Hybrid Clouds and Multi-Cloud
Home » Courses » Networking in Public Cloud Deployments » Hybrid Clouds and Multi-Cloud
Hybrid Clouds and Multi-Cloud
IT vendors love to talk about hybrid clouds (more so if they happen to have a product that can connect your data center with a public cloud in an arcane way) while the public cloud providers try to keep things simple and offer the same mechanisms we used for ages: direct connectivity, IPsec VPN and BGP routing protocol.
This module describes:
- Public cloud mechanisms you can use to build hybrid clouds;
- Alternate solutions you can use to connect your sites to a public cloud;
- Challenges of deploying your workloads in more than one public cloud (multi-cloud)
23:22 Hybrid Cloud Connectivity |
||
|
Most effective ways of implementing hybrid- or multi-cloud connectivity use traditional mechanisms like VPNs or direct connectivity between your sites and public cloud provider combined with BGP routing. Not surprisingly, that approach requries decent design, and thus numerous vendors offer over-the-cloud solutions that claim to be simpler to deploy and use. This section contains an overview of that approach. |
||
| Over-the-Cloud Solutions | 11:09 | 2017-08-01 |
| Hybrid Cloud Networking | 12:13 | 2017-08-01 |
External Public Cloud Connectivity |
||
You will probably want to focus your work on either AWS or Azure. Please watch the materials describing the public cloud provider you want to use during the course. |
||
3:03:55 AWS External Connectivity Mechanisms |
||
|
This section describes other external connectivity options available in AWS VPC - IPsec VPN connections, router-to-router VLAN connections (Direct Connect), inter-VPC peering, and Transit Gateways. |
||
| VPN Connectivity | 21:16 | 2022-12-21 |
| Direct Connect | 20:30 | 2019-06-14 |
| VPC Peering | 9:43 | 2019-06-14 |
| Transit Gateway | 24:22 | 2022-12-21 |
| Transit Gateway Connect | 13:55 | 2021-11-15 |
| AWS Private Link | 35:49 | 2022-12-21 |
38:35 Amazon VPC Lattice |
||
| Amazon VPC Lattice Overview | 17:58 | 2023-11-27 |
| Configuring and Securing Amazon VPC Lattice | 20:37 | 2023-11-27 |
Automation Examples |
||
| Inter-Region VPC Peering Example | ||
19:45 From the ipSpace.net Design Clinic |
||
| Impact of Transit Gateway on Application Performance | 4:59 | 2022-03-01 |
| Direct or VPN Access to a Public Cloud | 14:46 | 2023-04-04 |
Related AWS Documentation |
||
| Site-to-Site VPN Single and Multiple Connection Examples | ||
| VPC Peering Scenarios | ||
| Working with VPC Peering Connections | ||
| Getting Started with AWS Direct Connect | ||
| Working with Transit Gateways | ||
| Inter-region VPC peering with Transit Gateways | ||
| Inter-region Transit Gateway Peering | ||
| AWS Transit Gateway Network Manager | ||
Related AWS Architecture Blog Posts |
||
| How to integrate third-party firewall appliances into an AWS environment | ||
More Information |
||
| Building a Scalable and Secure Multi-VPC Network Infrastructure | ||
| AWS Transit Gateway and Multi-VPC Design Options for Hybrid Cloud Architecture | ||
| Improve VPN Network Performance of AWS Hybrid Cloud with Global Accelerator | ||
| Direct Connect Failover Testing | ||
New AWS Features |
||
| AWS Site-to-Site VPN supports IKEv2 | ||
| Multi-account support for Direct Connect gateway | ||
| VPN connections using AWS Global Accelerator | ||
| Private IP addresses as endpoints of Site-to-Site VPN | ||
| AWS Transit Gateway Intra-Region Peering | ||
| AWS announces Amazon VPC Lattice (Preview) | ||
Useful Tools |
||
| peerd: AWS VPC Peering Connection management tool | ||
1:58:33 Azure External Connectivity Mechanisms |
||
|
Azure Virtual Networks could be connected to global Internet, to other virtual networks, or to remote sites using IPsec tunnels (VPNs) or direct connections (ExpressRoute). This section describes Azure external connectivity options, and the concept of Virtual Network Gateways used to implement VPN and ExpressRoute connections. |
||
| VNet Peering | 17:48 | 2022-11-28 |
| Virtual Network Gateways | 10:29 | 2020-01-04 |
| VPN Connections | 13:19 | 2022-11-28 |
| Complex VPN Scenarios | 16:43 | 2022-11-28 |
| ExpressRoute Connections | 12:17 | 2022-11-28 |
| Advanced ExpressRoute Scenarios | 6:15 | 2020-01-04 |
| Azure Private Link | 15:22 | 2022-11-28 |
11:34 Hands-on Demos |
||
| Virtual Network Peering | 11:34 | 2019-08-24 |
New Azure Features |
||
| Multiple features for Azure VPN Gateway | ||
| Azure ExpressRoute Traffic Collector | ||
| ExpressRoute IPv6 Support for Global Reach | ||
14:46 From the ipSpace.net Design Clinic |
||
| Direct or VPN Access to a Public Cloud | 14:46 | 2023-04-04 |
2:13:00 Azure Virtual WAN |
||
|
Azure Virtual WAN is Microsoft's attempt at building an SD-WAN service; Virtual Hubs are the transit virtual routers within Virtual WAN. This section describes the basics of Virtual WAN and Virtual Hubs, dives deep into Virtual Hub routing, including multiple route tables and transit routing. It also explores various connectivity scenarios, from simple any-to-any connectivity to hub-and-spoke connectivity including networking appliances and Azure Virtual Firewall. |
||
| Virtual WAN Overview | 8:50 | 2021-05-17 |
| Virtual Hub Overview | 17:17 | 2021-05-17 |
| Virtual Hub Routing | 23:31 | 2021-05-17 |
| Virtual WAN Configuration and Management | 13:49 | 2021-05-17 |
Configuration Examples |
||
| Azure Virtual WAN Scenarios | ||
36:55 Connectivity Scenarios |
||
| Simple Connectivity Scenarios | 6:28 | 2021-05-17 |
| Multi-Hub Deployments | 9:30 | 2021-05-17 |
| Shared Services | 9:16 | 2021-05-17 |
| Hub-and-Spoke Scenarios | 7:29 | 2021-05-29 |
| Adding Branches | 4:12 | 2021-05-29 |
32:38 Secure Virtual Hub |
||
| Secure Virtual Hub | 17:55 | 2021-05-29 |
| Network Virtual Appliance Integration | 14:43 | 2021-05-29 |