What's the exact technical difference between a public and private cloud?

cloud

A private cloud can be configured as though it were an extension of your LAN or datacentre, and not directly connected to the Internet. That is, they can be addressed with private IPv4 addresses, making them unreachable from the Internet. Via a VPN, the private cloud operates as though it were an extension of your LAN or co-lo facility.

Even in a private cloud you're typically dealing with multi-tenancy. Other customers have VPSs running on the same hardware you're running on. However, unless they're able to take advantage of some unknown virtualisation exploit, they might as well be running on isolated hardware... they cant get to your VPS on 192.168.1.1 (or whatever address you've configured).

A public cloud is inherently reachable from the Internet (at least one interface has a public IP address). Virtual machines in a private cloud can only access (or be accessed) the Internet via a NAT instance or via VPN (they can be configured to only have a private IP address).

  • Thanks to TomTom for the correction re: multi-tenancy. A private cloud should not be thought of as multi-tenant. I was thinking of Amazon Virtual Private Cloud when answering, and while that's multi-tenant, I think it's more accurate to say that Amazon VPC is not strictly speaking a private cloud rather than saying because of Amazon VPC, multi-tenant hosts can be thought of as private cloud.

A cloud is just an abstraction layer. Guess what? VMware is cloud.

A public cloud is one which anyone could potentially use.

A private cloud is restricted to a particular set of people (most commonly members of a company or unit within a company).


The problem with this question is that the term cloud doesn't have any single, standardised meaning. This makes it very difficult to define things concisely across vendors etc. All we have are loosely defined terms that mean one thing to one group of people and quite another to others.

That said, a "private cloud" generally means infrastructure which is owned, controlled and used by a single entity. I can appreciate your question, but honestly, it really depends on exactly what type of service your talking about and what the marketing person / vendor meant when they wrote the term.

Related

Make Nginx server respond slowly
There are two MOTD's shown when I login to my server using SSH
systemd ExecStartPost doesn't look to be called
Used vgextend/lvextend to add addtional 8GB space but it is not reflected in df output
What is the best way in Puppet to add a piece of text to the /etc/hosts file?
How to stop Nginx to listen to port 80?
Active Directory authentication load balancing and failover
How reliable is HDD SMART data?
sshd tries reverse DNS lookups with UseDNS no
real solution for `No input file specified.` (nginx, fpm)
Apache logs flooded with connections - "(via ggpht.com GoogleImageProxy)"
Is single sign on with LDAP still recommended today to integrate a bunch of open source tools?