Virtual Router Function
The virtual router function is used to connect an external network to an internal network, or to connect multiple internal networks to each other.
The relationship between networks and a virtual router is shown in the following figure.
Figure: Relationship between an External Network, Internal Networks, and a Virtual Router
Creating a Virtual Router
To create a virtual router, specify the following items:
| Item | Description | Required |
|---|---|---|
| Virtual Router Name | Specify a name to identify the virtual router. | |
| Availability Zone Name | Specify the availability zone where the virtual router will be created. If this setting is omitted, the default availability zone will be used. |
Modifying the Virtual Router Information
You can modify the setting information for an existing virtual router. To connect the virtual router to an external network, use this function to set the external network.
| Item | Description | Required |
|---|---|---|
| Virtual Router Name | Specify the name of the virtual router for which you want to change the settings. | |
| External Network ID |
Specify the ID for the external network. Tip: You can confirm the ID in the list of subnet IDs.
|
Managing the Connection between a Virtual Router and a Network
Use the following operation to add a new subnet connection to an existing virtual router.
- Create a port on the subnet for which you want to add a connection.
- Add the created port to the virtual router as an interface.
Deleting a Virtual Router
Delete a virtual router that is no longer needed.
NAT Functions
You can use the following NAT functions on a virtual router.
-
SNAT
Communication from an internal network to an external network. The sender global IP address used for SNAT is unique to each virtual router connected to an external network and is not shared with any virtual routers of other projects.
The SNAT function is only enabled for transmission from resources in the subnets of virtual routers that are connected to external networks. However, for the Eastern Japan Region 2, communication is also possible from resources in the subnets of internal virtual routers that have 2 or more tiers.
Note:- Use of SNAT for IP addresses that are not managed using the IaaS service of FUJITSU Cloud Service for OSS is not supported (For example, IP addresses on a customer's on-premises network that is connected to using the Private Connection function).
- When it is necessary to communicate from an unsupported IP address like the one explained above to an external network via a virtual router on the IaaS, it is necessary to prepare a virtual server that has either proxy or NAT functionality, place it in the project, and use it to perform conversion of addresses.
-
DNAT
Communication from an external network to an internal network
If a global IP address has been assigned to the port on a resource, address translation will be performed between the global IP address and private IP addresses.
Inter-Project Network Connection Function
Connect networks via a virtual router between different projects in the same contract number (domain). To the virtual router in your project, set the information of a port existing in another project to be connected to, as shown below.
| Item | Description | Required |
|---|---|---|
| Port ID | Specify the ID of a port that exists in a project different from the project to which the virtual router belongs. | Yes |
Disconnection of Inter-Project Network Connection
To disconnect the inter-project network connection, delete the information of the port (belonging to another project) that is already connected to the virtual router.
| Item | Description | Required |
|---|---|---|
| Port ID | Specify the port ID from which the inter-project network connection will be disconnected. | Yes |