Programmable Virtual Networks with VLANs and Firewall Rules
Create isolated virtual networks with VLANs, private subnets (RFC 1918), and stateful firewall rules. Route traffic with BGP, configure VPN tunnels, and segment workloads for compliance.
Programmable Virtual Networks with VLANs and Firewall Rules
Create isolated virtual networks with VLANs, private subnets (RFC 1918), and stateful firewall rules. Route traffic with BGP, configure VPN tunnels, and segment workloads for compliance.
Key Features
What sets Xelon Cloud apart
Key Features
What sets Xelon Cloud apart
Why choose Xelon Cloud?
Overview
Xelon Software Defined Networking (SDN) provides programmable virtual networks with Layer 2 VLANs, Layer 3 routing, and stateful firewall rules. Design complex network topologies via UI or API with zero physical hardware changes.
Key Highlights:
802.1Q VLAN tagging with up to 4094 VLANs per tenant
Private subnets (10.0.0.0/8, 172.16.0.0/12, 192.168.0.0/16)
Stateful firewall rules (allow/deny inbound/outbound traffic)
BGP routing for multi-cloud and hybrid cloud connectivity
VPN tunnels (IPsec, OpenVPN, WireGuard) for site-to-site or remote access
Network ACLs (access control lists) at subnet level
Use Cases:
Multi-Tier Applications: Isolate web tier, app tier, database tier on separate VLANs
Compliance Segmentation: Separate production, dev, and test environments for PCI-DSS/HIPAA
Hybrid Cloud: Extend on-premise networks to Xelon Cloud via IPsec VPN or BGP
Zero Trust Networking: Micro-segmentation with per-VM firewall rules
Why choose Xelon Cloud?
Overview
Xelon Software Defined Networking (SDN) provides programmable virtual networks with Layer 2 VLANs, Layer 3 routing, and stateful firewall rules. Design complex network topologies via UI or API with zero physical hardware changes.
Key Highlights:
802.1Q VLAN tagging with up to 4094 VLANs per tenant
Private subnets (10.0.0.0/8, 172.16.0.0/12, 192.168.0.0/16)
Stateful firewall rules (allow/deny inbound/outbound traffic)
BGP routing for multi-cloud and hybrid cloud connectivity
VPN tunnels (IPsec, OpenVPN, WireGuard) for site-to-site or remote access
Network ACLs (access control lists) at subnet level
Use Cases:
Multi-Tier Applications: Isolate web tier, app tier, database tier on separate VLANs
Compliance Segmentation: Separate production, dev, and test environments for PCI-DSS/HIPAA
Hybrid Cloud: Extend on-premise networks to Xelon Cloud via IPsec VPN or BGP
Zero Trust Networking: Micro-segmentation with per-VM firewall rules
Automated Backups Made Simple
Daily snapshots are included with Xelon Cloud instances by default.
Need longer retention? Choose flexible options with 7, 30, or 365-day retention for compliance or business continuity.
Automated Backups Made Simple
Daily snapshots are included with Xelon Cloud instances by default.
Need longer retention? Choose flexible options with 7, 30, or 365-day retention for compliance or business continuity.
Technical Specifications
Technical Specifications
VLANs & Subnets
VLAN IDs: 1-4094 (802.1Q standard), isolated Layer 2 broadcast domains
Private Subnets: RFC 1918 addresses (10.0.0.0/8, 172.16.0.0/12, 192.168.0.0/16)
Subnet Sizes: /16 to /29 (256 IPs to 4 IPs per subnet)
DHCP: Built-in DHCP servers for automatic IP assignment
Firewall Rules
Stateful Inspection: Track connection state (NEW, ESTABLISHED, RELATED)
Rules: Allow/deny traffic by protocol (TCP/UDP/ICMP), port, source/destination IP/CIDR
Default Policy: Deny-all inbound, allow-all outbound (customizable per VM)
Rule Limit: Up to 500 firewall rules per VM
Routing
Static Routes: Configure static routes to route traffic between VLANs or external networks
BGP: Announce prefixes to external peers (on-premise routers, cloud providers)
VPN Routing: Route traffic through IPsec/OpenVPN/WireGuard tunnels
VPN Options
IPsec Site-to-Site: IKEv2 with AES-256-GCM encryption for hybrid cloud
OpenVPN: Remote access VPN with certificate-based authentication
WireGuard: Modern VPN protocol with 3x faster throughput than IPsec
Network Performance
Bandwidth: 1 Gbps - 10 Gbps per VM (no bandwidth throttling)
Latency: Sub-millisecond intra-datacenter latency (<0.5ms between VMs in same VLAN)
Throughput: Line-rate forwarding with hardware-accelerated virtual switches
High Availability
Redundant Switches: Active-active virtual switch pairs for zero downtime
Failover: Automatic failover on switch failure (<5 seconds)
Technical Specifications
Technical Specifications
VLANs & Subnets
VLAN IDs: 1-4094 (802.1Q standard), isolated Layer 2 broadcast domains
Private Subnets: RFC 1918 addresses (10.0.0.0/8, 172.16.0.0/12, 192.168.0.0/16)
Subnet Sizes: /16 to /29 (256 IPs to 4 IPs per subnet)
DHCP: Built-in DHCP servers for automatic IP assignment
Firewall Rules
Stateful Inspection: Track connection state (NEW, ESTABLISHED, RELATED)
Rules: Allow/deny traffic by protocol (TCP/UDP/ICMP), port, source/destination IP/CIDR
Default Policy: Deny-all inbound, allow-all outbound (customizable per VM)
Rule Limit: Up to 500 firewall rules per VM
Routing
Static Routes: Configure static routes to route traffic between VLANs or external networks
BGP: Announce prefixes to external peers (on-premise routers, cloud providers)
VPN Routing: Route traffic through IPsec/OpenVPN/WireGuard tunnels
VPN Options
IPsec Site-to-Site: IKEv2 with AES-256-GCM encryption for hybrid cloud
OpenVPN: Remote access VPN with certificate-based authentication
WireGuard: Modern VPN protocol with 3x faster throughput than IPsec
Network Performance
Bandwidth: 1 Gbps - 10 Gbps per VM (no bandwidth throttling)
Latency: Sub-millisecond intra-datacenter latency (<0.5ms between VMs in same VLAN)
Throughput: Line-rate forwarding with hardware-accelerated virtual switches
High Availability
Redundant Switches: Active-active virtual switch pairs for zero downtime
Failover: Automatic failover on switch failure (<5 seconds)
Optimized for Kubernetes & Cloud-Native Workloads
Our compute plans are designed to integrate seamlessly with CloudDeck and Xelon Kubernetes:
Native support for K8s node pools
Instant scaling
Multi-zone deployments
S3-compatible object storage for stateful workloads
SCION-secured networking for critical clusters
Optimized for Kubernetes & Cloud-Native Workloads
Our compute plans are designed to integrate seamlessly with CloudDeck and Xelon Kubernetes:
Native support for K8s node pools
Instant scaling
Multi-zone deployments
S3-compatible object storage for stateful workloads
SCION-secured networking for critical clusters
Optimized for Kubernetes & Cloud-Native Workloads
Our compute plans are designed to integrate seamlessly with CloudDeck and Xelon Kubernetes:
Native support for K8s node pools
Instant scaling
Multi-zone deployments
S3-compatible object storage for stateful workloads
SCION-secured networking for critical clusters
Book an Appointment
Choose a time that works for you and connect with one of our cloud specialists for a personalised session — via Microsoft Teams or phone.
Request Meeting with our Solution Architect
Request Meeting with our Partner Manager
Book an Appointment
Choose a time that works for you and connect with one of our cloud specialists for a personalised session — via Microsoft Teams or phone.
Request Meeting with our Solution Architect
Request Meeting with our Partner Manager
Get in touch
We’re here to help you with cloud strategy, technical questions, pricing, compliance, and tailored solutions for your organisation.
Get in touch
We’re here to help you with cloud strategy, technical questions, pricing, compliance, and tailored solutions for your organisation.
First name
Bonnie
Last name
Green
name@example.com
Phone number
+(12) 345 6789
Your message
By submitting this form, you confirm that you have read and agree to Xelon's Terms of Service and Privacy Statement
Send message
Take your cloud to the next level
Experience high-performance Swiss cloud infrastructure built for teams who want reliability, sovereignty, and simplicity.
Take your cloud to the next level
Experience high-performance Swiss cloud infrastructure built for teams who want reliability, sovereignty, and simplicity.
Take your cloud to the next level
Experience high-performance Swiss cloud infrastructure built for teams who want reliability, sovereignty, and simplicity.