Toronto Virtual Meetup #7 - Anypoint VPC, VPN and DLB ArchitectureAlexandra N. Martinez
Join us for this meetup where Jitendra Bafna (Jacky) will be talking about Anypoint VPC, VPN and DLB Architecture. He will mention the best practices, some use cases, and a live demo!
Couchbase Server on Azure Cloud - best practices for deploying a development or production environment with Couchbase Server on Microsoft's Azure Cloud Platform.
Toronto Virtual Meetup #7 - Anypoint VPC, VPN and DLB ArchitectureAlexandra N. Martinez
Join us for this meetup where Jitendra Bafna (Jacky) will be talking about Anypoint VPC, VPN and DLB Architecture. He will mention the best practices, some use cases, and a live demo!
Couchbase Server on Azure Cloud - best practices for deploying a development or production environment with Couchbase Server on Microsoft's Azure Cloud Platform.
This is an introduction to Windows Azure and is targeted towards an IT Pro audience, although Developers are certainly welcome to view! It covers the following broad topics:
Cloud jargon in plain English
What is Windows Azure and how can it help me?
Running web sites and VMs in the cloud
What else can I put in the cloud / what else can I use the cloud for?
How can I use the cloud?
How do I manage this?
Infoblox Cloud Solutions - Cisco Mid-Atlantic User GroupNetCraftsmen
This presentation will cover an overview of cloud market trends, the Infoblox Cloud Network Automation, VMware Private Cloud Automation use cases, and Amazon AWS and Hybrid/Public Cloud.
Updates to Apache CloudStack and LINBIT SDSShapeBlue
In this session, speakers Giles Sirett and Philipp Reisner shared insights into CloudStack and LINBIT. Giles detailed Apache CloudStack’s scalability, multi-tenancy, and compatibility with various hypervisors. He also discusses CloudStack’s integrated, easy-to-use nature, rapid time-to-value, and its active community. Following this, Giles delves into different use cases, such as IaaS/Cloud Provisioning, Disaster recovery, Sovereign Clouds, and the list goes on. CloudStack’s features, including its support for Kubernetes clusters, its scalable architecture, high availability and other features were also discussed.
Following this, Philipp highlighted the 4 key ways in which LINBIT can help an organisation: ‘Protecting data, Always Keeping Your Services On, Shaping Your Destiny and Exceeding with Best Performance”. Philipp also delved into the different reasons why LINBIT SDS is so fast, and what the next steps are for DRBD, LINSTOR and the LINSTOR Driver for CloudStack.
-----------------------------------------
On October 10th 2023, ShapeBlue, Ampere Computing and LINBIT held a joint virtual event – Building Next-Generation IaaS. The event explored how the synergy between ARM, Apache CloudStack and LINBIT’s storage solutions can achieve a formidable price-to-performance ratio. There were a total of 3 sessions held by speakers from all 3 organisations.
PLNOG19 - Piotr Wojciechowski - Sieć w chmurze publicznej i hybrydowej dla si...PROIDEA
Tradycyjne podejście do modelu sieci i zarządzania nią w wielu obszarach przechodzi do przeszłośći. Na PLNOG18 Piotr Wojciechowski pokazywał, jak przejść z modelu myślenia o konfiguracji sieci na programowanie na przykładzie REST API. Tym razem pokaże inną gałąź tej ewolucji jaką jest sieć w chmurze publicznej i hybrydowej na przykładzie AWS i Azure, opowiedzieć o różnicach między implementacjami sieci w chmurze publicznej, a tradycyjnych sieciach czy chmurze prywatnej, modelach migracji i tworzenia sieci w rozwiązaniach hybrydowych. Wszystko ze wskazówkami jak zabrać się za migrację i naukę.
Speakers:
1. (Slide 5) Gonzalo Marcos: All you need to know before creating your first VPC
2. (Slide 41) David Cisneros: The Metrics Framework Unwrapped
3. (Slide 64) Sebastian Gonzalez: A performance case: Back pressure (Short session)
Host: Angel Alberici
Youtube: Virtual Muleys (https://www.youtube.com/c/VirtualMuleysOnline/videos)
Meetups: https://meetups.mulesoft.com/online-group-english/
Hi everyone, Angel Alberici here as said find our slides here from the event: https://meetups.mulesoft.com/events/details/mulesoft-online-group-english-presents-getting-there-with-vpcs-the-metrics-framework-unwrapped-a-real-story-on-performance/#/
The twelve-factor app is designed for continuous deployment by keeping the gap between development and production small. For example, make the time gap small, make the personnel gap small & make the tools gap small. Learn more about how a Cloud vendor must provide a platform for 12-factor / Cloud Native development and deployment with identified anti-patterns.
Are you getting the most out of Azure? Learn 6 ways to get more from your Azure platform.
Join one of our top Infrastructure and Cloud consultants, Mike Balatzis to learn how to get more from your Azure platform. Mike is an information technology consultant with 18 years’ experience in Microsoft enterprise solutions, including Windows server and desktop operating systems, Exchange, and System Center Configuration Manager. In addition, Mike is an MSCE for the Private Cloud as well as a VTSP for Azure.
This webinar will cover the following important topics
•Microsoft Azure Infrastructure and Networking
•Securing Resources
•Application Storage & Data Access Strategy
•Applications in Azure
•Websites in Microsoft Azure
•Design a Management, Monitoring, and Business Continuity Strategy
Сергей Сверчков "Want to build a secure private cloud for IoT with high avail...Tanya Denisyuk
We will share first-hand experience in how to build secure, highly available, and scalable private clouds for IoT industries, using OpenStack and Amazon Web Services. Join the talk to learn about unique techniques for connecting private customer networks to the cloud and providing support for WebSocket, TCP, and HTTP devices. This discussion will also cover Cloud Foundry, an open source cloud-native platform for rapid development of 12-factor applications.
AWS User Group July 2014 - Getting Started with cloud computing and AWS
Getting Started with cloud computing and AWS
Slides for the following AWS User Group Talks:
"Public Cloud and AWS Overview" - Ryan Koop, Director of Products and Marketing at Cohesive @ryankoop
"Getting Started in AWS" - Jonny Sywulak, Continuous Delivery Engineer at Stelligent Systems LLC @jonathansywulak
July Sponsors:
Hosts: Cohesive
Beers and drinks: Cohesive
Pizza: el el see
Organizers: Cohesive
Interested in getting involved next time? Have an idea for a talk? email margaret.walkerATcohesive.net
#AWSChicago
This is an introduction to Windows Azure and is targeted towards an IT Pro audience, although Developers are certainly welcome to view! It covers the following broad topics:
Cloud jargon in plain English
What is Windows Azure and how can it help me?
Running web sites and VMs in the cloud
What else can I put in the cloud / what else can I use the cloud for?
How can I use the cloud?
How do I manage this?
Infoblox Cloud Solutions - Cisco Mid-Atlantic User GroupNetCraftsmen
This presentation will cover an overview of cloud market trends, the Infoblox Cloud Network Automation, VMware Private Cloud Automation use cases, and Amazon AWS and Hybrid/Public Cloud.
Updates to Apache CloudStack and LINBIT SDSShapeBlue
In this session, speakers Giles Sirett and Philipp Reisner shared insights into CloudStack and LINBIT. Giles detailed Apache CloudStack’s scalability, multi-tenancy, and compatibility with various hypervisors. He also discusses CloudStack’s integrated, easy-to-use nature, rapid time-to-value, and its active community. Following this, Giles delves into different use cases, such as IaaS/Cloud Provisioning, Disaster recovery, Sovereign Clouds, and the list goes on. CloudStack’s features, including its support for Kubernetes clusters, its scalable architecture, high availability and other features were also discussed.
Following this, Philipp highlighted the 4 key ways in which LINBIT can help an organisation: ‘Protecting data, Always Keeping Your Services On, Shaping Your Destiny and Exceeding with Best Performance”. Philipp also delved into the different reasons why LINBIT SDS is so fast, and what the next steps are for DRBD, LINSTOR and the LINSTOR Driver for CloudStack.
-----------------------------------------
On October 10th 2023, ShapeBlue, Ampere Computing and LINBIT held a joint virtual event – Building Next-Generation IaaS. The event explored how the synergy between ARM, Apache CloudStack and LINBIT’s storage solutions can achieve a formidable price-to-performance ratio. There were a total of 3 sessions held by speakers from all 3 organisations.
PLNOG19 - Piotr Wojciechowski - Sieć w chmurze publicznej i hybrydowej dla si...PROIDEA
Tradycyjne podejście do modelu sieci i zarządzania nią w wielu obszarach przechodzi do przeszłośći. Na PLNOG18 Piotr Wojciechowski pokazywał, jak przejść z modelu myślenia o konfiguracji sieci na programowanie na przykładzie REST API. Tym razem pokaże inną gałąź tej ewolucji jaką jest sieć w chmurze publicznej i hybrydowej na przykładzie AWS i Azure, opowiedzieć o różnicach między implementacjami sieci w chmurze publicznej, a tradycyjnych sieciach czy chmurze prywatnej, modelach migracji i tworzenia sieci w rozwiązaniach hybrydowych. Wszystko ze wskazówkami jak zabrać się za migrację i naukę.
Speakers:
1. (Slide 5) Gonzalo Marcos: All you need to know before creating your first VPC
2. (Slide 41) David Cisneros: The Metrics Framework Unwrapped
3. (Slide 64) Sebastian Gonzalez: A performance case: Back pressure (Short session)
Host: Angel Alberici
Youtube: Virtual Muleys (https://www.youtube.com/c/VirtualMuleysOnline/videos)
Meetups: https://meetups.mulesoft.com/online-group-english/
Hi everyone, Angel Alberici here as said find our slides here from the event: https://meetups.mulesoft.com/events/details/mulesoft-online-group-english-presents-getting-there-with-vpcs-the-metrics-framework-unwrapped-a-real-story-on-performance/#/
The twelve-factor app is designed for continuous deployment by keeping the gap between development and production small. For example, make the time gap small, make the personnel gap small & make the tools gap small. Learn more about how a Cloud vendor must provide a platform for 12-factor / Cloud Native development and deployment with identified anti-patterns.
Are you getting the most out of Azure? Learn 6 ways to get more from your Azure platform.
Join one of our top Infrastructure and Cloud consultants, Mike Balatzis to learn how to get more from your Azure platform. Mike is an information technology consultant with 18 years’ experience in Microsoft enterprise solutions, including Windows server and desktop operating systems, Exchange, and System Center Configuration Manager. In addition, Mike is an MSCE for the Private Cloud as well as a VTSP for Azure.
This webinar will cover the following important topics
•Microsoft Azure Infrastructure and Networking
•Securing Resources
•Application Storage & Data Access Strategy
•Applications in Azure
•Websites in Microsoft Azure
•Design a Management, Monitoring, and Business Continuity Strategy
Сергей Сверчков "Want to build a secure private cloud for IoT with high avail...Tanya Denisyuk
We will share first-hand experience in how to build secure, highly available, and scalable private clouds for IoT industries, using OpenStack and Amazon Web Services. Join the talk to learn about unique techniques for connecting private customer networks to the cloud and providing support for WebSocket, TCP, and HTTP devices. This discussion will also cover Cloud Foundry, an open source cloud-native platform for rapid development of 12-factor applications.
AWS User Group July 2014 - Getting Started with cloud computing and AWS
Getting Started with cloud computing and AWS
Slides for the following AWS User Group Talks:
"Public Cloud and AWS Overview" - Ryan Koop, Director of Products and Marketing at Cohesive @ryankoop
"Getting Started in AWS" - Jonny Sywulak, Continuous Delivery Engineer at Stelligent Systems LLC @jonathansywulak
July Sponsors:
Hosts: Cohesive
Beers and drinks: Cohesive
Pizza: el el see
Organizers: Cohesive
Interested in getting involved next time? Have an idea for a talk? email margaret.walkerATcohesive.net
#AWSChicago
Deep Dive into Munits in Mule 4 | MuleSoft Mysore Meetup #40
Event Link:-
https://meetups.mulesoft.com/events/details/mulesoft-mysore-presents-munits-in-mule-4-deep-dive/
Agenda
-Overview of Munits
-What is Munit and how does it help
-Overview of Code Coverage
-What is code coverage and its implications
-Parameterizing Munits
-Benefits and use cases
-Special cases of Munits
-Choice Router
-For Each Scope
-APIKIT
-Hands-On
-Each of the special cases mentioned
For Upcoming Meetups Join Mysore Meetup Group - https://meetups.mulesoft.com/mysore/
YouTube:- youtube.com/@mulesoftmysore
Mysore WhatsApp group:- https://chat.whatsapp.com/EhqtHtCC75vCAX7gaO842N
Speakers:-
Prithwish Karforma - https://www.linkedin.com/in/prithwish-karforma-b2727b1a1
Organizers:-
Shubham Chaurasia - https://www.linkedin.com/in/shubhamchaurasia1/
Giridhar Meka - https://www.linkedin.com/in/giridharmeka
Priya Shaw - https://www.linkedin.com/in/priya-shaw
State Management in Mule applications | MuleSoft Mysore Meetup #42MysoreMuleSoftMeetup
State Management in Mule 4 | MuleSoft Mysore Meetup #42
Event Link:-
https://meetups.mulesoft.com/events/details/mulesoft-mysore-presents-state-management-in-mule-applications/
Agenda
-Managing State (Data) in Mule Applications
-Mule Event
-Object Store
-VM Queues
-Batch Job Scope Queues
-File-based persistence
-External data store
-Optimal Methods for storing state
-Pros and Cons of different state storage
Trade off between different state storage
-Exploring State Implementation
Cloudhub 1.0
Cloudhub 2.0
-Real-world Examples
For Upcoming Meetups Join Mysore Meetup Group - https://meetups.mulesoft.com/mysore/
YouTube:- youtube.com/@mulesoftmysore
Mysore WhatsApp group:- https://chat.whatsapp.com/EhqtHtCC75vCAX7gaO842N
Speakers:-
Vijay Kumar - https://www.linkedin.com/in/vijay-kumar-011308109/
Organizers:-
Shubham Chaurasia - https://www.linkedin.com/in/shubhamchaurasia1/
Giridhar Meka - https://www.linkedin.com/in/giridharmeka
Priya Shaw - https://www.linkedin.com/in/priya-shaw
Application Design Thinking wrt Integration Architecture - Part II | MuleSoft...MysoreMuleSoftMeetup
Application Design Thinking with respect to Integration Architecture - Part II | MuleSoft Mysore Meetup #33
Event Link:-
https://meetups.mulesoft.com/events/details/mulesoft-mysore-presents-application-design-thinking-with-respect-to-integration-architecture-part-ii/
-What are architectural designs?
-Is it the back-end or backbone of any technology?
-Why a good design architecture is important for any application?
-How Integration Architecture impacts the design of an application
Part 1 of the Application Design Thinking Series
https://meetups.mulesoft.com/events/details/mulesoft-mysore-presents-application-design-thinking-with-respect-to-integration-architecture-part-i/
For Upcoming Meetups Join Mysore Meetup Group - https://meetups.mulesoft.com/mysore/
Youtube:- youtube.com/@mulesoftmysore
Mysore WhatsApp group:- https://chat.whatsapp.com/EhqtHtCC75vCAX7gaO842N
Speaker:-
Robin Sinha:- https://www.linkedin.com/in/robin-sinha/
Organizers:-
Shubham Chaurasia - https://www.linkedin.com/in/shubhamchaurasia1/
Giridhar Meka - https://www.linkedin.com/in/giridharmeka
Application Design Thinking wrt Integration Architecture - Part I | MuleSoft ...MysoreMuleSoftMeetup
Application Design Thinking with respect to Integration Architecture - Part I | MuleSoft Mysore Meetup #31
Event Link:- https://meetups.mulesoft.com/events/details/mulesoft-mysore-presents-application-design-thinking-with-respect-to-integration-architecture-part-i/
-What is Design Thinking & why is it important?
-What is the definition of a good design?
-What are different models of Design Thinking?
-Discussion on some real-life business use cases
Part 2 of the Application Design Thinking Series
https://meetups.mulesoft.com/events/details/mulesoft-mysore-presents-application-design-thinking-with-respect-to-integration-architecture-part-ii/
For Upcoming Meetups Join Mysore Meetup Group - https://meetups.mulesoft.com/mysore/
Youtube:- youtube.com/@mulesoftmysore
Mysore WhatsApp group:- https://chat.whatsapp.com/EhqtHtCC75vCAX7gaO842N
Speaker:-
Robin Sinha:- https://www.linkedin.com/in/robin-sinha/
Organizers:-
Shubham Chaurasia - https://www.linkedin.com/in/shubhamchaurasia1/
Giridhar Meka - https://www.linkedin.com/in/giridharmeka
Handling NFRs for the API through API policies (Custom Policies) -Part 2 | Mu...MysoreMuleSoftMeetup
Handling NFRs for the API through API policies (Custom Policies) -Part 2 | MuleSoft Mysore Meetup #26
Event Link:- https://meetups.mulesoft.com/events/details/mulesoft-mysore-presents-part-2-handling-nfrs-for-the-api-through-api-policies-custom-policies/
-Summary of Session One (Part 1 - Recap)
API’s NFR & Handling NFR
API Out of the Box Policies
API Policy Enforcement
-Handling NFR using Custom Policy
-Develop, Package, Publish & Manage a Custom Policy
-Use Case : Creating a Custom policy
For Upcoming Meetups Join Mysore Meetup Group - https://meetups.mulesoft.com/mysore/
Youtube:- youtube.com/@mulesoftmysore
Mysore WhatsApp group:- https://chat.whatsapp.com/EhqtHtCC75vCAX7gaO842N
Speaker:-
Vijayaraghavan Venkatadri:- https://www.linkedin.com/in/vijayaraghavan-venkatadri-b2210020/
Organizers:-
Shubham Chaurasia - https://www.linkedin.com/in/shubhamchaurasia1/
Giridhar Meka - https://www.linkedin.com/in/giridharmeka
Macroeconomics- Movie Location
This will be used as part of your Personal Professional Portfolio once graded.
Objective:
Prepare a presentation or a paper using research, basic comparative analysis, data organization and application of economic information. You will make an informed assessment of an economic climate outside of the United States to accomplish an entertainment industry objective.
How to Make a Field invisible in Odoo 17Celine George
It is possible to hide or invisible some fields in odoo. Commonly using “invisible” attribute in the field definition to invisible the fields. This slide will show how to make a field invisible in odoo 17.
Operation “Blue Star” is the only event in the history of Independent India where the state went into war with its own people. Even after about 40 years it is not clear if it was culmination of states anger over people of the region, a political game of power or start of dictatorial chapter in the democratic setup.
The people of Punjab felt alienated from main stream due to denial of their just demands during a long democratic struggle since independence. As it happen all over the word, it led to militant struggle with great loss of lives of military, police and civilian personnel. Killing of Indira Gandhi and massacre of innocent Sikhs in Delhi and other India cities was also associated with this movement.
Safalta Digital marketing institute in Noida, provide complete applications that encompass a huge range of virtual advertising and marketing additives, which includes search engine optimization, virtual communication advertising, pay-per-click on marketing, content material advertising, internet analytics, and greater. These university courses are designed for students who possess a comprehensive understanding of virtual marketing strategies and attributes.Safalta Digital Marketing Institute in Noida is a first choice for young individuals or students who are looking to start their careers in the field of digital advertising. The institute gives specialized courses designed and certification.
for beginners, providing thorough training in areas such as SEO, digital communication marketing, and PPC training in Noida. After finishing the program, students receive the certifications recognised by top different universitie, setting a strong foundation for a successful career in digital marketing.
Model Attribute Check Company Auto PropertyCeline George
In Odoo, the multi-company feature allows you to manage multiple companies within a single Odoo database instance. Each company can have its own configurations while still sharing common resources such as products, customers, and suppliers.
Synthetic Fiber Construction in lab .pptxPavel ( NSTU)
Synthetic fiber production is a fascinating and complex field that blends chemistry, engineering, and environmental science. By understanding these aspects, students can gain a comprehensive view of synthetic fiber production, its impact on society and the environment, and the potential for future innovations. Synthetic fibers play a crucial role in modern society, impacting various aspects of daily life, industry, and the environment. ynthetic fibers are integral to modern life, offering a range of benefits from cost-effectiveness and versatility to innovative applications and performance characteristics. While they pose environmental challenges, ongoing research and development aim to create more sustainable and eco-friendly alternatives. Understanding the importance of synthetic fibers helps in appreciating their role in the economy, industry, and daily life, while also emphasizing the need for sustainable practices and innovation.
3. Safe Harbour Statement
● Both the speaker and the host are organizing this meet-up in individual capacity only.
We are not representing our companies here.
● This presentation is strictly for learning purposes only.
● Organizer/Presenter do not hold any responsibility that same solution will work for
your business requirements.
● This presentation is not meant for any promotional activities.
3
4. A recording of this meetup will be uploaded to events page within 24 hours
Questions can be submitted/asked at any time in the Chat/Questions and Answers Tab
Make it more Interactive!!!
Give us feedback! Rate this meetup session by filling feedback form at the end of the day
We Love Feedbacks!!! Its Bread & Butter for Meetup
Housekeeping
4
7. 7
Vijayaraghavan Venkatadri
Integration Architect @
• Working at EY GDS
• 11+ years of experience in Integration & API products in
Solutioning & Design
• Certified Developer & Architect in MuleSoft
• MuleSoft Mentor & Speaker
• 3x certified in MuleSoft
• 6x certified in IBM
Speaker
8. Agenda
o MuleSoft & Anypoint Platform
o CloudHub 2.0
■ CloudHub 1.0 VS CloudHub 2.0
■ Shared Space VS Private Space
■ Limitations
o Private Space Landscape in CH 2.0
o Prerequisites for Private Space
o Prerequisites for VPN
o Vanity Domain Configuration & Prerequisites
o Firewall Rules & Prerequisites
o Net Tools
o Q & A 8
9. MuleSoft helps enterprises to unlock their business capabilities in terms of reusable & discoverable
assets to meet the goal of digital shift in the market.
It accelerates the process of delivering IT projects faster than ever before.
Technically, it unlocks system and data within the enterprise with integration, driving productivity
and efficiency and creating engaging customer experience.
MuleSoft
9
Anypoint Platform
MuleSoft Anypoint Platform is a unified platform that offers a holistic approach to API design and
development
It helps in facilitating the API cycle from design, publish, feedback, build, deploy, manage and
secure
It comprises the component within the platform to drive API lifecycle.
10. CloudHub 2.0 is one of the deployment offerings from MuleSoft.
It is a fully managed, containerized integration platform as a service (iPaaS) where the integration
can be deployed and managed as a lightweight container in the AWS cloud.
Benefits:
★ Provides deployments across 12 regions globally.
★ Dynamically scales infrastructure and built-in services up or down to support elastic
transaction volumes.
★ Builds in security policies, protecting your services and sensitive data with encrypted secrets,
firewall controls, and restricted shell access.
★ Encrypts certificates, passwords, and other sensitive information configuration data at rest
and in transit within Anypoint Platform.
★ Provides a standardized isolation boundary by running each Mule instance and service as a
separate container.
CloudHub 2.0
10
11. CloudHub 1.0 VS CloudHub 2.0
11
CloudHub 1.0 CloudHub 2.0
It is designed on a VM based platform on Cloud. Apps
are deployed on workers, which are the dedicated
instance of Mule runtime.
It is designed on a containerized platform on cloud. Built on top of
Anypoint Runtime Fabric. Apps are deployed on replicas
(containerized pods), which are dedicated instances of Mule
runtime.
Application Level Capabilities:
★ Mutual TLS not supported
★ Data Graph is supported
★ Support Object Store V1 & V2
★ Deployment Rollback not supported
★ Ports 8081 and 8082 available for HTTP & HTTPS
Application Level Capabilities:
★ Mutual TLS supported
★ Data Graph not supported
★ Only support Object Store V2
★ Deployment Rollback supported
★ All the traffic routed through 8081 for HTTP & HTTPS
Network Level Capabilities:
★ Fully Managed Anypoint VPC, VPN & AWS Transit
Gateway Attachments (Outbound firewall rules not
supported)
★ DLB has to be configured for VPC & Load balancer
logs are not supported.
★ VPC Peering supported.
Network Level Capabilities:
★ Fully Managed Anypoint Private Space which covers, VPN &
AWS Transit Gateway Attachments.(Outbound firewall rules
are supported)
★ Ingress is auto configured & Load balancer logs are
supported.
★ VPC Peering not supported.
12. CH 2.0 - Shared Space VS Private Space
12
Shared Space Private Space
As the name indicates, it is a shared elastic cloud of
resource in AWS which acts as a multi-tenant mode of
containerization.
Quite the contrary to shared space, private space is a virtual
and isolated space in CloudHub 2.0 as a single-tenant mode
of containerization.
It provides one shared space in each supported region to
which you deploy your applications.
It provides 12 region globally to create private to associate to
your on-premises data center as closest as possible.
Requirement on choosing Shared Space:
★ There is no requirement of isolation for your
organization.
★ Your mediation system does not falls under any
corporate data center such as on-premise or private
cloud.
★ No requirement on configuring vanity domain names in
your public endpoint.
★ No domain certificates for TLS termination.
Requirement on choosing Shared Space:
★ There is a requirement of isolation for your
organization.
★ Your mediation system does falls under any corporate
data center such as on-premise or private cloud.
★ Requirement on configuring vanity domain names in
your public endpoint.
★ Domain certificates for TLS termination.
13. 100 private spaces per organization.
10 VPN per private space.
5 transit gateway connections.
180 Inbound and outbound firewall rules.
10 TLS context per private space.
Up to the size of 200 MB per application.
Though there are no limits on number of client certificates, but the limit is on the file size
file size up to
KeyStore – 40 KB
TrustStore – 128 KB
Limitations in CloudHub 2.0
13
15. Ideally there will be two private spaces would be created per organization/business group.
Non-Production private space
It will cover all the non-production environments such as DEV, SIT, QA, STAGE, UAT which
are based on sandboxes.
Production private space
It will cover only production environments such as PROD which is based on production.
To create the private space, below details are required:
★ Private Space Name
★ Private Space Region
★ CIDR Block
★ DNS Server IPs
★ Internal Domains
Prerequisites for Private Space
15
16. Private Space Name:
The naming conventions for private space should be between 3-42 characters long, contain only
lowercase letters, numbers and dashes. The format of the name should contain below details.
❖ Organization Name
❖ Region Name
❖ Environment Specification
Format: <orgName>-<region>-<env>-ps
Example: mule-us-nonprod-ps
Private Space Region:
The selection of specific region where the private space to be created is dependent on the location of
the corporate network where it lies.
There are 12 regions available across globe.
Prerequisites for Private Space
16
18. CIDR (Classless-Inter Domain Routing):
The IP address of the private space specified using with the range of IP address denoting through CIDR
block notation which is Classless-Inter Domain Routing.
❖ MuleSoft always recommends /22 CIDR range (1026 IPs).
❖ The accepted smallest range is /24 (256 IPs) and the largest range is /16 (65536 IPs)
Certain things to be considered before determining the size of CIDR block for a private space.
❖ Number of environment within that private space.
❖ Number of API to be deployed in that private space per environment.
❖ Number of replicas per API (At least 2 IPs are reserved per replica for Zero-Downtime)
❖ Addresses reserved for fault tolerance and infrastructure and subnet may be divided up to 4
availability zones.
❖ A few sets of IP addresses reserved for infrastructure.
The generate thumb rule for deciding the size of the CIDR range is to calculate 10 times the maximum
number of expected applications to be deployed in private space. If applications are 100, the IP range
should be 1000.
Prerequisites for Private Space
18
19. Domain Name Server:
❖ If your corporate network uses internal DNS servers to resolve requests to custom domains,
configure the private space with theses IP addresses and domain names.
❖ Private space uses your internal DNS to resolve internal hostnames of your private network (make
sure your applications call the backend resources by FQDN)
Internal Domains:
Internal Domains that need to be accessible from private space must be resolved by the
internal DNS server.
Prerequisites for Private Space
19
20. The Virtual Private Network (VPN) is required to establish connections with corporate networks. Each
private requires at least one VPN tunnelling to the on-premises.
❖ There will be two runnels per VPN which could be active-active or active-passive based on the
enterprise network router configuration.
❖ The router configuration should support asymmetric routing to have active-active configuration if the
request sent through tunnel A will be used for response routing as well. Else, active-passive tunnelling
mode to established. (This must be discussed with the network team of that organization)
❖ There is an option of having redundant VPN configuration which act as a failover mechanism if the
primary VPN is down. This is required only for highly available data transactions for that organization.
Prerequisites for Virtual Private Network
20
21. To create the Anypoint VPN, below details are required:
❖ VPN Name
❖ Remote IP
❖ Support Gateway Routing Device:
➢ Device Vendor
➢ Device Platform
➢ Device Software Routing Type
❖ Routing Type:
➢ Static
➢ Dynamic (Using BGP Protocol)
❖ Local ASN (For both Static & Dynamic)
❖ Remote ASN ( Only for dynamic routing)
❖ Static IP CIDR ranges ( To advertise and only required for static)
Prerequisites for Virtual Private Network
21
22. VPN Name:
The naming conventions for VPN should be between 3-42 characters long, contain only lowercase
letters, numbers and dashes. The format of the name should contain below details.
❖ Organization Name
❖ Region Name
❖ Environment Specification
Format: <orgName>-<region>-<env>-vpn
Example: mule-us-nonprod-vpn
Remote IP:
The public IP of the VPN endpoint of the organization. This will be a static IP for the configuration. The
public IP will be provided by the network team.
Prerequisites for Virtual Private Network
22
23. Supported Gateway Routing Device:
Gateway device is a physical or software appliance on the client organization’s side of the VPN
connection. Get the below details from the network team.
❖ Device Vendor
❖ Device Platform
❖ Device Software
Prerequisites for Virtual Private Network
23
24. Routing Type:
The routing type of the VPN is determined based on the gateway device. It should be either static or dynamic.
It is always recommended to use dynamic routing and use static only if the gateway device does not support
dynamic routing.
Static Routing:
It requires you to provide routes (subnet) in your network that are accessible through Anypoint VPN. To
create static VPN connection, your VPN must be able to:
★ Establish IKE Security Associations using a pre-shared key (PSK)
★ Establish IPSec Security Associations in Tunnel Mode.
★ Use any combination of IPSec settings that Anypoint Platform supports.
★ Fragments IP packets before encryption.
★ Use one security Association (SA) pair per tunnel.
★ Use IPSec Dead Peer Detection (DPD)
★ Allow asymmetric routing.
★ For IPSec, enable perfect forward secrecy (PFS) with the Diffie-Hellman phase 2 groups 2, 5, 14-24
Prerequisites for Virtual Private Network
24
25. Dynamic VPN Routing (BGP):
For dynamic routing, your device uses Border Gateway Protocol (BGP) to advertise routes to Anypoint
VPN. To create a dynamic VPN connection, in addition to the static VPN connection requirements, your
VPN device must be able to:
❖ Establish BGP Peering
❖ Support route-based VPNs (bind tunnels to logical interfaces)
❖ For IPSec, enable perfect forward secrecy (PFS) with the Diffie-Hellman Phase 2 groups 2,5, 14-24
Local ASN:
The Local ASN is Local Autonomous System Number specified a private ASN (64512-645534) to
assign to the Anypoint Platform side of the VPN.
❖ Use a private ASN that is not already assigned to your network. Local ASN configured for both
static and dynamic VPN routing.
❖ Ideally local ASN is not use for static routing, you must specify this value for the first time VPN
creation. Because for any future BGP routing, it will be used. Subsequent static VPN, this local
ASN option will not be enable.
Prerequisites for Virtual Private Network
25
26. Remote ASN:
Remote ASN is Remote Autonomous System Number specified a private ASN (64512-645534) to
corresponds to your backend
❖ This is required only for dynamic routing
❖ Use either an existing ASN assigned to your network or a private ASN (64512-65534) that is not
already assigned to your network. The default value is 65001
Static IP CIDR Ranges:
As part of static routing, IP prefixes is required to advertise to your private network through VPN.
This is only required for static routing.
Prerequisites for Virtual Private Network
26
27. ❖ By default, CloudHub 2.0 enables public DNS for MuleSoft private space with MuleSoft domain
certificates. However, this cannot be used for domain specific traffic which needs isolation.
❖ So, domain certs to be used to configure vanity URL and TLS termination.
❖ The domain certificates must be created separately for non-production and production private
spaces. But the non-production certificates should be shared across non-prod environment by
having the sub-domain names in the certificate to bifurcate the environment details as below.
Vanity Domain Configuration & Prerequisites
27
Environment Vanity Domain
DEV dev.<orgName>.com
SIT sit.<orgName>.com
QA qa.<orgName>.com
PROD prd.<orgName>.com
28. The firewall configuration must be in place for each private space. It is one of the security measures to ensures
the traffic that comes and goes out is authentic one. The private space has below firewall rules.
Inbound Firewall Rules:
❖ Public Inbound Traffic (HTTP/HTTPS):
This endpoint is a public DNS which can be accessed over the internet and intranet on HTTP & HTTPS
❖ Private Inbound Traffic (HTTP/HTTPS):
This endpoint is a private DNS which is secure and meant to accept inbound traffic within private space
and corporate network through the VPN. It cannot be accessed outside private space/over the internet.
Ideally, API calls within the VPC will be using this private space endpoint.
Outbound Firewall Rules:
❖ Public Outbound Traffic (HTTPS/TCP):
This is for MuleSoft to call any service outside the private space over the internet.
❖ Private Outbound Traffic (HTTPS/TCP):
This is for MuleSoft to call any service within the corporate network via VPN tunnelling.
Firewall Rules & Prerequisites
28
29. ❖ MuleSoft Provides Net Tools applications to do the connectivity check.
❖ It can be deployed to private space and connectivity check can be done.
➢ The connectivity can be checked to the instances available in the corporate network.
➢ The connectivity can be checked within and outside the private space.
❖ Link: https://help.mulesoft.com/s/article/How-To-Use-Network-Tools-Application
Net Tools
29
31. Take a stand !
● Nominate yourself for the next meetup speaker and suggest a topic as well.
31
32. ● Share:
○ Tweet using the hashtag #MuleSoftMeetups
○ Join Mysore Group: https://meetups.mulesoft.com/mysore/
● Feedback:
○ Fill out the survey feedback and suggest topics for upcoming events
○ Contact MuleSoft at meetups@mulesoft.com for ways to improve the program
○ Reach out to Mysore Meetup Leaders (Shubham/Giridhar) to suggest topics
for next Meetup
What’s next?
32