{{ $t('index.defaultHeader.logo') }}

Sangfor Cloud Platform (SCP)

Enterprise Cloud Computing Platform Built on Business-Centric HCI.

{{ $t('productSubHeader.tabs.document') }}

{{ $t('productSubHeader.tabs.bestPractice') }}

{{ $t('productSubHeader.tabs.case') }}

{{ $t('productSubHeader.tabs.tool') }}

{{ $t('productSubHeader.tabs.bbs') }}

{{ $t('productSubHeader.searchLabel') }}

{{ $t('productDocDetail.guideClickSwitch') }}

{{ $t('productDocDetail.know') }}

{{ $t('productDocDetail.dontRemind') }}

6.11.3

{{item.code}}

Release Notes

Overview

Agentless Backup Development Guide

Introduction

Agentless Backup Deployment

Network Deployment

Backup Account Creation

Agentless Backup Instructions

SFVDDK Installation and Development

Sample Code

Advanced Features

Backup and Recovery of VMs with TPM Enabled

Encrypted VM Backup And Recovery

Precautions

Agentless Backup API 3rd-party Integration User Guide

Connection Preparations

Connect to Agentless Backup via SCP

Feature Connection

Platform Connection

Backup and Recovery

Notes

Product Architecture

Key Functionalities

aSV

aSAN

aNET

aSecurity

Management

Application Scenarios

Private Cloud Solution

Disaster Recovery Solution

Database Management Solution

Server Virtualization Solution

GPU Scenario Solution

VDI Solution

Installation And Deployment

Networking Installation Introduction

Preparation Before Installation

Witness Node System Installation (Optional)

Service Packs

HCI Cluster Initialization

HCI Licensing

Platform License

Authorization Change Description

Virtual Machine Service

Introduction

VM Types and Specifications

Related Concepts

Migration and Scheduling

Resource and Configuration Changes

Attribute and Tag Management

Expiration Date and Group Management

VM Security and Authentication

Enable Turbo Mode

FAQ

Networking Service Manual

Topology

IP and Bandwidth

Network Insight

Traffic Mirroring

Network Deployment

Shared Service Network

Image Service

Introduction

Operation Procedures

Create Images

Public VM Images Management

Private image management

View Private VM Images

Migration

Information Collection and Analysis

Information Collection for Common Migration

Migration Design

SCMT

Resource Assessment

VM Configuration Plan

Migration Feasibility Assessment

Migration Implementation

Migration Implementation

SCMT

aHM

ISO

Migration verification

Rollback

VM Settings on HCI

Troubleshooting

SCMT

Agent Installation Issues

Issues When Creating Migration Tasks

Issues During Migration Process

Issues After Migration

Storage Service

Overview

Virtual Storage Creation and Management

Storage Area Network Settings

Virtual Storage Pool Creation

Virtual Storage Pool Management

FAQ

Local Storage Pool Creation and Management

FAQ

External Storage Integration and Management

External Storage Management

FAQ

Backup Service

Overview

Backup Terminology

Backup Types

Quick Backup

CDP

Backup Creation and Management

Backup Creation

Quick Backup

CDP

Backup Management

Quick Backup

CDP

Backup Settings

FAQ

Snapshot Service

Feature Introduce

Snapshot Write & Read processes

Snapshots Configuration

Snapshots Management

Consistency Snapshot Management

Snapshot Polices Management

Correlated Snapshotting

FAQ

Primary-Secondary Disaster Recovery

Product Introduction

Applicable Scenarios

Constraints and Restrictions

Assessment and Planning

DR Network Planning

Installation and Deployment

SP Check with aDeploy

DR Configuration Guide

Primary/Secondary DR Configuration

Recovery Configuration

Multiple-Tenant Management

Feature Description

Multiple-Tenant Configuration

MSP Management

Multiple-Tenant Management

Tenant User

Tenant User Guide

Compute

Virtual Machine

Image

Networking

Network Topology

IP And Bandwidth

Network Deployment

Application Delivery Controller (ADC)

Security

Reliability

Monitor and Management

Monitor Center

Product Introduction

Integration with Third-Party Monitoring Ecosystem

Monitor Center Configuration Guide

Monitoring Configuration Best Practices

Cluster Management

Overview

Terminology

Cluster Creation and Management

Cluster Creation

SCP Deployment

Cluster Management

HCI Cluster Management

Cluster Reliability

HA

HA Test Guide

Cluster Maintenance

Expansion

Upgrade

SCP Upgrade

Patch

FAQ

Platform Management

User Management

System management

Security Service

HCI Platform

Access Control & Identity Management

SCP Platform

Access Control & Identity Management

Virtual Machine

vNGAF

VM Disk Encryption

Proactive Maintenance & Vulnerability Management

Comprehensive Audits with the aDeploy Tool

Maintenance & Operations Guide

SCP O&M Guide

Monitoring and Alerting Module

Health Check

aDeploy

Sangfor CLI

SCP Routine O&M Guide

Daily O&M Guidelines

Weekly O&M Guidelines

Monthly O&M Guidelines

Basic Service Adjustment Guide

System Power-On and Power-Off

Upgrade and SP Installation Guidelines

Network Configuration Adjustment

Capacity Expansion

SCP O&M Risks and Precautions

aDeploy Use Guide

Overview

Introduction

Auto Upgrade

Key Features

Installation and Upgrade

Manual Upgrade

Uninstall aDeploy

Usage

Health Check

Toolkit

Pre-change Check

Pre-upgrade Check

Feedback

Troubleshooting Common Issues

Windows Compatibility Issues

Sangfor Cloud Platform (SCP)

{{ breadTitle }}

Security Service

Virtual Machine

VPC Firewall

{{sendMatomoQuery("Sangfor Cloud Platform (SCP)","VPC Firewall")}}

VPC Firewall

{{ $t('productDocDetail.updateTime') }}: 2025-12-22

You can configure access control policies for routers at the tenant VPC boundary to establish a secure network boundary between the inside and outside of the VPC network.

Precautions

One VPC tenant can create up to 1,000 access control policies.
A resource pool can have up to 20,000 dropped packet logs.

Steps

Go to Security > VPC Firewall, select a VPC from the tree menu on the left, and click New.

• Source/Destination: It can be set to Any IP, Specified IP, Specified subnet, or Specified IP range.

• Service: It supports the selection of Predefined Service on the platform and Custom Service based on protocols and port numbers. Multiple rules can share custom services in the same effective scope.

• Action: It can be set to Drop or Allow.

• Log: Select Access Control Log as needed.

Click Dropped Packet Logging at the top of the page. On the page that appears, select the target VPC network as the Scope and Time Range and enter the source and destination IP addresses to query logs. Click Log Settings in the upper-right corner of the page to enable or disable dropped packet logging for a resource pool.