Create Port page.

Enter or select the required information in the Service Information section.

Category	Required	Description
VPC Name	Required	Select the VPC to create the Port Click + Create New to create a VPC and then select
Subnet Name	Required	Select the Subnet to create the Port Click + Create New to create a Subnet and then select
Port Name	Required	Name that can easily identify the Port Enter 3-20 characters using letters, numbers, `-`
IP Allocation Method	Required	Select IP allocation method Automatic Allocation: IP is automatically allocated within the Subnet’s IP allocation range Manual Input: The entered IP within the Subnet’s range is allocated When selecting Manual Input, enter the IP address to use for the Port in Fixed IP Address
Description	Optional	Enter description for Port
Security Group	Optional	When selecting Enable, can select up to 5 Security Groups

Table. Port Service Information Input Items

Enter or select the required information in the Additional Information section.
Category
Required
Description
Tags Optional Add tags
Up to 50 tags per resource
Click Add Tag button and enter or select Key, Value values
Table. Port Additional Information Input Items

On the Summary panel, verify the detailed information and estimated billing amount, then click the Create button.
- After creation is complete, verify the created resource on the Port List page.

Category	Required	Description
Tags	Optional	Add tags Up to 50 tags per resource Click Add Tag button and enter or select Key, Value values

View Port Details

Port services allow you to view and modify the entire resource list and detailed information. The Port Details page consists of Details, Tags, Operation History tabs.

To view Port details, follow these steps:

Click All Services > Networking > VPC menu. You will be redirected to the VPC Service Home page.
Click the Port menu on the Service Home page. You will be redirected to the Port List page.

Click the resource (Port name) for which you want to view detailed information on the Port List page. You will be redirected to the Port Details page.

The Port Details page displays status information and additional feature information, and consists of Details, Tags, Operation History tabs.

Category	Description
Status	Port status Active: Operating normally Down: Not connected to resource, or connected but not operating Error: Current status cannot be confirmed If it occurs continuously, contact the registered administrator
Delete Port	Button to delete Port

Category

Description

Status

Port status

Active: Operating normally

Down: Not connected to resource, or connected but not operating

Error: Current status cannot be confirmed
- If it occurs continuously, contact the registered administrator

Delete Port

Button to delete Port

Table. Port Status Information and Additional Features

Details

On the Port List page, you can view the detailed information of the selected resource and modify it if necessary.

Category	Description
Service	Service name
Resource Type	Resource type
SRN	Unique resource ID in Samsung Cloud Platform In Port, it means Port SRN
Resource Name	Port resource name
Resource ID	Unique resource ID in the service
Resource ID	Unique resource ID of the Port
Creator	User who created the Port
Created At	Date and time when Port was created
Modifier	User who modified Port information
Modified At	Date and time when Port information was modified
Port Name	Port resource name
Port ID	Port resource ID
Subnet Name	Connected Subnet name, click Subnet item to go to details page
Connected Resource	Connected device information
Fixed IP	Fixed IP information
MAC Address	MAC address information
Description	Description for Port Can modify by clicking Edit icon
Security Group	Connected Security Group information Can change Security Group by clicking Edit icon
Virtual IP	Connected Virtual IP information

Table. Port Details Tab Items

Category	Description
Tag List	Tag list Can verify Key, Value information of tags Up to 50 tags per resource When entering tags, search and select from previously created Key and Value lists

Operation History

On the Port List page, you can view the operation history of the selected resource.

Category	Description
Operation History List	Resource change history Verify operation date/time, resource name, operation details, operation result, operator information

Table. Port Operation History Tab Detailed Information Items

Delete Port

You can reduce operating costs by deleting unused Ports.

Warning

Cannot delete the service if there are connected resources such as Virtual Server, PrivateLink, etc. Delete the connected resources first.
After service deletion, the operating service may be stopped immediately. Proceed with the deletion operation after fully considering the impact caused by service deletion.

To delete a Port, follow these steps:

Click All Services > Networking > VPC menu. You will be redirected to the VPC Service Home page.
Click the Port menu on the Service Home page. You will be redirected to the Port List page.
Click the resource (Port name) to delete on the Port List page. You will be redirected to the Port Details page.
Click the Delete Port button on the Port Details page.
After deletion is complete, verify that the resource has been deleted on the Port List.

Prerequisites

This is a list of services that must be configured in advance before creating this service. Please prepare in advance by referring to the guides provided for each service for more details.

Service Category	Service	Description
Networking	VPC	Service that provides independent virtual networks in the cloud environment

Table. Port Prerequisites

2.3 - Internet Gateway

Create Internet Gateway

You can create and use Internet Gateway services in the Samsung Cloud Platform Console.

To create an Internet Gateway, follow these steps:

Click All Services > Networking > VPC menu. You will be redirected to the VPC Service Home page.

Click the Create Internet Gateway button on the Service Home page. You will be redirected to the Create Internet Gateway page.

Enter or select the required information in the Service Information section.

Category	Required	Description
VPC Name	Required	Select the VPC to connect to the Internet Gateway Click + Create New to create a VPC and then select
Type	Required	Select Internet Gateway type Select from Dedicated Internet Gateway, Secured Internet Gateway, Group Gateway
Internet Gateway Name	Optional	Automatically generated as IGW_{VPC Name}
Description	Optional	Enter description for Internet Gateway
Use Firewall	Optional	Select whether to use Firewall
Store Firewall Logs	Optional	Select whether to store Firewall logs Store access logs when using Firewall For more information, refer to Use Firewall Log Storage

Table. Internet Gateway Service Information Input Items

Enter or select the required information in the Additional Information section.
Category
Required
Description
Tags Optional Add tags
Up to 50 tags per resource
Click Add Tag button and enter or select Key, Value values
Table. Internet Gateway Additional Information Input Items

Category	Required	Description
Tags	Optional	Add tags Up to 50 tags per resource Click Add Tag button and enter or select Key, Value values

Warning

Cannot connect Internet Gateway and Group Gateway simultaneously in one VPC.

On the Summary panel, verify the detailed information and estimated billing amount, then click the Create button.
- After creation is complete, verify the created resource on the Internet Gateway List page.

View Internet Gateway Details

Internet Gateway services allow you to view and modify the entire resource list and detailed information. The Internet Gateway Details page consists of Details, Tags, Operation History tabs.

To view Internet Gateway details, follow these steps:

Click All Services > Networking > VPC menu. You will be redirected to the VPC Service Home page.
Click the Internet Gateway menu on the Service Home page. You will be redirected to the Internet Gateway List page.

Click the resource for which you want to view detailed information on the Internet Gateway List page. You will be redirected to the Internet Gateway Details page.

The Internet Gateway Details page displays status information and additional feature information, and consists of Details, Tags, Operation History tabs.

Category	Description
Status	Internet Gateway status Creating: Resource creation in progress Active: Normal connection status Deleting: Deletion in progress Error: Current status cannot be confirmed If it occurs continuously, contact the registered administrator
Delete Internet Gateway	Internet Gateway deletion button

Category

Description

Status

Internet Gateway status

Creating: Resource creation in progress

Active: Normal connection status

Deleting: Deletion in progress

Error: Current status cannot be confirmed
- If it occurs continuously, contact the registered administrator

Delete Internet Gateway

Internet Gateway deletion button

Table. Internet Gateway Status Information and Additional Features

Details

On the Internet Gateway List page, you can view the detailed information of the selected resource and modify it if necessary.

Category	Description
Service	Service name
Resource Type	Resource type
SRN	Unique resource ID in Samsung Cloud Platform In Internet Gateway, it means Internet Gateway SRN
Resource Name	Internet Gateway resource name
Resource ID	Unique resource ID in the service
Creator	User who created the Internet Gateway
Created At	Date and time when Internet Gateway was created
Modifier	User who modified Internet Gateway information
Modified At	Date and time when Internet Gateway information was modified
Internet Gateway Name	Internet Gateway name
Internet Gateway ID	Internet Gateway resource ID
VPC Name	VPC name
VPC Name	VPC ID
Type	Internet Gateway type
Description	Description for Internet Gateway Can modify by clicking Edit icon
Firewall Name	Go to details page when clicking Firewall
Use Firewall	Whether to use Firewall
NAT Gateway	Go to details page when clicking NAT Gateway
Store NAT Logs	Whether to store NAT logs Can modify by clicking Edit icon Enable: Store logs Disable: Do not store logs

Table. Internet Gateway Details Tab Items

Category	Description
Tag List	Tag list Can verify Key, Value information of tags Up to 50 tags per resource When entering tags, search and select from previously created Key and Value lists

Operation History

On the Internet Gateway List page, you can view the operation history of the selected resource.

Category	Description
Operation History List	Resource change history Verify operation date/time, resource name, operation details, operation result, operator information

Table. Internet Gateway Operation History Tab Detailed Information Items

Manage Internet Gateway Resources

You can manage resources such as using NAT log storage.

Use NAT Log Storage

Note

To use NAT log storage, you must first create a bucket in Object Storage to store logs and set that bucket as the log storage in NAT Logging. Then, when you enable log storage in NAT details view, NAT logs will start being stored in the Object Storage bucket. You can check the log storage settings in NAT Logging. For more information, refer to NAT Logging.

Object Storage fees for log storage will be charged when you set up a log storage.

To use NAT log storage, follow these steps:

Click All Services > Networking > VPC menu. You will be redirected to the VPC Service Home page.
Click the Internet Gateway menu on the Service Home page. You will be redirected to the Internet Gateway List page.
Click the resource for which you want to view detailed information on the Internet Gateway List page. You will be redirected to the Internet Gateway Details page.
Click the Modify NAT Log Storage button. You will be redirected to the Modify NAT Log Storage popup window.
Select Enable for log storage in the Modify NAT Log Storage popup window and click the Confirm button.

Warning

Cannot set log storage to Enable if log storage is not configured in NAT Logging.

Disable NAT Log Storage

To disable NAT log storage, follow these steps:

Click All Services > Networking > VPC menu. You will be redirected to the VPC Service Home page.
Click the Internet Gateway menu on the Service Home page. You will be redirected to the Internet Gateway List page.
Click the resource for which you want to view detailed information on the Internet Gateway List page. You will be redirected to the Internet Gateway Details page.
Click the Modify NAT Log Storage button. You will be redirected to the Modify NAT Log Storage popup window.
Deselect Enable for log storage in the Modify NAT Log Storage popup window and click the Confirm button.
Verify the message in the Notification popup window and click the Confirm button.

Warning

If you disable log storage, log storage for that service will be stopped and tracking management through log analysis will not be possible in case of security incidents.

Delete Internet Gateway

Warning

Cannot terminate the service if there are connected resources such as NAT Gateway, Firewall rules, VPN, etc. Delete the connected resources first.
After service deletion, internet communication of VPC child resources will be stopped. Proceed with the deletion operation after fully considering the impact caused by Internet Gateway deletion.

To delete an Internet Gateway, follow these steps:

Click All Services > Networking > VPC menu. You will be redirected to the VPC Service Home page.
Click the Internet Gateway menu on the Service Home page. You will be redirected to the Internet Gateway List page.
Click the resource to delete on the Internet Gateway List page. You will be redirected to the Internet Gateway Details page.
Click the Delete button on the Internet Gateway Details page.
After deletion is complete, verify that the resource has been deleted on the Internet Gateway List.

Prerequisites

This is a list of services that must be configured in advance before creating this service. Please prepare in advance by referring to the guides provided for each service for more details.

Service Category	Service	Description
Networking	VPC	Service that provides independent virtual networks in the cloud environment

Table. Internet Gateway Prerequisites

2.4 - NAT Gateway

Create NAT Gateway

You can create and use NAT Gateway services in the Samsung Cloud Platform Console.

To create a NAT Gateway, follow these steps:

Click All Services > Networking > VPC menu. You will be redirected to the VPC Service Home page.

Click the Create NAT Gateway button on the Service Home page. You will be redirected to the Create NAT Gateway page.

Enter or select the required information in the Service Information section.

Category	Required	Description
VPC Name	Required	Select the VPC to connect Click + Create New to create a VPC and then select
Subnet Name	Required	Select the connected Subnet Click + Create New to create a Subnet and then select
NAT Gateway Name	Optional	Created as NAT_GW_{Subnet Name}
IP for NAT Gateway	Required	Select Public IP for NAT Gateway Click + Create New to create an IP and then select
Description	Optional	Enter description for NAT Gateway

Table. NAT Gateway Service Information Input Items

Enter or select the required information in the Additional Information section.
Category
Required
Description
Tags Optional Add tags
Up to 50 tags per resource
Click Add Tag button and enter or select Key, Value values
Table. NAT Gateway Additional Information Input Items

On the Summary panel, verify the detailed information and estimated billing amount, then click the Create button.
- After creation is complete, verify the created resource on the NAT Gateway List page.

Category	Required	Description
Tags	Optional	Add tags Up to 50 tags per resource Click Add Tag button and enter or select Key, Value values

View NAT Gateway Details

NAT Gateway services allow you to view and modify the entire resource list and detailed information. The NAT Gateway Details page consists of Details, Tags, Operation History tabs.

Click All Services > Networking > VPC menu. You will be redirected to the VPC Service Home page.
Click the NAT Gateway menu on the Service Home page. You will be redirected to the NAT Gateway List page.

Click the resource for which you want to view detailed information on the NAT Gateway List page. You will be redirected to the NAT Gateway Details page.

The NAT Gateway Details page displays status information and additional feature information, and consists of Details, Tags, Operation History tabs.

Category	Description
Status	NAT Gateway status Creating: Creation in progress Active: Operating normally Deleting: Deletion in progress
Delete NAT Gateway	Button to terminate the service Terminate NAT Gateway if there are no connected services Since terminating the service may immediately stop the operating service, proceed with the termination operation after fully considering the impact caused by service interruption

Category

Description

Status

NAT Gateway status

Creating: Creation in progress

Active: Operating normally

Deleting: Deletion in progress

Delete NAT Gateway

Button to terminate the service

Terminate NAT Gateway if there are no connected services

Since terminating the service may immediately stop the operating service, proceed with the termination operation after fully considering the impact caused by service interruption

Table. NAT Gateway Status Information and Additional Features

Details

On the NAT Gateway List page, you can view the detailed information of the selected resource and modify it if necessary.

Category	Description
Service	Service name
Resource Type	Resource type
SRN	Unique resource ID in Samsung Cloud Platform In NAT Gateway, it means NAT Gateway SRN
Resource Name	NAT Gateway resource name
Resource ID	Unique resource ID in the service
Creator	User who created the NAT Gateway
Created At	Date and time when NAT Gateway was created
Modifier	User who modified NAT Gateway information
Modified At	Date and time when NAT Gateway information was modified
NAT Gateway Name	NAT Gateway name
NAT Gateway ID	NAT Gateway resource ID
VPC Name	VPC name connected to NAT Gateway Go to details page when clicking VPC
VPC ID	VPC resource ID connected to NAT Gateway
Subnet Name	Subnet name connected to NAT Gateway Go to details page when clicking Subnet
Subnet ID	Subnet resource ID connected to NAT Gateway
Subnet IP Range	Subnet IP range information
IP for NAT Gateway	NAT Gateway IP information
Description	Description for NAT Gateway Can modify by clicking Edit icon

Table. NAT Gateway Details Tab Items

Category	Description
Tag List	Tag list Can verify Key, Value information of tags Up to 50 tags per resource When entering tags, search and select from previously created Key and Value lists

Operation History

On the NAT Gateway List page, you can view the operation history of the selected resource.

Category	Description
Operation History List	Resource change history Verify operation date/time, resource name, operation details, operation result, operator information

Table. NAT Gateway Operation History Tab Detailed Information Items

Delete NAT Gateway

Warning

If you delete a NAT Gateway, all resources in that Subnet except resources with 1:1 NAT configured will not be able to communicate with the internet.

To delete a NAT Gateway, follow these steps:

Click All Services > Networking > VPC menu. You will be redirected to the VPC Service Home page.
Click the NAT Gateway menu on the Service Home page. You will be redirected to the NAT Gateway List page.
Click the resource for which you want to view detailed information on the NAT Gateway List page. You will be redirected to the NAT Gateway Details page.
Click the Delete button on the NAT Gateway Details page.
After deletion is complete, verify that the resource has been deleted on the NAT Gateway List.

Prerequisites

This is a list of services that must be configured in advance before creating this service. Please prepare in advance by referring to the guides provided for each service for more details.

Service Category	Service	Description
Networking	VPC	Service that provides independent virtual networks in the cloud environment

Table. NAT Gateway Prerequisites

2.5 - Public IP

Create Public IP

You can create and use Public IP services in the Samsung Cloud Platform Console.

To create a Public IP, follow these steps:

Click All Services > Networking > VPC menu. You will be redirected to the VPC Service Home page.
Click the Reserve Public IP button on the Service Home page. You will be redirected to the Reserve Public IP page.
- Enter or select the required information in the Service Information section.
  Category
  Required
  Description
  Type Required Select the Gateway to reserve Public IP
  Default: Internet Gateway
  Description Optional Enter description for Public IP
  Table. Public IP Service Information Input Items
- Enter or select the required information in the Additional Information section.
  Category
  Required
  Description
  Tags Optional Add tags
  Up to 50 tags per resource
  Click Add Tag button and enter or select Key, Value values
  Table. Public IP Additional Information Input Items
On the Summary panel, verify the detailed information and estimated billing amount, then click the Create button.
- After creation is complete, verify the created resource on the Public IP List page.

Category	Required	Description
Type	Required	Select the Gateway to reserve Public IP Default: Internet Gateway
Description	Optional	Enter description for Public IP

Category	Required	Description
Tags	Optional	Add tags Up to 50 tags per resource Click Add Tag button and enter or select Key, Value values

View Public IP Details

Public IP services allow you to view and modify the entire resource list and detailed information. The Public IP Details page consists of Details, Tags, Operation History tabs.

To view Public IP details, follow these steps:

Click All Services > Networking > VPC menu. You will be redirected to the VPC Service Home page.
Click the Public IP menu on the Service Home page. You will be redirected to the Public IP List page.

Click the resource for which you want to view detailed information on the Public IP List page. You will be redirected to the Public IP Details page.

The Public IP Details page displays status information and additional feature information, and consists of Details, Tags, Operation History tabs.

Category	Description
Status	Public IP status Attached: Connected state Reserved: Reserved state Error: Current status unknown If it occurs continuously, contact the registered administrator
Release Public IP	Public IP release button

Category

Description

Status

Public IP status

Attached: Connected state

Reserved: Reserved state

Error: Current status unknown
- If it occurs continuously, contact the registered administrator

Release Public IP

Public IP release button

Table. Public IP Status Information and Additional Features

Details

On the Public IP List page, you can view the detailed information of the selected resource and modify it if necessary.

Category	Description
Service	Service name
Resource Type	Resource type
SRN	Unique resource ID in Samsung Cloud Platform In Public IP, it means Public IP SRN
Resource Name	Public IP resource name
Resource ID	Unique resource ID in the service
Creator	User who created the Public IP
Created At	Date and time when Public IP was created
Modifier	User who modified Public IP information
Modified At	Date and time when Public IP information was modified
IP Address	Assigned (reserved) IP address
Type	Gateway information where Public IP is reserved
Public IP ID	Public IP resource ID
Description	Description for Public IP Can modify description by clicking Edit icon
Connected Resource Type	Resource information connected to the assigned (reserved) IP address
Connected Resource Name	Resource name connected to the assigned (reserved) IP address

Table. Public IP Details Tab Items

Category	Description
Tag List	Tag list Can verify Key, Value information of tags Up to 50 tags per resource When entering tags, search and select from previously created Key and Value lists

Operation History

On the Public IP List page, you can view the operation history of the selected resource.

Category	Description
Operation History List	Resource change history Verify operation date/time, resource name, operation details, operation result, operator information

Table. Port Operation History Tab Detailed Information Items

Release Public IP

Warning

Can only release when the status of the Public IP service is Reserved. Check the service status before applying for release.

To delete a Public IP, follow these steps:

Click All Services > Networking > VPC menu. You will be redirected to the VPC Service Home page.
Click the Public IP button on the Service Home page. You will be redirected to the Public IP List page.
Click the resource for which you want to view detailed information on the Public IP List page. You will be redirected to the Public IP Details page.
Click the Release Public IP button on the Public IP Details page.
After release is complete, verify that the resource has been deleted on the Public IP List.

Prerequisites

This is a service that must be installed in advance before creating this service. Please prepare by referring to the user guide provided in advance.

Service Category	Service	Description
Networking	VPC	Service that provides independent virtual networks in the cloud environment.

Table. Public IP Prerequisites

2.6 - Private NAT

Users can create the Private NAT service by entering required information and selecting detailed options through the Samsung Cloud Platform Console.

Creating Private NAT

You can create and use the Private NAT service in the Samsung Cloud Platform Console.

Follow these steps to create a Private NAT.

Click the All Services > Networking > VPC menu. You will be navigated to the VPC’s Service Home page.

Click the Create Private NAT button on the Service Home page. You will be navigated to the Create Private NAT page.

Enter or select the required information in the Enter Service Information section.

Division	Required	Detailed Description
Private NAT Name	Required	Enter the Private NAT name Enter 3 to 20 characters using English letters and numbers
Connected Resource Type	Required	Select the connected resource to connect to Private NAT Can select from Direct Connect, Transit Gateway
Connected Resource Name	Required	Display the name of the selected connected resource Click + Create New in the list to create a connected resource
NAT IP Range	Required	Enter the NAT IP range to use Enter in CIDR format such as 192.168.2.0/23 Cannot overlap with connected VPC IP or other Private NAT IP ranges
Description	Optional	Enter a description for the Private NAT

Table. Private NAT Service Information Input Items

Note

Must not overlap with the IP range of the VPC connected to the selected Direct Connect or Transit Gateway.
Must not overlap with other Private NAT ranges connected to the selected Direct Connect or Transit Gateway.
Must not overlap with the IP range of the On-Premise Network connected to the selected Direct Connect or Transit Gateway.
Some IP ranges are for management purposes and cannot be used.

* Enter or select the required information in the **Enter Additional Information** section.

Division	Required	Detailed Description
Tags	Optional	Add tags Can add up to 50 tags per resource Click the Add Tag button and then enter or select Key, Value values

Division

Required

Detailed Description

Viewing Private NAT Detail Information

You can view and modify the entire resource list and detailed information of the Private NAT service. The Private NAT Detail page consists of Detail Information, IP Management, Tags, Task History tabs.

Follow these steps to view Private NAT detail information.

Click the All Services > Networking > VPC menu. You will be navigated to the VPC’s Service Home page.
Click the Private NAT menu on the Service Home page. You will be navigated to the Private NAT List page.
Click the resource for which you want to view detailed information on the Private NAT List page. You will be navigated to the Private NAT Detail page.
- The Private NAT Detail page displays status information and additional feature information, and consists of Detail Information, IP Management, Tags, Task History tabs.
  Division Detailed Description
  Status Private NAT status
  Active: Running
  Creating: Creating
  Deleting: Deleting
  Error: Error occurred
  Delete Private NAT Button to delete Private NAT
  Table. Private NAT Status Information and Additional Features

Division	Detailed Description
Status	Private NAT status Active: Running Creating: Creating Deleting: Deleting Error: Error occurred
Delete Private NAT	Button to delete Private NAT

Detail Information

You can view the detailed information of the resource selected on the Private NAT List page, and modify the information if necessary.

Division	Detailed Description
Service	Service name
Resource Type	Resource type
SRN	Unique resource ID in Samsung Cloud Platform
Resource Name	Private NAT resource name
Resource ID	Unique resource ID in the service
Creator	User who created the Private NAT
Created At	Date and time when the Private NAT was created
Modifier	User who modified the Private NAT information
Modified At	Date and time when the Private NAT information was modified
Private NAT Name	Private NAT resource name
Connected Resource Type	Resource information connected to Private NAT
NAT IP Range	NAT IP range information in use
Connected Resource Name	Resource information connected to Private NAT, clicking the resource name navigates to the detail information page
Description	Description of Private NAT Can modify description by clicking the Edit icon

Table. Private NAT Detail Information Tab Items

IP Management

You can view Private NAT IPs on the Private NAT List page, and reserve or release them.

Division

Detailed Description

Private NAT IP List

List of Private NAT IPs in use

Can view Private NAT IP, connected resource, and status

Click the Reserve Private NAT IP button to add an IP

Click the Release button to delete the selected IP

Table. Private NAT IP Management Tab Items

Task History

You can view the task history of the resource selected on the Private NAT List page.

Division	Detailed Description
Task History List	Resource change history View task date and time, resource name, task details, task result, task operator information

Table. Private NAT Task History Tab Detail Information Items

Managing Private NAT IP

You can reserve or release Private NAT IPs.

Reserving Private NAT IP

Follow these steps to reserve a Private NAT IP.

Click the All Services > Networking > VPC menu. You will be navigated to the VPC’s Service Home page.
Click the Private NAT menu on the Service Home page. You will be navigated to the Private NAT List page.
Click the resource for which you want to reserve an IP on the Private NAT List page. You will be navigated to the Private NAT Detail page.
Click the IP Management tab on the Private NAT Detail page. You will be navigated to the IP Management tab page.
Click the Reserve Private NAT IP button on the IP Management tab page. The Private NAT IP reservation window appears.
Enter the Private NAT IP to use in the Private NAT IP reservation window and click the OK button. A notification confirmation window appears.
Click the OK button in the notification confirmation window. Verify that the resource item has been added to the IP list.

Releasing Private NAT IP

Caution

You can only release Private NAT IPs when the status is Reserved.

Follow these steps to release a Private NAT IP.

Click the All Services > Networking > VPC menu. You will be navigated to the VPC’s Service Home page.
Click the Private NAT menu on the Service Home page. You will be navigated to the Private NAT List page.
Click the resource for which you want to reserve an IP on the Private NAT List page. You will be navigated to the Private NAT Detail page.
Click the IP Management tab on the Private NAT Detail page. You will be navigated to the IP Management tab page.
Click the Release button for the IP item you want to release on the IP Management tab page. A notification confirmation window appears.
Verify that the selected resource has been deleted from the IP list.

Deleting Private NAT

You can reduce operating costs by terminating unused Private NATs.

Caution

You cannot terminate the Private NAT service when the service status is Creating, Editing, or Deleting.

Follow these steps to terminate a Private NAT.

Click the All Services > Networking > VPC menu. You will be navigated to the VPC’s Service Home page.
Click the Private NAT menu on the Service Home page. You will be navigated to the Private NAT List page.
Click the resource you want to delete on the Private NAT List page. You will be navigated to the Private NAT Detail page.
Click the Delete Private NAT button on the Private NAT Detail page.
When termination is complete, verify that the resource has been deleted in the Private NAT List.

Prerequisite Services

These are services that must be installed in advance before creating this service. Please prepare by referring to the previously notified user guide.

Service Category	Service	Detailed Description
Networking	VPC	Service that provides an independent virtual network in the cloud environment
Networking	Direct Connect	Service that safely and quickly connects the customer network to the Samsung Cloud Platform environment

Table. Private NAT Prerequisite Services

2.7 - VPC Endpoint

Create VPC Endpoint

You can create and use VPC Endpoint services in the Samsung Cloud Platform Console.

To create a VPC Endpoint, follow these steps:

Click All Services > Networking > VPC menu. You will be redirected to the VPC Service Home page.

Click the Create VPC Endpoint button on the Service Home page. You will be redirected to the Create VPC Endpoint page.

Enter or select the required information in the Service Information section.

Category	Required	Description
VPC Name	Required	Select the VPC to create the Endpoint Click + Create New to create a VPC and then select
Usage > Target Service	Required	Select the target service to create the VPC Endpoint
Usage > Connected Resource	Required	Select the resource to create the VPC Endpoint
VPC Endpoint Name	Required	Enter the VPC Endpoint name Enter 3-20 characters using letters and numbers
VPC Endpoint IP > Subnet Name	Required	Select the VPC Endpoint Subnet Click + Create New to create a Subnet and then select
VPC Endpoint IP > IP	Required	Enter the IP to use as VPC Endpoint Example: `192.168.x.x`
Description	Optional	Enter description for VPC Endpoint

Table. VPC Endpoint Service Information Input Items

Enter or select the required information in the Additional Information section.

Category

Required

Description

View VPC Endpoint Details

VPC Endpoint services allow you to view and modify the entire resource list and detailed information. The VPC Endpoint Details page consists of Details, Tags, Operation History tabs.

To view Endpoint details, follow these steps:

Click All Services > Networking > VPC menu. You will be redirected to the VPC Service Home page.
Click the VPC Endpoint menu on the Service Home page. You will be redirected to the VPC Endpoint List page.

Click the resource for which you want to view detailed information on the VPC Endpoint List page. You will be redirected to the VPC Endpoint Details page.

The VPC Endpoint Details page displays status information and additional feature information, and consists of Details, Tags, Operation History tabs.

Category

Description

Status

VPC Endpoint status

Active: Operating normally

Creating: Creation in progress

Deleting: Deleting resource connection

Deleted: Resource connection deleted

Delete VPC Endpoint

Button to delete VPC Endpoint connection resource

Table. VPC Endpoint Status Information and Additional Features

Details

On the VPC Endpoint List page, you can view the detailed information of the selected resource and modify it if necessary.

Category	Description
Service	Service name
Resource Type	Resource type
SRN	Unique resource ID in Samsung Cloud Platform In VPC Endpoint, it means VPC Endpoint SRN
Resource Name	VPC Endpoint resource name
Resource ID	Unique resource ID in the service
Creator	User who created the VPC Endpoint
Created At	Date and time when VPC Endpoint was created
Modifier	User who modified VPC Endpoint information
Modified At	Date and time when VPC Endpoint information was modified
VPC Endpoint Name	VPC Endpoint name
VPC Name	Connected VPC name, click VPC item to go to details page
VPC ID	Connected VPC ID
Target Service	Connected target information
Connected Resource Information	Connected resource information
Subnet Name	Endpoint subnet information, click subnet item to go to details page
VPC Endpoint IP	VPC Endpoint IP information
Description	Description for VPC Endpoint Can modify by clicking Edit icon

Table. VPC Endpoint Details Tab Items

Operation History

On the VPC Endpoint List page, you can view the operation history of the selected resource.

Category	Description
Operation History List	Resource change history Verify operation date/time, resource name, operation details, operation result, operator information

Table. VPC Endpoint Operation History Tab Detailed Information Items

Delete VPC Endpoint

You can reduce operating costs by terminating unused Endpoints.

Warning

Cannot terminate the service if there are connected resources such as Object Storage, Container Registry, etc. Delete the connected resources first.
Deleting a VPC Endpoint may immediately stop the operating service. Proceed with the deletion operation after fully considering the impact caused by service deletion.

To terminate a VPC Endpoint, follow these steps:

Click All Services > Networking > VPC menu. You will be redirected to the VPC Service Home page.
Click the VPC Endpoint menu on the Service Home page. You will be redirected to the VPC Endpoint List page.
Click the resource to delete on the VPC Endpoint List page. You will be redirected to the VPC Endpoint Details page.
Click the Delete Endpoint button on the VPC Endpoint Details page.
After termination is complete, verify that the resource has been deleted on the VPC Endpoint List.

Prerequisites

This is a list of services that must be configured in advance before creating this service. Please prepare in advance by referring to the guides provided for each service.

Service Category	Service	Description
Networking	VPC	Service that provides independent virtual networks in the cloud environment
Networking	Direct Connect	Service that securely and quickly connects customer networks and Samsung Cloud Platform

Table. VPC Endpoint Prerequisites

2.8 - VPC Peering

Users can create VPC Peering services by entering required information and selecting detailed options through the Samsung Cloud Platform Console.

Create VPC Peering

You can create and use VPC Peering services in the Samsung Cloud Platform Console.

To create a VPC Peering, follow these steps:

Click All Services > Networking > VPC menu. You will be redirected to the VPC Service Home page.

Click the Create VPC Peering button on the Service Home page. You will be redirected to the Create VPC Peering page.

Enter or select the required information in the Service Information section.

Category	Required	Description
VPC Peering Name	Required	Enter the VPC Peering name Enter 3-20 characters using letters and numbers
Request VPC Name	Required	Select the VPC to request VPC Peering Click + Create New in the list to create a VPC
Approval Account	Required	Select the Account of the VPC to approve VPC Peering and then select that VPC or enter information When selecting Same account, select the approval VPC name Click + Create New in the list to create a VPC When selecting Different account, enter the approval Account ID and approval VPC ID
Description	Optional	Enter description for VPC Peering

Table. VPC Peering Service Information Input Items

Enter or select the required information in the Additional Information section.
Category
Required
Description
Tags Optional Add tags
Up to 50 tags per resource
Click Add Tag button and enter or select Key, Value values
Table. VPC Peering Additional Information Input Items

On the Summary panel, verify the detailed information and estimated billing amount, then click the Create button.
- If connecting to a VPC of a different Account, the connection operation may take time as Peering proceeds after the approval process.
- After creation is complete, verify the created resource on the VPC Peering List page.

View VPC Peering Details

VPC Peering services allow you to view and modify the entire resource list and detailed information. The VPC Peering Details page consists of Details, Rules, Tags, Operation History tabs.

To view VPC Peering details, follow these steps:

Click All Services > Networking > VPC menu. You will be redirected to the VPC Service Home page.
Click the VPC Peering menu on the Service Home page. You will be redirected to the VPC Peering List page.

Click the resource for which you want to view detailed information on the VPC Peering List page. You will be redirected to the VPC Peering Details page.

The VPC Peering Details page displays status information and additional feature information, and consists of Details, Rules, Tags, Operation History tabs.

Category

Description

Status

VPC Peering status

Active: Operating

Requesting: Connection or deletion request in progress

Creating: Connecting

Creating Requesting: Connection request in progress

Deleting Requesting: Deletion request in progress

Editing: Modification in progress

Rejected: Approval rejected

Canceled: Request canceled

Error: Error occurred
- If it occurs continuously, contact the registered administrator

Delete VPC Peering/Request VPC Peering Deletion

Button to request deletion of VPC Peering resource

Cancel Connection Request: Can cancel if VPC Peering connection was requested

Approve Connection: Can approve if VPC Peering connection request was received
- Can reject connection by clicking Reject Connection

Cancel Deletion Request: Can cancel if VPC Peering deletion was requested

Approve Deletion: Can approve if VPC Peering deletion request was received
- Can reject deletion by clicking Reject Deletion

Request Reapproval: Request reapproval if VPC approval was rejected

Table. VPC Peering Status Information and Additional Features

Details

On the VPC Peering List page, you can view the detailed information of the selected resource and modify it if necessary.

Category	Description
Service	Service name
Resource Type	Resource type
SRN	Unique resource ID in Samsung Cloud Platform
Resource Name	VPC Peering resource name
Resource ID	Unique resource ID in the service
Creator	User who created the VPC Peering
Created At	Date and time when VPC Peering was created
Modifier	User who modified VPC Peering information
Modified At	Date and time when VPC Peering information was modified
VPC Peering Name	VPC Peering name
Request Information	VPC name and VPC ID information that requested VPC Peering, click VPC name to go to details page If connecting to VPC of a different Account, that VPC name is not displayed
Approval Information	VPC name and VPC ID information that approved VPC Peering, click VPC name to go to details page If connecting to VPC of a different Account, that VPC name is not displayed
Description	Description for VPC Peering Can modify description by clicking Edit icon

Table. VPC Peering Details Items

Rules

On the VPC Peering List page, you can view the rules connected to the selected resource, and add or delete them.

Category

Description

Rule List

List of connected rules

Can verify source, destination, destination IP range, and status of connected rules

Click Add Rule button to add rules

Click Delete button to delete selected rules

Table. VPC Peering Rules Tab Items

Operation History

On the VPC Peering List page, you can view the operation history of the selected resource.

Category	Description
Operation History List	Resource change history Verify operation date/time, resource name, operation details, operation result, operator information

Table. VPC Peering Operation History Tab Detailed Information Items

Manage VPC Peering Rules

You can add or delete rules to VPC Peering.

Add Rules

Warning

Can only add rules when VPC Peering status is Active.
If you enter the destination IP incorrectly in routing settings, communication failure may occur. Verify the destination IP information again before creating rules.

To add rules to VPC Peering, follow these steps:

Click All Services > Networking > VPC menu. You will be redirected to the VPC Service Home page.
Click the VPC Peering menu on the Service Home page. You will be redirected to the VPC Peering List page.
Click the resource to delete on the VPC Peering List page. You will be redirected to the VPC Peering Details page.
Click the Rules tab on the VPC Peering Details page. You will be redirected to the Rules tab page.
Click the Add Rule button on the Rules tab page. The add rule window appears.
Enter the source and destination in the add rule window and click the Confirm button. The notification confirmation window appears.
- Must not duplicate with already entered rules.
- Can enter within the IP range range of the destination VPC.
- Must enter the same as the Subnet range.
- Cannot use 0.0.0.0/0 as the destination IP range.
Click the Confirm button in the notification confirmation window. Verify that the resource item has been added to the rule list.

Delete Rules

Warning

Can only delete connected rules when VPC Peering service status is Active or Error.
Cannot delete when the status of connected rules is Creating or Deleting.

To delete rules of VPC Peering, follow these steps:

Click All Services > Networking > VPC menu. You will be redirected to the VPC Service Home page.
Click the VPC Peering menu on the Service Home page. You will be redirected to the VPC Peering List page.
Click the resource to delete on the VPC Peering List page. You will be redirected to the VPC Peering Details page.
Click the Rules tab on the VPC Peering Details page. You will be redirected to the Rules tab page.
Click the Delete button of the item to delete on the Rules tab page. The notification confirmation window appears.
Click the Confirm button in the notification confirmation window. Verify that the selected resource has been deleted in the rule list.

Terminate VPC Peering

You can reduce operating costs by terminating unused VPC Peering.

Warning

Cannot terminate the service if rules are connected to VPC Peering. Delete all connected rules before terminating the service.
Can only terminate when VPC Peering service status is Active, Rejected, Canceled, or Error.

Terminate VPC Peering in Same Account

To terminate VPC Peering within the same Account, follow these steps:

Click All Services > Networking > VPC menu. You will be redirected to the VPC Service Home page.
Click the VPC Peering menu on the Service Home page. You will be redirected to the VPC Peering List page.
Click the resource to delete on the VPC Peering List page. You will be redirected to the VPC Peering Details page.
Click the Delete VPC Peering button on the VPC Peering Details page.
After termination is complete, verify that the resource has been deleted on the VPC Peering List.

Terminate VPC Peering Connected to Different Account

To terminate VPC Peering connected to a different Account, follow these steps:

Click All Services > Networking > VPC menu. You will be redirected to the VPC Service Home page.
Click the VPC Peering menu on the Service Home page. You will be redirected to the VPC Peering List page.
Click the resource to delete on the VPC Peering List page. You will be redirected to the VPC Peering Details page.
Click the Request VPC Peering Deletion button on the VPC Peering Details page.
After termination is complete, verify that the resource has been deleted on the VPC Peering List.
- The deletion request must be approved by the peer Account for normal termination.

Prerequisites

This is a service that must be installed in advance before creating this service. Please prepare by referring to the user guide provided in advance.

Service Category	Service	Description
Networking	VPC	Service that provides independent virtual networks in the cloud environment

Table. VPC Peering Prerequisites

2.9 - Transit Gateway

Users can create the Transit Gateway service by entering required information and selecting detailed options through the Samsung Cloud Platform Console.

Creating Transit Gateway

You can create and use the Transit Gateway service in the Samsung Cloud Platform Console.

Follow these steps to create a Transit Gateway.

Click the All Services > Networking > VPC menu. You will be navigated to the VPC’s Service Home page.

Click the Create Transit Gateway button on the Service Home page. You will be navigated to the Create Transit Gateway page.

Enter or select the required information in the Enter Service Information section.

Division	Required	Detailed Description
Transit Gateway Name	Required	Enter the Transit Gateway name Enter 3 to 20 characters using English letters and numbers
Description	Optional	Enter a description for the Transit Gateway

Table. Transit Gateway Service Information Input Items

Enter or select the required information in the Enter Additional Information section.
Division
Required
Detailed Description
Tags Optional Add tags
Can add up to 50 tags per resource
Click the Add Tag button and then enter or select Key, Value values
Table. Transit Gateway Additional Information Input Items

Review the detailed information and estimated billing cost in the Summary panel, and click the Create button.
- When creation is complete, verify the created resource in the Transit Gateway List page.

Viewing Transit Gateway Detail Information

You can view and modify the entire resource list and detailed information of the Transit Gateway service. The Transit Gateway Detail page consists of Detail Information, Connected VPC Management, Rules, Tags, Task History tabs.

Follow these steps to view Transit Gateway detail information.

Click the All Services > Networking > VPC menu. You will be navigated to the VPC’s Service Home page.
Click the Transit Gateway menu on the Service Home page. You will be navigated to the Transit Gateway List page.

Click the resource for which you want to view detailed information on the Transit Gateway List page. You will be navigated to the Transit Gateway Detail page.

The Transit Gateway Detail page displays status information and additional feature information, and consists of Detail Information, Connected VPC Management, Rules, Tags, Task History tabs.

Division

Detailed Description

Status

Transit Gateway status

Active: Running

Creating: Creating

Editing: Modifying

Deleting: Deleting

Error: Error occurred

Delete Transit Gateway

Button to delete Transit Gateway resource

Table. Transit Gateway Status Information and Additional Features

Detail Information

You can view the detailed information of the resource selected on the Transit Gateway List page, and modify the information if necessary.

Division	Detailed Description
Service	Service name
Resource Type	Resource type
SRN	Unique resource ID in Samsung Cloud Platform
Resource Name	Transit Gateway resource name
Resource ID	Unique resource ID in the service
Creator	User who created the Transit Gateway
Created At	Date and time when the Transit Gateway was created
Modifier	User who modified the Transit Gateway information
Modified At	Date and time when the Transit Gateway information was modified
Transit Gateway Name	Transit Gateway resource name
Uplink Usage	Uplink information connected to Transit Gateway Clicking Linked Service (IGW,FW) Line Application/Modification/Termination Request Shortcut navigates to the service application page
Description	Description of Transit Gateway Can modify description by clicking the Edit icon
Firewall Connection Status	Firewall connection management and status display Clicking the Firewall Connection button requests connection After connection, can add or delete Firewalls from the list

Table. Transit Gateway Detail Information Tab Items

Connected VPC Management

You can view VPCs connected to the resource selected on the Transit Gateway List page, and add or delete them.

Division

Detailed Description

VPC List

List of connected VPCs

Can view connected VPC information and status

Click the Add VPC Connection button to add a VPC

Click the Delete button to delete the selected VPC

Table. Transit Gateway Connected VPC Management Tab Items

Rules

You can view rules connected to the resource selected on the Transit Gateway List page, and add or delete them.

Division

Detailed Description

Rule List

List of connected rules

Can view source, destination, destination IP range, and status of connected rules

Click the Add Rule button to add a rule

Click the Delete button to delete the selected rule

Table. Transit Gateway Rules Tab Items

Task History

You can view the task history of the resource selected on the Transit Gateway List page.

Division	Detailed Description
Task History List	Resource change history View task date and time, resource name, task details, task result, task operator information

Table. Transit Gateway Task History Tab Detail Information Items

Managing Transit Gateway Linked Services

You can apply for, modify, and terminate Uplink and Firewall connection services required for using the Transit Gateway service.

Follow these steps to apply for Transit Gateway linked services.

Click the All Services > Networking > VPC menu. You will be navigated to the VPC’s Service Home page.
Click the Transit Gateway menu on the Service Home page. You will be navigated to the Transit Gateway List page.
Click the resource for which you want to delete on the Transit Gateway List page. You will be navigated to the Transit Gateway Detail page.
Click Linked Service (IGW,FW) Line Application/Modification/Termination Request Shortcut on the Transit Gateway Detail page. You will be navigated to the service request page.

Enter or select the corresponding information in the required input field on the Service Request page.

Input Item	Detailed Description
Title	Enter the title of the service request content Example: TGW Uplink Line Application
Region	Select the location of Samsung Cloud Platform Automatically entered with the region corresponding to the Account
Service	Select service category and service Service Category: Networking Service: Transit Gateway
Task Type	Select the type you want to request TGW Uplink Line Application/Modification/Termination: After selecting task type, enter detailed information in the service request type item
Content	Fill in detailed items of the service application form Service Request Type: Enter directly among Application / Modification / Termination Account Name/ID: Enter Account name and ID Transit Gateway Name/ID: Enter created Transit Gateway name and ID Applicant Information: Enter applicant email, phone number, etc. Service Request Task Type: Select and enter among Uplink Line Connection / BM VPC Firewall Connection Firewall Usage: Enter whether to use firewall
Attachment	Upload files if you want to share additional files Can attach up to 5 files, each within 5MB Can only attach doc, docx, xls, xlsx, ppt, ppts, hwp, txt, pdf, jpg, jpeg, png, gif, tif files

Table. Linked Service Creation Request Items

Click the Request button on the service request page.
- When application is complete, verify the applied content on the Support Center > Service Request List page.
- When the service request task is complete, you can verify the applied resource on the Transit Gateway Detail page.

Managing VPC Connection for Transit Gateway

You can add or delete VPCs to the Transit Gateway.

Adding VPC Connection

Follow these steps to add a VPC connection to the Transit Gateway.

Click the All Services > Networking > VPC menu. You will be navigated to the VPC’s Service Home page.
Click the Transit Gateway menu on the Service Home page. You will be navigated to the Transit Gateway List page.
Click the resource for which you want to delete on the Transit Gateway List page. You will be navigated to the Transit Gateway Detail page.
Click the Connected VPC Management tab on the Transit Gateway Detail page. You will be navigated to the Connected VPC Management tab page.
Click the Add VPC Connection button on the Connected VPC Management tab page. The VPC connection addition window appears.
Select a VPC in the VPC connection addition window and click the OK button. A notification confirmation window appears.
- Clicking + Create New in the list allows you to create a VPC and select it.
Click the OK button in the notification confirmation window. Verify that the resource item has been added to the VPC connection list.

Deleting VPC Connection

Follow these steps to delete a VPC connection from the Transit Gateway.

Click the All Services > Networking > VPC menu. You will be navigated to the VPC’s Service Home page.
Click the Transit Gateway menu on the Service Home page. You will be navigated to the Transit Gateway List page.
Click the resource for which you want to delete on the Transit Gateway List page. You will be navigated to the Transit Gateway Detail page.
Click the Connected VPC Management tab on the Transit Gateway Detail page. You will be navigated to the Connected VPC Management tab page.
Click the Delete button for the item you want to delete on the Connected VPC Management tab page. A notification confirmation window appears.
Click the OK button in the notification confirmation window. Verify that the selected resource has been deleted from the VPC connection list.

Managing Rules for Transit Gateway

You can add or delete rules to the Transit Gateway.

Adding Rules

Caution

You can only add rules when the Transit Gateway service status is Active.
If you enter the destination IP incorrectly in routing settings, communication failures may occur. Please verify the destination IP information again before creating a rule.

Follow these steps to add a rule to the Transit Gateway.

Click the All Services > Networking > VPC menu. You will be navigated to the VPC’s Service Home page.
Click the Transit Gateway menu on the Service Home page. You will be navigated to the Transit Gateway List page.
Click the resource for which you want to delete on the Transit Gateway List page. You will be navigated to the Transit Gateway Detail page.
Click the Rules tab on the Transit Gateway Detail page. You will be navigated to the Rules tab page.
Click the Add Rule button on the Rules tab page. The rule addition window appears.

Enter the source and destination in the rule addition window and click the OK button. A notification confirmation window appears.

Division	Detailed Description
Rule Type	Select Transit Gateway rule addition type Select from VPC-TGW Rule, TGW-Uplink Rule
Connected VPC Name	Select connected VPC when selecting VPC-TGW Rule
Source	Automatically selected when destination is set when selecting VPC-TGW Rule
Destination	Select destination of rule Set to VPC, TGW when selecting VPC-TGW Rule Set to TGW, Remote when selecting TGW-Uplink Rule Cannot register duplicate with existing rules, can enter up to x.x.x.x/28 range
Destination IP Range	Enter the destination IP range to use

Table. Rule Addition Input Items

Caution

When entering VPC-TGW Rule, verify the following items:
- When destination is VPC
  - Can enter within VPC IP range.
  - Must enter the same as Subnet range.
  - Cannot use 0.0.0.0/0 as destination IP range.
- When destination is Transit Gateway
  - Some IP ranges are for management purposes and cannot be used.
  - Cannot enter VPC IP range.
  - Can enter 0.0.0.0/0 as destination IP range only when VPC’s Internet Gateway is not connected.
When entering TGW-Uplink Rule, verify the following items:
- When destination is Transit Gateway
  - Can enter within VPC IP range connected to Transit Gateway.
  - Cannot use 0.0.0.0/0 as destination IP range.
- When destination is Remote
  - Cannot enter VPC IP range connected to Transit Gateway.
  - Can enter 0.0.0.0/0 as destination IP range only when Internet Gateway is not connected to Transit Gateway.
  - Cannot enter D, E class IP ranges.

Click the OK button in the notification confirmation window. Verify that the resource item has been added to the rule list.

Deleting Rules

Caution

You can only delete rules when the Transit Gateway service status is Active.
You cannot delete rules when the rule status is Creating, Deleting.

Follow these steps to delete a rule from the Transit Gateway.

Click the All Services > Networking > VPC menu. You will be navigated to the VPC’s Service Home page.
Click the Transit Gateway menu on the Service Home page. You will be navigated to the Transit Gateway List page.
Click the resource for which you want to delete on the Transit Gateway List page. You will be navigated to the Transit Gateway Detail page.
Click the Rules tab on the Transit Gateway Detail page. You will be navigated to the Rules tab page.
Click the Delete button for the item you want to delete on the Rules tab page. A notification confirmation window appears.
Click the OK button in the notification confirmation window. Verify that the selected resource has been deleted from the rule list.

Managing Firewall Connection

You can connect or disconnect Firewalls to use with the Transit Gateway.

Connecting Firewall

Follow these steps to add a Firewall connection to the Transit Gateway.

Click the All Services > Networking > VPC menu. You will be navigated to the VPC’s Service Home page.
Click the Transit Gateway menu on the Service Home page. You will be navigated to the Transit Gateway List page.
Click the resource for which you want to connect Firewall on the Transit Gateway List page. You will be navigated to the Transit Gateway Detail page.
Click the Detail Information tab on the Transit Gateway Detail page. You will be navigated to the Detail Information tab page.
Click the Firewall Connection button on the Detail Information tab page. The Firewall connection confirmation window appears.
Click the OK button in the Firewall connection confirmation window. Verify the connection status in the Firewall connection status item.

Adding Firewall

After Firewall connection is complete, you can add Firewalls.

Follow these steps to add a Firewall to the Transit Gateway.

Click the All Services > Networking > VPC menu. You will be navigated to the VPC’s Service Home page.
Click the Transit Gateway menu on the Service Home page. You will be navigated to the Transit Gateway List page.
Click the resource for which you want to add Firewall on the Transit Gateway List page. You will be navigated to the Transit Gateway Detail page.
Click the Detail Information tab on the Transit Gateway Detail page. You will be navigated to the Detail Information tab page.
Click the Add button in the Firewall list on the Detail Information tab page. The Firewall addition window appears.
Select the purpose in the Firewall addition window and click the OK button. Verify that the resource item has been added to the Firewall list.

Deleting Firewall

After Firewall connection is complete, you can delete Firewalls.

Follow these steps to delete a Firewall from the Transit Gateway.

Click the All Services > Networking > VPC menu. You will be navigated to the VPC’s Service Home page.
Click the Transit Gateway menu on the Service Home page. You will be navigated to the Transit Gateway List page.
Click the resource for which you want to delete Firewall on the Transit Gateway List page. You will be navigated to the Transit Gateway Detail page.
Click the Detail Information tab on the Transit Gateway Detail page. You will be navigated to the Detail Information tab page.
Click the Delete button in the Firewall list on the Detail Information tab page. A notification confirmation window appears.
Click the OK button in the notification confirmation window. Verify that the resource item has been deleted from the Firewall list.

Disconnecting Firewall

You can disconnect unused Firewall connections.

Caution

You can only disconnect connections when the Firewall service status is Active, Error.

Follow these steps to disconnect a Firewall connection from the Transit Gateway.

Click the All Services > Networking > VPC menu. You will be navigated to the VPC’s Service Home page.
Click the Transit Gateway menu on the Service Home page. You will be navigated to the Transit Gateway List page.
Click the resource for which you want to disconnect Firewall connection on the Transit Gateway List page. You will be navigated to the Transit Gateway Detail page.
Click the Detail Information tab on the Transit Gateway Detail page. You will be navigated to the Detail Information tab page.
Click the Disconnect Firewall Connection button on the Detail Information tab page. A notification confirmation window appears.
Click the OK button in the notification confirmation window. Verify the disconnection status in the Firewall connection status item.

Deleting Transit Gateway

You can reduce operating costs by terminating unused Transit Gateways.

Caution

You cannot terminate the service when Uplink connected to Transit Gateway is in use or Firewall is connected. Complete the termination request for connected resources before terminating the service.
You cannot terminate the service when VPC resources or rules are connected to Transit Gateway. Delete all connected resources and rules before terminating the service.
You cannot terminate the service when the Transit Gateway service status is Creating, Deleting.

Follow these steps to terminate a Transit Gateway.

Click the All Services > Networking > VPC menu. You will be navigated to the VPC’s Service Home page.
Click the Transit Gateway menu on the Service Home page. You will be navigated to the Transit Gateway List page.
Click the resource you want to delete on the Transit Gateway List page. You will be navigated to the Transit Gateway Detail page.
Click the Delete Transit Gateway button on the Transit Gateway Detail page.
When termination is complete, verify that the resource has been deleted in the Transit Gateway List.

Prerequisite Services

These are services that must be installed in advance before creating this service. Please prepare by referring to the previously notified user guide.

Service Category	Service	Detailed Description
Networking	VPC	Service that provides an independent virtual network in the cloud environment.

Table. Transit Gateway Prerequisite Services

2.10 - PrivateLink Service

Users can create the PrivateLink Service service by entering required information and selecting detailed options through the Samsung Cloud Platform Console.

Creating PrivateLink Service

You can create and use the PrivateLink Service service in the Samsung Cloud Platform Console.

Follow these steps to create a PrivateLink Service.

Click the All Services > Networking > VPC menu. You will be navigated to the VPC’s Service Home page.

Click the Create PrivateLink Service button on the Service Home page. You will be navigated to the Create PrivateLink Service page.

Enter or select the required information in the Enter Service Information section.

Division	Required	Detailed Description
PrivateLink Service Name	Required	Enter the PrivateLink Service name
Approval Method	Required	Select and enter PrivateLink Service approval method Automatic: Automatically approve when PrivateLink Service connection request is received Manual: Manually approve after verification when PrivateLink Service connection request is received Approval method cannot be modified after creation
High-Speed Data Transfer	Optional	Default setting is disabled and not displayed in Samsung Cloud Platform Console To use high-speed data transfer, apply for service usage at Support Center > Contact Us, and when processing is complete, you can select it on the screen
VPC Name	Required	Select the VPC to connect Clicking + Create New allows you to create a VPC and then select it
Subnet Name	Required	Select the Subnet of the VPC to connect Clicking + Create New allows you to create a Subnet and then select it
PrivateLink Service IP	Required	Enter PrivateLink Service IP after selecting the Subnet to connect Cannot enter IPs already in use within the Subnet, cannot use the first/last IP of Subnet IP range
Connected Resource	Required	Select the resource to connect to the selected VPC Load Balancer: Select Load Balancer to connect (cannot select LB if using Local subnet) IP: Enter Compute resource IP of the selected VPC
Security Group	Optional	Click the Select button to select the Security Group to connect Can select up to 5 If Security Group is not selected, all access is blocked
Description	Optional	Enter a description for the PrivateLink Service

Table. PrivateLink Service Service Information Input Items

Enter or select the required information in the Enter Additional Information section.
Division
Required
Detailed Description
Tags Optional Add tags
Can add up to 50 tags per resource
Click the Add Tag button and then enter or select Key, Value values
Table. PrivateLink Service Additional Information Input Items

Review the detailed information and estimated billing cost in the Summary panel, and click the Create button.
- When creation is complete, verify the created resource in the PrivateLink Service List page.

Note

PrivateLink product is a service that provides a one-way private path (a type of tunnel). PrivateLink product is used by creating a PrivateLink Service (exit) in the service provider account and creating a PrivateLink Endpoint (entrance) in the user account, then connecting to the PrivateLink Service.

The connection conditions for PrivateLink product are as follows:

One PrivateLink Endpoint can only be connected to the single PrivateLink Service specified at the time of creation. (Only one pair of entrance and exit exists)
Cannot attempt session connection to PrivateLink Endpoint through PrivateLink Service. (One-way)
In the provider account, when creating PrivateLink Service, connection is provided to one IP by selecting one LB or through direct input.
In the user account, all clients that the user account has allowed access to the PrivateLink Endpoint can use the PrivateLink Endpoint.
- Can be used in both General / Local Subnet.

Viewing PrivateLink Service Detail Information

You can view and modify the entire resource list and detailed information of the PrivateLink Service service. The PrivateLink Service Detail page consists of Detail Information, Connection Management, Tags, Task History tabs.

Follow these steps to view PrivateLink Service detail information.

Click the All Services > Networking > VPC menu. You will be navigated to the VPC’s Service Home page.
Click the PrivateLink Service menu on the Service Home page. You will be navigated to the PrivateLink Service List page.

Click the resource for which you want to view detailed information on the PrivateLink Service List page. You will be navigated to the PrivateLink Service Detail page.

The PrivateLink Service Detail page displays status information and additional feature information, and consists of Detail Information, Connection Management, Tags, Task History tabs.

Division

Detailed Description

Status

PrivateLink Service status

Active: Running

Creating: Creating

Deleting: Deleting

Error: Error occurred

Delete PrivateLink Service

Button to delete PrivateLink Service resource

Table. PrivateLink Service Status Information and Additional Features

Detail Information

You can view the detailed information of the resource selected on the PrivateLink Service List page, and modify the information if necessary.

Division	Detailed Description
Service	Service name
Resource Type	Resource type
SRN	Unique resource ID in Samsung Cloud Platform
Resource Name	PrivateLink Service resource name
Resource ID	Unique resource ID in the service
Creator	User who created the PrivateLink Service
Created At	Date and time when the PrivateLink Service was created
Modifier	User who modified the PrivateLink Service information
Modified At	Date and time when the PrivateLink Service information was modified
PrivateLink Service Name	PrivateLink Service resource name
PrivateLink Service ID	PrivateLink Service ID information
Connected Resource	Connected resource of PrivateLink Service Clicking connected resource name navigates to detail page
PrivateLink Service IP	PrivateLink Service IP address
VPC Name	Connected VPC information Clicking VPC name navigates to detail page
Subnet Name	Connected Subnet information Clicking Subnet name navigates to detail page
Port Name	Port information of PrivateLink Service Clicking Port name navigates to detail page
Security Group	Configured Security Group information Clicking Security Group name navigates to detail page
Approval Method	Configured PrivateLink Service approval method
High-Speed Data Transfer	Whether configured PrivateLink Service high-speed data transfer is enabled
Description	Description of PrivateLink Service Can modify description by clicking the Edit icon

Table. PrivateLink Service Detail Information Tab Items

Connection Management

You can view the connection information of the resource selected on the PrivateLink Service List page. You can verify connection requests and approve or reject them.

Division

Detailed Description

PrivateLink Service List

PrivateLink Service connection list

Can verify connection information and status, manage connections

Approve: Approve the connection request

Reject: Reject the connection request

Block: Block the connected PrivateLink Endpoint

Reconnect: Reconnect the blocked PrivateLink Endpoint

Cannot execute approval/rejection etc. when connection status is Rejected, Error

Table. PrivateLink Service Connection Management Tab Items

Task History

You can view the task history of the resource selected on the PrivateLink Service List page.

Division	Detailed Description
Task History List	Resource change history View task date and time, resource name, task details, task result, task operator information

Table. PrivateLink Service Task History Tab Detail Information Items

Deleting PrivateLink Service

You can reduce operating costs by terminating unused PrivateLink Services.

Caution

You cannot terminate the service when the status of Private Endpoint connected to PrivateLink Service is Active, Requesting, Creating, Deleting, Error.
Delete the PrivateLink Service after blocking or rejecting the connection of the Private Endpoint.

Follow these steps to terminate a PrivateLink Service.

Click the All Services > Networking > VPC menu. You will be navigated to the VPC’s Service Home page.
Click the PrivateLink Service menu on the Service Home page. You will be navigated to the PrivateLink Service List page.
Click the resource you want to delete on the PrivateLink Service List page. You will be navigated to the PrivateLink Service Detail page.
Click the Delete PrivateLink Service button on the PrivateLink Service Detail page.
When termination is complete, verify that the resource has been deleted in the PrivateLink Service List.

Prerequisite Services

These are services that must be installed in advance before creating this service. Please prepare by referring to the previously notified user guide.

Service Category	Service	Detailed Description
Networking	VPC	Service that provides an independent virtual network in the cloud environment.
Networking	Load Balancer	Service that distributes server traffic load in the cloud environment.

Table. PrivateLink Service Prerequisite Services

2.11 - PrivateLink Endpoint

Users can create the PrivateLink Endpoint service by entering required information and selecting detailed options through the Samsung Cloud Platform Console.

Creating PrivateLink Endpoint

You can create and use the PrivateLink Endpoint service in the Samsung Cloud Platform Console.

Follow these steps to create a PrivateLink Endpoint.

Click the All Services > Networking > VPC menu. You will be navigated to the VPC’s Service Home page.

Click the Create PrivateLink Endpoint button on the Service Home page. You will be navigated to the Create PrivateLink Endpoint page.

Enter or select the required information in the Enter Service Information section.

Division	Required	Detailed Description
PrivateLink Endpoint Name	Required	Enter the PrivateLink Endpoint name
VPC Name	Required	Select the VPC to connect Clicking + Create New allows you to create a VPC and then select it
Subnet Name	Required	Select the Subnet of the VPC to connect Clicking + Create New allows you to create a Subnet and then select it
PrivateLink Endpoint IP	Required	Enter PrivateLink Endpoint IP after selecting the Subnet to connect Cannot enter IPs already in use within the Subnet, cannot use the first/last IP of Subnet IP range
PrivateLink Endpoint ID	Required	Enter the PrivateLink Service ID to connect Enter within 3 to 60 characters using English letters and numbers Need to verify the Service ID of the PrivateLink Service to connect before service application, must deliver the Endpoint ID to the service provider after Endpoint creation
Security Group	Optional	Click the Select button to select the Security Group to connect Can select up to 5 If Security Group is not selected, all access is blocked
Description	Optional	Enter a description for the PrivateLink Endpoint

Table. PrivateLink Endpoint Service Information Input Items

Enter or select the required information in the Enter Additional Information section.
Division
Required
Detailed Description
Tags Optional Add tags
Can add up to 50 tags per resource
Click the Add Tag button and then enter or select Key, Value values
Table. PrivateLink Endpoint Additional Information Input Items

Review the detailed information and estimated billing cost in the Summary panel, and click the Create button.
- When creation is complete, verify the created resource in the PrivateLink Endpoint List page.

Note

To request a connection to the service provider through PrivateLink, you must go through an approval process.
When applying for service connection, you must verify the PrivateLink Service ID that is the connection target in advance.
- Usage agreement with the service provider must be completed before service application.
After the user creates the PrivateLink Endpoint, they must deliver the Endpoint ID to the service provider. The service provider can verify the user’s Endpoint ID and proceed with usage approval quickly.

Viewing PrivateLink Endpoint Detail Information

You can view and modify the entire resource list and detailed information of the PrivateLink Endpoint service. The PrivateLink Endpoint Detail page consists of Detail Information, Tags, Task History tabs.

Follow these steps to view PrivateLink Endpoint detail information.

Click the All Services > Networking > VPC menu. You will be navigated to the VPC’s Service Home page.
Click the PrivateLink Endpoint menu on the Service Home page. You will be navigated to the PrivateLink Endpoint List page.

Click the resource for which you want to view detailed information on the PrivateLink Endpoint List page. You will be navigated to the PrivateLink Endpoint Detail page.

The PrivateLink Endpoint Detail page displays status information and additional feature information, and consists of Detail Information, Connection Management, Tags, Task History tabs.

Division

Detailed Description

Status

PrivateLink Endpoint status

Requesting: Connection request/approval pending, Cancel Request button displayed

Active: Creation complete, running

Creating: Creating

Deleting: Deleting

Disconnected: Connection blocked

Rejected: Connection rejected, Request Approval Again button displayed

Error: Error occurred

Canceled: Connection request canceled, Request Approval Again button displayed

Delete PrivateLink Endpoint

Button to delete PrivateLink Endpoint resource

Table. PrivateLink Endpoint Status Information and Additional Features

Detail Information

You can view the detailed information of the resource selected on the PrivateLink Endpoint List page, and modify the information if necessary.

Division	Detailed Description
Service	Service name
Resource Type	Resource type
SRN	Unique resource ID in Samsung Cloud Platform
Resource Name	PrivateLink Endpoint resource name
Resource ID	Unique resource ID in the service
Creator	User who created the PrivateLink Endpoint
Created At	Date and time when the PrivateLink Endpoint was created
Modifier	User who modified the PrivateLink Endpoint information
Modified At	Date and time when the PrivateLink Endpoint information was modified
PrivateLink Endpoint Name	PrivateLink Endpoint resource name
PrivateLink Endpoint ID	PrivateLink Endpoint ID information
PrivateLink Service ID	Connected PrivateLink Service ID information
PrivateLink Endpoint IP	PrivateLink Endpoint IP address
VPC Name	Connected VPC information
Subnet Name	Connected Subnet information
Port Name	Port information of PrivateLink Endpoint Clicking port name allows viewing detailed information
Security Group	Configured Security Group information Clicking Security Group name allows viewing detailed information
Description	Description of PrivateLink Endpoint Can modify description by clicking the Edit icon

Table. PrivateLink Endpoint Detail Information Tab Items

Task History

You can view the task history of the resource selected on the PrivateLink Endpoint List page.

Division	Detailed Description
Task History List	Resource change history View task date and time, resource name, task details, task result, task operator information

Table. PrivateLink Endpoint Task History Tab Detail Information Items

Deleting PrivateLink Endpoint

You can reduce operating costs by terminating unused PrivateLink Endpoints.

Caution

You cannot terminate the service when the PrivateLink Endpoint service status is Requesting, Creating, Deleting.

Follow these steps to terminate a PrivateLink Endpoint.

Click the All Services > Networking > VPC menu. You will be navigated to the VPC’s Service Home page.
Click the PrivateLink Endpoint menu on the Service Home page. You will be navigated to the PrivateLink Endpoint List page.
Click the resource you want to delete on the PrivateLink Endpoint List page. You will be navigated to the PrivateLink Endpoint Detail page.
Click the Delete PrivateLink Endpoint button on the PrivateLink Endpoint Detail page.
When termination is complete, verify that the resource has been deleted in the PrivateLink Endpoint List.

Prerequisite Services

These are services that must be installed in advance before creating this service. Please prepare by referring to the previously notified user guide.

Service Category	Service	Detailed Description
Networking	VPC	Service that provides an independent virtual network in the cloud environment.

Table. PrivateLink Endpoint Prerequisite Services

2.12 - NAT Logging

To save NAT logs, you must first create a bucket in Object Storage to save the logs, and then set the bucket as the log repository in NAT Logging, after that, by setting log saving in NAT detail inquiry, NAT logs will be saved in the Object Storage bucket.

NAT log saving requires settings in the following order.

To save NAT logs, you can create a bucket in Object Storage or use an existing bucket. To create a bucket, refer to Creating Object Storage.
To set this bucket as the log repository for NAT Logging, refer to Using NAT Logging log repository.
To set the log storage to use in the NAT detailed inquiry, please refer to NAT log storage usage.

NAT Logging Using the log storage

To set the NAT log storage to use, you must first set the log storage setting in NAT Logging.

Reference

NAT Logging To set up a log storage, an Object Storage bucket for log storage is required, please create a bucket in the Object Storage service first. For more detailed information, please refer to Object Storage creation.

All services > Management > Network Logging > NAT Logging menu, click. It moves to the NAT Logging list page.
NAT Logging List page, click the Log Storage Settings button at the top, it moves to the Log Storage Settings popup window.
Log Storage Settings popup window, select the Log Storage Bucket. When you select a bucket, the Log Storage Path will be displayed.
Log Storage Settings popup window, check the Log Storage Bucket and Log Storage Path, then click the Confirm button.
Notification Confirm the message in the popup window, then click the Confirm button.

Notice

NAT Logging After setting the log storage, you must set the log storage to use in the NAT detailed inquiry for the log storage to start. For more detailed information, please refer to Using NAT Log Storage.

NAT Logging list

NAT Logging log storage bucket is set, then the NAT Logging list is retrieved.

All services > Management > Network Logging > NAT Logging menu is clicked. It moves to the NAT Logging list page.
Division
Required
Detailed Description
Resource ID Required NAT Resource ID
Save target Required NAT resource name
Save Registration Time Required NAT Log Storage Registration Time
Table. NAT Logging list items

Reference

NAT Logging content check

Please refer to the contents below and check the saved Log contents.

Saved log example: 2024-10-11T11:19:03,accept,259,17,192.168.2.173,46937,192.168.0.53,53,100.100.14.52,26937

Division	Description
2024-10-11T11:19:03	The date and time when the log occurred (2024-10-11, 11:19:03)
accept	action (deny / accept)
259	Log occurrence firewall Rule ID (Policy ID)
17	IP Protocol ID 1: ICMP 6: TCP 17: UDP
192.168.2.173	source IP
46937	Departure Port
192.168.0.53	Destination IP
53	Destination Port
100.100.14.52	NAT translated IP
26937	NAT translated Port

NAT Logging do not use log storage

NAT Logging allows you to set the log repository to not be used.

All services > Management > Network Logging > NAT Logging menu should be clicked. It moves to the NAT Logging list page.
NAT Logging list page, click the top Log Storage Settings button. It moves to the Log Storage Settings popup window.
Log Storage Settings popup window, select Log Storage Bucket as Not Used, and click the OK button.

Reference

The log repository setting can be changed when there is no log storage target. The log storage bucket change can be changed by selecting and confirming not in use and then resetting it.

3 - API Reference

API Reference

4 - CLI Reference

CLI Reference

5 - Release Note

VPC

2026.03.19

FEATURE VPC New Features Added

VPC IP Range Addition Feature
- You can add and use a new IP range to the VPC.
Virtual IP Feature
- You can reserve and use a Virtual IP in a Subnet.
Private NAT Feature Improvement
- You can now use Private NAT in Transit Gateway as well.

2025.10.23

FEATURE PrivateLink Feature Added

You can connect via a private path between the VPC and SCP services without exposing internal Samsung Cloud Platform data to the internet.

2025.07.01

FEATURE New Services Added Beyond Transit Gateway

Transit Gateway Feature
- Easily connects customer networks and Samsung Cloud Platform’s networks and acts as a connection hub for multiple VPCs within the cloud environment.
VPC Peering Feature
- Allows IP communication via 1:1 private routes between VPCs.
Private NAT Feature
- Compute resources within a VPC can connect by mapping customer network IPs using Direct Connect.

2025.02.27

FEATURE VPC Endpoint Service Added

VPC Feature
- Provides an endpoint (entry point) that allows access to Samsung Cloud Platform through a private connection from an external network connected to the VPC.
Samsung Cloud Platform Common Feature Changes
- Reflected common CX changes such as Account, IAM, Service Home, and tags.

2024.12.23

FEATURE NAT Log Storage Feature Added

Added the ability to store NAT logs.
You can decide whether to store NAT logs and store logs in Object Storage.

2024.10.01

NEW VPC Service Official Version Release

VPC service providing independent virtual network spaces has been released.

2024.07.02

NEW Beta Version Release

VPC service providing independent virtual network spaces has been released.

Service	Port Information
DNS	TCP 53, UDP 53
Object Storage	TCP 8080, 8443, 80, 443, 4430
File Storage	(NFS) TCP/UDP common 111, 300, 302, 304, 2049, 635, 4045, 4046, 4049 (CIFS) UDP 135, 137, 138, 389 / TCP 135, 139, 445, 40001
Container Registry (Auth Server, Registry)	TCP 443

Division	Required	Detailed Description
Resource ID	Required	NAT Resource ID
Save target	Required	NAT resource name
Save Registration Time	Required	NAT Log Storage Registration Time