SlideShare a Scribd company logo

Design Pattern Logical Model

Mike Reams
Mike Reams

External Access points to a single Public VIP that terminates the TLS session at the external facing F5 Virtual Server. The back-end VLAN interface of F5 from the same session, forwards all TCP traffic to Oracle OHS for reverse proxy. - Which in turns communicates to the internal facing VLAN of the F5 Virtual Servers configured as Load Balancers using the F5 LTM module. The “APM” module uses the Oracle WebGate integration for access management http://mikereams.com

Technology
1 of 1
Deployment procedures Three operations are needed to deploy new applications for an approved change #1 – A Friendly URL aka “DNS” will need to exist on the external DNS servers. If one doesn’t yet exist nor maps to the VIP below then request it via a Service Request (same goes for any change). Details for request; create myapp.domain.com DNS subdomain with a CNAME pointing to the portal funnel VIP X.X.X.X #2 – A configuration addition to the OHS servers are needed on Apache and a transparent Apache recycle is required for changes to take effect (No Reboot). There are three Load Balanced DMZ Linux Web Servers in this web farm behind F5 #3 – A new Oracle Access Manager Policy is needed to protect, authorize or grant entitlements to on-prem resources. Doesn’t require recycles and is transparent to the user experience Public Domain Name Service (DNS) Application Friendly URL’s are Routed Based on assigned Public Virtual IP Address (VIP) Public DNS Forwarding External Access points to a single Public VIP that terminates the TLS session at the external facing F5 Virtual Server. The back-end VLAN interface of F5 from the same session, forwards all TCP traffic to Oracle OHS for reverse proxy. - Which in turns communicates to the internal facing VLAN of the F5 Virtual Servers configured as Load Balancers using the F5 LTM module. The “APM” module uses the Oracle WebGate integration for access management. This design is intended for split DNS to allow internal to go exclusively through the internal F5 Virtual Server while having external traffic route through this architectural pattern. A wildcard certificate on the F5 must be leveraged for TLS if under the same cookie domain and the internal application/web server must not require the TLS payload downstream. Oracle OHS Reverse ProxyF5 Big-IPPerimeter Network - Firewall External Access Capabilities Machine External DNS/VIP Person iPhone Laptop DesktopTablet Android F5 Big-IP External Virtual Server Border Subnet Secure Access DMZ Subnet Data Center Device Types Internet Browser Linux External DNS ServersFirewall Router 15 Minute Idle Session Limit Design Pattern Security Decomposition Anti-IP Spoofing Rules are needed External Facing Firewall Forward VIP to F5 IP (No NAT) DNS useonly an X.X.X.X IP Range Configured to take header request and proxy back to F5 Internal facing VIP Switch Data Center Reverse Proxy Servers Internal Proxy F5 Big-IP Internal Virtual Server External Internal Job/Process Web Service SSO Internal Subnet Federation Service (Oracle Webgate) Web Farm Role Based Access Control F5 WebGate enforces access policy to all external users OHS uses ReverseProxyPass to connect to internal facing F5 Virtual Server on behalf of client request

Recommended

Sample Template for Single Sign-On (SSO)
Sample Template for Single Sign-On (SSO)Sample Template for Single Sign-On (SSO)
Sample Template for Single Sign-On (SSO)Mike Reams
 
Visio Diagram of a user SSO Flow
Visio Diagram of a user SSO FlowVisio Diagram of a user SSO Flow
Visio Diagram of a user SSO FlowMike Reams
 
Mobile user single sign on flow
Mobile user single sign on flowMobile user single sign on flow
Mobile user single sign on flowMike Reams
 
Citrix xenapp Training in Hyderabad
Citrix xenapp Training in HyderabadCitrix xenapp Training in Hyderabad
Citrix xenapp Training in HyderabadAcutelearn Technologies
 
Introduction to REST - API
Introduction to REST - APIIntroduction to REST - API
Introduction to REST - APIChetan Gadodia
 
Proxy Server
Proxy ServerProxy Server
Proxy Serverguest095022
 
Protecting your APIs with Doorkeeper and OAuth 2.0
Protecting your APIs with Doorkeeper and OAuth 2.0Protecting your APIs with Doorkeeper and OAuth 2.0
Protecting your APIs with Doorkeeper and OAuth 2.0Mads Toustrup-Lønne
 
Web Server Technologies II: Web Applications & Server Maintenance
Web Server Technologies II: Web Applications & Server MaintenanceWeb Server Technologies II: Web Applications & Server Maintenance
Web Server Technologies II: Web Applications & Server MaintenancePort80 Software
 

Recommended

Sample Template for Single Sign-On (SSO)
Sample Template for Single Sign-On (SSO)Sample Template for Single Sign-On (SSO)
Sample Template for Single Sign-On (SSO)Mike Reams
 
Visio Diagram of a user SSO Flow
Visio Diagram of a user SSO FlowVisio Diagram of a user SSO Flow
Visio Diagram of a user SSO FlowMike Reams
 
Mobile user single sign on flow
Mobile user single sign on flowMobile user single sign on flow
Mobile user single sign on flowMike Reams
 
Citrix xenapp Training in Hyderabad
Citrix xenapp Training in HyderabadCitrix xenapp Training in Hyderabad
Citrix xenapp Training in HyderabadAcutelearn Technologies
 
Introduction to REST - API
Introduction to REST - APIIntroduction to REST - API
Introduction to REST - APIChetan Gadodia
 
Proxy Server
Proxy ServerProxy Server
Proxy Serverguest095022
 
Protecting your APIs with Doorkeeper and OAuth 2.0
Protecting your APIs with Doorkeeper and OAuth 2.0Protecting your APIs with Doorkeeper and OAuth 2.0
Protecting your APIs with Doorkeeper and OAuth 2.0Mads Toustrup-Lønne
 
Web Server Technologies II: Web Applications & Server Maintenance
Web Server Technologies II: Web Applications & Server MaintenanceWeb Server Technologies II: Web Applications & Server Maintenance
Web Server Technologies II: Web Applications & Server MaintenancePort80 Software
 
PURSe and the PURSe Portlets
PURSe and the PURSe PortletsPURSe and the PURSe Portlets
PURSe and the PURSe Portletsmarcuschristie
 
Application enumeration and launch
Application enumeration and launchApplication enumeration and launch
Application enumeration and launchPraveen Bakka
 
Flex And Java Integration
Flex And Java IntegrationFlex And Java Integration
Flex And Java Integrationravinxg
 
Datasmith Pigeon Voice middleware server
Datasmith Pigeon Voice middleware serverDatasmith Pigeon Voice middleware server
Datasmith Pigeon Voice middleware serverPaul Kolozsvari
 
Flex And Java Integration
Flex And Java IntegrationFlex And Java Integration
Flex And Java Integrationrssharma
 
OAuth
OAuthOAuth
OAuthVijay Naik
 
Service Management Dec 11
Service Management Dec 11Service Management Dec 11
Service Management Dec 11clarendonint
 
credential-api
credential-apicredential-api
credential-apiarjun rao
 
APIs and Services: One Platform or Two?
APIs and Services: One Platform or Two?APIs and Services: One Platform or Two?
APIs and Services: One Platform or Two?Akana
 
Securing mule
Securing muleSecuring mule
Securing muleSindhu VL
 
z/Ware 2.0 Features Overview
z/Ware 2.0 Features Overviewz/Ware 2.0 Features Overview
z/Ware 2.0 Features Overviewillustrosystems
 
Web server
Web serverWeb server
Web serverTouhid Arastu
 
(ATS6-GS02) Integrating Contur and HEOS
(ATS6-GS02) Integrating Contur and HEOS(ATS6-GS02) Integrating Contur and HEOS
(ATS6-GS02) Integrating Contur and HEOSBIOVIA
 
OpenAM as Flexible Integration Component
OpenAM as Flexible Integration ComponentOpenAM as Flexible Integration Component
OpenAM as Flexible Integration ComponentForgeRock
 
Identity Access and Management with Globus
Identity Access and Management with GlobusIdentity Access and Management with Globus
Identity Access and Management with GlobusGlobus
 
CNIT 129S: 11: Attacking Application Logic
CNIT 129S: 11: Attacking Application LogicCNIT 129S: 11: Attacking Application Logic
CNIT 129S: 11: Attacking Application LogicSam Bowne
 
How to Create Observable Integration Solutions Using WSO2 Enterprise Integrator
How to Create Observable Integration Solutions Using WSO2 Enterprise IntegratorHow to Create Observable Integration Solutions Using WSO2 Enterprise Integrator
How to Create Observable Integration Solutions Using WSO2 Enterprise IntegratorWSO2
 
(ATS6-DEV04) Building Web MashUp applications that include Accelrys Applicati...
(ATS6-DEV04) Building Web MashUp applications that include Accelrys Applicati...(ATS6-DEV04) Building Web MashUp applications that include Accelrys Applicati...
(ATS6-DEV04) Building Web MashUp applications that include Accelrys Applicati...BIOVIA
 
Troubleshooting and Best Practices with WSO2 Enterprise Integrator
Troubleshooting and Best Practices with WSO2 Enterprise IntegratorTroubleshooting and Best Practices with WSO2 Enterprise Integrator
Troubleshooting and Best Practices with WSO2 Enterprise IntegratorWSO2
 
Mintheinkhama aung-yin0
Mintheinkhama aung-yin0Mintheinkhama aung-yin0
Mintheinkhama aung-yin0san aye
 
How to Spot a Sinkhole
How to Spot a SinkholeHow to Spot a Sinkhole
How to Spot a SinkholeCirca Interactive
 
Where is the “C” in health systems strengthening by Dr Alfonso Rosales, WVUS
Where is the “C” in health systems strengthening by Dr Alfonso Rosales, WVUSWhere is the “C” in health systems strengthening by Dr Alfonso Rosales, WVUS
Where is the “C” in health systems strengthening by Dr Alfonso Rosales, WVUSachapkenya
 

More Related Content

What's hot

PURSe and the PURSe Portlets
PURSe and the PURSe PortletsPURSe and the PURSe Portlets
PURSe and the PURSe Portletsmarcuschristie
 
Application enumeration and launch
Application enumeration and launchApplication enumeration and launch
Application enumeration and launchPraveen Bakka
 
Flex And Java Integration
Flex And Java IntegrationFlex And Java Integration
Flex And Java Integrationravinxg
 
Datasmith Pigeon Voice middleware server
Datasmith Pigeon Voice middleware serverDatasmith Pigeon Voice middleware server
Datasmith Pigeon Voice middleware serverPaul Kolozsvari
 
Flex And Java Integration
Flex And Java IntegrationFlex And Java Integration
Flex And Java Integrationrssharma
 
Service Management Dec 11
Service Management Dec 11Service Management Dec 11
Service Management Dec 11clarendonint
 
credential-api
credential-apicredential-api
credential-apiarjun rao
 
APIs and Services: One Platform or Two?
APIs and Services: One Platform or Two?APIs and Services: One Platform or Two?
APIs and Services: One Platform or Two?Akana
 
Securing mule
Securing muleSecuring mule
Securing muleSindhu VL
 
z/Ware 2.0 Features Overview
z/Ware 2.0 Features Overviewz/Ware 2.0 Features Overview
z/Ware 2.0 Features Overviewillustrosystems
 
(ATS6-GS02) Integrating Contur and HEOS
(ATS6-GS02) Integrating Contur and HEOS(ATS6-GS02) Integrating Contur and HEOS
(ATS6-GS02) Integrating Contur and HEOSBIOVIA
 
OpenAM as Flexible Integration Component
OpenAM as Flexible Integration ComponentOpenAM as Flexible Integration Component
OpenAM as Flexible Integration ComponentForgeRock
 
Identity Access and Management with Globus
Identity Access and Management with GlobusIdentity Access and Management with Globus
Identity Access and Management with GlobusGlobus
 
CNIT 129S: 11: Attacking Application Logic
CNIT 129S: 11: Attacking Application LogicCNIT 129S: 11: Attacking Application Logic
CNIT 129S: 11: Attacking Application LogicSam Bowne
 
How to Create Observable Integration Solutions Using WSO2 Enterprise Integrator
How to Create Observable Integration Solutions Using WSO2 Enterprise IntegratorHow to Create Observable Integration Solutions Using WSO2 Enterprise Integrator
How to Create Observable Integration Solutions Using WSO2 Enterprise IntegratorWSO2
 
(ATS6-DEV04) Building Web MashUp applications that include Accelrys Applicati...
(ATS6-DEV04) Building Web MashUp applications that include Accelrys Applicati...(ATS6-DEV04) Building Web MashUp applications that include Accelrys Applicati...
(ATS6-DEV04) Building Web MashUp applications that include Accelrys Applicati...BIOVIA
 
Troubleshooting and Best Practices with WSO2 Enterprise Integrator
Troubleshooting and Best Practices with WSO2 Enterprise IntegratorTroubleshooting and Best Practices with WSO2 Enterprise Integrator
Troubleshooting and Best Practices with WSO2 Enterprise IntegratorWSO2
 

What's hot (19)

PURSe and the PURSe Portlets
PURSe and the PURSe PortletsPURSe and the PURSe Portlets
PURSe and the PURSe Portlets
 
Application enumeration and launch
Application enumeration and launchApplication enumeration and launch
Application enumeration and launch
 
Flex And Java Integration
Flex And Java IntegrationFlex And Java Integration
Flex And Java Integration
 
Datasmith Pigeon Voice middleware server
Datasmith Pigeon Voice middleware serverDatasmith Pigeon Voice middleware server
Datasmith Pigeon Voice middleware server
 
Flex And Java Integration
Flex And Java IntegrationFlex And Java Integration
Flex And Java Integration
 
OAuth
OAuthOAuth
OAuth
 
Service Management Dec 11
Service Management Dec 11Service Management Dec 11
Service Management Dec 11
 
credential-api
credential-apicredential-api
credential-api
 
APIs and Services: One Platform or Two?
APIs and Services: One Platform or Two?APIs and Services: One Platform or Two?
APIs and Services: One Platform or Two?
 
Securing mule
Securing muleSecuring mule
Securing mule
 
z/Ware 2.0 Features Overview
z/Ware 2.0 Features Overviewz/Ware 2.0 Features Overview
z/Ware 2.0 Features Overview
 
Web server
Web serverWeb server
Web server
 
(ATS6-GS02) Integrating Contur and HEOS
(ATS6-GS02) Integrating Contur and HEOS(ATS6-GS02) Integrating Contur and HEOS
(ATS6-GS02) Integrating Contur and HEOS
 
OpenAM as Flexible Integration Component
OpenAM as Flexible Integration ComponentOpenAM as Flexible Integration Component
OpenAM as Flexible Integration Component
 
Identity Access and Management with Globus
Identity Access and Management with GlobusIdentity Access and Management with Globus
Identity Access and Management with Globus
 
CNIT 129S: 11: Attacking Application Logic
CNIT 129S: 11: Attacking Application LogicCNIT 129S: 11: Attacking Application Logic
CNIT 129S: 11: Attacking Application Logic
 
How to Create Observable Integration Solutions Using WSO2 Enterprise Integrator
How to Create Observable Integration Solutions Using WSO2 Enterprise IntegratorHow to Create Observable Integration Solutions Using WSO2 Enterprise Integrator
How to Create Observable Integration Solutions Using WSO2 Enterprise Integrator
 
(ATS6-DEV04) Building Web MashUp applications that include Accelrys Applicati...
(ATS6-DEV04) Building Web MashUp applications that include Accelrys Applicati...(ATS6-DEV04) Building Web MashUp applications that include Accelrys Applicati...
(ATS6-DEV04) Building Web MashUp applications that include Accelrys Applicati...
 
Troubleshooting and Best Practices with WSO2 Enterprise Integrator
Troubleshooting and Best Practices with WSO2 Enterprise IntegratorTroubleshooting and Best Practices with WSO2 Enterprise Integrator
Troubleshooting and Best Practices with WSO2 Enterprise Integrator
 

Viewers also liked

Mintheinkhama aung-yin0
Mintheinkhama aung-yin0Mintheinkhama aung-yin0
Mintheinkhama aung-yin0san aye
 
Where is the “C” in health systems strengthening by Dr Alfonso Rosales, WVUS
Where is the “C” in health systems strengthening by Dr Alfonso Rosales, WVUSWhere is the “C” in health systems strengthening by Dr Alfonso Rosales, WVUS
Where is the “C” in health systems strengthening by Dr Alfonso Rosales, WVUSachapkenya
 
Chap 2 Test Day.pdf
Chap 2 Test Day.pdfChap 2 Test Day.pdf
Chap 2 Test Day.pdfbwlomas
 
BestCodeBrochure2015
BestCodeBrochure2015BestCodeBrochure2015
BestCodeBrochure2015Dennis Sibley
 
ေခါင္းေလာင္းထုိးေသာ၀တၳဳတုိမ်ား-မင္းလူ
ေခါင္းေလာင္းထုိးေသာ၀တၳဳတုိမ်ား-မင္းလူေခါင္းေလာင္းထုိးေသာ၀တၳဳတုိမ်ား-မင္းလူ
ေခါင္းေလာင္းထုိးေသာ၀တၳဳတုိမ်ား-မင္းလူsan aye
 
Gibela maintenance strategies - 2016
Gibela maintenance strategies - 2016Gibela maintenance strategies - 2016
Gibela maintenance strategies - 2016Sibongile Nsibande
 
Mds cloud saturday 2015 how to heroku
Mds cloud saturday 2015 how to herokuMds cloud saturday 2015 how to heroku
Mds cloud saturday 2015 how to herokuDavid Scruggs
 
Pley Technical Architecture
Pley Technical ArchitecturePley Technical Architecture
Pley Technical ArchitectureAnurag Phadke
 
How Technology has changed the Architecture? (Mobile Apps Only)
How Technology has changed the Architecture? (Mobile Apps Only) �How Technology has changed the Architecture? (Mobile Apps Only) �
How Technology has changed the Architecture? (Mobile Apps Only) Student
 
Solution Delivery Calendar
Solution Delivery CalendarSolution Delivery Calendar
Solution Delivery CalendarMike Reams
 

Viewers also liked (16)

Mintheinkhama aung-yin0
Mintheinkhama aung-yin0Mintheinkhama aung-yin0
Mintheinkhama aung-yin0
 
How to Spot a Sinkhole
How to Spot a SinkholeHow to Spot a Sinkhole
How to Spot a Sinkhole
 
Where is the “C” in health systems strengthening by Dr Alfonso Rosales, WVUS
Where is the “C” in health systems strengthening by Dr Alfonso Rosales, WVUSWhere is the “C” in health systems strengthening by Dr Alfonso Rosales, WVUS
Where is the “C” in health systems strengthening by Dr Alfonso Rosales, WVUS
 
Chap 2 Test Day.pdf
Chap 2 Test Day.pdfChap 2 Test Day.pdf
Chap 2 Test Day.pdf
 
BestCodeBrochure2015
BestCodeBrochure2015BestCodeBrochure2015
BestCodeBrochure2015
 
JBIL Presentation
JBIL PresentationJBIL Presentation
JBIL Presentation
 
Classroom Procedures Plan 2015-Lilly
Classroom Procedures Plan 2015-LillyClassroom Procedures Plan 2015-Lilly
Classroom Procedures Plan 2015-Lilly
 
ေခါင္းေလာင္းထုိးေသာ၀တၳဳတုိမ်ား-မင္းလူ
ေခါင္းေလာင္းထုိးေသာ၀တၳဳတုိမ်ား-မင္းလူေခါင္းေလာင္းထုိးေသာ၀တၳဳတုိမ်ား-မင္းလူ
ေခါင္းေလာင္းထုိးေသာ၀တၳဳတုိမ်ား-မင္းလူ
 
Gibela maintenance strategies - 2016
Gibela maintenance strategies - 2016Gibela maintenance strategies - 2016
Gibela maintenance strategies - 2016
 
Magazin small
Magazin smallMagazin small
Magazin small
 
Mds cloud saturday 2015 how to heroku
Mds cloud saturday 2015 how to herokuMds cloud saturday 2015 how to heroku
Mds cloud saturday 2015 how to heroku
 
Pley Technical Architecture
Pley Technical ArchitecturePley Technical Architecture
Pley Technical Architecture
 
How Technology has changed the Architecture? (Mobile Apps Only)
How Technology has changed the Architecture? (Mobile Apps Only) �How Technology has changed the Architecture? (Mobile Apps Only) �
How Technology has changed the Architecture? (Mobile Apps Only)
 
Bbva workshop
Bbva workshopBbva workshop
Bbva workshop
 
Solution Delivery Calendar
Solution Delivery CalendarSolution Delivery Calendar
Solution Delivery Calendar
 
FPS_Architecture_June
FPS_Architecture_June FPS_Architecture_June
FPS_Architecture_June
 

Similar to Design Pattern Logical Model

Server Farms and XML Web Services
Server Farms and XML Web ServicesServer Farms and XML Web Services
Server Farms and XML Web ServicesJorgen Thelin
 
Keynote talk on Windows 8 - Jeff Stokes
Keynote talk on Windows 8 - Jeff StokesKeynote talk on Windows 8 - Jeff Stokes
Keynote talk on Windows 8 - Jeff StokesJeff Stokes
 
FTP Client Buildup1. IntroductionThe project is related to bui
FTP Client Buildup1. IntroductionThe project is related to buiFTP Client Buildup1. IntroductionThe project is related to bui
FTP Client Buildup1. IntroductionThe project is related to buiJeanmarieColbert3
 
OPNFV: Platform Performance Acceleration
OPNFV: Platform Performance AccelerationOPNFV: Platform Performance Acceleration
OPNFV: Platform Performance AccelerationOPNFV
 
2008-10-14 Managing your Red Hat Enterprise Linux guests with RHN Satellite
2008-10-14 Managing your Red Hat Enterprise Linux guests with RHN Satellite2008-10-14 Managing your Red Hat Enterprise Linux guests with RHN Satellite
2008-10-14 Managing your Red Hat Enterprise Linux guests with RHN SatelliteShawn Wells
 
VMworld 2013: vCloud Hybrid Service Jump Start Part Two of Five: vCloud Hybri...
VMworld 2013: vCloud Hybrid Service Jump Start Part Two of Five: vCloud Hybri...VMworld 2013: vCloud Hybrid Service Jump Start Part Two of Five: vCloud Hybri...
VMworld 2013: vCloud Hybrid Service Jump Start Part Two of Five: vCloud Hybri...VMworld
 
2009-08-24 Managing your Red Hat Enterprise Linux Guests with RHN Satellite
2009-08-24 Managing your Red Hat Enterprise Linux Guests with RHN Satellite2009-08-24 Managing your Red Hat Enterprise Linux Guests with RHN Satellite
2009-08-24 Managing your Red Hat Enterprise Linux Guests with RHN SatelliteShawn Wells
 
SharePoint and Forefront United Access Gateway
SharePoint and Forefront United Access Gateway SharePoint and Forefront United Access Gateway
SharePoint and Forefront United Access Gateway Planet Technologies
 
Realizing the True Potential of On-Demand IT: Enterprise Cloud Architectures
Realizing the True Potential of On-Demand IT: Enterprise Cloud ArchitecturesRealizing the True Potential of On-Demand IT: Enterprise Cloud Architectures
Realizing the True Potential of On-Demand IT: Enterprise Cloud Architecturesjasonenriquez
 
SoftLayer-Extending Plesk Functionality
SoftLayer-Extending Plesk FunctionalitySoftLayer-Extending Plesk Functionality
SoftLayer-Extending Plesk Functionalitywebhostingguy
 
SFSCON23 - Andrea Avancini Michele Santuari Alberto Sillitti - A comparison o...
SFSCON23 - Andrea Avancini Michele Santuari Alberto Sillitti - A comparison o...SFSCON23 - Andrea Avancini Michele Santuari Alberto Sillitti - A comparison o...
SFSCON23 - Andrea Avancini Michele Santuari Alberto Sillitti - A comparison o...South Tyrol Free Software Conference
 
Oracle Enterprise Manager - EM12c R5 Hybrid Cloud Management
Oracle Enterprise Manager - EM12c R5 Hybrid Cloud ManagementOracle Enterprise Manager - EM12c R5 Hybrid Cloud Management
Oracle Enterprise Manager - EM12c R5 Hybrid Cloud ManagementMarketingArrowECS_CZ
 
Migrate Heroku & OpenShift Applications to IBM BlueMix
Migrate Heroku & OpenShift Applications to IBM BlueMixMigrate Heroku & OpenShift Applications to IBM BlueMix
Migrate Heroku & OpenShift Applications to IBM BlueMixRohit Kelapure
 
CENTRAL MANAGEMENT OF NETWORK AND CALL SERVICES
CENTRAL MANAGEMENT OF NETWORK AND CALL SERVICESCENTRAL MANAGEMENT OF NETWORK AND CALL SERVICES
CENTRAL MANAGEMENT OF NETWORK AND CALL SERVICESNazmul Hossain Rakib
 

Similar to Design Pattern Logical Model (20)

Server Farms and XML Web Services
Server Farms and XML Web ServicesServer Farms and XML Web Services
Server Farms and XML Web Services
 
Network Testing ques
Network Testing quesNetwork Testing ques
Network Testing ques
 
Ubuntu For Intranet Services
Ubuntu For Intranet ServicesUbuntu For Intranet Services
Ubuntu For Intranet Services
 
Ft pv2(1)
Ft pv2(1)Ft pv2(1)
Ft pv2(1)
 
Keynote talk on Windows 8 - Jeff Stokes
Keynote talk on Windows 8 - Jeff StokesKeynote talk on Windows 8 - Jeff Stokes
Keynote talk on Windows 8 - Jeff Stokes
 
FTP Client Buildup1. IntroductionThe project is related to bui
FTP Client Buildup1. IntroductionThe project is related to buiFTP Client Buildup1. IntroductionThe project is related to bui
FTP Client Buildup1. IntroductionThe project is related to bui
 
OPNFV: Platform Performance Acceleration
OPNFV: Platform Performance AccelerationOPNFV: Platform Performance Acceleration
OPNFV: Platform Performance Acceleration
 
IBM Notes in the Cloud
IBM Notes in the CloudIBM Notes in the Cloud
IBM Notes in the Cloud
 
2008-10-14 Managing your Red Hat Enterprise Linux guests with RHN Satellite
2008-10-14 Managing your Red Hat Enterprise Linux guests with RHN Satellite2008-10-14 Managing your Red Hat Enterprise Linux guests with RHN Satellite
2008-10-14 Managing your Red Hat Enterprise Linux guests with RHN Satellite
 
WAF deployment
WAF deploymentWAF deployment
WAF deployment
 
VMworld 2013: vCloud Hybrid Service Jump Start Part Two of Five: vCloud Hybri...
VMworld 2013: vCloud Hybrid Service Jump Start Part Two of Five: vCloud Hybri...VMworld 2013: vCloud Hybrid Service Jump Start Part Two of Five: vCloud Hybri...
VMworld 2013: vCloud Hybrid Service Jump Start Part Two of Five: vCloud Hybri...
 
2009-08-24 Managing your Red Hat Enterprise Linux Guests with RHN Satellite
2009-08-24 Managing your Red Hat Enterprise Linux Guests with RHN Satellite2009-08-24 Managing your Red Hat Enterprise Linux Guests with RHN Satellite
2009-08-24 Managing your Red Hat Enterprise Linux Guests with RHN Satellite
 
SharePoint and Forefront United Access Gateway
SharePoint and Forefront United Access Gateway SharePoint and Forefront United Access Gateway
SharePoint and Forefront United Access Gateway
 
Realizing the True Potential of On-Demand IT: Enterprise Cloud Architectures
Realizing the True Potential of On-Demand IT: Enterprise Cloud ArchitecturesRealizing the True Potential of On-Demand IT: Enterprise Cloud Architectures
Realizing the True Potential of On-Demand IT: Enterprise Cloud Architectures
 
SoftLayer-Extending Plesk Functionality
SoftLayer-Extending Plesk FunctionalitySoftLayer-Extending Plesk Functionality
SoftLayer-Extending Plesk Functionality
 
SFSCON23 - Andrea Avancini Michele Santuari Alberto Sillitti - A comparison o...
SFSCON23 - Andrea Avancini Michele Santuari Alberto Sillitti - A comparison o...SFSCON23 - Andrea Avancini Michele Santuari Alberto Sillitti - A comparison o...
SFSCON23 - Andrea Avancini Michele Santuari Alberto Sillitti - A comparison o...
 
Oracle Enterprise Manager - EM12c R5 Hybrid Cloud Management
Oracle Enterprise Manager - EM12c R5 Hybrid Cloud ManagementOracle Enterprise Manager - EM12c R5 Hybrid Cloud Management
Oracle Enterprise Manager - EM12c R5 Hybrid Cloud Management
 
Migrate Heroku & OpenShift Applications to IBM BlueMix
Migrate Heroku & OpenShift Applications to IBM BlueMixMigrate Heroku & OpenShift Applications to IBM BlueMix
Migrate Heroku & OpenShift Applications to IBM BlueMix
 
CENTRAL MANAGEMENT OF NETWORK AND CALL SERVICES
CENTRAL MANAGEMENT OF NETWORK AND CALL SERVICESCENTRAL MANAGEMENT OF NETWORK AND CALL SERVICES
CENTRAL MANAGEMENT OF NETWORK AND CALL SERVICES
 
Patterns
Patterns Patterns
Patterns
 

More from Mike Reams

Knowledge Transfer Training Presentation for Identity Lifecycle Manager
Knowledge Transfer Training Presentation for Identity Lifecycle ManagerKnowledge Transfer Training Presentation for Identity Lifecycle Manager
Knowledge Transfer Training Presentation for Identity Lifecycle ManagerMike Reams
 
Environment Gap Analysis for Applications
Environment Gap Analysis for ApplicationsEnvironment Gap Analysis for Applications
Environment Gap Analysis for ApplicationsMike Reams
 
Design Pattern for Federated Single Sign-On Access
Design Pattern for Federated Single Sign-On AccessDesign Pattern for Federated Single Sign-On Access
Design Pattern for Federated Single Sign-On AccessMike Reams
 
Perimeter Protected Access Design Pattern
Perimeter Protected Access Design PatternPerimeter Protected Access Design Pattern
Perimeter Protected Access Design PatternMike Reams
 
Design Pattern for Oracle Identity Provisioning
Design Pattern for Oracle Identity ProvisioningDesign Pattern for Oracle Identity Provisioning
Design Pattern for Oracle Identity ProvisioningMike Reams
 
Retiree Data Flow Diagram
Retiree Data Flow DiagramRetiree Data Flow Diagram
Retiree Data Flow DiagramMike Reams
 
Series of Visual Flow Diagrams
Series of Visual Flow DiagramsSeries of Visual Flow Diagrams
Series of Visual Flow DiagramsMike Reams
 
High-level Architecture viewpoint of a Troux Infrastructure
High-level Architecture viewpoint of a Troux InfrastructureHigh-level Architecture viewpoint of a Troux Infrastructure
High-level Architecture viewpoint of a Troux InfrastructureMike Reams
 
Visio Diagram Scripting and Server Management flow
Visio Diagram Scripting and Server Management flowVisio Diagram Scripting and Server Management flow
Visio Diagram Scripting and Server Management flowMike Reams
 
Visio Diagram for Configuration Management
Visio Diagram for Configuration ManagementVisio Diagram for Configuration Management
Visio Diagram for Configuration ManagementMike Reams
 
User Flow swim-lane Diagram for New Hire
User Flow swim-lane Diagram for New Hire User Flow swim-lane Diagram for New Hire
User Flow swim-lane Diagram for New Hire Mike Reams
 
Architecture Design Presentation for OIM
Architecture Design Presentation for OIMArchitecture Design Presentation for OIM
Architecture Design Presentation for OIMMike Reams
 
Visual representation as an architectural artifact
Visual representation as an architectural artifactVisual representation as an architectural artifact
Visual representation as an architectural artifactMike Reams
 

More from Mike Reams (13)

Knowledge Transfer Training Presentation for Identity Lifecycle Manager
Knowledge Transfer Training Presentation for Identity Lifecycle ManagerKnowledge Transfer Training Presentation for Identity Lifecycle Manager
Knowledge Transfer Training Presentation for Identity Lifecycle Manager
 
Environment Gap Analysis for Applications
Environment Gap Analysis for ApplicationsEnvironment Gap Analysis for Applications
Environment Gap Analysis for Applications
 
Design Pattern for Federated Single Sign-On Access
Design Pattern for Federated Single Sign-On AccessDesign Pattern for Federated Single Sign-On Access
Design Pattern for Federated Single Sign-On Access
 
Perimeter Protected Access Design Pattern
Perimeter Protected Access Design PatternPerimeter Protected Access Design Pattern
Perimeter Protected Access Design Pattern
 
Design Pattern for Oracle Identity Provisioning
Design Pattern for Oracle Identity ProvisioningDesign Pattern for Oracle Identity Provisioning
Design Pattern for Oracle Identity Provisioning
 
Retiree Data Flow Diagram
Retiree Data Flow DiagramRetiree Data Flow Diagram
Retiree Data Flow Diagram
 
Series of Visual Flow Diagrams
Series of Visual Flow DiagramsSeries of Visual Flow Diagrams
Series of Visual Flow Diagrams
 
High-level Architecture viewpoint of a Troux Infrastructure
High-level Architecture viewpoint of a Troux InfrastructureHigh-level Architecture viewpoint of a Troux Infrastructure
High-level Architecture viewpoint of a Troux Infrastructure
 
Visio Diagram Scripting and Server Management flow
Visio Diagram Scripting and Server Management flowVisio Diagram Scripting and Server Management flow
Visio Diagram Scripting and Server Management flow
 
Visio Diagram for Configuration Management
Visio Diagram for Configuration ManagementVisio Diagram for Configuration Management
Visio Diagram for Configuration Management
 
User Flow swim-lane Diagram for New Hire
User Flow swim-lane Diagram for New Hire User Flow swim-lane Diagram for New Hire
User Flow swim-lane Diagram for New Hire
 
Architecture Design Presentation for OIM
Architecture Design Presentation for OIMArchitecture Design Presentation for OIM
Architecture Design Presentation for OIM
 
Visual representation as an architectural artifact
Visual representation as an architectural artifactVisual representation as an architectural artifact
Visual representation as an architectural artifact
 

Recently uploaded

SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024Scott Keck-Warren
 
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure serviceWhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure servicePooja Nehwal
 
The Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxThe Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxMalak Abu Hammad
 
Slack Application Development 101 Slides
Slack Application Development 101 SlidesSlack Application Development 101 Slides
Slack Application Development 101 Slidespraypatel2
 
How to convert PDF to text with Nanonets
How to convert PDF to text with NanonetsHow to convert PDF to text with Nanonets
How to convert PDF to text with Nanonetsnaman860154
 
My Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationMy Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationRidwan Fadjar
 
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | DelhiFULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhisoniya singh
 
Understanding the Laravel MVC Architecture
Understanding the Laravel MVC ArchitectureUnderstanding the Laravel MVC Architecture
Understanding the Laravel MVC ArchitecturePixlogix Infotech
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountPuma Security, LLC
 
Swan(sea) Song – personal research during my six years at Swansea ... and bey...
Swan(sea) Song – personal research during my six years at Swansea ... and bey...Swan(sea) Song – personal research during my six years at Swansea ... and bey...
Swan(sea) Song – personal research during my six years at Swansea ... and bey...Alan Dix
 
Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...
Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...
Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...shyamraj55
 
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking MenDelhi Call girls
 
Making_way_through_DLL_hollowing_inspite_of_CFG_by_Debjeet Banerjee.pptx
Making_way_through_DLL_hollowing_inspite_of_CFG_by_Debjeet Banerjee.pptxMaking_way_through_DLL_hollowing_inspite_of_CFG_by_Debjeet Banerjee.pptx
Making_way_through_DLL_hollowing_inspite_of_CFG_by_Debjeet Banerjee.pptxnull - The Open Security Community
 
Snow Chain-Integrated Tire for a Safe Drive on Winter Roads
Snow Chain-Integrated Tire for a Safe Drive on Winter RoadsSnow Chain-Integrated Tire for a Safe Drive on Winter Roads
Snow Chain-Integrated Tire for a Safe Drive on Winter RoadsHyundai Motor Group
 
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...Patryk Bandurski
 
How to Remove Document Management Hurdles with X-Docs?
How to Remove Document Management Hurdles with X-Docs?How to Remove Document Management Hurdles with X-Docs?
How to Remove Document Management Hurdles with X-Docs?XfilesPro
 
Human Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR SystemsHuman Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR SystemsMark Billinghurst
 
AI as an Interface for Commercial Buildings
AI as an Interface for Commercial BuildingsAI as an Interface for Commercial Buildings
AI as an Interface for Commercial BuildingsMemoori
 

Recently uploaded (20)

SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024
 
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure serviceWhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
 
The Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxThe Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptx
 
Slack Application Development 101 Slides
Slack Application Development 101 SlidesSlack Application Development 101 Slides
Slack Application Development 101 Slides
 
How to convert PDF to text with Nanonets
How to convert PDF to text with NanonetsHow to convert PDF to text with Nanonets
How to convert PDF to text with Nanonets
 
My Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationMy Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 Presentation
 
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | DelhiFULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
 
Understanding the Laravel MVC Architecture
Understanding the Laravel MVC ArchitectureUnderstanding the Laravel MVC Architecture
Understanding the Laravel MVC Architecture
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path Mount
 
Swan(sea) Song – personal research during my six years at Swansea ... and bey...
Swan(sea) Song – personal research during my six years at Swansea ... and bey...Swan(sea) Song – personal research during my six years at Swansea ... and bey...
Swan(sea) Song – personal research during my six years at Swansea ... and bey...
 
Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...
Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...
Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...
 
The transition to renewables in India.pdf
The transition to renewables in India.pdfThe transition to renewables in India.pdf
The transition to renewables in India.pdf
 
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
 
Making_way_through_DLL_hollowing_inspite_of_CFG_by_Debjeet Banerjee.pptx
Making_way_through_DLL_hollowing_inspite_of_CFG_by_Debjeet Banerjee.pptxMaking_way_through_DLL_hollowing_inspite_of_CFG_by_Debjeet Banerjee.pptx
Making_way_through_DLL_hollowing_inspite_of_CFG_by_Debjeet Banerjee.pptx
 
Snow Chain-Integrated Tire for a Safe Drive on Winter Roads
Snow Chain-Integrated Tire for a Safe Drive on Winter RoadsSnow Chain-Integrated Tire for a Safe Drive on Winter Roads
Snow Chain-Integrated Tire for a Safe Drive on Winter Roads
 
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
 
How to Remove Document Management Hurdles with X-Docs?
How to Remove Document Management Hurdles with X-Docs?How to Remove Document Management Hurdles with X-Docs?
How to Remove Document Management Hurdles with X-Docs?
 
Human Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR SystemsHuman Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR Systems
 
AI as an Interface for Commercial Buildings
AI as an Interface for Commercial BuildingsAI as an Interface for Commercial Buildings
AI as an Interface for Commercial Buildings
 
Vulnerability_Management_GRC_by Sohang Sengupta.pptx
Vulnerability_Management_GRC_by Sohang Sengupta.pptxVulnerability_Management_GRC_by Sohang Sengupta.pptx
Vulnerability_Management_GRC_by Sohang Sengupta.pptx
 

Design Pattern Logical Model

  • 1. Deployment procedures Three operations are needed to deploy new applications for an approved change #1 – A Friendly URL aka “DNS” will need to exist on the external DNS servers. If one doesn’t yet exist nor maps to the VIP below then request it via a Service Request (same goes for any change). Details for request; create myapp.domain.com DNS subdomain with a CNAME pointing to the portal funnel VIP X.X.X.X #2 – A configuration addition to the OHS servers are needed on Apache and a transparent Apache recycle is required for changes to take effect (No Reboot). There are three Load Balanced DMZ Linux Web Servers in this web farm behind F5 #3 – A new Oracle Access Manager Policy is needed to protect, authorize or grant entitlements to on-prem resources. Doesn’t require recycles and is transparent to the user experience Public Domain Name Service (DNS) Application Friendly URL’s are Routed Based on assigned Public Virtual IP Address (VIP) Public DNS Forwarding External Access points to a single Public VIP that terminates the TLS session at the external facing F5 Virtual Server. The back-end VLAN interface of F5 from the same session, forwards all TCP traffic to Oracle OHS for reverse proxy. - Which in turns communicates to the internal facing VLAN of the F5 Virtual Servers configured as Load Balancers using the F5 LTM module. The “APM” module uses the Oracle WebGate integration for access management. This design is intended for split DNS to allow internal to go exclusively through the internal F5 Virtual Server while having external traffic route through this architectural pattern. A wildcard certificate on the F5 must be leveraged for TLS if under the same cookie domain and the internal application/web server must not require the TLS payload downstream. Oracle OHS Reverse ProxyF5 Big-IPPerimeter Network - Firewall External Access Capabilities Machine External DNS/VIP Person iPhone Laptop DesktopTablet Android F5 Big-IP External Virtual Server Border Subnet Secure Access DMZ Subnet Data Center Device Types Internet Browser Linux External DNS ServersFirewall Router 15 Minute Idle Session Limit Design Pattern Security Decomposition Anti-IP Spoofing Rules are needed External Facing Firewall Forward VIP to F5 IP (No NAT) DNS useonly an X.X.X.X IP Range Configured to take header request and proxy back to F5 Internal facing VIP Switch Data Center Reverse Proxy Servers Internal Proxy F5 Big-IP Internal Virtual Server External Internal Job/Process Web Service SSO Internal Subnet Federation Service (Oracle Webgate) Web Farm Role Based Access Control F5 WebGate enforces access policy to all external users OHS uses ReverseProxyPass to connect to internal facing F5 Virtual Server on behalf of client request