Classify resources
KakaoCloud provides services across multiple data centers. These data centers are interconnected, and users can access desired types of resources from anywhere in the world. KakaoCloud resources are categorized into Global resources, Region resources, and Availability zone resources.
| Resource type | Description |
|---|---|
| Global resource | High-level resource not tied to a specific region; available across multiple regions. |
| Region resource | Resource available only within a specific region. - Operates independently per region and must be created separately in each region. |
| Availability zone resource | Resource available only within a specific availability zone (AZ). - Managed independently from resources in other AZs within the same region. |
Difference between
Region resource and Availability zone resourceRegion resource can access all resources in the same region, while Availability zone resource is limited to resources within the same AZ.
For example, to attach Block Storage to an instance, both must be in the same AZ. Likewise, to assign a public IP, the instance must be in the same region as the IP.
Resource types
| Type | Category | Resource | Description |
|---|---|---|---|
| Global resource | Management | Project | Logical grouping unit for resources; used as a base for billing and access control. |
| IAM policy | Globally declared access control policy at organization/project level; applied consistently across region resources. | ||
| Billing group | Global resource that aggregates usage per project into a single billing unit. Usage across all regions is billed together. | ||
| Region resource | Common | Resource ID | ID types (image ID, instance ID, volume ID, snapshot ID, etc.) usable only in the region where created. |
| Resource name | Names (e.g., security group name, key pair name) usable only in the region where created. Same names may exist in other regions but are not linked. | ||
| Beyond Compute Service | Key pair | Credential resource created per region. Tied to instances in that region, but the same public key can be uploaded to other regions. | |
| Image | Region-based OS image used when launching instances. | ||
| Snapshot | Point-in-time copy of volumes managed per region. Stored and used only within the region of creation. | ||
| Beyond Networking Service | VPC | Virtual network resource per region. Subnets and instances must be in the same region. | |
| Security group | Inbound/outbound traffic control per region. Rules apply only to resources in the same region. | ||
| Routing table | Defines network paths within a region; routes traffic between subnets and gateways in the same region. | ||
| Public IP | Reserved per region; assignable only to instances or load balancers in the same region. | ||
| Transit Gateway | Hub resource for connecting multiple VPCs or on-premises networks in the same region. No cross-region support. | ||
| High availability group | Regional grouping of load balancers across multiple AZs for unified management. | ||
| Container Pack | Repository | Region-based storage for container images; accessed via region endpoints. | |
| Node pool | Node group resource managed per Kubernetes cluster; defined and managed per region but nodes are distributed across AZs. | ||
| Beyond Storage Service | Bucket | Region-based bucket in Object Storage. Data stored physically separate from other regions. | |
| Data Store | MySQL instance group | MySQL group resource deployed per region. Instances are distributed across AZs and backups managed per group/type. | |
| PostgreSQL instance group | Same structure as MySQL instance group for PostgreSQL. | ||
| MemStore cluster | Redis-based cache cluster per region. Shards/nodes are AZ-distributed. No cross-region sharing. | ||
| Analytics | Hadoop cluster | Hadoop cluster resource for large-scale data processing/storage. Region-based. | |
| Kafka cluster | Streaming cluster in Advanced Managed Kafka; fully automated region-based operation. | ||
| Topic | Region-based message publishing resource in Pub/Sub. Linked only to subscriptions in the same region. | ||
| Subscription | Region-based message receiving resource in Pub/Sub. Receives messages from same-region topics. | ||
| Management | Certificate | Region-based certificate resource in Certificate Manager. Linked to other region resources like load balancers. | |
| Scenario | Region-based workflow in Monitoring Flow. Executes automatically based on regional service resources. | ||
| Workspace | Prometheus monitoring workspace. Regional collection policies apply. | ||
| AI Service | Kubeflow cluster | Region-based cluster for managing Kubeflow ML workflows. | |
| Security | Key | Key resource managed per region in KMS. Supports key rotation and version management. | |
| Secret | Secret resource managed per region in Secrets Manager. New versions created on value change. | ||
| Availability zone resource | Beyond Compute Service | Instance | AZ-based compute resource. Runs in a specific data center only. |
| Volume | Block device attached to instances in the same AZ. Cannot move between AZs. | ||
| Beyond Networking Service | Subnet | AZ-level network segment. Forms isolated boundaries between AZs in a region. | |
| Network interface | Interface attached to instances in the same AZ. Not movable to other AZs. | ||
| Load balancer | Traffic distribution resource per AZ. Balances traffic among instances in the same AZ. | ||
| Beyond Storage Service | File Storage instance | File storage instance created per AZ in File Storage service. |