Yandex Cloud
  • Services
  • Solutions
  • Why Yandex Cloud
  • Blog
  • Pricing
  • Documentation
  • Contact us
Get started
Language / Region
Yandex project
© 2023 Yandex.Cloud LLC
Yandex Virtual Private Cloud
  • Getting started
  • Step-by-step instructions
    • All instructions
    • Cloud network
      • Creating a cloud network
      • Deleting a cloud network
      • Updating a cloud network
      • Moving a cloud network between folders
    • Subnet
      • Creating a subnet
      • Deleting a subnet
      • Updating a subnet
      • Moving a subnet between folders
      • Viewing a list of used addresses
    • IP address
      • Reserving a static public IP address
      • Making a dynamic public IP address static
      • Making a static public IP address dynamic
      • Moving an address between folders
      • Deleting a static public IP address
    • Static routing
      • Creating static routes
      • Enabling NAT to the internet
      • Creating and setting up a NAT gateway
      • Moving a route table between folders
      • Moving a NAT gateway between folders
    • Security groups
      • Create a security group
      • Changing the name and description
      • Adding a new rule
      • Delete a rule
      • Moving a security group between folders
      • Delete a security group
    • Enable a software-accelerated network
    • DDoS protection
      • Enable protection from DDoS attacks
    • Chart of network connections
  • Practical guidelines
    • All tutorials
    • Architecture and protection of a basic internet service
    • Routing through a NAT instance
    • Creating an IPSec VPN tunnel
    • Installing a Cisco CSR 1000v virtual router
    • Installing a Mikrotik CHR virtual router
    • Connecting to a cloud network using OpenVPN
    • Creating and configuring a UserGate gateway in proxy server mode
    • Configuring networks for Yandex Data Proc
  • Concepts
    • Relationships between service resources
    • Cloud networks and subnets
    • Cloud resource addresses
    • Static routes
    • Security groups
    • Gateways
    • Monitoring network connections
    • Public IP address ranges
    • MTU and MSS
    • DHCP settings
    • Software-accelerated network
    • Quotas and limits
  • DDoS Protection
  • Recommendations
    • Using public IP addresses
  • Access management
  • Pricing policy
    • Current pricing policy
    • Archive
      • Before January 1, 2019
  • API reference
    • Authentication in the API
    • REST
      • Overview
      • Address
        • Overview
        • create
        • delete
        • get
        • getByValue
        • list
        • listOperations
        • move
        • update
      • Gateway
        • Overview
        • create
        • delete
        • get
        • list
        • listOperations
        • move
        • update
      • Network
        • Overview
        • create
        • delete
        • get
        • list
        • listOperations
        • listRouteTables
        • listSecurityGroups
        • listSubnets
        • move
        • update
      • RouteTable
        • Overview
        • create
        • delete
        • get
        • list
        • listOperations
        • move
        • update
      • SecurityGroup
        • Overview
        • create
        • delete
        • get
        • list
        • listOperations
        • move
        • update
        • updateRule
        • updateRules
      • Subnet
        • Overview
        • addCidrBlocks
        • create
        • delete
        • get
        • list
        • listOperations
        • move
        • removeCidrBlocks
        • update
      • Operation
        • Overview
        • get
    • gRPC
      • Overview
      • AddressService
      • GatewayService
      • NetworkService
      • RouteTableService
      • SecurityGroupService
      • SubnetService
      • OperationService
  • Questions and answers
  1. Questions and answers

Questions and answers about Virtual Private Cloud

Written by
Yandex Cloud

    What is VPC?

    VPC (Yandex Virtual Private Cloud) is a way to connect and organize cloud resources using virtual networks.

    Which network technologies are available to Yandex Cloud users?

    VPC enables you to assign VMs private and public IP addresses and create cloud networks and subnets.

    How do I create a cloud network?

    When you create a folder through the management console, the service will automatically create a network in it. You can also create a cloud network manually using the management console.

    How do I create a subnet?

    Subnets in the default folder will be created automatically. You can create additional subnets using the management console or CLI.

    Which resources can be assigned IP addresses?

    You can assign addresses to virtual machines and hosts in database clusters.

    How are IP addresses assigned to cloud resources?

    You can have public IPs assigned to cloud resources automatically or select IPs from the list of reserved static addresses. You can assign internal addresses automatically or manually when creating a VM.

    How do I make a public IP address static?

    You can make a public IP address static using the VPC IP addresses tab in the management console.

    What limitations apply when creating subnets?

    Subnets can only use private IPv4 addresses from the ranges defined by RFC 1918.

    Why is my connection for Yandex Cloud services slow?

    Yandex Cloud doesn't impose any limits on connection speed. Please provide the following information to help troubleshoot potential problems:

    • The direction of the connection that is producing the issue: local to the cloud network, cloud network to the internet, or the internet to the cloud network.
    • Type of traffic producing the issue: incoming or outgoing.
    • Source and target settings: virtual machine IDs, IPs, FQDNs.
    • Output for the mtr <target_IP_or_domain> command.
    • Speed results from Yandex.Internetometer, including Technical Information.

    Prepare this information and send it to technical support.

    What do I do if email traffic is blocked?

    Yandex Cloud only blocks traffic sent from pubic IPs on port 25. Traffic sent to Yandex email servers is the exception.

    To prevent email traffic from being blocked, reconfigure your email sever to use ports 465 and 587. To do this, use these ports as an email gateway and delegate your domain to Yandex servers with Yandex Mail for Domains.

    If you need port 25, assign your virtual machine a new IP:

    1. Request a new IP with port 25 open. When making the request, tell support:

      • The ID of the folder where you need the IP address.
      • The availability zone.
      • The PTR record domain, if required.
    2. Unbind the current IP from the virtual machine. To do this, run the following CLI command:

      yc compute instance remove-one-to-one-nat \
        --id=<virtual_machine_ID> \
        --network-interface-index=0
      
    3. Bind the new IP received from support.

    We reserve the right to block an IP and/or suspend a VM if we receive complaints about spam originating from that IP address.

    Does the service meet the requirements under Federal Law No. 152-FZ On personal data?

    Yes, you can read the full security audit conclusion.

    Can I get logs of my operations with services?

    Yes, you can request log records about your resources from Yandex Cloud services. For more information, see Data requests.

    Was the article helpful?

    Language / Region
    Yandex project
    © 2023 Yandex.Cloud LLC