Cloud LAN – Data Center for Efficient Network Configuration
Cloud LAN – Data Center for Efficient Network Configuration
Overview
In the accelerating reality of Cloud Transformation, companies face significant costs and management difficulties in maintaining network connections for IT resources that have not been converted to the cloud. Cloud LAN – Data Center is a service that provides a corporate private network by utilizing SDDC (Software-Defined Data Center) based infrastructure, allowing for various uses such as internet access, corporate private network connection, Samsung Cloud Platform and other CSP connections, and on-premises connections. This document explains how to utilize the existing Shared Network Infra through Cloud LAN – Data Center to build a private network for customer companies connecting Samsung Cloud Platform and on-premises with a shortened lead time.
Architecture Diagram
Figure 1. Architecture using Cloud LAN – Data Center
- The user applies for the Cloud LAN – Data Center service through the Samsung Cloud Platform Console to create vRouter, vSwitch, and vFirewall.
- The user connects communication between the virtual resources created earlier using vCore and vCable through the Service Request in the Samsung Cloud Platform Console.
- For connections of appliance-type devices (Security Device, Server, Database, etc.), connect to the physical port of vSwitch.
- To access on-premises resources, connect a dedicated line or internet line to the physical port of vRouter.
- For access from Samsung Cloud Platform resources, apply for Direct Connect/Transit Gateway and connect to vRouter.
Pre-requisites
To use Cloud LAN - Data Center, the resources of SCP must be pre-connected through Direct Connect, Transit Gateway’s Uplink application, and the resources of on-premises must be pre-connected through a dedicated line or internet line.
Use Cases
DR Gateway Network Configuration
By building a DR (Disaster Recovery) gateway network in geographically separated data centers at a lower cost, you can ensure network service persistence in addition to service bypass in the event of a disaster. Cloud LAN - Data Center allows for the maintenance of existing network security policies, IP systems, network protocols, and settings required in on-premises environments, so you can use the existing security and network policies without interruption in the event of a disaster.
Customer Logical Network Separation for Security
When a separate closed network is required for data and IT resources that require security maintenance, hardware investment costs and maintenance costs can be excessive. Cloud LAN – Data Center enables logical network separation, allowing for the construction of a closed network that meets security standards.
Limitations
The network that can be prepared in advance for using Cloud LAN – Data Center is limited to a maximum of 10Gbps. (However, if additional capacity is required, consultation is necessary) The Datacenter Firewall currently only supports Secui and Fortinet. (However, if the customer requests it, Appliance H/W can be accommodated)
Considerations
Firewalls can be estimated by capacity.
Related Services
This is a list of Samsung Cloud Platform services related to the features or configurations described in this guide. Please refer to it when selecting and designing services.
| Service Group | Service | Detailed Description |
|---|---|---|
| Networking | VPC | A service that provides an independent virtual network in a cloud environment |