aiven · wojcik-dorota · Nov 27, 2024 · Nov 27, 2024 · Nov 28, 2024 · Nov 28, 2024
@@ -338,6 +338,8 @@ VMs
 VNet
 VPC/MS
 VPCs?
+VPN
+VPNs
 wget
 Wireshark
 Workbench

@@ -226,7 +226,7 @@ Add users to groups to streamline access management to your Aiven projects and s
       Terraform Provider, CLI, and Kubernetes Operator."
     />
     <Card
-      to="/docs/platform/howto/manage-vpc-peering"
+      to="/docs/platform/howto/manage-project-vpc"
       iconName="clipboard"
       title="Create a virtual private cloud"
       description="Connect private networks with each other without going

@@ -16,7 +16,7 @@ you can connect to depend on the service type and deployment type. The
 configuration can also affect the ports that are available:
 
 -   Is the service in a public network,
-    [dedicated VPC](/docs/platform/howto/manage-vpc-peering), virtual cloud account, or a
+    [dedicated VPC](/docs/platform/howto/manage-project-vpc), virtual cloud account, or a
     [Bring Your Own Cloud (BYOC)](/docs/platform/concepts/byoc) setup?
 -   Have you configured IP ranges in `user_config.ip_filter`?
 -   Have you

@@ -12,7 +12,7 @@ also be used for paid features like virtual private cloud peering.
 Trials include:
 
 -   Up to 10 VMs
--   1 [Virtual Private Cloud (VPC)](/docs/platform/howto/manage-vpc-peering)
+-   1 [Virtual Private Cloud (VPC)](/docs/platform/howto/manage-project-vpc)
 -   Up to 10 VPC peering connections
 
 If you create services on the [free plan](/docs/platform/concepts/free-plan), they will

@@ -40,6 +40,8 @@ and services within it.
 | Manage domains              | `organization:domains:write`   | <ul> <li> Add, edit, and remove domains. </li> <li> View all organization domains. </li> </ul>                                                                                                                                                                                                                                                                                                                                                                                                                 |
 | Manage groups               | `organization:groups:write`    | <ul> <li> Create, edit, and delete groups. </li> <li> Add organization and application users to groups. </li> <li> Remove organization and application users from groups. </li> </ul>                                                                                                                                                                                                                                                                                                                          |
 | Manage projects             | `organization:projects:write`  | <ul> <li> Create and delete projects. </li> <li> Assign projects to billing groups. </li> <li> Add and remove project tags. </li> </ul> **Cannot otherwise access or move the project or its services.**                                                                                                                                                                                                                                                                                           |
+| View organization networking    | `organization:networking:read`   | <ul> <li> Read all organization VPCs. </li> </ul>                                                                                                                                                                                                                                                                                                                                                                  |
+| Manage organization networking  | `organization:networking:write`  | <ul> <li> Add, edit, and remove organization VPCs. </li> <li> Create and manage VPC peering connections. </li> </ul>                                                                                                                                                                                                                                                                                                                                                                  |
 | Manage organization users   | `organization:users:write`     | <ul> <li> Invite new users to the organization. </li> <li> View all invited users. </li> <li> Remove user invites. </li> <li> Deactivate, edit and delete [managed users](/docs/platform/concepts/managed-users). </li> <li> Remove non-managed users from the organization. </li> <li> Reset passwords for managed users. </li> <li> View all authentication methods for an organization user. </li> <li> Revoke tokens for managed users. </li> <li> View all tokens generated by managed users. </li> </ul> |
 
 

@@ -0,0 +1,82 @@
+---
+title: Virtual private clouds (VPCs) in Aiven
+sidebar_label: VPCs overview
+---
+
+import LimitedBadge from "@site/src/components/non-swizzled/Badges/LimitedBadge";
+
+Virtual private clouds (VPCs) supported on the Aiven Platform provide enhanced security, flexibility, and network control, allowing efficient traffic, resource, and access management.
+
+A VPC is a logically isolated section of a cloud provider's network, which makes it a
+private network within a public cloud. It's a secure customizable network environment that
+you define and control to deploy and manage resources.
+
+### VPC characteristics
+
+- Isolation: Each VPC operates independently from other VPCs, ensuring secure separation.
+- Security: Control over network traffic and isolation.
+- Internet connectivity: Control whether the VPC connects to the internet via internet
+  gateways or remains isolated.
+- Network control: Configure route tables, network gateways, and security settings.
+- Customizable IP range: You can define your own IP address range (CIDR block).
+- Subnets: Divide the VPC into smaller sub-networks (subnets) for organizing resources
+  based on availability zones or functional groups.
+- Flexibility: Custom network architecture tailored to your application's needs.
+- Scalability: Expand or modify the network as demand grows.
+
+### VPC components
+
+- Subnets: Represent smaller public or private networks within the VPC.
+- [Peering connection](/docs/platform/howto/list-vpc-peering): Connect VPCs for
+  intercommunication.
+- NAT (Network Address Translation) gateway: Allows outbound internet access for private
+  subnets.
+- Internet gateway (IGW): Enables public traffic to access the internet.
+- Security groups: Represent firewall rules controlling inbound and outbound traffic for
+  resources.
+- Route tables: Specify how traffic is directed within the VPC.
+- Network Access Control Lists (NACLs): Constitute an extra layer of security at the subnet
+  level
+
+### VPC use cases
+
+- Data isolation: Keeping sensitive data within a private network
+- Hosting applications: Deploying scalable web and database applications
+- Multi-tier architecture: Separating application layers (web, app, database) within
+  distinct subnets
+- Hybrid cloud architecture: Connecting on-premises networks to the cloud securely
+
+## VPC types
+
+The Aiven Platform allows creating and using two types of VPCs, which differ in scope:
+project-wide VPCs and organization-wide VPCs.
+
+### Project VPCs
+
+A project VPC is a VPC that spans a single Aiven project within your Aiven organization.
+A project-wide VPC allows all resources in that project to interconnect and share a common
+VPC network, simplifying network management and promoting consistency across your Aiven
+project's services.
+
+Learn how to
+[create and manage projects VPCs in Aiven](/docs/platform/howto/manage-project-vpc).
+
+### Organization VPCs <LimitedBadge/>
+
+An organization VPC is a VPC that spans multiple Aiven projects within your Aiven
+organization. An organization-wide VPC allows different projects to share a centralized
+network infrastructure while maintaining isolation and control.
+
+Learn how to
+[create and manage organization VPCs in Aiven](/docs/platform/howto/manage-organization-vpc).
+
+## Learn more
+
+For information on VPCs supported by particular cloud providers, see the following:
+
+- AWS: [How Amazon VPC works](https://docs.aws.amazon.com/vpc/latest/userguide/how-it-works.html])
+- Google Cloud: [VPC networks](https://cloud.google.com/vpc/docs/vpc)
+- Azure: [What is Azure Virtual Network?](https://learn.microsoft.com/en-us/azure/virtual-network/virtual-networks-overview)
+- UpCloud:
+  - [How to configure SDN Private networks](https://upcloud.com/docs/guides/configure-sdn-private-networks/)
+  - [How to configure SDN Private networks using the UpCloud API](https://upcloud.com/docs/guides/configure-sdn-private-networks-upcloud-api/)
-Original file line number
+Diff line change
@@ Expand Up / @@ -338,6 +338,8 @@ VMs @@
     VNet
     VPC/MS
     VPCs?
+    VPN
+    VPNs
     wget
     Wireshark
     Workbench
@@ Expand Down @@