Architecture, Firewall and Load Balancer

Why you must extend Zero Trust to public cloud workloads

CIO

NOVEMBER 8, 2023

It’s not as simple as just extending traditional firewall capabilities to the cloud. In many cases, organizations adopt legacy network security solutions and architectures to secure these cloud workloads that often fail to provide complete security coverage. In fact, a few of the most common challenges include: Risk. Operational costs.

Cloud

Cloud Spyware AWS Malware

Announcing Complete Azure Observability for Kentik Cloud

Kentik

JUNE 27, 2023

We designed this new map specifically around Azure hybrid cloud architectural patterns in response to the needs of some of our largest enterprise customers. It includes rich metrics for understanding the volume, path, business context, and performance of flows traveling through Azure network infrastructure.

Azure

Azure Cloud Load Balancer Firewall

Optimizing PCI compliance in financial institutions

CIO

JANUARY 4, 2024

CCA prerequisites Large organizations usually govern their IT portfolio via global architectural patterns, which can be thought of as building blocks, and include IT security patterns. In practice, IT architectural patterns give architects the building blocks to design any IT solution.

Compliance

Compliance Architecture Resources Authentication

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

The Ultimate Guide to a FireMon Technical Evaluation

Firemon

APRIL 11, 2023

Agree upon a deployment option to ensure the recommended architecture is set up in advance of the PoC (e.g., FireMon will provide a workbook to simplify this process. We aim to conduct all PoC’s within 14 days.

Load Balancer

Load Balancer Firewall Compliance Policies

DNS Zone Setup Best Practices on Azure

Cloudera

FEBRUARY 12, 2024

Most users have restrictions on firewalls for wildcard rules. If service endpoints are not allowed, firewall and private endpoints will be the other two options. Most cloud users do not like opening firewall rules because that will introduce the risk of exposing private data on the internet.

Azure

Azure Firewall Data Engineering Storage

A Reference Architecture for the Cloudera Private Cloud Base Data Platform

Cloudera

JULY 15, 2021

The release of Cloudera Data Platform (CDP) Private Cloud Base edition provides customers with a next generation hybrid cloud architecture. Customers will implement firewalls at the perimeter of the cluster, the amount of network traffic and ports used for intra cluster communication is significant. Introduction and Rationale.

Architecture

Architecture Cloud Data Technical Advisors

Azure VMware Solution: Connectivity (Part 1)

Perficient

MAY 10, 2023

Figure 1 includes a sample architecture using Virtual WAN. Cloud native services like Azure Firewall or another device of your choosing can be leveraged to provide SNAT, DNAT, and security services. Azure Public IP addresses can be consumed by NSX Edge and leveraged for NSX services like SNAT, DNAT, or Load Balancing.

Azure

Azure WAN Virtualization Internet

The Network Also Needs to be Observable, Part 2: Network Telemetry Sources

Kentik

JANUARY 6, 2021

Most of the history of network operations has been supported by monitoring tools, mostly standalone, closed systems, seeing one or a couple of network element and telemetry types, and generally on-prem and one- or few-node, without modern, open-data architectures. Application layer : ADCs, load balancers and service meshes.

Network

Network WAN Wireless Load Balancer

Optimizing Network Stability and Reliability Through Data-Driven Strategies

Kentik

APRIL 24, 2023

We believe a data-driven approach to network operations is the key to maintaining the mechanism that delivers applications from data centers, public clouds, and containerized architectures to actual human beings. Ultimately, we’re solving a network operations problem using a data-driven approach. More data!

Network

Network Data Load Balancer Strategy

Routing from Kubernetes to External VMs using the Ambassador API gateway: A Terraformed Playground

Daniel Bryant

MARCH 27, 2019

We’ve added sample Terraform code to the Ambassador Pro Reference Architecture GitHub repo which enables the creation of a multi-platform “sandbox” infrastructure on Google Cloud Platform. This will allow you to spin up a Kubernetes cluster and several VMs, and practice routing traffic from Ambassador to the existing applications.

Load Balancer

Load Balancer Google Cloud Data Center Firewall

Routing in a Multi-Platform Data Center: From VMs to Kubernetes, via Ambassador

Daniel Bryant

MARCH 13, 2019

We’ve added sample Terraform code to the Ambassador Pro Reference Architecture GitHub repo which enables the creation of a multi-platform “sandbox” infrastructure on Google Cloud Platform. This will allow you to spin up a Kubernetes cluster and several VMs, and practice routing traffic from Ambassador to the existing applications.

Data Center

Data Center Load Balancer Google Cloud Data

The Visibility Challenge for Network Overlays

Kentik

MAY 29, 2019

In order to maintain reliable applications in these new architectures, network teams must become more involved to proactively identify issues. It could even be at the host level with configuration of DNS, or external to the network at the load balancing layers.

Network

Network Load Balancer Technical Review Firewall

Testing the Limits of Firewall Performance and Flexibility

Palo Alto Networks

NOVEMBER 8, 2023

5 New Firewall Platforms Extend the Palo Alto Hardware Portfolio for New Use Cases Cyberthreats are increasing in volume and complexity, making it difficult for network defenders to protect their organizations. Tbps App-ID Performance The world’s fastest Layer 7 firewall is here. New Hardware Platform Releases Our latest PAN-OS 11.1

Firewall

Firewall Performance Testing Hardware

Solarflare’s Open Compute Platform, Software-Defined, NIC Card

CTOvision

MAY 16, 2017

Solarflare adapters are deployed in a wide range of use cases, including software-defined networking (SDN), network functions virtualization (NFV), web content optimization, DNS acceleration, web firewalls, load balancing, NoSQL databases, caching tiers (Memcached), web proxies, video streaming and storage networks.

Software

Software Data Center Hardware Firewall

Your Guide to Kubernetes Air-Gapping Success

d2iq

JULY 12, 2023

Network Boundaries and Ingress In an air-gapped environment, there will be network boundaries, including some form of firewalls or blacklist. There are various schemes that can be employed, including ways to mimic the load balancing and limited ingress of a cloud-native environment.

Load Balancer

Load Balancer Internet Disaster Recovery Network

Solarflare’s Open Compute Platform, Software-Defined, NIC Card

CTOvision

MAY 9, 2017

Solarflare adapters are deployed in a wide range of use cases, including software-defined networking (SDN), network functions virtualization (NFV), web content optimization, DNS acceleration, web firewalls, load balancing, NoSQL databases, caching tiers (Memcached), web proxies, video streaming and storage networks.

Software

Software Data Center Hardware Firewall

Network topologies – A series: Part 1

Xebia

APRIL 18, 2023

It’s expected that the reader does have some knowledge about basic cloud concepts, such as VPC and firewall rules, or have the ability to find the documentation for this when needed. This setup will adopt the usage of cloud load balancing, auto scaling and managed SSL certificates. Expanding on the most simple set up.

Load Balancer

Load Balancer Network Firewall Google Cloud

Create your Private Data Warehousing Environment Using Azure Kubernetes Service

Cloudera

DECEMBER 2, 2021

Cloudera Data Warehouse (CDW) is a cloud native data warehouse service that runs Cloudera’s powerful query engines on a containerized architecture to do analytics on any type of data. CDW has long had many pieces of this security puzzle solved, including private load balancers, support for Private Link, and firewalls.

Azure

Azure Load Balancer Firewall Data

How Aviatrix’s intelligent orchestration and control eliminates unwanted tradeoffs encountered when deploying Palo Alto Networks VM-Series Firewalls with AWS Transit Gateway

Aviatrix

JUNE 7, 2019

Deploying any next generation firewall in a public cloud environment is challenging, not because of the firewall itself but because of the public cloud networking services that practitioners must use. Aviatrix Firewall Network Service. Eliminate IPSec bottleneck and leverage the best performance of the firewall.

Firewall

Firewall AWS Network Load Balancer

How Aviatrix’s intelligent orchestration and control eliminates unwanted tradeoffs encountered when deploying Palo Alto Networks VM-Series Firewalls with AWS Transit Gateway

Aviatrix

JUNE 7, 2019

Deploying any next generation firewall in a public cloud environment is challenging, not because of the firewall itself but because of the public cloud networking services that practitioners must use. Aviatrix Firewall Network Service. Eliminate IPSec bottleneck and leverage the best performance of the firewall.

Firewall

Firewall AWS Network Load Balancer

Practical Steps for Enhancing Reliability in Cloud Networks - Part I

Kentik

APRIL 4, 2023

Highly available networks are resistant to failures or interruptions that lead to downtime and can be achieved via various strategies, including redundancy, savvy configuration, and architectural services like load balancing. Resiliency. Resilient networks can handle attacks, dropped connections, and interrupted workflows.

Network

Network Load Balancer Cloud Backup

Ngrok, a service to help devs deploy sites, services and apps, raises $50M

TechCrunch

DECEMBER 13, 2022

Developers are required to configure unnecessarily low-layer networking resources like IPs, DNS, VPNs and firewalls to deliver their applications,” Shreve told TechCrunch in an email interview. “Ngrok allows developers to avoid that complexity.” Ngrok’s ingress is [an] application’s front door,” Shreve said.

Firewall

Firewall Serverless Load Balancer Internet

Build Hybrid Data Pipelines and Enable Universal Connectivity With CDF-PC Inbound Connections

Cloudera

JUNE 17, 2022

Which load balancer should you pick and how should it be configured? Figure 1: CDF-PC takes care of everything you need to provide stable, secure, scalable endpoints including load balancers, DNS entries, certificates and NiFi configuration. Who manages certificates and configures the source system and NiFi correctly?

Load Balancer

Load Balancer Data Scalability Data Center

Infrastructure Engineer: Key Duties, Skills, and Background

Altexsoft

JULY 4, 2022

The right candidate is expected to have practical networking skills with firewall operations, routing protocols, subnetting, and recovery procedures. Elastic Google Cloud Infrastructure: Scaling and Automation introduces virtual private networks (VPNs), load balancing, autoscaling, and infrastructure automation services.

Infrastructure

Infrastructure Engineering Technical Review Google Cloud

Podcast with Kentik CEO Avi Freedman & Jim Metzler

Kentik

OCTOBER 3, 2016

On September 20, Kentik announced Kentik NPM, the first network performance monitoring solution designed for the speed, scale, and architecture of today’s digital business. The host agent is something that plays well with our big-data architecture, it’s easy to deploy, and doesn’t require any physical mucking around with packet brokers.

Big Data

Big Data Internet Network Performance

High Availability: What It Is and How You Can Achieve It

Kaseya

AUGUST 10, 2021

Everything from load balancer, firewall and router, to reverse proxy and monitory systems, is completely redundant at both network as well as application level, guaranteeing the highest level of service availability. Implement network load balancing. Leverage failover solutions.

Load Balancer

Load Balancer Disaster Recovery Systems Review Backup

Three Strategies for Managing APIs, Ingress, and the Edge with Kubernetes

Daniel Bryant

NOVEMBER 26, 2019

Deploy an additional k8s gateway, extend the existing gateway, or deploy a comprehensive self-service edge stack Refactoring applications into a microservice-style architecture package within containers and deployed into Kubernetes brings several new challenges for the edge.

Strategy

Strategy Load Balancer Microservices Architecture

Terraform benefits & use cases

Apiumhub

OCTOBER 20, 2020

When it comes to Terraform, you are not bound to one server image, but rather a complete infrastructure that can contain application servers, databases, CDN servers, load balancers, firewalls, and others. Client-only architecture. The most common 2-tier architecture is a pool of web servers that use a database tier.

Software Review

Software Review Load Balancer Infrastructure DevOps

Three Strategies for Managing APIs and the Edge with Kubernetes

Daniel Bryant

NOVEMBER 21, 2019

KUBERNETES AND THE EDGE Deploy an additional k8s gateway, extend the existing gateway, or deploy a comprehensive self-service edge stack Refactoring applications into a microservice-style architecture package within containers and deployed into Kubernetes brings several new challenges for the edge.

Strategy

Strategy Load Balancer Microservices Architecture

The History of Pets vs Cattle and How to Use the Analogy Properly

CloudScaling

SEPTEMBER 29, 2016

His focus was about “scale-up” vs. “scale-out” architectures generally. Examples include mainframes, solitary servers, HA loadbalancers/firewalls (active/active or active/passive), database systems designed as master/slave (active/passive), and so on. Bill wasn’t running around presenting this in cloud circles.

How To

How To Load Balancer Cloud Storage

Envoy and the “Programmable Edge”: The Changing Role of Edge Proxies and Developer Experience

Daniel Bryant

FEBRUARY 28, 2019

Moving away from hardware-based load balancers and other edge appliances towards the software-based “programmable edge” provided by Envoy clearly has many benefits, particularly in regard to dynamism and automation. we didn’t need much control in the way of releasing our application?

Weak Development Team

Weak Development Team Development Load Balancer Software Review

KubeCon NA 2019: Top Ten Takeaways (Part 1)

Daniel Bryant

NOVEMBER 25, 2019

I will publish the remaining takeaways in a follow-up post, and this will focus on the operations, new architecture paradigms, and end user perspective. This includes technologies like an OSI layer 3–7 load balancer, web application firewall (WAF), edge cache, reverse proxies, API gateway, and developer portal.

Cloud

Cloud IoT Conference Network

The Rise of Managed Services for Apache Kafka

Confluent

SEPTEMBER 20, 2019

Besides the minimum, other resources that may be necessary for your deployment include load balancers, SSL certificates, metrics and logs, NAT gateways (if each compute instance requires superior egress throughput), and encryption keys. Storage: each instance will likely have non-ephemeral disks attached to it.

Software Review

Software Review Technical Review Storage Cloud

Network Security Investment Priority #3: SASE

Firemon

APRIL 23, 2021

Zero Trust Architecture (ZTA) is becoming the de facto security strategy in enterprises today. Dynamic load balancing. If some locations are still using legacy firewalls, they can be connected to SASE via IPsec tunnels and excess traffic can be sent to the SASE cloud for processing by using firewall bursting.

Network

Network WAN Policies Firewall

Egnyte Architecture: Lessons learned in building and scaling a multi petabyte content platform

High Scalability

NOVEMBER 25, 2019

Over time, costs for S3 and GCS became reasonable and with Egnyte’s storage plugin architecture, our customers can now bring in any storage backend of their choice. In general, Egnyte connect architecture shards and caches data at different levels based on: Amount of data. Load Balancers / Reverse Proxy. Kubernetes.

Architecture

Architecture Data Center Software Review Storage

Kentik’s Journey to Deliver the First Cloud Network Observability Product

Kentik

MAY 17, 2021

Many of our customers already running large on-prem networks noted a trend: As their companies settled into the cloud, network teams were asked to step up to help configure network architectures, establish connectivity to their data and remote offices, and solve connectivity issues for the app teams. But those days are gone. Adapt or die.

Network

Network Cloud AWS Architecture

Why you must extend Zero Trust to public cloud workloads

Announcing Complete Azure Observability for Kentik Cloud

Webinars

Trending Sources

Optimizing PCI compliance in financial institutions

Webinars

The Ultimate Guide to a FireMon Technical Evaluation

DNS Zone Setup Best Practices on Azure

A Reference Architecture for the Cloudera Private Cloud Base Data Platform

Azure VMware Solution: Connectivity (Part 1)

The Network Also Needs to be Observable, Part 2: Network Telemetry Sources

Optimizing Network Stability and Reliability Through Data-Driven Strategies

Routing from Kubernetes to External VMs using the Ambassador API gateway: A Terraformed Playground

Routing in a Multi-Platform Data Center: From VMs to Kubernetes, via Ambassador

The Visibility Challenge for Network Overlays

Testing the Limits of Firewall Performance and Flexibility

Solarflare’s Open Compute Platform, Software-Defined, NIC Card

Your Guide to Kubernetes Air-Gapping Success

Solarflare’s Open Compute Platform, Software-Defined, NIC Card

Network topologies – A series: Part 1

Create your Private Data Warehousing Environment Using Azure Kubernetes Service

How Aviatrix’s intelligent orchestration and control eliminates unwanted tradeoffs encountered when deploying Palo Alto Networks VM-Series Firewalls with AWS Transit Gateway

How Aviatrix’s intelligent orchestration and control eliminates unwanted tradeoffs encountered when deploying Palo Alto Networks VM-Series Firewalls with AWS Transit Gateway

Practical Steps for Enhancing Reliability in Cloud Networks - Part I

Ngrok, a service to help devs deploy sites, services and apps, raises $50M

Build Hybrid Data Pipelines and Enable Universal Connectivity With CDF-PC Inbound Connections

Infrastructure Engineer: Key Duties, Skills, and Background

Podcast with Kentik CEO Avi Freedman & Jim Metzler

High Availability: What It Is and How You Can Achieve It

Three Strategies for Managing APIs, Ingress, and the Edge with Kubernetes

Terraform benefits & use cases

Three Strategies for Managing APIs and the Edge with Kubernetes

The History of Pets vs Cattle and How to Use the Analogy Properly

Envoy and the “Programmable Edge”: The Changing Role of Edge Proxies and Developer Experience

KubeCon NA 2019: Top Ten Takeaways (Part 1)

The Rise of Managed Services for Apache Kafka

Network Security Investment Priority #3: SASE

Egnyte Architecture: Lessons learned in building and scaling a multi petabyte content platform

Kentik’s Journey to Deliver the First Cloud Network Observability Product

Stay Connected