What is IBM Cloud VPC?

IBM Cloud® VPC is your own protected space in the IBM Cloud. IBM Cloud VPC provides the advanced security of a private cloud with the agility and ease of a public cloud. Define and control your virtual networks in logically isolated segments of the IBM public cloud. Use virtual private clouds to isolate and provision network segments on the IBM Cloud, where you can deploy and manage compute, storage and networking cloud resources. IBM Cloud VPC offers agile scalability for easy business growth, high availability for better customer satisfaction, security for your workloads and lower total cost of ownership.

Benefits

Flexible business growth

IBM Cloud VPC lets you control the size of your virtual network and dynamically deploy virtual servers and storage and networking cloud resources as your business requires. Use IBM Cloud VPC to easily scale resources to adapt to changing business conditions. For ease of use and deployment, IBM Cloud Virtual Servers features fast provisioning that requires no operating system setup.

Increase customer satisfaction

IBM Cloud VPC adds to the security capabilities of the IBM Cloud and creates more secure environments for application workloads and data through the use of security Groups and Access Control Lists. Security Groups are stateful firewalls that operate at the instance level and provide means to organize cloud resources in groups with access rules. Access Control Lists provide subnet-level stateless firewall protection, control traffic in and out of a subnet, and enable allow and deny rules for the traffic in and out of subnets.

Trusted business response

Keep application workloads available with added fault tolerance by building multiple VPC subnets in IBM Multi-Zone Regions (MZR). Expand your loyal customer community with the high availability and responsiveness of resilient business applications. In the event of disruptions or scheduled downtime, mission-critical workloads deployed redundantly in availability zones continue to operate and deliver services that customers expect.

Features

Agile

Scale cloud infrastructure resources — including virtual Servers, object and block storage, and networking in logically isolated virtual network segments that adapt to your business needs.

Secure

Protect your business with more secure and highly available private virtual networks that give you control over how your cloud resources and workloads are accessed, and who can access them.

Resilient

Use IBM Cloud MZR and availability zones with redundant resources and no shared points of failure to keep your enterprise workloads and cloud-native applications available to customers.

VPC subnets

Subnets are the foundational building blocks used to deploy cloud resources in your public cloud VPC. They are bound to a single zone and cannot span multiple zones or regions, which helps with security, reduces latency and improves availability.

Create multiple VPCs and subnets easily by using the suggested prefix ranges and preconfigured network security policies or design and define your own address prefixes and custom security policies.

CIDR blocks 161.26/16 and 166.8/14 are both reserved and routed into every subnet. Read about our service endpoints available for IBM Cloud VPC.

Bring your own subnet/IP

VPC supports bring-your-own IP (BYOIP) to allow customers to add their own publicly routable IPv4 prefixes and use with VPC resources. Easily move applications and extend your presence to the cloud by connecting on-premises resources to those on the IBM public cloud without disruption. Higher security for applications and data with the IBM Cloud Bring Your Own Keys (BYOK) capability gives you sole control over the security and privacy of your data and applications.

Creating protected workspaces in public and private clouds

Inspire-Tech (link resides outside IBM) sought to revolutionize the journey of its customers with its secure enterprise file sharing platform EasiShare (link resides outside IBM). Inspire-Tech’s challenge was how to allow internal users to share files with external parties while isolating their intranet from the internet.

IBM Cloud VPC offered the ideal environment for deploying a three-tier architecture in an intranet of web, application, and database servers, and another set in the DMZ. Using this three-tier implementation, Inspire-Tech delivered its solution with confidence, knowing that only specific files meant for external parties are exposed to the internet. The flexibility, fine-grained networking rules and access controls provided by IBM Cloud VPC helped Inspire-Tech to deploy secure solutions in public and private clouds that are aligned with the organization’s emphasis on security.

"Using the same network-isolated architecture which aligns with our focus on security, through IBM Cloud we can now easily leverage other technologies, such as IBM Cloud Object Storage."  

- Teck Wei Ting, Inspire-Tech Operations Manager 

Get started

Explore your options and learn how to start creating your own virtual private cloud on the IBM Cloud today.