SlideShare a Scribd company logo
Thanks for joining!
We’ll get started soon!
Technical Enablement Session
Partners Q&A
Partners Q&A
@yourtwitterhandle | developer.confluent.io
Our Partner Technical Enablement offering
Scheduled sessions On-demand
Join us for these live sessions
where our experts will guide you
through sessions of different level
and will be available to answer
your questions. Some examples of
sessions are below:
• Confluent 101: for new starters
• Hybrid Cloud Workshop:
learn by doing
• Path to Production series ,
Confluent Cloud workshops
series
• Product Updates
Learn the basics with a guided
experience, at your own pace with
our learning paths on-demand. You
will also find an always growing
repository of more advanced
presentations to dig-deeper. Some
examples are below:
• Aware/Novice/Competent
Learning paths
• Confluent Use Cases
• Positioning Confluent Value
• Confluent Cloud Networking
• … and many more
AskTheExpert
we’ll offer a channel dedicated to
streaming questions
• Build CoE inside partners by
getting people with similar
interest together
• Connect with opportunities
and discover trends at focus
partners
• Build a Technical Community
• Q&A
• Tech Talk
@yourtwitterhandle | developer.confluent.io
What are the best practices to debug client applications
(producers/consumers in general but also Kafka Streams
applications)?
@yourtwitterhandle | developer.confluent.io
March 19-20, 2024
ExCeL London
#kafkasummit
cnfl.io/KSL2024
March 19-20, 2024
ExCeL London
REGISTER NOW
Partners Q&A
@yourtwitterhandle | developer.confluent.io
On the board for today
Confluent Cloud
Networking Overview
Best Practises for Private
Networking
Networking for Kafka
Connect
Ask me anything
networking!
@yourtwitterhandle | developer.confluent.io
Confluent Cloud Networking - Options
Public Endpoints
What we lead with, the classic SaaS model.
Pros:
• Easy, Short Time to Code,
Flexible Connectivity
• Confluent + CSP runs all infra
• Consistent across CSPs
Cons:
• Might not meet all
regulatory environments, we
ask why, always and
compare to other services.
• Might not meet all
regulatory environments, we
@yourtwitterhandle | developer.confluent.io
Confluent Cloud Networking - Options
Private Link
Primary Private Networking Option
Pros:
• Very agreeable to regulatory
security posture
• Strategic private networking
option for both Confluent
and CSPs
Cons:
• Its Private, requires
additional networking;
connectivity, routing,
security, DNS…. all managed
by the customer, drives
OPEX/CAPEX
• External access challenges
• CSP specific caveats/limits
are inherited
@yourtwitterhandle | developer.confluent.io
Confluent Cloud Networking - Options
Peering
Legacy Private Networking
Pros:
• Easy starting point for Private
Networking
Cons:
• Its Private, non-Transitive &
requires additional
networking
• Confluent is part of customer
network, security concerns
• External access challenges
• CSP specific caveats/limits are
inherited
@yourtwitterhandle | developer.confluent.io
Confluent Cloud Networking - Options
Transit Gateway (AWS Only)
Large Scale Private Networking
Pros:
• Scales for regional, global and
cross CSP environments.
Cons:
• Its Private, requires additional
networking; connectivity,
routing, security…. all
managed by the customer,
drives OPEX/CAPEX
• Confluent is part of customer
network, security concerns
• External access challenges
• AWS specific
Best Practises for Private Networking
Go-to Architecture when Public Endpoints are not accepted
FW FW
Peering
Hub VNet DMZ & Landing Zone VNet
Private Link
Endpoint(s) Private Link
Services
Private Zone(s) for PL Endpoints
Confluent Azure Tenant
Customer Azure Tenant
FW FW
Peering Peerings
Hub VNet DMZ VNet
Private Link
Endpoint(s)
Private Link
Service
Private Zone(s) for PL Endpoints
Confluent Azure Tenant
Customer Azure
Tenant
Kafka
Connect
LandingZone VNet
Connect VNet
Kafka
Connect
Outbound
Private Link
For Connect
DB
Outbound
Private Link
For Connect
DB
Private Networking Best Practices - Private Link Architecture
Azure Use Case: Hub-n-Spoke
Reference Architecture
Private Networking Best Practices - Azure Hub and Spoke -Peering
Private Networking Best Practices - Azure Hub and Spoke - Private Link
FW FW
Peering Peering
Hub VNet
DMZ VNet
Confluent Azure Tenant /16
Customer Azure Tenant
Customer Azure
Tenant
UDR UDR
Public DNS (Confluent Managed)
Private Networking for Managed
Connectors
Copyright 2020, Confluent, Inc. All rights reserved. This document may not be reproduced in any manner without the express written permission of Confluent, Inc.
The plumbing, the foundational requirement.
● Internet
● Peering
● Transit Gateway
● Private Link
● OnPremise, Remote Networks, Multi-Cloud
Friction - Connectivity
Network Connectivity
DNS
Connector Configuration
Copyright 2020, Confluent, Inc. All rights reserved. This document may not be reproduced in any manner without the express written permission of Confluent, Inc.
If FQDNs are required and we can’t resolve, we are dead in the water.
● Public DNS
○ Public record can have a private or a public IP.
● Private DNS - Hosted Zone Requirement
● Confluent Cloud resolves DNS in Confluent VPC/VNet, private DNS zones not exposed as configurable
to customers.
Friction - DNS
23
Network Connectivity
DNS
Connector Configuration
Copyright 2020, Confluent, Inc. All rights reserved. This document may not be reproduced in any manner without the express written permission of Confluent, Inc.
● Connector Config Options are Limited
○ Limits the use of custom endpoints
■ For example, you supply only the bucket name and the standard public endpoint is used
● storage.googleapis.com not a custom endpoint SERVICE-ENDPOINT.p.googleapis.com
Friction - Connector Configuration
24
Network Connectivity
DNS
Connector Configuration
Enhancements in Flight - DNS Peering for TGW/Peered Clusters
Q1 - AWS/Azure Q2 - GCP
25
2
1
4
5
3
Enhancements in Flight - DNS Peering for TGW/Peered Clusters
FW FW
Peering
Hub VNet DMZ & Landing Zone VNet
Private Link
Endpoint(s) Private Link
Services
Private Zone(s) for PL Endpoints
Confluent Azure Tenant
Customer Azure Tenant
Kafka
Connect
Outbound
Private Link
For Connect
DB
Enhancements in Flight - Outbound PL for Managed Connectors
BYOC support beyond 2024.
1. Customer creates PrivateLink Service for their source/sink (like a DB).
2. Customer creates an endpoint in Confluent Cloud VPC/VNet.
3. Customer creates a DNS record in Confluent Cloud to proper resolve.
Creates a clean secure solution for Managed Connectors in PL Environments (Peeering/TGW late 2024)
Enables Private & Public outbound access for Managed Connectors

More Related Content

Similar to Q&A with Confluent Experts: Navigating Networking in Confluent Cloud

The Devil is in the Details: Managing the Growth of Streaming Media in Librar...
The Devil is in the Details: Managing the Growth of Streaming Media in Librar...The Devil is in the Details: Managing the Growth of Streaming Media in Librar...
The Devil is in the Details: Managing the Growth of Streaming Media in Librar...
Columbia University
 
Staying Close to Experts with Executable Specifications
Staying Close to Experts with Executable SpecificationsStaying Close to Experts with Executable Specifications
Staying Close to Experts with Executable Specifications
Vagif Abilov
 
Building managedprivatecloud kvh_vancouversummit
Building managedprivatecloud kvh_vancouversummitBuilding managedprivatecloud kvh_vancouversummit
Building managedprivatecloud kvh_vancouversummit
matsunota
 
Expanding OEM Opportunities with WSO2
Expanding OEM Opportunities with WSO2Expanding OEM Opportunities with WSO2
Expanding OEM Opportunities with WSO2
WSO2
 
Lync-Skype Connectivity
Lync-Skype ConnectivityLync-Skype Connectivity
Lync-Skype Connectivity
Jennifer Stevenson
 
Modern VoIP in Modern Infrastructures
Modern VoIP in Modern InfrastructuresModern VoIP in Modern Infrastructures
Modern VoIP in Modern Infrastructures
Giacomo Vacca
 
Citrix xa xd cloud provisioning webinar
Citrix xa xd cloud provisioning webinarCitrix xa xd cloud provisioning webinar
Citrix xa xd cloud provisioning webinar
Citrix
 
DEVNET-1121 Customizing Cisco Video Access for Guests
DEVNET-1121	Customizing Cisco Video Access for GuestsDEVNET-1121	Customizing Cisco Video Access for Guests
DEVNET-1121 Customizing Cisco Video Access for Guests
Cisco DevNet
 
Cloud and agile software projects: Overview and Benefits
Cloud and agile software projects: Overview and BenefitsCloud and agile software projects: Overview and Benefits
Cloud and agile software projects: Overview and Benefits
Guillaume Berche
 
Weightless Digital Experience - Delivering IBM Digital Experience in the cloud
Weightless Digital Experience - Delivering IBM Digital Experience in the cloudWeightless Digital Experience - Delivering IBM Digital Experience in the cloud
Weightless Digital Experience - Delivering IBM Digital Experience in the cloud
David Strachan
 
Unleash the Power of Video Communication - Office 365 Video vs. Azure Media S...
Unleash the Power of Video Communication - Office 365 Video vs. Azure Media S...Unleash the Power of Video Communication - Office 365 Video vs. Azure Media S...
Unleash the Power of Video Communication - Office 365 Video vs. Azure Media S...
Gina Montgomery, V-TSP
 
Migrating Microsoft Applications to AWS like an Expert
Migrating Microsoft Applications to AWS like an ExpertMigrating Microsoft Applications to AWS like an Expert
Migrating Microsoft Applications to AWS like an Expert
Amazon Web Services
 
Cloud Computing
Cloud ComputingCloud Computing
Cloud Computing
UOS
 
The Future of BriteCore - Product Development
The Future of BriteCore - Product DevelopmentThe Future of BriteCore - Product Development
The Future of BriteCore - Product Development
Phil Reynolds
 
Creating your Hybrid Cloud with AWS -Technical 201
Creating your Hybrid Cloud with AWS -Technical 201Creating your Hybrid Cloud with AWS -Technical 201
Creating your Hybrid Cloud with AWS -Technical 201
Amazon Web Services
 
Meistern Sie die Herausforderungen der telearbeitenden Belegschaft
Meistern Sie die Herausforderungen der telearbeitenden BelegschaftMeistern Sie die Herausforderungen der telearbeitenden Belegschaft
Meistern Sie die Herausforderungen der telearbeitenden Belegschaft
panagenda
 
Adding to the bottom line - the Key Cloud plays for the Mid-Market - Adam Beavis
Adding to the bottom line - the Key Cloud plays for the Mid-Market - Adam BeavisAdding to the bottom line - the Key Cloud plays for the Mid-Market - Adam Beavis
Adding to the bottom line - the Key Cloud plays for the Mid-Market - Adam Beavis
Amazon Web Services
 
FreeSBC - A New Approach to the SBC
FreeSBC - A New Approach to the SBCFreeSBC - A New Approach to the SBC
FreeSBC - A New Approach to the SBC
TelcoBridges Inc.
 
So You Need To Build A Private Cloud. What Now? Best Practices For Building Y...
So You Need To Build A Private Cloud. What Now? Best Practices For Building Y...So You Need To Build A Private Cloud. What Now? Best Practices For Building Y...
So You Need To Build A Private Cloud. What Now? Best Practices For Building Y...
Dell World
 
OpenStack Summit: How companies of all sizes leverage OpenStack based private...
OpenStack Summit: How companies of all sizes leverage OpenStack based private...OpenStack Summit: How companies of all sizes leverage OpenStack based private...
OpenStack Summit: How companies of all sizes leverage OpenStack based private...
Duncan Johnston-Watt
 

Similar to Q&A with Confluent Experts: Navigating Networking in Confluent Cloud (20)

The Devil is in the Details: Managing the Growth of Streaming Media in Librar...
The Devil is in the Details: Managing the Growth of Streaming Media in Librar...The Devil is in the Details: Managing the Growth of Streaming Media in Librar...
The Devil is in the Details: Managing the Growth of Streaming Media in Librar...
 
Staying Close to Experts with Executable Specifications
Staying Close to Experts with Executable SpecificationsStaying Close to Experts with Executable Specifications
Staying Close to Experts with Executable Specifications
 
Building managedprivatecloud kvh_vancouversummit
Building managedprivatecloud kvh_vancouversummitBuilding managedprivatecloud kvh_vancouversummit
Building managedprivatecloud kvh_vancouversummit
 
Expanding OEM Opportunities with WSO2
Expanding OEM Opportunities with WSO2Expanding OEM Opportunities with WSO2
Expanding OEM Opportunities with WSO2
 
Lync-Skype Connectivity
Lync-Skype ConnectivityLync-Skype Connectivity
Lync-Skype Connectivity
 
Modern VoIP in Modern Infrastructures
Modern VoIP in Modern InfrastructuresModern VoIP in Modern Infrastructures
Modern VoIP in Modern Infrastructures
 
Citrix xa xd cloud provisioning webinar
Citrix xa xd cloud provisioning webinarCitrix xa xd cloud provisioning webinar
Citrix xa xd cloud provisioning webinar
 
DEVNET-1121 Customizing Cisco Video Access for Guests
DEVNET-1121	Customizing Cisco Video Access for GuestsDEVNET-1121	Customizing Cisco Video Access for Guests
DEVNET-1121 Customizing Cisco Video Access for Guests
 
Cloud and agile software projects: Overview and Benefits
Cloud and agile software projects: Overview and BenefitsCloud and agile software projects: Overview and Benefits
Cloud and agile software projects: Overview and Benefits
 
Weightless Digital Experience - Delivering IBM Digital Experience in the cloud
Weightless Digital Experience - Delivering IBM Digital Experience in the cloudWeightless Digital Experience - Delivering IBM Digital Experience in the cloud
Weightless Digital Experience - Delivering IBM Digital Experience in the cloud
 
Unleash the Power of Video Communication - Office 365 Video vs. Azure Media S...
Unleash the Power of Video Communication - Office 365 Video vs. Azure Media S...Unleash the Power of Video Communication - Office 365 Video vs. Azure Media S...
Unleash the Power of Video Communication - Office 365 Video vs. Azure Media S...
 
Migrating Microsoft Applications to AWS like an Expert
Migrating Microsoft Applications to AWS like an ExpertMigrating Microsoft Applications to AWS like an Expert
Migrating Microsoft Applications to AWS like an Expert
 
Cloud Computing
Cloud ComputingCloud Computing
Cloud Computing
 
The Future of BriteCore - Product Development
The Future of BriteCore - Product DevelopmentThe Future of BriteCore - Product Development
The Future of BriteCore - Product Development
 
Creating your Hybrid Cloud with AWS -Technical 201
Creating your Hybrid Cloud with AWS -Technical 201Creating your Hybrid Cloud with AWS -Technical 201
Creating your Hybrid Cloud with AWS -Technical 201
 
Meistern Sie die Herausforderungen der telearbeitenden Belegschaft
Meistern Sie die Herausforderungen der telearbeitenden BelegschaftMeistern Sie die Herausforderungen der telearbeitenden Belegschaft
Meistern Sie die Herausforderungen der telearbeitenden Belegschaft
 
Adding to the bottom line - the Key Cloud plays for the Mid-Market - Adam Beavis
Adding to the bottom line - the Key Cloud plays for the Mid-Market - Adam BeavisAdding to the bottom line - the Key Cloud plays for the Mid-Market - Adam Beavis
Adding to the bottom line - the Key Cloud plays for the Mid-Market - Adam Beavis
 
FreeSBC - A New Approach to the SBC
FreeSBC - A New Approach to the SBCFreeSBC - A New Approach to the SBC
FreeSBC - A New Approach to the SBC
 
So You Need To Build A Private Cloud. What Now? Best Practices For Building Y...
So You Need To Build A Private Cloud. What Now? Best Practices For Building Y...So You Need To Build A Private Cloud. What Now? Best Practices For Building Y...
So You Need To Build A Private Cloud. What Now? Best Practices For Building Y...
 
OpenStack Summit: How companies of all sizes leverage OpenStack based private...
OpenStack Summit: How companies of all sizes leverage OpenStack based private...OpenStack Summit: How companies of all sizes leverage OpenStack based private...
OpenStack Summit: How companies of all sizes leverage OpenStack based private...
 

More from confluent

Building API data products on top of your real-time data infrastructure
Building API data products on top of your real-time data infrastructureBuilding API data products on top of your real-time data infrastructure
Building API data products on top of your real-time data infrastructure
confluent
 
Speed Wins: From Kafka to APIs in Minutes
Speed Wins: From Kafka to APIs in MinutesSpeed Wins: From Kafka to APIs in Minutes
Speed Wins: From Kafka to APIs in Minutes
confluent
 
Evolving Data Governance for the Real-time Streaming and AI Era
Evolving Data Governance for the Real-time Streaming and AI EraEvolving Data Governance for the Real-time Streaming and AI Era
Evolving Data Governance for the Real-time Streaming and AI Era
confluent
 
Catch the Wave: SAP Event-Driven and Data Streaming for the Intelligence Ente...
Catch the Wave: SAP Event-Driven and Data Streaming for the Intelligence Ente...Catch the Wave: SAP Event-Driven and Data Streaming for the Intelligence Ente...
Catch the Wave: SAP Event-Driven and Data Streaming for the Intelligence Ente...
confluent
 
Santander Stream Processing with Apache Flink
Santander Stream Processing with Apache FlinkSantander Stream Processing with Apache Flink
Santander Stream Processing with Apache Flink
confluent
 
Unlocking the Power of IoT: A comprehensive approach to real-time insights
Unlocking the Power of IoT: A comprehensive approach to real-time insightsUnlocking the Power of IoT: A comprehensive approach to real-time insights
Unlocking the Power of IoT: A comprehensive approach to real-time insights
confluent
 
Workshop híbrido: Stream Processing con Flink
Workshop híbrido: Stream Processing con FlinkWorkshop híbrido: Stream Processing con Flink
Workshop híbrido: Stream Processing con Flink
confluent
 
Industry 4.0: Building the Unified Namespace with Confluent, HiveMQ and Spark...
Industry 4.0: Building the Unified Namespace with Confluent, HiveMQ and Spark...Industry 4.0: Building the Unified Namespace with Confluent, HiveMQ and Spark...
Industry 4.0: Building the Unified Namespace with Confluent, HiveMQ and Spark...
confluent
 
AWS Immersion Day Mapfre - Confluent
AWS Immersion Day Mapfre   -   ConfluentAWS Immersion Day Mapfre   -   Confluent
AWS Immersion Day Mapfre - Confluent
confluent
 
Eventos y Microservicios - Santander TechTalk
Eventos y Microservicios - Santander TechTalkEventos y Microservicios - Santander TechTalk
Eventos y Microservicios - Santander TechTalk
confluent
 
Citi TechTalk Session 2: Kafka Deep Dive
Citi TechTalk Session 2: Kafka Deep DiveCiti TechTalk Session 2: Kafka Deep Dive
Citi TechTalk Session 2: Kafka Deep Dive
confluent
 
Build real-time streaming data pipelines to AWS with Confluent
Build real-time streaming data pipelines to AWS with ConfluentBuild real-time streaming data pipelines to AWS with Confluent
Build real-time streaming data pipelines to AWS with Confluent
confluent
 
Q&A with Confluent Professional Services: Confluent Service Mesh
Q&A with Confluent Professional Services: Confluent Service MeshQ&A with Confluent Professional Services: Confluent Service Mesh
Q&A with Confluent Professional Services: Confluent Service Mesh
confluent
 
Citi Tech Talk: Event Driven Kafka Microservices
Citi Tech Talk: Event Driven Kafka MicroservicesCiti Tech Talk: Event Driven Kafka Microservices
Citi Tech Talk: Event Driven Kafka Microservices
confluent
 
Confluent & GSI Webinars series - Session 3
Confluent & GSI Webinars series - Session 3Confluent & GSI Webinars series - Session 3
Confluent & GSI Webinars series - Session 3
confluent
 
Citi Tech Talk: Messaging Modernization
Citi Tech Talk: Messaging ModernizationCiti Tech Talk: Messaging Modernization
Citi Tech Talk: Messaging Modernization
confluent
 
Citi Tech Talk: Data Governance for streaming and real time data
Citi Tech Talk: Data Governance for streaming and real time dataCiti Tech Talk: Data Governance for streaming and real time data
Citi Tech Talk: Data Governance for streaming and real time data
confluent
 
Confluent & GSI Webinars series: Session 2
Confluent & GSI Webinars series: Session 2Confluent & GSI Webinars series: Session 2
Confluent & GSI Webinars series: Session 2
confluent
 
Data In Motion Paris 2023
Data In Motion Paris 2023Data In Motion Paris 2023
Data In Motion Paris 2023
confluent
 
Confluent Partner Tech Talk with Synthesis
Confluent Partner Tech Talk with SynthesisConfluent Partner Tech Talk with Synthesis
Confluent Partner Tech Talk with Synthesis
confluent
 

More from confluent (20)

Building API data products on top of your real-time data infrastructure
Building API data products on top of your real-time data infrastructureBuilding API data products on top of your real-time data infrastructure
Building API data products on top of your real-time data infrastructure
 
Speed Wins: From Kafka to APIs in Minutes
Speed Wins: From Kafka to APIs in MinutesSpeed Wins: From Kafka to APIs in Minutes
Speed Wins: From Kafka to APIs in Minutes
 
Evolving Data Governance for the Real-time Streaming and AI Era
Evolving Data Governance for the Real-time Streaming and AI EraEvolving Data Governance for the Real-time Streaming and AI Era
Evolving Data Governance for the Real-time Streaming and AI Era
 
Catch the Wave: SAP Event-Driven and Data Streaming for the Intelligence Ente...
Catch the Wave: SAP Event-Driven and Data Streaming for the Intelligence Ente...Catch the Wave: SAP Event-Driven and Data Streaming for the Intelligence Ente...
Catch the Wave: SAP Event-Driven and Data Streaming for the Intelligence Ente...
 
Santander Stream Processing with Apache Flink
Santander Stream Processing with Apache FlinkSantander Stream Processing with Apache Flink
Santander Stream Processing with Apache Flink
 
Unlocking the Power of IoT: A comprehensive approach to real-time insights
Unlocking the Power of IoT: A comprehensive approach to real-time insightsUnlocking the Power of IoT: A comprehensive approach to real-time insights
Unlocking the Power of IoT: A comprehensive approach to real-time insights
 
Workshop híbrido: Stream Processing con Flink
Workshop híbrido: Stream Processing con FlinkWorkshop híbrido: Stream Processing con Flink
Workshop híbrido: Stream Processing con Flink
 
Industry 4.0: Building the Unified Namespace with Confluent, HiveMQ and Spark...
Industry 4.0: Building the Unified Namespace with Confluent, HiveMQ and Spark...Industry 4.0: Building the Unified Namespace with Confluent, HiveMQ and Spark...
Industry 4.0: Building the Unified Namespace with Confluent, HiveMQ and Spark...
 
AWS Immersion Day Mapfre - Confluent
AWS Immersion Day Mapfre   -   ConfluentAWS Immersion Day Mapfre   -   Confluent
AWS Immersion Day Mapfre - Confluent
 
Eventos y Microservicios - Santander TechTalk
Eventos y Microservicios - Santander TechTalkEventos y Microservicios - Santander TechTalk
Eventos y Microservicios - Santander TechTalk
 
Citi TechTalk Session 2: Kafka Deep Dive
Citi TechTalk Session 2: Kafka Deep DiveCiti TechTalk Session 2: Kafka Deep Dive
Citi TechTalk Session 2: Kafka Deep Dive
 
Build real-time streaming data pipelines to AWS with Confluent
Build real-time streaming data pipelines to AWS with ConfluentBuild real-time streaming data pipelines to AWS with Confluent
Build real-time streaming data pipelines to AWS with Confluent
 
Q&A with Confluent Professional Services: Confluent Service Mesh
Q&A with Confluent Professional Services: Confluent Service MeshQ&A with Confluent Professional Services: Confluent Service Mesh
Q&A with Confluent Professional Services: Confluent Service Mesh
 
Citi Tech Talk: Event Driven Kafka Microservices
Citi Tech Talk: Event Driven Kafka MicroservicesCiti Tech Talk: Event Driven Kafka Microservices
Citi Tech Talk: Event Driven Kafka Microservices
 
Confluent & GSI Webinars series - Session 3
Confluent & GSI Webinars series - Session 3Confluent & GSI Webinars series - Session 3
Confluent & GSI Webinars series - Session 3
 
Citi Tech Talk: Messaging Modernization
Citi Tech Talk: Messaging ModernizationCiti Tech Talk: Messaging Modernization
Citi Tech Talk: Messaging Modernization
 
Citi Tech Talk: Data Governance for streaming and real time data
Citi Tech Talk: Data Governance for streaming and real time dataCiti Tech Talk: Data Governance for streaming and real time data
Citi Tech Talk: Data Governance for streaming and real time data
 
Confluent & GSI Webinars series: Session 2
Confluent & GSI Webinars series: Session 2Confluent & GSI Webinars series: Session 2
Confluent & GSI Webinars series: Session 2
 
Data In Motion Paris 2023
Data In Motion Paris 2023Data In Motion Paris 2023
Data In Motion Paris 2023
 
Confluent Partner Tech Talk with Synthesis
Confluent Partner Tech Talk with SynthesisConfluent Partner Tech Talk with Synthesis
Confluent Partner Tech Talk with Synthesis
 

Recently uploaded

42 Ways to Generate Real Estate Leads - Sellxpert
42 Ways to Generate Real Estate Leads - Sellxpert42 Ways to Generate Real Estate Leads - Sellxpert
42 Ways to Generate Real Estate Leads - Sellxpert
vaishalijagtap12
 
Orca: Nocode Graphical Editor for Container Orchestration
Orca: Nocode Graphical Editor for Container OrchestrationOrca: Nocode Graphical Editor for Container Orchestration
Orca: Nocode Graphical Editor for Container Orchestration
Pedro J. Molina
 
Boost Your Savings with These Money Management Apps
Boost Your Savings with These Money Management AppsBoost Your Savings with These Money Management Apps
Boost Your Savings with These Money Management Apps
Jhone kinadey
 
Superpower Your Apache Kafka Applications Development with Complementary Open...
Superpower Your Apache Kafka Applications Development with Complementary Open...Superpower Your Apache Kafka Applications Development with Complementary Open...
Superpower Your Apache Kafka Applications Development with Complementary Open...
Paul Brebner
 
DECODING JAVA THREAD DUMPS: MASTER THE ART OF ANALYSIS
DECODING JAVA THREAD DUMPS: MASTER THE ART OF ANALYSISDECODING JAVA THREAD DUMPS: MASTER THE ART OF ANALYSIS
DECODING JAVA THREAD DUMPS: MASTER THE ART OF ANALYSIS
Tier1 app
 
ACE - Team 24 Wrapup event at ahmedabad.
ACE - Team 24 Wrapup event at ahmedabad.ACE - Team 24 Wrapup event at ahmedabad.
ACE - Team 24 Wrapup event at ahmedabad.
Maitrey Patel
 
如何办理(hull学位证书)英国赫尔大学毕业证硕士文凭原版一模一样
如何办理(hull学位证书)英国赫尔大学毕业证硕士文凭原版一模一样如何办理(hull学位证书)英国赫尔大学毕业证硕士文凭原版一模一样
如何办理(hull学位证书)英国赫尔大学毕业证硕士文凭原版一模一样
gapen1
 
Computer Science & Engineering VI Sem- New Syllabus.pdf
Computer Science & Engineering VI Sem- New Syllabus.pdfComputer Science & Engineering VI Sem- New Syllabus.pdf
Computer Science & Engineering VI Sem- New Syllabus.pdf
chandangoswami40933
 
Beginner's Guide to Observability@Devoxx PL 2024
Beginner's  Guide to Observability@Devoxx PL 2024Beginner's  Guide to Observability@Devoxx PL 2024
Beginner's Guide to Observability@Devoxx PL 2024
michniczscribd
 
Enhanced Screen Flows UI/UX using SLDS with Tom Kitt
Enhanced Screen Flows UI/UX using SLDS with Tom KittEnhanced Screen Flows UI/UX using SLDS with Tom Kitt
Enhanced Screen Flows UI/UX using SLDS with Tom Kitt
Peter Caitens
 
Software Test Automation - A Comprehensive Guide on Automated Testing.pdf
Software Test Automation - A Comprehensive Guide on Automated Testing.pdfSoftware Test Automation - A Comprehensive Guide on Automated Testing.pdf
Software Test Automation - A Comprehensive Guide on Automated Testing.pdf
kalichargn70th171
 
Upturn India Technologies - Web development company in Nashik
Upturn India Technologies - Web development company in NashikUpturn India Technologies - Web development company in Nashik
Upturn India Technologies - Web development company in Nashik
Upturn India Technologies
 
What’s New in VictoriaLogs - Q2 2024 Update
What’s New in VictoriaLogs - Q2 2024 UpdateWhat’s New in VictoriaLogs - Q2 2024 Update
What’s New in VictoriaLogs - Q2 2024 Update
VictoriaMetrics
 
TheFutureIsDynamic-BoxLang-CFCamp2024.pdf
TheFutureIsDynamic-BoxLang-CFCamp2024.pdfTheFutureIsDynamic-BoxLang-CFCamp2024.pdf
TheFutureIsDynamic-BoxLang-CFCamp2024.pdf
Ortus Solutions, Corp
 
Stork Product Overview: An AI-Powered Autonomous Delivery Fleet
Stork Product Overview: An AI-Powered Autonomous Delivery FleetStork Product Overview: An AI-Powered Autonomous Delivery Fleet
Stork Product Overview: An AI-Powered Autonomous Delivery Fleet
Vince Scalabrino
 
Call Girls Bangalore🔥7023059433🔥Best Profile Escorts in Bangalore Available 24/7
Call Girls Bangalore🔥7023059433🔥Best Profile Escorts in Bangalore Available 24/7Call Girls Bangalore🔥7023059433🔥Best Profile Escorts in Bangalore Available 24/7
Call Girls Bangalore🔥7023059433🔥Best Profile Escorts in Bangalore Available 24/7
manji sharman06
 
14 th Edition of International conference on computer vision
14 th Edition of International conference on computer vision14 th Edition of International conference on computer vision
14 th Edition of International conference on computer vision
ShulagnaSarkar2
 
Photoshop Tutorial for Beginners (2024 Edition)
Photoshop Tutorial for Beginners (2024 Edition)Photoshop Tutorial for Beginners (2024 Edition)
Photoshop Tutorial for Beginners (2024 Edition)
alowpalsadig
 
Penify - Let AI do the Documentation, you write the Code.
Penify - Let AI do the Documentation, you write the Code.Penify - Let AI do the Documentation, you write the Code.
Penify - Let AI do the Documentation, you write the Code.
KrishnaveniMohan1
 

Recently uploaded (20)

42 Ways to Generate Real Estate Leads - Sellxpert
42 Ways to Generate Real Estate Leads - Sellxpert42 Ways to Generate Real Estate Leads - Sellxpert
42 Ways to Generate Real Estate Leads - Sellxpert
 
Orca: Nocode Graphical Editor for Container Orchestration
Orca: Nocode Graphical Editor for Container OrchestrationOrca: Nocode Graphical Editor for Container Orchestration
Orca: Nocode Graphical Editor for Container Orchestration
 
Boost Your Savings with These Money Management Apps
Boost Your Savings with These Money Management AppsBoost Your Savings with These Money Management Apps
Boost Your Savings with These Money Management Apps
 
Superpower Your Apache Kafka Applications Development with Complementary Open...
Superpower Your Apache Kafka Applications Development with Complementary Open...Superpower Your Apache Kafka Applications Development with Complementary Open...
Superpower Your Apache Kafka Applications Development with Complementary Open...
 
DECODING JAVA THREAD DUMPS: MASTER THE ART OF ANALYSIS
DECODING JAVA THREAD DUMPS: MASTER THE ART OF ANALYSISDECODING JAVA THREAD DUMPS: MASTER THE ART OF ANALYSIS
DECODING JAVA THREAD DUMPS: MASTER THE ART OF ANALYSIS
 
ACE - Team 24 Wrapup event at ahmedabad.
ACE - Team 24 Wrapup event at ahmedabad.ACE - Team 24 Wrapup event at ahmedabad.
ACE - Team 24 Wrapup event at ahmedabad.
 
bgiolcb
bgiolcbbgiolcb
bgiolcb
 
如何办理(hull学位证书)英国赫尔大学毕业证硕士文凭原版一模一样
如何办理(hull学位证书)英国赫尔大学毕业证硕士文凭原版一模一样如何办理(hull学位证书)英国赫尔大学毕业证硕士文凭原版一模一样
如何办理(hull学位证书)英国赫尔大学毕业证硕士文凭原版一模一样
 
Computer Science & Engineering VI Sem- New Syllabus.pdf
Computer Science & Engineering VI Sem- New Syllabus.pdfComputer Science & Engineering VI Sem- New Syllabus.pdf
Computer Science & Engineering VI Sem- New Syllabus.pdf
 
Beginner's Guide to Observability@Devoxx PL 2024
Beginner's  Guide to Observability@Devoxx PL 2024Beginner's  Guide to Observability@Devoxx PL 2024
Beginner's Guide to Observability@Devoxx PL 2024
 
Enhanced Screen Flows UI/UX using SLDS with Tom Kitt
Enhanced Screen Flows UI/UX using SLDS with Tom KittEnhanced Screen Flows UI/UX using SLDS with Tom Kitt
Enhanced Screen Flows UI/UX using SLDS with Tom Kitt
 
Software Test Automation - A Comprehensive Guide on Automated Testing.pdf
Software Test Automation - A Comprehensive Guide on Automated Testing.pdfSoftware Test Automation - A Comprehensive Guide on Automated Testing.pdf
Software Test Automation - A Comprehensive Guide on Automated Testing.pdf
 
Upturn India Technologies - Web development company in Nashik
Upturn India Technologies - Web development company in NashikUpturn India Technologies - Web development company in Nashik
Upturn India Technologies - Web development company in Nashik
 
What’s New in VictoriaLogs - Q2 2024 Update
What’s New in VictoriaLogs - Q2 2024 UpdateWhat’s New in VictoriaLogs - Q2 2024 Update
What’s New in VictoriaLogs - Q2 2024 Update
 
TheFutureIsDynamic-BoxLang-CFCamp2024.pdf
TheFutureIsDynamic-BoxLang-CFCamp2024.pdfTheFutureIsDynamic-BoxLang-CFCamp2024.pdf
TheFutureIsDynamic-BoxLang-CFCamp2024.pdf
 
Stork Product Overview: An AI-Powered Autonomous Delivery Fleet
Stork Product Overview: An AI-Powered Autonomous Delivery FleetStork Product Overview: An AI-Powered Autonomous Delivery Fleet
Stork Product Overview: An AI-Powered Autonomous Delivery Fleet
 
Call Girls Bangalore🔥7023059433🔥Best Profile Escorts in Bangalore Available 24/7
Call Girls Bangalore🔥7023059433🔥Best Profile Escorts in Bangalore Available 24/7Call Girls Bangalore🔥7023059433🔥Best Profile Escorts in Bangalore Available 24/7
Call Girls Bangalore🔥7023059433🔥Best Profile Escorts in Bangalore Available 24/7
 
14 th Edition of International conference on computer vision
14 th Edition of International conference on computer vision14 th Edition of International conference on computer vision
14 th Edition of International conference on computer vision
 
Photoshop Tutorial for Beginners (2024 Edition)
Photoshop Tutorial for Beginners (2024 Edition)Photoshop Tutorial for Beginners (2024 Edition)
Photoshop Tutorial for Beginners (2024 Edition)
 
Penify - Let AI do the Documentation, you write the Code.
Penify - Let AI do the Documentation, you write the Code.Penify - Let AI do the Documentation, you write the Code.
Penify - Let AI do the Documentation, you write the Code.
 

Q&A with Confluent Experts: Navigating Networking in Confluent Cloud

  • 1. Thanks for joining! We’ll get started soon! Technical Enablement Session
  • 4. @yourtwitterhandle | developer.confluent.io Our Partner Technical Enablement offering Scheduled sessions On-demand Join us for these live sessions where our experts will guide you through sessions of different level and will be available to answer your questions. Some examples of sessions are below: • Confluent 101: for new starters • Hybrid Cloud Workshop: learn by doing • Path to Production series , Confluent Cloud workshops series • Product Updates Learn the basics with a guided experience, at your own pace with our learning paths on-demand. You will also find an always growing repository of more advanced presentations to dig-deeper. Some examples are below: • Aware/Novice/Competent Learning paths • Confluent Use Cases • Positioning Confluent Value • Confluent Cloud Networking • … and many more AskTheExpert we’ll offer a channel dedicated to streaming questions • Build CoE inside partners by getting people with similar interest together • Connect with opportunities and discover trends at focus partners • Build a Technical Community • Q&A • Tech Talk
  • 5. @yourtwitterhandle | developer.confluent.io What are the best practices to debug client applications (producers/consumers in general but also Kafka Streams applications)?
  • 7. March 19-20, 2024 ExCeL London #kafkasummit cnfl.io/KSL2024
  • 8. March 19-20, 2024 ExCeL London REGISTER NOW
  • 10. @yourtwitterhandle | developer.confluent.io On the board for today Confluent Cloud Networking Overview Best Practises for Private Networking Networking for Kafka Connect Ask me anything networking!
  • 11. @yourtwitterhandle | developer.confluent.io Confluent Cloud Networking - Options Public Endpoints What we lead with, the classic SaaS model. Pros: • Easy, Short Time to Code, Flexible Connectivity • Confluent + CSP runs all infra • Consistent across CSPs Cons: • Might not meet all regulatory environments, we ask why, always and compare to other services. • Might not meet all regulatory environments, we
  • 12. @yourtwitterhandle | developer.confluent.io Confluent Cloud Networking - Options Private Link Primary Private Networking Option Pros: • Very agreeable to regulatory security posture • Strategic private networking option for both Confluent and CSPs Cons: • Its Private, requires additional networking; connectivity, routing, security, DNS…. all managed by the customer, drives OPEX/CAPEX • External access challenges • CSP specific caveats/limits are inherited
  • 13. @yourtwitterhandle | developer.confluent.io Confluent Cloud Networking - Options Peering Legacy Private Networking Pros: • Easy starting point for Private Networking Cons: • Its Private, non-Transitive & requires additional networking • Confluent is part of customer network, security concerns • External access challenges • CSP specific caveats/limits are inherited
  • 14. @yourtwitterhandle | developer.confluent.io Confluent Cloud Networking - Options Transit Gateway (AWS Only) Large Scale Private Networking Pros: • Scales for regional, global and cross CSP environments. Cons: • Its Private, requires additional networking; connectivity, routing, security…. all managed by the customer, drives OPEX/CAPEX • Confluent is part of customer network, security concerns • External access challenges • AWS specific
  • 15. Best Practises for Private Networking Go-to Architecture when Public Endpoints are not accepted
  • 16. FW FW Peering Hub VNet DMZ & Landing Zone VNet Private Link Endpoint(s) Private Link Services Private Zone(s) for PL Endpoints Confluent Azure Tenant Customer Azure Tenant FW FW Peering Peerings Hub VNet DMZ VNet Private Link Endpoint(s) Private Link Service Private Zone(s) for PL Endpoints Confluent Azure Tenant Customer Azure Tenant Kafka Connect LandingZone VNet Connect VNet Kafka Connect Outbound Private Link For Connect DB Outbound Private Link For Connect DB Private Networking Best Practices - Private Link Architecture
  • 17. Azure Use Case: Hub-n-Spoke Reference Architecture
  • 18. Private Networking Best Practices - Azure Hub and Spoke -Peering
  • 19. Private Networking Best Practices - Azure Hub and Spoke - Private Link
  • 20. FW FW Peering Peering Hub VNet DMZ VNet Confluent Azure Tenant /16 Customer Azure Tenant Customer Azure Tenant UDR UDR Public DNS (Confluent Managed)
  • 21. Private Networking for Managed Connectors
  • 22. Copyright 2020, Confluent, Inc. All rights reserved. This document may not be reproduced in any manner without the express written permission of Confluent, Inc. The plumbing, the foundational requirement. ● Internet ● Peering ● Transit Gateway ● Private Link ● OnPremise, Remote Networks, Multi-Cloud Friction - Connectivity Network Connectivity DNS Connector Configuration
  • 23. Copyright 2020, Confluent, Inc. All rights reserved. This document may not be reproduced in any manner without the express written permission of Confluent, Inc. If FQDNs are required and we can’t resolve, we are dead in the water. ● Public DNS ○ Public record can have a private or a public IP. ● Private DNS - Hosted Zone Requirement ● Confluent Cloud resolves DNS in Confluent VPC/VNet, private DNS zones not exposed as configurable to customers. Friction - DNS 23 Network Connectivity DNS Connector Configuration
  • 24. Copyright 2020, Confluent, Inc. All rights reserved. This document may not be reproduced in any manner without the express written permission of Confluent, Inc. ● Connector Config Options are Limited ○ Limits the use of custom endpoints ■ For example, you supply only the bucket name and the standard public endpoint is used ● storage.googleapis.com not a custom endpoint SERVICE-ENDPOINT.p.googleapis.com Friction - Connector Configuration 24 Network Connectivity DNS Connector Configuration
  • 25. Enhancements in Flight - DNS Peering for TGW/Peered Clusters Q1 - AWS/Azure Q2 - GCP 25
  • 26. 2 1 4 5 3 Enhancements in Flight - DNS Peering for TGW/Peered Clusters
  • 27. FW FW Peering Hub VNet DMZ & Landing Zone VNet Private Link Endpoint(s) Private Link Services Private Zone(s) for PL Endpoints Confluent Azure Tenant Customer Azure Tenant Kafka Connect Outbound Private Link For Connect DB Enhancements in Flight - Outbound PL for Managed Connectors BYOC support beyond 2024. 1. Customer creates PrivateLink Service for their source/sink (like a DB). 2. Customer creates an endpoint in Confluent Cloud VPC/VNet. 3. Customer creates a DNS record in Confluent Cloud to proper resolve. Creates a clean secure solution for Managed Connectors in PL Environments (Peeering/TGW late 2024) Enables Private & Public outbound access for Managed Connectors