{{ $t('index.defaultHeader.logo') }}

Sangfor Cloud Platform (SCP)

Enterprise Cloud Computing Platform Built on Business-Centric HCI.

{{ $t('productSubHeader.tabs.document') }}

{{ $t('productSubHeader.tabs.bestPractice') }}

{{ $t('productSubHeader.tabs.case') }}

{{ $t('productSubHeader.tabs.tool') }}

{{ $t('productSubHeader.tabs.bbs') }}

{{ $t('productSubHeader.searchLabel') }}

{{ $t('productDocDetail.guideClickSwitch') }}

{{ $t('productDocDetail.know') }}

{{ $t('productDocDetail.dontRemind') }}

6.11.3

{{item.code}}

Release Notes

Overview

Agentless Backup Development Guide

Introduction

Agentless Backup Deployment

Network Deployment

Backup Account Creation

Agentless Backup Instructions

SFVDDK Installation and Development

Sample Code

Advanced Features

Backup and Recovery of VMs with TPM Enabled

Encrypted VM Backup And Recovery

Precautions

Agentless Backup API 3rd-party Integration User Guide

Connection Preparations

Connect to Agentless Backup via SCP

Feature Connection

Platform Connection

Backup and Recovery

Notes

Product Architecture

Key Functionalities

aSV

aSAN

aNET

aSecurity

Management

Application Scenarios

Private Cloud Solution

Disaster Recovery Solution

Database Management Solution

Server Virtualization Solution

GPU Scenario Solution

VDI Solution

Installation And Deployment

Networking Installation Introduction

Preparation Before Installation

Witness Node System Installation (Optional)

Service Packs

HCI Cluster Initialization

HCI Licensing

Platform License

Authorization Change Description

Virtual Machine Service

Introduction

VM Types and Specifications

Related Concepts

Migration and Scheduling

Resource and Configuration Changes

Attribute and Tag Management

Expiration Date and Group Management

VM Security and Authentication

Enable Turbo Mode

FAQ

Networking Service Manual

Topology

IP and Bandwidth

Network Insight

Traffic Mirroring

Network Deployment

Shared Service Network

Image Service

Introduction

Operation Procedures

Create Images

Public VM Images Management

Private image management

View Private VM Images

Migration

Information Collection and Analysis

Information Collection for Common Migration

Migration Design

SCMT

Resource Assessment

VM Configuration Plan

Migration Feasibility Assessment

Migration Implementation

Migration Implementation

SCMT

aHM

ISO

Migration verification

Rollback

VM Settings on HCI

Troubleshooting

SCMT

Agent Installation Issues

Issues When Creating Migration Tasks

Issues During Migration Process

Issues After Migration

Storage Service

Overview

Virtual Storage Creation and Management

Storage Area Network Settings

Virtual Storage Pool Creation

Virtual Storage Pool Management

FAQ

Local Storage Pool Creation and Management

FAQ

External Storage Integration and Management

External Storage Management

FAQ

Backup Service

Overview

Backup Terminology

Backup Types

Quick Backup

CDP

Backup Creation and Management

Backup Creation

Quick Backup

CDP

Backup Management

Quick Backup

CDP

Backup Settings

FAQ

Snapshot Service

Feature Introduce

Snapshot Write & Read processes

Snapshots Configuration

Snapshots Management

Consistency Snapshot Management

Snapshot Polices Management

Correlated Snapshotting

FAQ

Primary-Secondary Disaster Recovery

Product Introduction

Applicable Scenarios

Constraints and Restrictions

Assessment and Planning

DR Network Planning

Installation and Deployment

SP Check with aDeploy

DR Configuration Guide

Primary/Secondary DR Configuration

Recovery Configuration

Multiple-Tenant Management

Feature Description

Multiple-Tenant Configuration

MSP Management

Multiple-Tenant Management

Tenant User

Tenant User Guide

Compute

Virtual Machine

Image

Networking

Network Topology

IP And Bandwidth

Network Deployment

Application Delivery Controller (ADC)

Security

Reliability

Monitor and Management

Monitor Center

Product Introduction

Integration with Third-Party Monitoring Ecosystem

Monitor Center Configuration Guide

Monitoring Configuration Best Practices

Cluster Management

Overview

Terminology

Cluster Creation and Management

Cluster Creation

SCP Deployment

Cluster Management

HCI Cluster Management

Cluster Reliability

HA

HA Test Guide

Cluster Maintenance

Expansion

Upgrade

SCP Upgrade

Patch

FAQ

Platform Management

User Management

System management

Security Service

HCI Platform

Access Control & Identity Management

SCP Platform

Access Control & Identity Management

Virtual Machine

vNGAF

VM Disk Encryption

Proactive Maintenance & Vulnerability Management

Comprehensive Audits with the aDeploy Tool

Maintenance & Operations Guide

SCP O&M Guide

Monitoring and Alerting Module

Health Check

aDeploy

Sangfor CLI

SCP Routine O&M Guide

Daily O&M Guidelines

Weekly O&M Guidelines

Monthly O&M Guidelines

Basic Service Adjustment Guide

System Power-On and Power-Off

Upgrade and SP Installation Guidelines

Network Configuration Adjustment

Capacity Expansion

SCP O&M Risks and Precautions

aDeploy Use Guide

Overview

Introduction

Auto Upgrade

Key Features

Installation and Upgrade

Manual Upgrade

Uninstall aDeploy

Usage

Health Check

Toolkit

Pre-change Check

Pre-upgrade Check

Feedback

Troubleshooting Common Issues

Windows Compatibility Issues

Sangfor Cloud Platform (SCP)

{{ breadTitle }}

Security Service

Virtual Machine

VPC vNGAF Deployment

{{sendMatomoQuery("Sangfor Cloud Platform (SCP)","VPC vNGAF Deployment")}}

VPC vNGAF Deployment

{{ $t('productDocDetail.updateTime') }}: 2025-12-22

There are two ways to deploy vNGAF for tenants. One is for the SCP administrator to deploy it for the tenant through the SCP administrator portal (https://SCP-IP:4430). The other is for the tenant to deploy it by logging into their own portal (https://SCP-IP).

VPC vNGAF deployment will cause gateway disconnection for a short time. Please perform this operation during off-peak hours.

Prerequisite:

The SCP administrator has allocated the vNGAF quota to the tenant.
The super administrator has uploaded the vNGAF image.
SCP has enabled vNGAF and aNET licenses.[SZ1]

Step

For SCP administrator account login SCP go to Networking > Topology on the up-left corner select the VPC, locate the vNGAF click Activate button. For tenant login SCP go to Networking > Topology locate the vNGAF click Activate button. The following steps both SCP administrator and tenant are the same.

After clicking Activate button fill out the following configuration:

• Name: By clicking the Edit button, you can define the vNGAF name.

• Resource Pool: The resource pool to deploy vNGAF.

• VPC: The resource pool to deploy vNGAF.

• Automatic Bypass: Monitor the status of the vNGAF and automatically allow business traffic to bypass the firewall when an error is detected, ensuring normal communication for VPC. After the troubleshooting is completed, you need to enable protection manually.

Configuration: Select the vNGAF configuration.

CPU	MEM	Maximum Network Throughput
2 Cores	4 GB	100 Mbps
2 Cores	4 GB	200 Mbps
4 Cores	8 GB	400 Mbps
8 Cores	16 GB	800 Mbps
8 Cores	16 GB	1.6Gbps

Branch VPN Sites: IPsec VPN site number.

Mobile Users: IPsec VPN client.

Under the more button there are Anti Web Defacement Licenses and SSL VPN Users.

Anti Web Defacement Licenses: Define the quantity interface for vNGAF.

SSL VPN Users: Define the quantity interface for the vNGAF.

Click OK, waiting for the vNGAF created successfully.

After successfully creating, you can view the device status information from the list. Click Edit to edit the configuration and device name. Click Web Console to redirect to the vNGAF console, click Start Protection enable protection. Under the More button, click Disable Protection to stop device protection. Click to enable storage encryption. Enable storage Encryption: Enabling the storage encryption feature means enabling encryption protection for the system disk of the vNGAF virtual machine. The encryption algorithm used is AES-256, and the encryption mode is ECB. After this feature is enabled, the data on the vNGAF virtual machine’s system disk is stored in an encrypted state, which effectively prevents data leakage caused by unauthorized access to the disk.