Release Notes and Announcements

Release Notes

Announcements

Product Introduction

Overview

Features

Application Scenarios

Use Limits

Connection Access Point

Relevant Products

Network Planning

Purchase Guide

Billing Overview

Purchasing in the Console

Renewing Connections

Getting Started

Operation Guide

Connections

Direct Connect Gateways

Dedicated Tunnels

Monitoring and Alarming

MACsec Encryption

Cloud Exchange

Cloud Access Management

Overview

Access Policy Types

Access Policy Syntax

Practical Tutorial

Connecting a Local IDC to CVM by Using a VPC NAT Gateway and Direct Connect

Hybrid Cloud Primary/Secondary Communication (DC and VPN)

Best Practices on Direct Connect High Availability and Hybrid Cloud Network

Migrating Cross-Region Dedicated Tunnel to CCN

Migrating IDC to the Cloud Through CCN

Accelerating Routing Convergence Through BGP+BFD (Layer 3)

IDC Local Configuration

Establishing Direct Connect Between Tencent Cloud and Various Cloud Vendors Through Equinix

API Documentation

History

Introduction

API Category

Making API Requests

Direct Connect APIs

Data Types

Error Codes

FAQ

Basic FAQs

Billing Issues

Function Issues

Troubleshooting

General Troubleshooting Solutions

Access Failure and Packet Loss

Agreements

Tencent Cloud Direct Connect Service Level Agreement

Tencent Cloud Direct Connect Service Agreement

Tencent Cloud Direct Connect Review Standards

Glossary

Overview

PDF

Focus Mode

Font Size

Last updated: 2024-09-02 14:32:16

Direct Connect Overview
Direct Connect provides a fast and secure connection between Tencent Cloud and your local IDC. You can connect Tencent Cloud computing resources in multiple regions with a single connection to implement flexible and reliable hybrid cloud deployment.
Deploy hybrid cloud with Direct Connect (1)
Connect your IDCs with cloud VPCs using traditional dedicated tunnels.
If you want to connect to multiple VPCs over one connection, you need to create dedicated tunnels with different VLAN IDs.
﻿
Deploy hybrid cloud with Direct Connect (2)
Interconnect your network instances using Cloud Connect Network (CCN).
Advantage: you just need to create one connection to the CCN-based direct connect gateway and associate the gateway with CCN to enable interconnection within the CCN.
﻿
Components
Direct Connect is composed of connections, dedicated tunnels, and direct connect gateways.
Connection
A connection is a physical line that connects customer’s local IDC to Tencent Cloud. Connections support dual-line hot backup access, dual-line access point power supply, and completely isolated network pipes.
Dedicated tunnel
A dedicated tunnel is a network link segmentation of a connection. You can create dedicated tunnels that connect to different direct connect gateways to enable communication between your on-premises IDC and multiple VPCs.
Direct connect gateway
Direct connect gateway acts as the Direct Connect traffic ingress and egress for a VPC to which multiple dedicated tunnels can be connected for communication with multiple local IDCs. This cluster-based gateway eliminates the risk of single point of failure, and meets the interconnection requirements of the finance industry.
Direct connect gateway is used to connect VPC with connections. You can create a dedicated tunnel of connections and associate it with a direct connect gateway.
Direct connect gateway can connect to dedicated tunnels of connections to enable interconnection with multiple local IDCs.
You can create up to two direct connect gateways (one standard and the other supports NAT) for each VPC in the Direct Connect Gateway console. The direct connect gateway can connect with dedicated tunnels of different connections.
Advantages over IPsec VPN
Advantage
Direct Connect
IPsec VPN Connection
Stable network latency
Network latency is stable and guaranteed. A Direct Connect instance accesses the network through dedicated links, and supports fixed routes, removing the pain of unstable latency caused by network congestion or failure bypass.
Network latency is unstable. An IPsec VPN connection accesses the network over the Internet, which may be exposed to bypass due to network congestion.
Highly reliable disaster recovery access
Access devices and network forwarding devices are deployed in distributed clusters to ensure high reliability of all links. It also supports dual-line access with protection to provide more than 99.95% of uptime.
Features a dual-server hot backup architecture with high availability at the gateway layer. However, it cannot provide the same network availability as dedicated lines due to the unreliable Internet links.
High bandwidth
Each link provides a bandwidth of up to 100 Gbps. You can have multiple 10 Gbps links for network load balancing, so it can theoretically support unlimited bandwidth.
A single IPsec VPN gateway supports a bandwidth of up to 3 Gbps and a VPC can have multiple VPN gateways, which can meet the need for a VPN connection larger than 3 Gbps.
High security
Dedicated network links offer strong security without data leakage risks, satisfying the demanding network connection requirements of the finance and government sectors.
Network transmission is encrypted using IKE pre-shared key, which can satisfy the security requirements for most network transmission.
Network address translation
It supports configuring the network address translation service on gateways, as well as IP mapping on the two sides of Direct Connect and IP port mapping on the VPC side, to avoid address conflict in case of interconnection among multiple networks.
Not supported.
﻿

Help and Support

Was this page helpful?

You can also Contact sales or Submit a Ticket for help.

Help us improve! Rate your documentation experience in 5 mins.

Feedback

Advantage	Direct Connect	IPsec VPN Connection
Stable network latency	Network latency is stable and guaranteed. A Direct Connect instance accesses the network through dedicated links, and supports fixed routes, removing the pain of unstable latency caused by network congestion or failure bypass.	Network latency is unstable. An IPsec VPN connection accesses the network over the Internet, which may be exposed to bypass due to network congestion.
Highly reliable disaster recovery access	Access devices and network forwarding devices are deployed in distributed clusters to ensure high reliability of all links. It also supports dual-line access with protection to provide more than 99.95% of uptime.	Features a dual-server hot backup architecture with high availability at the gateway layer. However, it cannot provide the same network availability as dedicated lines due to the unreliable Internet links.
High bandwidth	Each link provides a bandwidth of up to 100 Gbps. You can have multiple 10 Gbps links for network load balancing, so it can theoretically support unlimited bandwidth.	A single IPsec VPN gateway supports a bandwidth of up to 3 Gbps and a VPC can have multiple VPN gateways, which can meet the need for a VPN connection larger than 3 Gbps.
High security	Dedicated network links offer strong security without data leakage risks, satisfying the demanding network connection requirements of the finance and government sectors.	Network transmission is encrypted using IKE pre-shared key, which can satisfy the security requirements for most network transmission.
Network address translation	It supports configuring the network address translation service on gateways, as well as IP mapping on the two sides of Direct Connect and IP port mapping on the VPC side, to avoid address conflict in case of interconnection among multiple networks.	Not supported.

tencent cloud

Direct Connect

Overview

Direct Connect Overview

Components

Advantages over IPsec VPN

Help and Support