Public and private network endpoints

Enabling your account

Private network endpoints are supported for paid plans. Check the plan information for your service to learn about the plans that support private network endpoints.

Your account must be configured before you can use private endpoints. To use private network endpoints, the following account features must be enabled for your account.

• Virtual routing and forwarding (VRF).
• Service endpoints. Enabling service endpoints means that all users in the account can connect to private network endpoints.

To enable VRF, you create a support case. To enable service endpoints, you use the IBM Cloud CLI. For more information about how to enable your account, see Enabling VRF and service endpoints.

Setting a private endpoint

After your account is enabled for VRF and service endpoints, you can add a private network endpoint to a service instance.

A service instance can have a private network endpoint, a public network endpoint, or both.

• Public: A service endpoint on the IBM Cloud public network.
• Private: A service endpoint that is accessible only on the IBM Cloud private network with no access from the public internet.
• Both public and private: Service endpoints that allow access over both networks.

Viewing your endpoint URL

The service endpoint URLs are different for private and public network endpoints. You can view the URL for an endpoint from the service details page.

1. Go to your Resource list.
2. Click the name of a service instance that has a private network endpoint.
3. In the service details page, click the Manage tab, and then click Private Network Endpoint.

What to do next

• Configure your account for VRF and Service endpoints.
• Modify your applications to use the new service endpoint URL.
• Read more about service endpoints.