Skip to content

feat: custom domain for aliyun private link #3045

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
everpcpc merged 1 commit into from
Jan 7, 2026
Merged

feat: custom domain for aliyun private link #3045

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
33 changes: 17 additions & 16 deletions docs/cn/guides/10-cloud/04-security/02-private-link/02-aliyun.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -7,45 +7,46 @@ sidebar_label: "阿里云私网连接"

1. 提供计划使用 PrivateLink 的 AccountID(主账号 ID)

![AccountID](/img/cloud/privatelink/aliyun/accountid.png)
![AccountID](/img/cloud/privatelink/aliyun/accountid.png)

2. 等待 Databend Cloud 将 AccountID 加入到白名单

3. Databend Cloud 提供终端节点服务名称

例如: `com.aliyuncs.privatelink.cn-beijing.epsrv-2zelaf38jasnuv54go9j`
例如: `com.aliyuncs.privatelink.cn-beijing.epsrv-2zelaf38jasnuv54go9j`

4. 准备一个开放 443 端口的安全组

![Security Group](/img/cloud/privatelink/aliyun/security-group.png)
![Security Group](/img/cloud/privatelink/aliyun/security-group.png)

5. 到 aliyun 控制台创建终端节点

https://vpc.console.aliyun.com/endpoint/cn-beijing/endpoints/new
输入第三步 Databend Cloud 提供的终端节点服务名称并点击验证
![Create Endpoint](/img/cloud/privatelink/aliyun/create-endpoint.png)
点击最下方的【确定创建】
https://vpc.console.aliyun.com/endpoint/cn-beijing/endpoints/new
输入第三步 Databend Cloud 提供的终端节点服务名称并点击验证
![Create Endpoint](/img/cloud/privatelink/aliyun/create-endpoint.png)
点击最下方的【确定创建】

6. 通知 Databend Cloud 并等待通过连接请求

![Request](/img/cloud/privatelink/aliyun/request.png)
![Request](/img/cloud/privatelink/aliyun/request.png)

7. 获取终端连接的内网 IP
7. 开启自定义服务域名

![Endpoint IP](/img/cloud/privatelink/aliyun/endpoint-ip.png)
![Custom Service Domain](/img/cloud/privatelink/aliyun/custom-service-domain.png)

8. 验证终端连接可用

```bash
curl -v https://gw.aliyun-cn-beijing.default.databend.cn/status --resolve gw.aliyun-cn-beijing.default.databend.cn:443:10.0.1.222 | jq
```
```bash
curl -v https://gw.aliyun-cn-beijing.default.databend.cn/status | jq
```

如果返回结果中包含 `"status": "ok"`,则表示终端连接可用
检查请求是否解析到正确的内网 IP 地址

![Verify Endpoint Request](/img/cloud/privatelink/aliyun/verify-endpoint-request.png)
![Verify Endpoint Request](/img/cloud/privatelink/aliyun/verify-endpoint-request.png)

![Verify Endpoint Response](/img/cloud/privatelink/aliyun/verify-endpoint-response.png)
如果返回结果中包含 `"status": "ok"`,则表示终端连接可用

![Verify Endpoint Response](/img/cloud/privatelink/aliyun/verify-endpoint-response.png)

:::info
恭喜!您已成功通过阿里云私网连接连接到 Databend Cloud。
Expand Down
Binary file added static/img/cloud/privatelink/aliyun/endpoint-domain.png
View file
Open in desktop
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file removed static/img/cloud/privatelink/aliyun/endpoint-ip.png
View file
Open in desktop
Binary file not shown.
Binary file modified static/img/cloud/privatelink/aliyun/verify-endpoint-request.png
View file
Open in desktop
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file modified static/img/cloud/privatelink/aliyun/verify-endpoint-response.png
View file
Open in desktop
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading