Networking
Networking Overview
Network connectivity options for LaserData Cloud deployments
LaserData Cloud provides layered networking controls to secure and connect your deployments. Every deployment starts fully locked down — no traffic is allowed until you explicitly configure access.
Connectivity Options
| Feature | Scope | Availability | Purpose |
|---|---|---|---|
| Access Rules | All clouds | All plans | Allow specific IPs/CIDRs to reach deployment endpoints |
| VPC Peering | AWS | Pro and Enterprise (Managed only) | Private network path between your VPC and the deployment VPC |
| PrivateLink | AWS | Pro and Enterprise (Managed only) | Expose the deployment as a VPC endpoint service in your account |
Default Posture
New deployments have no network access configured. Clients cannot connect until at least one access rule is created. This applies to all deployment models (Managed, BYOC, On-Premise).
Required Permissions
Networking operations require environment-scoped permissions:
| Permission | Grants |
|---|---|
DeploymentAccessRulesRead | View access rules |
DeploymentAccessRulesManage | Create and delete access rules (implies Read) |
DeploymentNetworkRead | View VPC peering connections and PrivateLink services |
DeploymentNetworkManage | Create and delete VPC peering and PrivateLink (implies Read) |
Plan Limits
Private networking features (VPC Peering and PrivateLink) are available on Pro and Enterprise plans.
| Resource | Basic | Pro | Enterprise |
|---|---|---|---|
| Access rules per deployment | 3 | 10 | 20 |
| VPC peering connections per deployment | 0 | 3 | 10 |
| PrivateLink endpoint services per deployment | 0 | 1 | 5 |
| Private networking | Not available | Enabled | Enabled |