FAQ about network types - ApsaraDB RDS - Alibaba Cloud Documentation Center

This topic provides answers to some frequently asked questions about network types in ApsaraDB RDS.

What network types does ApsaraDB RDS support? What are the differences between these network types?

ApsaraDB RDS supports the following network types:

VPC: Each virtual private cloud (VPC) is an isolated virtual network. VPCs provide higher security than the classic network. We recommend that you select the VPC network type. You can configure route tables, CIDR blocks, and gateways in a VPC. To smoothly migrate applications to the cloud, you can use the leased line or VPN method to create a virtual data center that consists of your data center and a VPC. For more information, see What is a VPC?
Note
All RDS instances support VPC.
Classic network: RDS instances of the classic network type cannot be isolated by using network settings. You can block unauthorized access to the RDS instances of the classic network type only by configuring IP address whitelists or security groups.
Note
Only RDS instances that use local disks support the classic network.

The following table describes the differences between VPCs and the classic network.

Item	VPC	Classic network
Layer 2 logical isolation	Supported.	Not supported.
Custom private CIDR block	Supported.	Not supported.
Private IP address planning	Private IP addresses must be unique within a single VPC, but can be duplicate across VPCs.	Private IP addresses must be unique in the classic network.
Instance communication within or between private networks	Instances in the same VPC can communicate with each other. However, instances in different VPCs are isolated from each other.	Instances in the classic network can communicate with each other if they belong to the same region and the same account.
Tunneling	Supported.	Not supported.
Custom router	Supported.	Not supported.
Route table	Supported.	Not supported.
vSwitch	Supported.	Not supported.
Software-Defined Networking (SDN)	Supported.	Not supported.
Self-managed NAT gateway	Supported.	Not supported.
Self-managed VPN	Supported.	Not supported.

Note

We recommend that you select VPC to enhance security for your RDS instance.

Can I change the network type of an RDS instance? What is the impact of changing the network type of an RDS instance?

You can change the network type of an RDS instance from classic network to VPC. However, you cannot change the network type of an RDS instance from VPC to classic network. For more information about how to change the network type and impacts, see Change the network type.

How do I change the VPC for an RDS instance?

If your RDS instance supports the change of the VPC and vSwitch, you can directly change the VPC of the RDS instance. For more information, see the following topics:
If your RDS instance does not support the change of the VPC and vSwitch, purchase a new RDS instance.
You can purchase a new RDS instance that resides in the required VPC. Then, migrate the data of the original RDS instance to the new RDS instance. For more information, see the following topics: