Use VPCs to ensure network security - Tablestore - Alibaba Cloud Documentation Center

Tablestore allows you to use virtual private clouds (VPCs) to isolate networks. This improves the resource access security.

By default, you can access a Tablestore instance by using the classic network endpoint or VPC endpoint of the instance, or from the Tablestore console. You can configure a network access control list (ACL) for a Tablestore instance to restrict the types of networks over which users can access the Tablestore instance. This ensures the network access security. For more information, see Network ACL and Network security management.

Tablestore supports different combinations of network types to meet different network security requirements.

Note

By default, Tablestore creates a public endpoint, a VPC endpoint, and a classic network endpoint for each Tablestore instance. For more information, see Endpoints.

Network Type	Description
Custom	By default, a Tablestore instance does not allow access over the Internet. You can access a Tablestore instance only from the Tablestore console or by using a classic network or VPC endpoint. Important To access a Tablestore instance over the Internet, log on to the Tablestore console and manually allow access over the Internet.
Tablestore Console or Bound VPCs	The Tablestore instance allows access from the Tablestore console or over the bound VPC. You cannot access the Tablestore instance over the Internet or classic network. This ensures network isolation. Important Before you select this network type for an instance, make sure that your business does not require access over the Internet or the classic network.
Bound VPCs	The Tablestore instance allows access only over the bound VPC. You cannot access the Tablestore instance from the Tablestore console or over the Internet or classic network. You also cannot access resources in the instance from the Tablestore console. This ensures network isolation. Important Before you select this network type for an instance, make sure that your business does not require access over the Internet or classic network or from the Tablestore console.