All Products
Search

This Product

    Platform For AI:Manage Lingjun VPDs

    Document Center

    Platform For AI:Manage Lingjun VPDs

    Last Updated:Mar 14, 2024

    A Lingjun Virtual Private Datacenter (VPD) is a CIDR block of a PAI-Lingjun AI Computing Service (Lingjun) cluster. The Lingjun VPD is a dedicated private network for the cluster. You can select an IP address range and configure a gateway within a Lingjun VPD that you create. You can also use elastic infrastructure resources such as Elastic Compute Service (ECS) bare metal instances and internal-facing Server Load Balancer (SLB) instances within the Lingjun VPD. This topic describes how to manage Lingjun VPDs and Lingjun subnets.

    Overview of Lingjun VPDs

    image

    A Lingjun VPD consists of one virtual private router, at least one private CIDR block, and at least one subnet. The following content describes the components:

    • A virtual private router is the hub of a Lingjun VPD. The virtual private router is an important functional component of the Lingjun VPD and is used to connect to each subnet of the Lingjun VPD. The virtual private router also serves as a gateway to connect the Lingjun VPD to other networks.

    • After a Lingjun VPD is created, the system automatically creates a dedicated virtual private router. Each virtual private router is associated with a route table. A Lingjun VPD has only one system route table. You cannot manually create or delete the system route table of the Lingjun CIDR block.

    • A subnet is a basic component of a Lingjun VPD and is used to connect to different Lingjun nodes. After a Lingjun VPD is created, you can divide the Lingjun CIDR block into one or more subnets. Different subnets in the same Lingjun VPD communicate with each other over the internal network.

    Note

    A Lingjun VPD is a resource that is available in a specific region. It cannot be used across regions but is available in all the zones of the region to which it belongs.

    Create a Lingjun VPD

    1. Log on to the Intelligent Computing Lingjun console.

    2. In the left-side navigation pane, choose Network Resources > VPDs.

    3. On the VPDs page, click Create VPD.

    4. On the Create VPD page, configure the parameters.

      1. Configure the Name and Node IPv4 CIDR Block parameters. We recommend that you use a standard private CIDR block and its subnet as the private CIDR block of a Lingjun cluster when you create a Lingjun VPD and its subnet. The following table describes the standard private CIDR blocks and their subnets. For more information, see the "Configure clusters and node groups" section of the Create a Lingjun cluster topic.

        CIDR block

        Number of available private IP addresses (excluding reserved IP addresses)

        192.168.0.0/16

        65,532

        172.16.0.0/12

        1,048,572

        10.0.0.0/8

        16,777,212

        Important

        • You cannot use 100.64.0.0/10, 224.0.0.0/4, 127.0.0.0/8, or 169.254.0.0/16 as a Lingjun CIDR block.

        • When you select a Lingjun VPD, the CIDR block cannot conflict with the CIDR blocks of other networks to which the Lingjun cluster is to be connected, such as CIDR blocks of virtual private clouds (VPCs) or data centers.

      2. In the Create Lingjun Subnet section, configure the Name and Zone parameters.

      3. Optional. Click Add to create another Lingjun subnet in the CIDR block.

    5. Click OK. The Lingjun VPD is created.

    View the basic information about a Lingjun VPD

    1. In the left-side navigation pane, choose Network Resources > VPDs.

    2. On the VPDs page, search for the Lingjun VPD whose information you want to view by name or ID.

    3. View the information about the Lingjun VPD, including the ID, name, CIDR block, and status. In the Actions column, you can click Create Lingjun Subnet to add Lingjun compute nodes or click Delete to delete the Lingjun VPD.

    4. You can also click the ID of a Lingjun VPD to go to the details page and view its details in the Basic Information and Lingjun Resources sections.

    View the routes of a Lingjun VPD

    1. On the VPDs page, find the Lingjun VPD whose routes you want to view and click its value in the Instance ID/Name column.

    2. On the details page of the Lingjun VPD, click the Route Entry tab in the Lingjun Resources section.

      Column name

      Description

      Destination CIDR Block

      The CIDR block to which the Lingjun VPD is routed.

      Next Hop Type

      The next hop type of the route of the Lingjun VPD. Valid types:

      • Lingjun VPD

      • Lingjun connection instance

      • Lingjun Hub instance

      Next Hop Instance

      The next hop instance of the route of the Lingjun VPD.

      Route Type

      The type of the route of the Lingjun VPD. Valid types:

      • System route: a route whose destination CIDR block is the current CIDR block.

      • BGP route: a route that is automatically learned by the Lingjun VPD over the dynamic routing protocol Border Gateway Protocol (BGP).

      Status

      The status of the route of the Lingjun VPD.

      Last Modified At

      The time when the route of the Lingjun VPD was last modified.

    Associate a Lingjun VPD with a Lingjun Hub instance

    1. In the left-side navigation pane, choose Network Resources > VPDs.

    2. Find the Lingjun VPD that you want to associate with a Lingjun Hub instance and click the image icon next to the value in the Lingjun Hub column.

    3. On the Lingjun Hubs page, associate the Lingjun VPD with a Lingjun Hub instance. For more information, see Manage Lingjun hubs.

    Perform a cross-account authorization for a Lingjun Hub instance

    1. On the VPDs page, click the ID of the Lingjun VPD that you want to manage.

    2. On the details page of the Lingjun VPD, click the Lingjun Hub Cross-account Authorization tab in the Lingjun Resources section to view the cross-account authorization information.

    3. Click Lingjun Hub Cross-account Authorization. In the Lingjun Hub Cross-account Authorization dialog box, enter the ID of an Alibaba Cloud account and the ID of a Lingjun Hub instance.

      Important

      After you grant permissions to the peer account, the peer account can be used to load your Lingjun VPD into the Lingjun Hub instance of the peer account and connect the peer network to your network. Proceed with caution.

    Cancel the cross-account authorization for a Lingjun Hub instance

    Important

    Before you cancel the cross-account authorization for a Lingjun Hub instance, make sure that your Lingjun VPD is not associated with the Lingjun Hub instance.

    1. In the left-side navigation pane, choose Network Resources > VPDs. On the VPDs page, click the ID of the Lingjun VPD that you want to manage.

    2. On the details page of the Lingjun VPD, click the Lingjun Hub Cross-account Authorization tab. On the Lingjun Hub Cross-account Authorization tab, find the authorization and click Cancel Authorization in the Actions column.

    3. In the Cancel Authorization message, click Yes.

    Create a Lingjun subnet

    Important

    • After a subnet is created in a Lingjun VPD, you cannot modify the IP address range of the subnet.

    • If the Lingjun nodes in a Lingjun subnet need to communicate with other Lingjun subnets, VPCs, or networks of data centers, make sure that the Lingjun subnet does not conflict with the IP address ranges of the preceding networks.

    A Lingjun subnet is a basic component of a Lingjun VPD. Lingjun nodes cannot be directly deployed in a Lingjun VPD and must be deployed in the subnets of the Lingjun VPD. The IP address range of a Lingjun subnet must be a proper subset of the Lingjun CIDR block to which the Lingjun subnet belongs, and the first IP address and the last three IP addresses of each Lingjun subnet are reserved IP addresses.

    For example, if a CIDR block of a Lingjun VPD is 192.168.0.0/16, the IP address range of a Lingjun subnet of the Lingjun CIDR block must be a proper subset of 192.168.0.0/16, which can be 192.168.0.0/17 to 192.168.0.0/29. If a Lingjun subnet is 192.168.1.0/24, the following IP addresses are reserved by the system: 192.168.1.0, 192.168.1.253, 192.168.1.254, and 192.168.1.255.

    1. In the left-side navigation pane, choose Network Resources > Lingjun Subnets.

    2. On the Lingjun Subnets page, click Create Lingjun Subnet.

    3. On the Create Lingjun Subnet page, configure parameters such as Name and VPD.

    4. Click OK.

    View the basic information about a Lingjun subnet

    1. In the left-side navigation pane, choose Network Resources > Lingjun Subnets.

    2. Search for the Lingjun subnet whose information you want to view by name or ID.

    3. View the information about the Lingjun subnet, including the ID, name, the Lingjun VPD to which the Lingjun subnet belongs, and status.

      Note

      If OOB is displayed in the Instance ID/Name column of a subnet, the subnet is reserved for Cloud Parallel File Storage (CPFS). Each Lingjun VPD reserves two subnets for CPFS. For more information, see the "Configure networks" section of the Create a Lingjun cluster topic.

    4. Click the ID of the subnet whose information you want to view. On the details page of the subnet, view the details of the subnet in the Basic Information and Lingjun Resources sections.

    Create a secondary CIDR block for a Lingjun VPD

    If the number of IP addresses in a Lingjun VPD does not meet your business requirements, you can create a secondary CIDR block for the Lingjun VPD.

    Limits

    • By default, you can create up to three secondary CIDR blocks in each region by using an Alibaba Cloud account. For more information about how to increase the quota of secondary CIDR blocks, see Manage quotas.

    • A secondary CIDR block cannot start with 0. The subnet mask can be 8 to 28 bits in length.

    • The following CIDR blocks cannot be used as a secondary CIDR block of a Lingjun VPD: 100.64.0.0/10, 224.0.0.0/4, 127.0.0.0/8, and 169.254.0.0/16.

    • A secondary IPv4 CIDR block cannot conflict with the primary IPv4 CIDR block or the created secondary IPv4 CIDR blocks of a Lingjun VPD. For example, you cannot create the following CIDR blocks as secondary IPv4 CIDR blocks if the primary IPv4 CIDR block of a Lingjun VPD is 192.168.0.0/16:

      • A CIDR block whose IP address range is the same as that of 192.168.0.0/16.

      • A CIDR block whose IP address range is larger than that of 192.168.0.0/16, such as 192.168.0.0/8.

      • A CIDR block whose IP address range is smaller than that of 192.168.0.0/16, such as 192.168.0.0/24.

    Procedure

    1. In the left-side navigation pane, choose Network Resources > VPDs.

    2. In the upper-left corner of the top navigation bar, select the region in which the secondary IPv4 CIDR block that you want to delete resides.

    3. On the VPDs page, click the ID of the Lingjun VPD that you want to manage.

    4. On the details page of the Lingjun VPD, click the CIDR Block Management tab in the Lingjun Resources section.

    5. On the CIDR Block Management tab, click Add Secondary CIDR block.

    6. In the Add Secondary CIDR Block dialog box, enter a secondary CIDR block in the Secondary CIDR Block field and click OK.

    Delete a secondary CIDR block from a Lingjun CIDR block

    Important

    Before you delete a secondary CIDR block from a Lingjun VPD, you must delete the Lingjun subnets of the secondary CIDR block.

    1. In the left-side navigation pane, choose Network Resources > VPDs.

    2. In the upper-left corner of the top navigation bar, select the region in which the secondary IPv4 CIDR block to delete resides.

    3. On the VPDs page, click the ID of the Lingjun VPD that you want to manage.

    4. On the details page of the Lingjun VPD, click the CIDR Block Management tab in the Lingjun Resources section.

    5. On the CIDR Block Management tab, find the secondary IPv4 CIDR block that you want to delete and click Delete in the Operation column. In the Delete message, click Yes.