diff --git a/docs/cn/guides/10-cloud/04-security/02-private-link/02-aliyun.md b/docs/cn/guides/10-cloud/04-security/02-private-link/02-aliyun.md index 5c0e1a8e90..6dcb4ace0e 100644 --- a/docs/cn/guides/10-cloud/04-security/02-private-link/02-aliyun.md +++ b/docs/cn/guides/10-cloud/04-security/02-private-link/02-aliyun.md @@ -7,45 +7,46 @@ sidebar_label: "阿里云私网连接" 1. 提供计划使用 PrivateLink 的 AccountID(主账号 ID) - ![AccountID](/img/cloud/privatelink/aliyun/accountid.png) +![AccountID](/img/cloud/privatelink/aliyun/accountid.png) 2. 等待 Databend Cloud 将 AccountID 加入到白名单 3. Databend Cloud 提供终端节点服务名称 - 例如: `com.aliyuncs.privatelink.cn-beijing.epsrv-2zelaf38jasnuv54go9j` +例如: `com.aliyuncs.privatelink.cn-beijing.epsrv-2zelaf38jasnuv54go9j` 4. 准备一个开放 443 端口的安全组 - ![Security Group](/img/cloud/privatelink/aliyun/security-group.png) +![Security Group](/img/cloud/privatelink/aliyun/security-group.png) 5. 到 aliyun 控制台创建终端节点 - https://vpc.console.aliyun.com/endpoint/cn-beijing/endpoints/new - 输入第三步 Databend Cloud 提供的终端节点服务名称并点击验证 - ![Create Endpoint](/img/cloud/privatelink/aliyun/create-endpoint.png) - 点击最下方的【确定创建】 +https://vpc.console.aliyun.com/endpoint/cn-beijing/endpoints/new +输入第三步 Databend Cloud 提供的终端节点服务名称并点击验证 +![Create Endpoint](/img/cloud/privatelink/aliyun/create-endpoint.png) +点击最下方的【确定创建】 6. 通知 Databend Cloud 并等待通过连接请求 - ![Request](/img/cloud/privatelink/aliyun/request.png) +![Request](/img/cloud/privatelink/aliyun/request.png) -7. 获取终端连接的内网 IP +7. 开启自定义服务域名 - ![Endpoint IP](/img/cloud/privatelink/aliyun/endpoint-ip.png) +![Custom Service Domain](/img/cloud/privatelink/aliyun/custom-service-domain.png) 8. 验证终端连接可用 - ```bash - curl -v https://gw.aliyun-cn-beijing.default.databend.cn/status --resolve gw.aliyun-cn-beijing.default.databend.cn:443:10.0.1.222 | jq - ``` +```bash +curl -v https://gw.aliyun-cn-beijing.default.databend.cn/status | jq +``` - 如果返回结果中包含 `"status": "ok"`,则表示终端连接可用 +检查请求是否解析到正确的内网 IP 地址 - ![Verify Endpoint Request](/img/cloud/privatelink/aliyun/verify-endpoint-request.png) +![Verify Endpoint Request](/img/cloud/privatelink/aliyun/verify-endpoint-request.png) - ![Verify Endpoint Response](/img/cloud/privatelink/aliyun/verify-endpoint-response.png) +如果返回结果中包含 `"status": "ok"`,则表示终端连接可用 +![Verify Endpoint Response](/img/cloud/privatelink/aliyun/verify-endpoint-response.png) :::info 恭喜!您已成功通过阿里云私网连接连接到 Databend Cloud。 diff --git a/static/img/cloud/privatelink/aliyun/endpoint-domain.png b/static/img/cloud/privatelink/aliyun/endpoint-domain.png new file mode 100644 index 0000000000..c51ccad206 Binary files /dev/null and b/static/img/cloud/privatelink/aliyun/endpoint-domain.png differ diff --git a/static/img/cloud/privatelink/aliyun/endpoint-ip.png b/static/img/cloud/privatelink/aliyun/endpoint-ip.png deleted file mode 100644 index b9fbd4a63a..0000000000 Binary files a/static/img/cloud/privatelink/aliyun/endpoint-ip.png and /dev/null differ diff --git a/static/img/cloud/privatelink/aliyun/verify-endpoint-request.png b/static/img/cloud/privatelink/aliyun/verify-endpoint-request.png index 4c27797009..4bfb5a8780 100644 Binary files a/static/img/cloud/privatelink/aliyun/verify-endpoint-request.png and b/static/img/cloud/privatelink/aliyun/verify-endpoint-request.png differ diff --git a/static/img/cloud/privatelink/aliyun/verify-endpoint-response.png b/static/img/cloud/privatelink/aliyun/verify-endpoint-response.png index 4281bd8e68..d377be2a12 100644 Binary files a/static/img/cloud/privatelink/aliyun/verify-endpoint-response.png and b/static/img/cloud/privatelink/aliyun/verify-endpoint-response.png differ