An elastic network interface (ENI) is a virtual network interface card (NIC) that can be attached to a Kingsoft Cloud Elastic Compute (KEC) instance. By using ENIs, you can conduct low-cost failover and fine-grained network management. ENIs are independent from each other and can be migrated among KEC instances. This provides flexible expansion and migration capabilities for your business.
GEC instances provide the same ENI properties and features as KEC instances.
Properties
-
ENI types:
Primary ENI: When you create an instance, a primary ENI is created and attached to the instance. Primary ENIs cannot be detached from their instances.
Secondary ENI: Secondary ENIs are manually created and can be attached to or detached from instances.
- Virtual Private Cloud (VPC): ENIs of an instance can reside in one or more VPCs.
- Subnet: ENIs of an instance can reside on one or more subnets.
- Availability zone (AZ): Subnets in which ENIs reside must be in the same AZ as the instance to which the ENIs are attached.
- Security group: The inbound traffic and outbound traffic of ENIs that are added to a security group are controlled by this security group.
- Subnet IPv4 address: Subnet IPv4 addresses can be manually or automatically allocated.
- MAC address: Each ENI is allocated with a globally unique MAC address.
Features
- Multiple ENIs: When you create an instance, a primary ENI is created and attached to the instance. You can also attach multiple secondary ENIs to the instance. ENIs of an instance can reside on one or more subnets. Each ENI can be added to an independent security group.
- Flexible migration: ENIs can be migrated among instances in the same VPC and AZ. When you detach an ENI from an instance, the private IP address, elastic IP address (EIP), and security group rules are retained. If you migrate the ENI to another instance, you do not need to configure mappings again.
- Hot swapping: ENIs support hot swapping. When you detach an ENI from an instance and attach it to another instance to migrate businesses, you do not need to restart the latter instance. This ensures business continuity.
Application scenarios
- Creating high-availability (HA) clusters: Multiple ENIs can be attached to an instance, which helps you create HA clusters.
- Implementing low-cost failover: You can detach ENIs from a faulty instance and attach them to a backup instance to migrate the business on the faulty instance to the backup instance, thereby achieving rapid business recovery.
- Managing networks with fine-grained controls: You can configure an instance with multiple ENIs. For example, you can attach an ENI for internal management and an ENI for public network access to isolate management data from business data. You can also configure each ENI with precise security group rules based on the source IP address, application layer protocol, and port number to implement access control for traffic of each ENI.
Management of ENIs
You can perform the following operations on ENIs: