Networking¶

Eight services covering everything from per-VM public IP to BDIX-direct interconnect.

Virtual Private Cloud

Tenant-isolated network with subnets, route tables, security groups.
Public IPv4 & IPv6

Static and dynamic addressing, dual-stack support.
Floating / Reserved IP

Persistent IPs you can move between VMs / LBs.
Load Balancer

L4 + L7 (HTTP/HTTPS), health checks, sticky sessions.
DNS (Authoritative)

Hosted zones, GeoDNS, DNSSEC.
VPN-as-a-Service

IPsec site-to-site and IKEv2 client VPN.
BDIX Peering Direct Connect

Private interconnect to BDIX for sub-ms domestic egress.
Content Delivery Network

Domestic-first CDN with on-shore edge.

How VPC, IP, and LB fit together¶

graph LR
    Internet((Internet))
    BDIX((BDIX))
    LB[Load Balancer]
    SG[Security Group]
    VM1[VM]
    VM2[VM]
    DB[(Managed DB)]

    Internet --> LB
    BDIX --> LB
    LB --> SG
    SG --> VM1
    SG --> VM2
    VM1 -.private.-> DB
    VM2 -.private.-> DB

Egress pricing in one sentence¶

Domestic egress over BDIX is free; international egress is metered in BDT/GB (cheaper than international cloud providers because we're not arbitraging FX). See Pricing.

Defaults to know¶

New VMs land in the default VPC of the chosen project unless you specify another
Security groups default-deny inbound, default-allow outbound
Network ACLs are stateless and applied at the subnet level
DNS resolver is provided per VPC; recursive resolution stays on-shore