SlideShare a Scribd company logo

Anypoint VPC, VPN and DLB Architecture

Download as PPTX, PDF
A
Alexandra N. Martinez

Join us for this meetup where Jitendra Bafna (Jacky) will be talking about Anypoint VPC, VPN and DLB Architecture. He will mention the best practices, some use cases, and a live demo!

Education
1 of 74
Nov 3, 2020 Toronto MuleSoft Meetup Group Anypoint VPC, VPN and DLB Architecture
3 ● Introductions ● Anypoint VPC, VPN and DLB Architecture ● What’s next? ● Next event Agenda #MuleSoftMeetups
4 Organizers #MuleSoftMeetups Alexandra Martinez Senior MuleSoft Developer at Bits In Glass MuleSoft Ambassadress Founder and Content Creator at ProstDev 3+ years using MuleSoft 5x MuleSoft certified Mahesh Pujari MuleSoft Developer at Mackenzie Investments Around 6 years of integration expertise Pravallika Nagaraja Senior MuleSoft Developer at Roche Overall 10 years of experience developing integration solutions using MuleSoft and other integration technologies 3+ years using MuleSoft 4x MuleSoft certified Content Creator at ProstDev Kishore Reddy Paluri Senior Consultant at MuleSoft Certified Solutions Architect 14+ years of experience building Integration, ESB, SOA, API, Security and Middleware solutions on Cloud, On-Prem, and Hybrid environments
Jitendra Bafna Senior Solution Architect at Capgemini Anypoint VPC, VPN and DLB Architecture
6 ● Introductions ● What is Anypoint VPC, VPN and DLB ● DLB V/S SLB ● Live Demonstration on Anypoint VPC, VPN and DLB ● Networking time Agenda
What is Anypoint VPC?
8 VPC stands for Virtual Private Cloud and it allows you to create logical or isolated networks in the cloud where you can deploy or run the resources securely. MuleSoft cloudhub is a multi-tenant integration platform as a service. Anypoint VPC allows you to create an isolated network where you can host the workers or mule applications. Anypoint VPC allows you to extend your corporate network and allows cloudhub workers to connect resources behind the firewalls. VPC allows to connect cloudhub workers to on premise datacenter using below techniques.  Secure VPN Tunnel (IPSec Tunneling)  Private AWS using VPC Peering.  AWS Direct Connect. What is Anypoint VPC?
9 Advantages of Anypoint VPC  Create a secure virtual network within CloudHub.  Connect CloudHub to assets behind the firewall.  Deploy mule runtime securely.  Connect Cloudhub to any public cloud or on premise data center securely. Anypoint VPC Characteristics  Multiple VPC can be created in the same region.  Always create VPC in the same region or near to your datacenter or AWS region (VPC peering).  All non prod environments like dev, test, sit can be mapped to non prod vpc and production environment to prod vpc.  Multiple environments can be mapped to the same VPC’s.  Always create the VPC in the parent business group and share with sub business groups. Anypoint VPC
10 Anypoint VPC
11  You have four environments dev, test, sit and prod.  Application on dev and sit must run on 1 Worker.  Application on the test must be run on 2 Workers.  Application on prod must run on 2 Workers.  Total Application = 100 (Near Future)  The organization will have 2 VPC’s, one for PROD and another for NON PROD. The problem statement is that we need to decide the minimum CIDR block will be needed for PROD and NON-PROD VPC. VPC Sizing Requirements
12 VPC Sizing Solution There will be 2 IPs reserved for each VPC for infrastructure. For Production VPC, we require around 302 IPs and it will be provided by a subnet mask of /23 (e.g. 192.168.0.0/23). This subnet mask will provide 512 IPs. For Non-Production VPC, we require around 602 IPs and it will be provided by a subnet mask of /22 (e.g. 192.168.0.0/22). This subnet mask will provide 1024 IPs.
13  Always create a VPC in the same region or close to your datacenter or AWS region (VPC Peering).  Always choose a higher or appropriate range of CIDR masks because the CIDR mask cannot be updated once VPC is created. To change the CIDR mask, we need to re-create VPC and it requires downtime for your applications.  Always choose a CIDR mask which doesn't overlap with your datacenter IP addresses or subnets.  Always create a separate VPC for production and non production environments.  Always create VPC in parent business groups and share with child business groups. VPC Sizing Best Practices
14 VPC Firewall Rules
What is Anypoint DLB?
16  Dedicated Load Balancer is optional components in Anypoint Platform which allows to route external HTTP/HTTPs traffic to multiple applications deployed to cloudhub within VPC.  Each Dedicated Load Balancer has a DNS A record lb-name.lb.anypointdns.net that resolves to the two public IP addresses of the two instances. What is Dedicated Load Balancer?
17 Dedicated Load Balancer
18 SLB V/S DLB Shared Load Balancer  Shared Load Balancer available in all environments by default.  Shared Load Balancer provided basic functionality like TCP load balancing.  Shared Load Balancer doesn’t allow you to configure custom SSL certificates and proxy rules.  Shared Load Balancers have lower rate limits and it is different for each region.  Application deployed to Cloudhub exceeds the rate limit for shared load balancers, it will return 503 - Service Unavailable. Dedicated Load Balancer  One of the limitations of SLB is the lower rate limit. To avoid that issue, you can use a dedicated load balancer.  All applications can be hosted under a single domain.  Custom SSL certificates can be configured on DLB and optionally two-way authentication can be enforced.  Handle load balancing among the different CloudHub workers that run your application.
19 Dedicated Load Balancer HTTP Inbound Mode  Off: Causes the load balancer to silently drop the request.  On: Accepts the inbound request on the default SSL endpoint using the HTTP protocol.  Redirect: Redirects the request to the same URL using the HTTPS protocol. Other Configurations  Disable Static IPs specify to use dynamic IPs, which do not persist when the DLB restarts.  Keep URL encoding specifies the DLB passes only the %20 and %23 characters as is. If you deselect this option, the DLB decodes the encoded part of the request URI before passing it to the CloudHub worker.  Support TLS 1.0 specifies to support TLS 1.0 between the client and the DLB.  Upstream TLS 1.2 specifies to force TLS 1.2 between the DLB and the upstream CloudHub worker.
20 Dedicated Load Balancer Certificates Configure SSL certificate to enable HTTPS (Public Key and Private Key). For two way authentication, you can configure Client Certificate and that is optional. The dedicated load balancer must be associated with at least a pair of one certificates. Generally, we configure the certificates on Dedicated Load Balancer from CA authority. For testing purposes, you can use self signed certificates. openssl req -newkey rsa:2048 -nodes -keyout test-private.pem -x509 -days 3000 –out test-public-crt.pem Above command will generate Private Key and Public Key that can be configured on dedicated load balancer.
21 Dedicated Load Balancer Certificates Alternatively, you can generate certificates by passing .cfg file in openssl command. You can add below content in .cfg file and pass to openssl command. [ req ] default_bits = 2048 distinguished_name = req_distinguished_name req_extensions = req_ext prompt = no [ req_distinguished_name ] countryName = US stateOrProvinceName = Arizona localityName = Phoenix organizationName = Test commonName = example.com [ req_ext ] subjectAltName = @alt_names [alt_names] DNS.1 = api-dev.example.com DNS.2 = api-qa.example.com openssl req -newkey rsa:2048 -nodes -keyout test-private.pem -x509 -days 3000 –out test-public-crt.pem -config test-com.cfg
22 Dedicated Load Balancer Certificates Creating wildcard Certificates You can even create the wild card certificate to support subdomain requests. [ req ] default_bits = 2048 distinguished_name = req_distinguished_name req_extensions = req_ext prompt = no [ req_distinguished_name ] countryName = US stateOrProvinceName = Arizona localityName = Phoenix organizationName = Test commonName = *.example.com
23 Dedicated Load Balancer Mapping Rules Mapping rules are used on dedicated load balancers to translate input URI to call applications deployed on CloudHub. A pattern is a string that defines a template for matching an input text. Whatever value is placed within curly brackets ({ }) is treated as a variable. Variable names can contain only lowercase letters (a-z) and no other characters, including slashes.
24 Dedicated Load Balancer Mapping Rules Mapping rules are used on dedicated load balancers to translate input URI to call applications deployed on CloudHub. A pattern is a string that defines a template for matching an input text. Whatever value is placed within curly brackets ({ }) is treated as a variable. Variable names can contain only lowercase letters (a-z) and no other characters, including slashes.
25 Dedicated Load Balancer Mapping Rules
26 Dedicated Load Balancer Whitelisted CIDR’s To allow dedicated load balancers must be used by a set of IP addresses or single IP addresses, you need to add those IP addresses in form of CIDR notations (e.g. 192.168.1.0/24). By default CIDR mask is 0.0.0.0/0 which means all IP addresses are allowed to access dedicated load balancer.
Anypoint VPN
28 What is Anypoint VPN? VPN stands for Virtual Private Network and Anypoint VPN creates a secure connection between CloudHub and On Premise data centers.  Anypoint VPN supports site-to-site internet protocol security (IPSec) connections.  Each Anypoint VPN connection consists of two tunnels that enable you to connect to a single public IP address at a remote location. To connect additional remote locations,create another VPN.  The physical or software appliances, called VPN endpoints, are terminators on your side of connection.  The MuleSoft side of the connection is an implementation of a virtual private gateway (VGW). The MuleSoft VGW is associated with a single MuleSoft VPC but can support up to 10 VPN connections.  The MuleSoft VGW implementation supports a maximum throughput of 1.25 Gbps.
29 Anypoint VPN Types of VPN Routing Anypoint VPN supports dynamic or static routing for VPN connections.  Dynamic routing - Your device uses Border Gateway Protocol (BGP) to advertise routes to Anypoint VPN. Use BGP routing if your device supports this protocol.  Static routing - Requires you to specify the routes (subnets) in your network that are accessible through Anypoint VPN.
30 Anypoint VPN IP Sec Tunneling Anypoint VPN IPSec Tunneling VPN IPSec tunnel is set of protocols or standards to establish the connection with on premise datacenter. IPSec tunnel is applied at the IP layer and it allows to connect the entire network instead of a single device.
31 VPC Peering VPC peering basically connects two VPCs. In this case, it pairs your private Amazon VPC directly to your Anypoint VPC. This enables you to route traffic between the two VPCs so they can communicate as though they are in the same network.
32 Anypoint VPN Custom Configuration CIDR Block not supported for Custom VPN configuration  169.254.0.0/30  169.254.1.0/30  169.254.2.0/30  169.254.3.0/30  169.254.4.0/30  169.254.5.0/30  169.254.169.252/30
33 Anypoint VPN Status
34 Accessing Application within VPC For accessing applications within VPC, you can use below urls.  Port 8091: - http://mule-worker-internal-<appname>.region.cloudhub.io:8091/  Port 8092: - https://mule-worker-internal-<appname>.region.cloudhub.io:8092/ Creating AnyPoint VPC, VPN and DLB is the self service but you can request MuleSoft to create VPN IPSec tunneling, VPC Peering or AWS Direct Connect by filling AnyPoint VPC discovery template.
35 Accessing Application within VPC Important Points  Once a VPC is created, to modify the name, CIDR mask, you need to delete and recreate the VPC which may lead to downtime of your applications.  Always select the higher range of the CIDR mask. So you have enough IP addresses available. VPC Use Cases  To run the integration or api's within secure networks or private subnets, you can deploy api withithe VPC. For example, you have system api's that are accessing backend databases and those api's must be deployed within a secure or private network in cloudhub, so it is accessible by the applications deployed within the same VPC.  For creating the dedicated load balancer, we need to create a VPC.  For creating VPN IPSec tunneling, AWS Direct Connect or VPC peering, we need to create a VPC. There are many other use cases where we have requirements of VPC.
36 Accessing Application Over Public Internet deployed within VPC There are various ways that you can api's over the public internet when an application is deployed within the VPC. Deploy the application on port 8081 (http.port) or 8082 (https.port), as per firewall rule these ports are accessible anywhere. So this apis can be access using http://<appname>.region.cloudhub.io/ or https://<appname>.region.cloudhub.io/ In case an application deployed on port 8091 (http.private.port) or 8092 (https.private.port), as per above firewall rule these ports are accessible within VPC. So this apis can be accessible on our public internet using a dedicated load balancer if your IP Address is whitelisted in DLB configurations.
37 Accessing Application via SLB deployed within VPC
38 Accessing Application via DLB deployed within VPC
39 Anypoint VPC, VPN and DLB Architecture
Live Demonstration
41 Demo 1: Setting Up Anypoint VPC dsffd Anypoint Platform Runtime Manager 10.0.1.0/24 us-e1
42 Demo 2: Deploying the Application on 8081 dsffd Anypoint Platform Runtime Manager 10.0.1.0/24 vpc-8081 us-e1 External Consumer http://vpc-8081.us-e1.cloudhub.io/test http://mule-worker-vpc-8081.us- e1.cloudhub.io:8081/test To find internal or private IP Address of Application ping mule-worker-internal-vpc-8081.us-e1.cloudhub.io To find public IP Address of Application ping mule-worker-vpc-8081.us-e1.cloudhub.io
43 Demo 3: Deploying the Application on 8091 dsffd Anypoint Platform Runtime Manager 10.0.1.0/24 vpc-8091 us-e1 External Consumer http://vpc-8091.us-e1.cloudhub.io/test http://mule-worker-vpc-8091.us- e1.cloudhub.io:8091/test To find internal or private IP Address of Application ping mule-worker-internal-vpc-8091.us-e1.cloudhub.io To find public IP Address of Application ping mule-worker-vpc-8091.us-e1.cloudhub.io Note: - Application deployed to 8091 is not directly accessible publicly as per firewall rule defined on Anypoint VPC and it can be access within VPC using url http://mule-worker-internal-vpc-8091.us-e1.cloudhub.io:8091/test
44 Demo 4: Accessing Application within VPC dsffd Anypoint Platform Runtime Manager 10.0.1.0/24 vpc-8091 us-e1 External Consumer http://vpc-8081.us-e1.cloudhub.io/test http://mule-worker-vpc-8081.us- e1.cloudhub.io:8081/test Note: - Application deployed on 8081 can access application deployed to port 8091 as both are in same VPC. Hence external consumer can send request on application deployed to port 8081 and 8081 can access application deployed on port 8091 vpc-8081 http://mule-worker-internal-vpc- 8091.us-e1.cloudhub.io:8091/test
45 Demo 5: Setting Up Anypoint DLB dsffd Anypoint Platform Runtime Manager 10.0.1.0/24 us-e1 Worker 1 Worker 2 Dedicated Load Balancer External Consumer http://lbname.lbanypointdns.net/<appName>/
46 Demo 6: Accessing Application Via DLB deployed on 8091 dsffd Anypoint Platform Runtime Manager 10.0.1.0/24 us-e1 Worker 1 Worker 2 Dedicated Load Balancer External Consumer http://lbname.lbanypointdns.net/<appName>/ vpc-8091 http://mule-worker-internal-vpc-8091.us-e1.cloudhub.io:8091/test
47 Demo 4: Accessing Application within VPC dsffd Anypoint Platform Runtime Manager 10.0.1.0/24 vpc-8091 us-e1 External Consumer http://vpc-8081.us-e1.cloudhub.io/test http://mule-worker-vpc-8081.us- e1.cloudhub.io:8081/test Note: - Application deployed on 8081 can access application deployed to port 8091 as both are in same VPC. Hence external consumer can send request on application deployed to port 8081 and 8081 can access application deployed on port 8091 vpc-8081 http://mule-worker-internal-vpc- 8091.us-e1.cloudhub.io:8091/test
48 Demo 7: Setting Up Anypoint VPN dsffd Anypoint Platform Runtime Manager 10.0.1.0/24 us-e1 Google Cloud Platform VPN IPSec Tunneling (BGP or Dynamic Routing)
49 References  https://docs.mulesoft.com/runtime-manager/vpc-architecture-concept  https://docs.mulesoft.com/runtime-manager/virtual-private-cloud  https://docs.mulesoft.com/runtime-manager/vpn-about  https://docs.mulesoft.com/runtime-manager/dedicated-load-balancer-tutorial  https://dzone.com/articles/what-is-cidr-classless-inter-domain-routing-in-mul  https://dzone.com/articles/implementing-mapping-rules-with-mulesoft-dedicated  https://youtu.be/z-xGhij5MME  https://drive.google.com/drive/folders/1BOfvz0zB5sR_JUCD0kIZDcEduBsR8dyp  https://www.youtube.com/playlist?list=PL5GwZHHgKcuDQ6vWarTLgVbrPEQipzbOM
Quiz time!
How does the quiz work? 1. Organizers show the question. 2. Organizers read the question out loud. 3. Organizers will write in the chat the following message: “Answers from question n start here” after reading the question. 4. Only answers that appear after this message will be taken into account. 5. A final raffle, with the people that answered the quiz correctly, will take place after the quiz, where the 3 lucky winners will receive a training or certification voucher. 6. The 3 winners will send their email in the chat so we can contact them for further steps. 51 #MuleSoftMeetups
Rules: 1. First person to give the correct answer in the chat will enter the final raffle. 2. If you already answered one question correctly, please stop answering and give a chance to the rest. You don’t receive “extra points” for answering correctly more than once. 3. If the answer is sent before the “Answers from question n start here” message appears in the chat, it won’t be taken into account. 52 #MuleSoftMeetups
1. What protocol does “VPN Dynamic Routing” use? 53 #MuleSoftMeetups
1. What protocol does “VPN Dynamic Routing” use? A: BGP 54 #MuleSoftMeetups
2. What is the default private port for accessing applications within VPC over HTTP protocol? 55 #MuleSoftMeetups
2. What is the default private port for accessing applications within VPC over HTTP protocol? A: 8091 56 #MuleSoftMeetups
3. What is the correct URL for accessing applications within VPC in US east 1 region over HTTP? a) http://mule-worker-external.us- e1.cloudhub.io:8091/ b) http://mule-worker-external.us- e1.cloudhub.io:8092/ c) http://mule-worker-internal.us-e1.cloudhub.io:8091/57 #MuleSoftMeetups
3. What is the correct URL for accessing applications within VPC in US east 1 region over HTTP? A: C http://mule-worker-internal.us-e1.cloudhub.io:8091 58 #MuleSoftMeetups
4. What is the correct way of connecting AWS VPC if CloudHub VPC and AWS VPC are in the same region for accessing backend services or databases? 59 #MuleSoftMeetups VPN IPSec Tunneling AWS Direct Connect VPC Peering None
4. What is the correct way of connecting AWS VPC if CloudHub VPC and AWS VPC are in the same region for accessing backend services or databases? A: VPC Peering 60 #MuleSoftMeetups
5. What does CIDR mean? 61 #MuleSoftMeetups
5. What does CIDR mean? A: Classless Inter-Domain Routing 62 #MuleSoftMeetups
6. Default Whitelisted CIDRs With Anypoint Dedicated Load Balancer? 63 #MuleSoftMeetups 0.0.0.0/0 192.168.0.1/24 0.0.0.1/24 10.1.1.0/16
6. Default Whitelisted CIDRs With Anypoint Dedicated Load Balancer? A: 0.0.0.0/0 64 #MuleSoftMeetups
7. How many IP addresses are available in subnet mask 0/22? 65 #MuleSoftMeetups
7. How many IP addresses are available in subnet mask 0/22? A: 1024 66 #MuleSoftMeetups
8. What is the subdomain in this DNS: api-dev.example.com? 67 #MuleSoftMeetups
8. What is the subdomain in this DNS: api-dev.example.com? A: api-dev 68 #MuleSoftMeetups
9. What component cannot be configured at Dedicated Load Balancer? 69 #MuleSoftMeetups Whitelisted CIDRs Mapping Rules SSL Certificates Firewall Rules
9. What component cannot be configured at Dedicated Load Balancer? A: Firewall Rules 70 #MuleSoftMeetups
10. What does VPN Tunnel Status Available (UP/DOWN or UP/UP) mean? a) VPN connection is created and actions pending in background. b) VPN is successfully created but the remote side is not configured. c) VPN is successfully created and remote connection is established in Active/Active mode or Active/Passive mode. d) VPN connection is not created. You need to delete and try again. 71 #MuleSoftMeetups
10. What does VPN Tunnel Status Available (UP/DOWN or UP/UP) mean? A: C VPN is successfully created and remote connection is established in Active/Active mode or Active/Passive mode 72 #MuleSoftMeetups
73 ● Share: ○ Tweet using the hashtag #MuleSoftMeetups ○ Invite your network to join: https://meetups.mulesoft.com/toronto/ ● Feedback: ○ Fill out the survey feedback and suggest topics for upcoming events ○ Contact MuleSoft at meetups@mulesoft.com for ways to improve the program What’s next? #MuleSoftMeetups
75 ● You choose! ● Speaker: ○ This can be you  ● Earn a certification or training voucher by being a speaker! Next event YOU! #MuleSoftMeetups
Thank you

Recommended

MuleSoft Anypoint Platform and Three Tier Architecture
MuleSoft Anypoint Platform and Three Tier ArchitectureMuleSoft Anypoint Platform and Three Tier Architecture
MuleSoft Anypoint Platform and Three Tier ArchitectureHarish Kumar
 
MuleSoft Sizing Guidelines - VirtualMuleys
MuleSoft Sizing Guidelines - VirtualMuleysMuleSoft Sizing Guidelines - VirtualMuleys
MuleSoft Sizing Guidelines - VirtualMuleysAngel Alberici
 
Cloudhub 2.0
Cloudhub 2.0Cloudhub 2.0
Cloudhub 2.0Christopher Co
 
Managing APIs with MuleSoft
Managing APIs with MuleSoftManaging APIs with MuleSoft
Managing APIs with MuleSoftGuilherme Pereira Silva
 
What’s Mule 4.3? How Does Anytime RTF Help? Our insights explain.
What’s Mule 4.3? How Does Anytime RTF Help? Our insights explain. What’s Mule 4.3? How Does Anytime RTF Help? Our insights explain.
What’s Mule 4.3? How Does Anytime RTF Help? Our insights explain. Kellton Tech Solutions Ltd
 
Mulesoft corporate template final
Mulesoft corporate template final Mulesoft corporate template final
Mulesoft corporate template final Bui Kiet
 
Cloud Native Application
Cloud Native ApplicationCloud Native Application
Cloud Native ApplicationVMUG IT
 
Mule Runtime: Performance Tuning
Mule Runtime: Performance Tuning Mule Runtime: Performance Tuning
Mule Runtime: Performance Tuning MuleSoft
 

Recommended

MuleSoft Anypoint Platform and Three Tier Architecture
MuleSoft Anypoint Platform and Three Tier ArchitectureMuleSoft Anypoint Platform and Three Tier Architecture
MuleSoft Anypoint Platform and Three Tier ArchitectureHarish Kumar
 
MuleSoft Sizing Guidelines - VirtualMuleys
MuleSoft Sizing Guidelines - VirtualMuleysMuleSoft Sizing Guidelines - VirtualMuleys
MuleSoft Sizing Guidelines - VirtualMuleysAngel Alberici
 
Cloudhub 2.0
Cloudhub 2.0Cloudhub 2.0
Cloudhub 2.0Christopher Co
 
Managing APIs with MuleSoft
Managing APIs with MuleSoftManaging APIs with MuleSoft
Managing APIs with MuleSoftGuilherme Pereira Silva
 
What’s Mule 4.3? How Does Anytime RTF Help? Our insights explain.
What’s Mule 4.3? How Does Anytime RTF Help? Our insights explain. What’s Mule 4.3? How Does Anytime RTF Help? Our insights explain.
What’s Mule 4.3? How Does Anytime RTF Help? Our insights explain. Kellton Tech Solutions Ltd
 
Mulesoft corporate template final
Mulesoft corporate template final Mulesoft corporate template final
Mulesoft corporate template final Bui Kiet
 
Cloud Native Application
Cloud Native ApplicationCloud Native Application
Cloud Native ApplicationVMUG IT
 
Mule Runtime: Performance Tuning
Mule Runtime: Performance Tuning Mule Runtime: Performance Tuning
Mule Runtime: Performance Tuning MuleSoft
 
Virtual meetup - Exploring the Runtime Fabric deployment model
Virtual meetup - Exploring the Runtime Fabric deployment modelVirtual meetup - Exploring the Runtime Fabric deployment model
Virtual meetup - Exploring the Runtime Fabric deployment modelJimmy Attia
 
OpenStack vs VMware vCloud
OpenStack vs VMware vCloudOpenStack vs VMware vCloud
OpenStack vs VMware vCloudRoozbeh Shafiee
 
MuleSoft Meetup Roma - CloudHub Networking Stategies
MuleSoft Meetup Roma - CloudHub Networking StategiesMuleSoft Meetup Roma - CloudHub Networking Stategies
MuleSoft Meetup Roma - CloudHub Networking StategiesAlfonso Martino
 
MULE-Api led connectivity
MULE-Api led connectivityMULE-Api led connectivity
MULE-Api led connectivityD.Rajesh Kumar
 
Anypoint platform architecture and components
Anypoint platform architecture and componentsAnypoint platform architecture and components
Anypoint platform architecture and componentsD.Rajesh Kumar
 
MuleSoft Deployment Strategies (RTF vs Hybrid vs CloudHub)
MuleSoft Deployment Strategies (RTF vs Hybrid vs CloudHub)MuleSoft Deployment Strategies (RTF vs Hybrid vs CloudHub)
MuleSoft Deployment Strategies (RTF vs Hybrid vs CloudHub)Prashanth Kurimella
 
Mulesoft ppt
Mulesoft pptMulesoft ppt
Mulesoft pptAchyuta Lakshmi
 
Manchester MuleSoft Meetup #6 - Runtime Fabric with Mulesoft
Manchester MuleSoft Meetup #6 - Runtime Fabric with Mulesoft Manchester MuleSoft Meetup #6 - Runtime Fabric with Mulesoft
Manchester MuleSoft Meetup #6 - Runtime Fabric with Mulesoft Akshata Sawant
 
MuleSoft Surat Meetup#41 - Universal API Management, Anypoint Flex Gateway an...
MuleSoft Surat Meetup#41 - Universal API Management, Anypoint Flex Gateway an...MuleSoft Surat Meetup#41 - Universal API Management, Anypoint Flex Gateway an...
MuleSoft Surat Meetup#41 - Universal API Management, Anypoint Flex Gateway an...Jitendra Bafna
 
From Zero to Docker
From Zero to DockerFrom Zero to Docker
From Zero to DockerAbhishek Verma
 
MuleSoft's Approach to Driving Customer Outcomes
MuleSoft's Approach to Driving Customer Outcomes MuleSoft's Approach to Driving Customer Outcomes
MuleSoft's Approach to Driving Customer Outcomes MuleSoft
 
Microservices on Anypoint Platform
Microservices on Anypoint PlatformMicroservices on Anypoint Platform
Microservices on Anypoint PlatformMuleSoft
 
Introduction to CloudHub 2.0
Introduction to CloudHub 2.0Introduction to CloudHub 2.0
Introduction to CloudHub 2.0NeerajKumar1965
 
Mulesoft Salesforce Connector - OAuth 2.0 JWT Bearer
Mulesoft Salesforce Connector - OAuth 2.0 JWT BearerMulesoft Salesforce Connector - OAuth 2.0 JWT Bearer
Mulesoft Salesforce Connector - OAuth 2.0 JWT BearerVince Soliza
 
Mulesoft Anypoint platform introduction
Mulesoft Anypoint platform introductionMulesoft Anypoint platform introduction
Mulesoft Anypoint platform introductiongijish
 
Object Store V2 Workshop
Object Store V2 WorkshopObject Store V2 Workshop
Object Store V2 WorkshopMuleSoft
 
Singapore MuleSoft Meetup - 24 Aug 2022
Singapore MuleSoft Meetup - 24 Aug 2022Singapore MuleSoft Meetup - 24 Aug 2022
Singapore MuleSoft Meetup - 24 Aug 2022Royston Lobo
 
Application Architecture: The Next Wave | MuleSoft
Application Architecture: The Next Wave | MuleSoftApplication Architecture: The Next Wave | MuleSoft
Application Architecture: The Next Wave | MuleSoftMuleSoft
 
Hashicorp Vault ppt
Hashicorp Vault pptHashicorp Vault ppt
Hashicorp Vault pptShrey Agarwal
 
IT Infrastructure Automation with Ansible
IT Infrastructure Automation with AnsibleIT Infrastructure Automation with Ansible
IT Infrastructure Automation with AnsibleDio Pratama
 
MuleSoft Surat Live Demonstration Virtual Meetup#1 - Anypoint VPC VPN and DLB
MuleSoft Surat Live Demonstration Virtual Meetup#1 - Anypoint VPC VPN and DLBMuleSoft Surat Live Demonstration Virtual Meetup#1 - Anypoint VPC VPN and DLB
MuleSoft Surat Live Demonstration Virtual Meetup#1 - Anypoint VPC VPN and DLBJitendra Bafna
 
MuleSoft Meetup Vancouver 5th Virtual Event
MuleSoft Meetup Vancouver 5th Virtual EventMuleSoft Meetup Vancouver 5th Virtual Event
MuleSoft Meetup Vancouver 5th Virtual EventVikalp Bhalia
 

More Related Content

What's hot

Virtual meetup - Exploring the Runtime Fabric deployment model
Virtual meetup - Exploring the Runtime Fabric deployment modelVirtual meetup - Exploring the Runtime Fabric deployment model
Virtual meetup - Exploring the Runtime Fabric deployment modelJimmy Attia
 
OpenStack vs VMware vCloud
OpenStack vs VMware vCloudOpenStack vs VMware vCloud
OpenStack vs VMware vCloudRoozbeh Shafiee
 
MuleSoft Meetup Roma - CloudHub Networking Stategies
MuleSoft Meetup Roma - CloudHub Networking StategiesMuleSoft Meetup Roma - CloudHub Networking Stategies
MuleSoft Meetup Roma - CloudHub Networking StategiesAlfonso Martino
 
MULE-Api led connectivity
MULE-Api led connectivityMULE-Api led connectivity
MULE-Api led connectivityD.Rajesh Kumar
 
Anypoint platform architecture and components
Anypoint platform architecture and componentsAnypoint platform architecture and components
Anypoint platform architecture and componentsD.Rajesh Kumar
 
MuleSoft Deployment Strategies (RTF vs Hybrid vs CloudHub)
MuleSoft Deployment Strategies (RTF vs Hybrid vs CloudHub)MuleSoft Deployment Strategies (RTF vs Hybrid vs CloudHub)
MuleSoft Deployment Strategies (RTF vs Hybrid vs CloudHub)Prashanth Kurimella
 
Manchester MuleSoft Meetup #6 - Runtime Fabric with Mulesoft
Manchester MuleSoft Meetup #6 - Runtime Fabric with Mulesoft Manchester MuleSoft Meetup #6 - Runtime Fabric with Mulesoft
Manchester MuleSoft Meetup #6 - Runtime Fabric with Mulesoft Akshata Sawant
 
MuleSoft Surat Meetup#41 - Universal API Management, Anypoint Flex Gateway an...
MuleSoft Surat Meetup#41 - Universal API Management, Anypoint Flex Gateway an...MuleSoft Surat Meetup#41 - Universal API Management, Anypoint Flex Gateway an...
MuleSoft Surat Meetup#41 - Universal API Management, Anypoint Flex Gateway an...Jitendra Bafna
 
MuleSoft's Approach to Driving Customer Outcomes
MuleSoft's Approach to Driving Customer Outcomes MuleSoft's Approach to Driving Customer Outcomes
MuleSoft's Approach to Driving Customer Outcomes MuleSoft
 
Microservices on Anypoint Platform
Microservices on Anypoint PlatformMicroservices on Anypoint Platform
Microservices on Anypoint PlatformMuleSoft
 
Introduction to CloudHub 2.0
Introduction to CloudHub 2.0Introduction to CloudHub 2.0
Introduction to CloudHub 2.0NeerajKumar1965
 
Mulesoft Salesforce Connector - OAuth 2.0 JWT Bearer
Mulesoft Salesforce Connector - OAuth 2.0 JWT BearerMulesoft Salesforce Connector - OAuth 2.0 JWT Bearer
Mulesoft Salesforce Connector - OAuth 2.0 JWT BearerVince Soliza
 
Mulesoft Anypoint platform introduction
Mulesoft Anypoint platform introductionMulesoft Anypoint platform introduction
Mulesoft Anypoint platform introductiongijish
 
Object Store V2 Workshop
Object Store V2 WorkshopObject Store V2 Workshop
Object Store V2 WorkshopMuleSoft
 
Singapore MuleSoft Meetup - 24 Aug 2022
Singapore MuleSoft Meetup - 24 Aug 2022Singapore MuleSoft Meetup - 24 Aug 2022
Singapore MuleSoft Meetup - 24 Aug 2022Royston Lobo
 
Application Architecture: The Next Wave | MuleSoft
Application Architecture: The Next Wave | MuleSoftApplication Architecture: The Next Wave | MuleSoft
Application Architecture: The Next Wave | MuleSoftMuleSoft
 
IT Infrastructure Automation with Ansible
IT Infrastructure Automation with AnsibleIT Infrastructure Automation with Ansible
IT Infrastructure Automation with AnsibleDio Pratama
 

What's hot (20)

Virtual meetup - Exploring the Runtime Fabric deployment model
Virtual meetup - Exploring the Runtime Fabric deployment modelVirtual meetup - Exploring the Runtime Fabric deployment model
Virtual meetup - Exploring the Runtime Fabric deployment model
 
OpenStack vs VMware vCloud
OpenStack vs VMware vCloudOpenStack vs VMware vCloud
OpenStack vs VMware vCloud
 
MuleSoft Meetup Roma - CloudHub Networking Stategies
MuleSoft Meetup Roma - CloudHub Networking StategiesMuleSoft Meetup Roma - CloudHub Networking Stategies
MuleSoft Meetup Roma - CloudHub Networking Stategies
 
MULE-Api led connectivity
MULE-Api led connectivityMULE-Api led connectivity
MULE-Api led connectivity
 
Anypoint platform architecture and components
Anypoint platform architecture and componentsAnypoint platform architecture and components
Anypoint platform architecture and components
 
MuleSoft Deployment Strategies (RTF vs Hybrid vs CloudHub)
MuleSoft Deployment Strategies (RTF vs Hybrid vs CloudHub)MuleSoft Deployment Strategies (RTF vs Hybrid vs CloudHub)
MuleSoft Deployment Strategies (RTF vs Hybrid vs CloudHub)
 
Mulesoft ppt
Mulesoft pptMulesoft ppt
Mulesoft ppt
 
Manchester MuleSoft Meetup #6 - Runtime Fabric with Mulesoft
Manchester MuleSoft Meetup #6 - Runtime Fabric with Mulesoft Manchester MuleSoft Meetup #6 - Runtime Fabric with Mulesoft
Manchester MuleSoft Meetup #6 - Runtime Fabric with Mulesoft
 
MuleSoft Surat Meetup#41 - Universal API Management, Anypoint Flex Gateway an...
MuleSoft Surat Meetup#41 - Universal API Management, Anypoint Flex Gateway an...MuleSoft Surat Meetup#41 - Universal API Management, Anypoint Flex Gateway an...
MuleSoft Surat Meetup#41 - Universal API Management, Anypoint Flex Gateway an...
 
From Zero to Docker
From Zero to DockerFrom Zero to Docker
From Zero to Docker
 
MuleSoft's Approach to Driving Customer Outcomes
MuleSoft's Approach to Driving Customer Outcomes MuleSoft's Approach to Driving Customer Outcomes
MuleSoft's Approach to Driving Customer Outcomes
 
Microservices on Anypoint Platform
Microservices on Anypoint PlatformMicroservices on Anypoint Platform
Microservices on Anypoint Platform
 
Introduction to CloudHub 2.0
Introduction to CloudHub 2.0Introduction to CloudHub 2.0
Introduction to CloudHub 2.0
 
Mulesoft Salesforce Connector - OAuth 2.0 JWT Bearer
Mulesoft Salesforce Connector - OAuth 2.0 JWT BearerMulesoft Salesforce Connector - OAuth 2.0 JWT Bearer
Mulesoft Salesforce Connector - OAuth 2.0 JWT Bearer
 
Mulesoft Anypoint platform introduction
Mulesoft Anypoint platform introductionMulesoft Anypoint platform introduction
Mulesoft Anypoint platform introduction
 
Object Store V2 Workshop
Object Store V2 WorkshopObject Store V2 Workshop
Object Store V2 Workshop
 
Singapore MuleSoft Meetup - 24 Aug 2022
Singapore MuleSoft Meetup - 24 Aug 2022Singapore MuleSoft Meetup - 24 Aug 2022
Singapore MuleSoft Meetup - 24 Aug 2022
 
Application Architecture: The Next Wave | MuleSoft
Application Architecture: The Next Wave | MuleSoftApplication Architecture: The Next Wave | MuleSoft
Application Architecture: The Next Wave | MuleSoft
 
Hashicorp Vault ppt
Hashicorp Vault pptHashicorp Vault ppt
Hashicorp Vault ppt
 
IT Infrastructure Automation with Ansible
IT Infrastructure Automation with AnsibleIT Infrastructure Automation with Ansible
IT Infrastructure Automation with Ansible
 

Similar to Anypoint VPC, VPN and DLB Architecture

MuleSoft Surat Live Demonstration Virtual Meetup#1 - Anypoint VPC VPN and DLB
MuleSoft Surat Live Demonstration Virtual Meetup#1 - Anypoint VPC VPN and DLBMuleSoft Surat Live Demonstration Virtual Meetup#1 - Anypoint VPC VPN and DLB
MuleSoft Surat Live Demonstration Virtual Meetup#1 - Anypoint VPC VPN and DLBJitendra Bafna
 
MuleSoft Meetup Vancouver 5th Virtual Event
MuleSoft Meetup Vancouver 5th Virtual EventMuleSoft Meetup Vancouver 5th Virtual Event
MuleSoft Meetup Vancouver 5th Virtual EventVikalp Bhalia
 
Platform configuration on CloudHub 2.0 | MuleSoft Mysore Meetup #29
Platform configuration on CloudHub 2.0 | MuleSoft Mysore Meetup #29Platform configuration on CloudHub 2.0 | MuleSoft Mysore Meetup #29
Platform configuration on CloudHub 2.0 | MuleSoft Mysore Meetup #29MysoreMuleSoftMeetup
 
AWS re:Invent 2016: Hybrid Architecture Design: Connecting Your On-Premises W...
AWS re:Invent 2016: Hybrid Architecture Design: Connecting Your On-Premises W...AWS re:Invent 2016: Hybrid Architecture Design: Connecting Your On-Premises W...
AWS re:Invent 2016: Hybrid Architecture Design: Connecting Your On-Premises W...Amazon Web Services
 
VMworld 2014: How to Build a Hybrid Cloud
VMworld 2014: How to Build a Hybrid CloudVMworld 2014: How to Build a Hybrid Cloud
VMworld 2014: How to Build a Hybrid CloudVMworld
 
Montreal MuleSoft_Meetup_16-Aug.pptx
Montreal MuleSoft_Meetup_16-Aug.pptxMontreal MuleSoft_Meetup_16-Aug.pptx
Montreal MuleSoft_Meetup_16-Aug.pptxshubhamkalsi2
 
Docker meetup talk - chicago March 2014
Docker meetup talk - chicago March 2014Docker meetup talk - chicago March 2014
Docker meetup talk - chicago March 2014Ryan Koop
 
CloudHub Load Balancers (SLB & DLB) | MuleSoft Mysore Meetup #21
CloudHub Load Balancers (SLB & DLB) | MuleSoft Mysore Meetup #21CloudHub Load Balancers (SLB & DLB) | MuleSoft Mysore Meetup #21
CloudHub Load Balancers (SLB & DLB) | MuleSoft Mysore Meetup #21MysoreMuleSoftMeetup
 
Deploying couchbaseserverazure cihanbiyikoglu_microsoft
Deploying couchbaseserverazure cihanbiyikoglu_microsoftDeploying couchbaseserverazure cihanbiyikoglu_microsoft
Deploying couchbaseserverazure cihanbiyikoglu_microsoftCihan Biyikoglu
 
Interop 2017 - Managing Containers in Production
Interop 2017 - Managing Containers in ProductionInterop 2017 - Managing Containers in Production
Interop 2017 - Managing Containers in ProductionBrian Gracely
 
VMworld 2013: How To Build Your Hybrid Cloud and Consume the Public Cloud
VMworld 2013: How To Build Your Hybrid Cloud and Consume the Public Cloud VMworld 2013: How To Build Your Hybrid Cloud and Consume the Public Cloud
VMworld 2013: How To Build Your Hybrid Cloud and Consume the Public Cloud VMworld
 
Deploying Cloud Native Red Team Infrastructure with Kubernetes, Istio and Envoy
Deploying Cloud Native Red Team Infrastructure with Kubernetes, Istio and Envoy Deploying Cloud Native Red Team Infrastructure with Kubernetes, Istio and Envoy
Deploying Cloud Native Red Team Infrastructure with Kubernetes, Istio and Envoy Jeffrey Holden
 
Digital Forensics and Incident Response in The Cloud Part 3
Digital Forensics and Incident Response in The Cloud Part 3Digital Forensics and Incident Response in The Cloud Part 3
Digital Forensics and Incident Response in The Cloud Part 3Velocidex Enterprises
 
Putting Private Clouds to Work with PaaS Interop 2013 Vegas Diane Mueller
Putting Private Clouds to Work with PaaS Interop 2013 Vegas Diane MuellerPutting Private Clouds to Work with PaaS Interop 2013 Vegas Diane Mueller
Putting Private Clouds to Work with PaaS Interop 2013 Vegas Diane MuellerOpenShift Origin
 
Putting Private Clouds to Work with PaaS Interop Vegas 2013 presentation by D...
Putting Private Clouds to Work with PaaS Interop Vegas 2013 presentation by D...Putting Private Clouds to Work with PaaS Interop Vegas 2013 presentation by D...
Putting Private Clouds to Work with PaaS Interop Vegas 2013 presentation by D...Diane Mueller
 
Multi-Container Apps spanning Docker, Mesos and OpenStack
Multi-Container Apps spanning Docker, Mesos and OpenStackMulti-Container Apps spanning Docker, Mesos and OpenStack
Multi-Container Apps spanning Docker, Mesos and OpenStackDocker, Inc.
 
VMworld 2013: vCloud Hybrid Service Jump Start Part Two of Five: vCloud Hybri...
VMworld 2013: vCloud Hybrid Service Jump Start Part Two of Five: vCloud Hybri...VMworld 2013: vCloud Hybrid Service Jump Start Part Two of Five: vCloud Hybri...
VMworld 2013: vCloud Hybrid Service Jump Start Part Two of Five: vCloud Hybri...VMworld
 
Webinar: Dealing with automation tool overload!
Webinar: Dealing with automation tool overload!Webinar: Dealing with automation tool overload!
Webinar: Dealing with automation tool overload!Cloudify Community
 
MySQL Database Service Webinar: Upgrading from on-premise MySQL to MDS
MySQL Database Service Webinar: Upgrading from on-premise MySQL to MDSMySQL Database Service Webinar: Upgrading from on-premise MySQL to MDS
MySQL Database Service Webinar: Upgrading from on-premise MySQL to MDSFrederic Descamps
 
PartnerSkillUp_Enable a Streaming CDC Solution
PartnerSkillUp_Enable a Streaming CDC SolutionPartnerSkillUp_Enable a Streaming CDC Solution
PartnerSkillUp_Enable a Streaming CDC SolutionTimothy Spann
 

Similar to Anypoint VPC, VPN and DLB Architecture (20)

MuleSoft Surat Live Demonstration Virtual Meetup#1 - Anypoint VPC VPN and DLB
MuleSoft Surat Live Demonstration Virtual Meetup#1 - Anypoint VPC VPN and DLBMuleSoft Surat Live Demonstration Virtual Meetup#1 - Anypoint VPC VPN and DLB
MuleSoft Surat Live Demonstration Virtual Meetup#1 - Anypoint VPC VPN and DLB
 
MuleSoft Meetup Vancouver 5th Virtual Event
MuleSoft Meetup Vancouver 5th Virtual EventMuleSoft Meetup Vancouver 5th Virtual Event
MuleSoft Meetup Vancouver 5th Virtual Event
 
Platform configuration on CloudHub 2.0 | MuleSoft Mysore Meetup #29
Platform configuration on CloudHub 2.0 | MuleSoft Mysore Meetup #29Platform configuration on CloudHub 2.0 | MuleSoft Mysore Meetup #29
Platform configuration on CloudHub 2.0 | MuleSoft Mysore Meetup #29
 
AWS re:Invent 2016: Hybrid Architecture Design: Connecting Your On-Premises W...
AWS re:Invent 2016: Hybrid Architecture Design: Connecting Your On-Premises W...AWS re:Invent 2016: Hybrid Architecture Design: Connecting Your On-Premises W...
AWS re:Invent 2016: Hybrid Architecture Design: Connecting Your On-Premises W...
 
VMworld 2014: How to Build a Hybrid Cloud
VMworld 2014: How to Build a Hybrid CloudVMworld 2014: How to Build a Hybrid Cloud
VMworld 2014: How to Build a Hybrid Cloud
 
Montreal MuleSoft_Meetup_16-Aug.pptx
Montreal MuleSoft_Meetup_16-Aug.pptxMontreal MuleSoft_Meetup_16-Aug.pptx
Montreal MuleSoft_Meetup_16-Aug.pptx
 
Docker meetup talk - chicago March 2014
Docker meetup talk - chicago March 2014Docker meetup talk - chicago March 2014
Docker meetup talk - chicago March 2014
 
CloudHub Load Balancers (SLB & DLB) | MuleSoft Mysore Meetup #21
CloudHub Load Balancers (SLB & DLB) | MuleSoft Mysore Meetup #21CloudHub Load Balancers (SLB & DLB) | MuleSoft Mysore Meetup #21
CloudHub Load Balancers (SLB & DLB) | MuleSoft Mysore Meetup #21
 
Deploying couchbaseserverazure cihanbiyikoglu_microsoft
Deploying couchbaseserverazure cihanbiyikoglu_microsoftDeploying couchbaseserverazure cihanbiyikoglu_microsoft
Deploying couchbaseserverazure cihanbiyikoglu_microsoft
 
Interop 2017 - Managing Containers in Production
Interop 2017 - Managing Containers in ProductionInterop 2017 - Managing Containers in Production
Interop 2017 - Managing Containers in Production
 
VMworld 2013: How To Build Your Hybrid Cloud and Consume the Public Cloud
VMworld 2013: How To Build Your Hybrid Cloud and Consume the Public Cloud VMworld 2013: How To Build Your Hybrid Cloud and Consume the Public Cloud
VMworld 2013: How To Build Your Hybrid Cloud and Consume the Public Cloud
 
Deploying Cloud Native Red Team Infrastructure with Kubernetes, Istio and Envoy
Deploying Cloud Native Red Team Infrastructure with Kubernetes, Istio and Envoy Deploying Cloud Native Red Team Infrastructure with Kubernetes, Istio and Envoy
Deploying Cloud Native Red Team Infrastructure with Kubernetes, Istio and Envoy
 
Digital Forensics and Incident Response in The Cloud Part 3
Digital Forensics and Incident Response in The Cloud Part 3Digital Forensics and Incident Response in The Cloud Part 3
Digital Forensics and Incident Response in The Cloud Part 3
 
Putting Private Clouds to Work with PaaS Interop 2013 Vegas Diane Mueller
Putting Private Clouds to Work with PaaS Interop 2013 Vegas Diane MuellerPutting Private Clouds to Work with PaaS Interop 2013 Vegas Diane Mueller
Putting Private Clouds to Work with PaaS Interop 2013 Vegas Diane Mueller
 
Putting Private Clouds to Work with PaaS Interop Vegas 2013 presentation by D...
Putting Private Clouds to Work with PaaS Interop Vegas 2013 presentation by D...Putting Private Clouds to Work with PaaS Interop Vegas 2013 presentation by D...
Putting Private Clouds to Work with PaaS Interop Vegas 2013 presentation by D...
 
Multi-Container Apps spanning Docker, Mesos and OpenStack
Multi-Container Apps spanning Docker, Mesos and OpenStackMulti-Container Apps spanning Docker, Mesos and OpenStack
Multi-Container Apps spanning Docker, Mesos and OpenStack
 
VMworld 2013: vCloud Hybrid Service Jump Start Part Two of Five: vCloud Hybri...
VMworld 2013: vCloud Hybrid Service Jump Start Part Two of Five: vCloud Hybri...VMworld 2013: vCloud Hybrid Service Jump Start Part Two of Five: vCloud Hybri...
VMworld 2013: vCloud Hybrid Service Jump Start Part Two of Five: vCloud Hybri...
 
Webinar: Dealing with automation tool overload!
Webinar: Dealing with automation tool overload!Webinar: Dealing with automation tool overload!
Webinar: Dealing with automation tool overload!
 
MySQL Database Service Webinar: Upgrading from on-premise MySQL to MDS
MySQL Database Service Webinar: Upgrading from on-premise MySQL to MDSMySQL Database Service Webinar: Upgrading from on-premise MySQL to MDS
MySQL Database Service Webinar: Upgrading from on-premise MySQL to MDS
 
PartnerSkillUp_Enable a Streaming CDC Solution
PartnerSkillUp_Enable a Streaming CDC SolutionPartnerSkillUp_Enable a Streaming CDC Solution
PartnerSkillUp_Enable a Streaming CDC Solution
 

More from Alexandra N. Martinez

Mejora tu productividad creando aplicaciones de Slack
Mejora tu productividad creando aplicaciones de SlackMejora tu productividad creando aplicaciones de Slack
Mejora tu productividad creando aplicaciones de SlackAlexandra N. Martinez
 
Women Who Mule - Workshop series #2: Ghost
Women Who Mule - Workshop series #2: GhostWomen Who Mule - Workshop series #2: Ghost
Women Who Mule - Workshop series #2: GhostAlexandra N. Martinez
 
Women Who Mule - Workshop series: Create your own blog from scratch without a...
Women Who Mule - Workshop series: Create your own blog from scratch without a...Women Who Mule - Workshop series: Create your own blog from scratch without a...
Women Who Mule - Workshop series: Create your own blog from scratch without a...Alexandra N. Martinez
 
Toronto Virtual Meetup #12 - Testing Strategies and MUnit Test Recorder
Toronto Virtual Meetup #12 - Testing Strategies and MUnit Test RecorderToronto Virtual Meetup #12 - Testing Strategies and MUnit Test Recorder
Toronto Virtual Meetup #12 - Testing Strategies and MUnit Test RecorderAlexandra N. Martinez
 
Toronto Virtual Meetup #11 - Reviewing Complex DataWeave Transformation Use-case
Toronto Virtual Meetup #11 - Reviewing Complex DataWeave Transformation Use-caseToronto Virtual Meetup #11 - Reviewing Complex DataWeave Transformation Use-case
Toronto Virtual Meetup #11 - Reviewing Complex DataWeave Transformation Use-caseAlexandra N. Martinez
 
Cómo generar e implementar monitoreo para aplicaciones de Mule
Cómo generar e implementar monitoreo para aplicaciones de MuleCómo generar e implementar monitoreo para aplicaciones de Mule
Cómo generar e implementar monitoreo para aplicaciones de MuleAlexandra N. Martinez
 
reCONNECT 2021 May Meetup - Women Who Mule #4
reCONNECT 2021 May Meetup - Women Who Mule #4reCONNECT 2021 May Meetup - Women Who Mule #4
reCONNECT 2021 May Meetup - Women Who Mule #4Alexandra N. Martinez
 
Women Who Mule - April Meetup (Diane Kesler's Journey)
Women Who Mule - April Meetup (Diane Kesler's Journey)Women Who Mule - April Meetup (Diane Kesler's Journey)
Women Who Mule - April Meetup (Diane Kesler's Journey)Alexandra N. Martinez
 
Toronto Virtual Meetup #9 - KPIs and metrics accelerator
Toronto Virtual Meetup #9 - KPIs and metrics acceleratorToronto Virtual Meetup #9 - KPIs and metrics accelerator
Toronto Virtual Meetup #9 - KPIs and metrics acceleratorAlexandra N. Martinez
 
Reviewing a complex dataweave transformation use case v3
Reviewing a complex dataweave transformation use case v3Reviewing a complex dataweave transformation use case v3
Reviewing a complex dataweave transformation use case v3Alexandra N. Martinez
 
What is munit and how to create your first unit test
What is munit and how to create your first unit testWhat is munit and how to create your first unit test
What is munit and how to create your first unit testAlexandra N. Martinez
 
Toronto Virtual Meetup #8 - Tips for Reusability
Toronto Virtual Meetup #8 - Tips for ReusabilityToronto Virtual Meetup #8 - Tips for Reusability
Toronto Virtual Meetup #8 - Tips for ReusabilityAlexandra N. Martinez
 
Meetup en español #6 - MuleSoft para profesionales de Java (segunda edición)
Meetup en español #6 - MuleSoft para profesionales de Java (segunda edición)Meetup en español #6 - MuleSoft para profesionales de Java (segunda edición)
Meetup en español #6 - MuleSoft para profesionales de Java (segunda edición)Alexandra N. Martinez
 
Meetup en español #5 - Continuous Integration and Continuous Delivery (CI/CD)...
Meetup en español #5 - Continuous Integration and Continuous Delivery (CI/CD)...Meetup en español #5 - Continuous Integration and Continuous Delivery (CI/CD)...
Meetup en español #5 - Continuous Integration and Continuous Delivery (CI/CD)...Alexandra N. Martinez
 
Reviewing a Complex DataWeave Transformation Use-case v2
Reviewing a Complex DataWeave Transformation Use-case v2Reviewing a Complex DataWeave Transformation Use-case v2
Reviewing a Complex DataWeave Transformation Use-case v2Alexandra N. Martinez
 
How to use Salesforce composite request connector in Mule
How to use Salesforce composite request connector in MuleHow to use Salesforce composite request connector in Mule
How to use Salesforce composite request connector in MuleAlexandra N. Martinez
 
Meetup en español #4 - MuleSoft para profesionales de Java
Meetup en español #4 - MuleSoft para profesionales de Java Meetup en español #4 - MuleSoft para profesionales de Java
Meetup en español #4 - MuleSoft para profesionales de JavaAlexandra N. Martinez
 

More from Alexandra N. Martinez (20)

Mejora tu productividad creando aplicaciones de Slack
Mejora tu productividad creando aplicaciones de SlackMejora tu productividad creando aplicaciones de Slack
Mejora tu productividad creando aplicaciones de Slack
 
Women Who Mule - Workshop series #2: Ghost
Women Who Mule - Workshop series #2: GhostWomen Who Mule - Workshop series #2: Ghost
Women Who Mule - Workshop series #2: Ghost
 
Women Who Mule - Workshop series: Create your own blog from scratch without a...
Women Who Mule - Workshop series: Create your own blog from scratch without a...Women Who Mule - Workshop series: Create your own blog from scratch without a...
Women Who Mule - Workshop series: Create your own blog from scratch without a...
 
Toronto Virtual Meetup #12 - Testing Strategies and MUnit Test Recorder
Toronto Virtual Meetup #12 - Testing Strategies and MUnit Test RecorderToronto Virtual Meetup #12 - Testing Strategies and MUnit Test Recorder
Toronto Virtual Meetup #12 - Testing Strategies and MUnit Test Recorder
 
Women Who Mule - June Meetup (EMEA)
Women Who Mule - June Meetup (EMEA)Women Who Mule - June Meetup (EMEA)
Women Who Mule - June Meetup (EMEA)
 
Toronto Virtual Meetup #11 - Reviewing Complex DataWeave Transformation Use-case
Toronto Virtual Meetup #11 - Reviewing Complex DataWeave Transformation Use-caseToronto Virtual Meetup #11 - Reviewing Complex DataWeave Transformation Use-case
Toronto Virtual Meetup #11 - Reviewing Complex DataWeave Transformation Use-case
 
Cómo generar e implementar monitoreo para aplicaciones de Mule
Cómo generar e implementar monitoreo para aplicaciones de MuleCómo generar e implementar monitoreo para aplicaciones de Mule
Cómo generar e implementar monitoreo para aplicaciones de Mule
 
reCONNECT 2021 May Meetup - Women Who Mule #4
reCONNECT 2021 May Meetup - Women Who Mule #4reCONNECT 2021 May Meetup - Women Who Mule #4
reCONNECT 2021 May Meetup - Women Who Mule #4
 
Women Who Mule - April Meetup (Diane Kesler's Journey)
Women Who Mule - April Meetup (Diane Kesler's Journey)Women Who Mule - April Meetup (Diane Kesler's Journey)
Women Who Mule - April Meetup (Diane Kesler's Journey)
 
Toronto Virtual Meetup #9 - KPIs and metrics accelerator
Toronto Virtual Meetup #9 - KPIs and metrics acceleratorToronto Virtual Meetup #9 - KPIs and metrics accelerator
Toronto Virtual Meetup #9 - KPIs and metrics accelerator
 
Reviewing a complex dataweave transformation use case v3
Reviewing a complex dataweave transformation use case v3Reviewing a complex dataweave transformation use case v3
Reviewing a complex dataweave transformation use case v3
 
Introduction to MuleSoft
Introduction to MuleSoftIntroduction to MuleSoft
Introduction to MuleSoft
 
What is munit and how to create your first unit test
What is munit and how to create your first unit testWhat is munit and how to create your first unit test
What is munit and how to create your first unit test
 
Truly Human part 1
Truly Human part 1Truly Human part 1
Truly Human part 1
 
Toronto Virtual Meetup #8 - Tips for Reusability
Toronto Virtual Meetup #8 - Tips for ReusabilityToronto Virtual Meetup #8 - Tips for Reusability
Toronto Virtual Meetup #8 - Tips for Reusability
 
Meetup en español #6 - MuleSoft para profesionales de Java (segunda edición)
Meetup en español #6 - MuleSoft para profesionales de Java (segunda edición)Meetup en español #6 - MuleSoft para profesionales de Java (segunda edición)
Meetup en español #6 - MuleSoft para profesionales de Java (segunda edición)
 
Meetup en español #5 - Continuous Integration and Continuous Delivery (CI/CD)...
Meetup en español #5 - Continuous Integration and Continuous Delivery (CI/CD)...Meetup en español #5 - Continuous Integration and Continuous Delivery (CI/CD)...
Meetup en español #5 - Continuous Integration and Continuous Delivery (CI/CD)...
 
Reviewing a Complex DataWeave Transformation Use-case v2
Reviewing a Complex DataWeave Transformation Use-case v2Reviewing a Complex DataWeave Transformation Use-case v2
Reviewing a Complex DataWeave Transformation Use-case v2
 
How to use Salesforce composite request connector in Mule
How to use Salesforce composite request connector in MuleHow to use Salesforce composite request connector in Mule
How to use Salesforce composite request connector in Mule
 
Meetup en español #4 - MuleSoft para profesionales de Java
Meetup en español #4 - MuleSoft para profesionales de Java Meetup en español #4 - MuleSoft para profesionales de Java
Meetup en español #4 - MuleSoft para profesionales de Java
 

Recently uploaded

Paris 2024 Olympic Geographies - an activity
Paris 2024 Olympic Geographies - an activityParis 2024 Olympic Geographies - an activity
Paris 2024 Olympic Geographies - an activityGeoBlogs
 
microwave assisted reaction. General introduction
microwave assisted reaction. General introductionmicrowave assisted reaction. General introduction
microwave assisted reaction. General introductionMaksud Ahmed
 
A Critique of the Proposed National Education Policy Reform
A Critique of the Proposed National Education Policy ReformA Critique of the Proposed National Education Policy Reform
A Critique of the Proposed National Education Policy ReformChameera Dedduwage
 
Presentation by Andreas Schleicher Tackling the School Absenteeism Crisis 30 ...
Presentation by Andreas Schleicher Tackling the School Absenteeism Crisis 30 ...Presentation by Andreas Schleicher Tackling the School Absenteeism Crisis 30 ...
Presentation by Andreas Schleicher Tackling the School Absenteeism Crisis 30 ...EduSkills OECD
 
Introduction to ArtificiaI Intelligence in Higher Education
Introduction to ArtificiaI Intelligence in Higher EducationIntroduction to ArtificiaI Intelligence in Higher Education
Introduction to ArtificiaI Intelligence in Higher Educationpboyjonauth
 
Crayon Activity Handout For the Crayon A
Crayon Activity Handout For the Crayon ACrayon Activity Handout For the Crayon A
Crayon Activity Handout For the Crayon AUnboundStockton
 
Enzyme, Pharmaceutical Aids, Miscellaneous Last Part of Chapter no 5th.pdf
Enzyme, Pharmaceutical Aids, Miscellaneous Last Part of Chapter no 5th.pdfEnzyme, Pharmaceutical Aids, Miscellaneous Last Part of Chapter no 5th.pdf
Enzyme, Pharmaceutical Aids, Miscellaneous Last Part of Chapter no 5th.pdfSumit Tiwari
 
Alper Gobel In Media Res Media Component
Alper Gobel In Media Res Media ComponentAlper Gobel In Media Res Media Component
Alper Gobel In Media Res Media ComponentInMediaRes1
 
Organic Name Reactions for the students and aspirants of Chemistry12th.pptx
Organic Name Reactions for the students and aspirants of Chemistry12th.pptxOrganic Name Reactions for the students and aspirants of Chemistry12th.pptx
Organic Name Reactions for the students and aspirants of Chemistry12th.pptxVS Mahajan Coaching Centre
 
Interactive Powerpoint_How to Master effective communication
Interactive Powerpoint_How to Master effective communicationInteractive Powerpoint_How to Master effective communication
Interactive Powerpoint_How to Master effective communicationnomboosow
 
Solving Puzzles Benefits Everyone (English).pptx
Solving Puzzles Benefits Everyone (English).pptxSolving Puzzles Benefits Everyone (English).pptx
Solving Puzzles Benefits Everyone (English).pptxOH TEIK BIN
 
Employee wellbeing at the workplace.pptx
Employee wellbeing at the workplace.pptxEmployee wellbeing at the workplace.pptx
Employee wellbeing at the workplace.pptxNirmalaLoungPoorunde1
 
call girls in Kamla Market (DELHI) 🔝 >༒9953330565🔝 genuine Escort Service 🔝✔️✔️
call girls in Kamla Market (DELHI) 🔝 >༒9953330565🔝 genuine Escort Service 🔝✔️✔️call girls in Kamla Market (DELHI) 🔝 >༒9953330565🔝 genuine Escort Service 🔝✔️✔️
call girls in Kamla Market (DELHI) 🔝 >༒9953330565🔝 genuine Escort Service 🔝✔️✔️9953056974 Low Rate Call Girls In Saket, Delhi NCR
 
How to Make a Pirate ship Primary Education.pptx
How to Make a Pirate ship Primary Education.pptxHow to Make a Pirate ship Primary Education.pptx
How to Make a Pirate ship Primary Education.pptxmanuelaromero2013
 
Concept of Vouching. B.Com(Hons) /B.Compdf
Concept of Vouching. B.Com(Hons) /B.CompdfConcept of Vouching. B.Com(Hons) /B.Compdf
Concept of Vouching. B.Com(Hons) /B.CompdfUmakantAnnand
 
Separation of Lanthanides/ Lanthanides and Actinides
Separation of Lanthanides/ Lanthanides and ActinidesSeparation of Lanthanides/ Lanthanides and Actinides
Separation of Lanthanides/ Lanthanides and ActinidesFatimaKhan178732
 
URLs and Routing in the Odoo 17 Website App
URLs and Routing in the Odoo 17 Website AppURLs and Routing in the Odoo 17 Website App
URLs and Routing in the Odoo 17 Website AppCeline George
 

Recently uploaded (20)

Código Creativo y Arte de Software | Unidad 1
Código Creativo y Arte de Software | Unidad 1Código Creativo y Arte de Software | Unidad 1
Código Creativo y Arte de Software | Unidad 1
 
Paris 2024 Olympic Geographies - an activity
Paris 2024 Olympic Geographies - an activityParis 2024 Olympic Geographies - an activity
Paris 2024 Olympic Geographies - an activity
 
microwave assisted reaction. General introduction
microwave assisted reaction. General introductionmicrowave assisted reaction. General introduction
microwave assisted reaction. General introduction
 
A Critique of the Proposed National Education Policy Reform
A Critique of the Proposed National Education Policy ReformA Critique of the Proposed National Education Policy Reform
A Critique of the Proposed National Education Policy Reform
 
Presentation by Andreas Schleicher Tackling the School Absenteeism Crisis 30 ...
Presentation by Andreas Schleicher Tackling the School Absenteeism Crisis 30 ...Presentation by Andreas Schleicher Tackling the School Absenteeism Crisis 30 ...
Presentation by Andreas Schleicher Tackling the School Absenteeism Crisis 30 ...
 
Introduction to ArtificiaI Intelligence in Higher Education
Introduction to ArtificiaI Intelligence in Higher EducationIntroduction to ArtificiaI Intelligence in Higher Education
Introduction to ArtificiaI Intelligence in Higher Education
 
Crayon Activity Handout For the Crayon A
Crayon Activity Handout For the Crayon ACrayon Activity Handout For the Crayon A
Crayon Activity Handout For the Crayon A
 
Enzyme, Pharmaceutical Aids, Miscellaneous Last Part of Chapter no 5th.pdf
Enzyme, Pharmaceutical Aids, Miscellaneous Last Part of Chapter no 5th.pdfEnzyme, Pharmaceutical Aids, Miscellaneous Last Part of Chapter no 5th.pdf
Enzyme, Pharmaceutical Aids, Miscellaneous Last Part of Chapter no 5th.pdf
 
Alper Gobel In Media Res Media Component
Alper Gobel In Media Res Media ComponentAlper Gobel In Media Res Media Component
Alper Gobel In Media Res Media Component
 
Organic Name Reactions for the students and aspirants of Chemistry12th.pptx
Organic Name Reactions for the students and aspirants of Chemistry12th.pptxOrganic Name Reactions for the students and aspirants of Chemistry12th.pptx
Organic Name Reactions for the students and aspirants of Chemistry12th.pptx
 
Model Call Girl in Bikash Puri Delhi reach out to us at 🔝9953056974🔝
Model Call Girl in Bikash Puri Delhi reach out to us at 🔝9953056974🔝Model Call Girl in Bikash Puri Delhi reach out to us at 🔝9953056974🔝
Model Call Girl in Bikash Puri Delhi reach out to us at 🔝9953056974🔝
 
Interactive Powerpoint_How to Master effective communication
Interactive Powerpoint_How to Master effective communicationInteractive Powerpoint_How to Master effective communication
Interactive Powerpoint_How to Master effective communication
 
9953330565 Low Rate Call Girls In Rohini Delhi NCR
9953330565 Low Rate Call Girls In Rohini Delhi NCR9953330565 Low Rate Call Girls In Rohini Delhi NCR
9953330565 Low Rate Call Girls In Rohini Delhi NCR
 
Solving Puzzles Benefits Everyone (English).pptx
Solving Puzzles Benefits Everyone (English).pptxSolving Puzzles Benefits Everyone (English).pptx
Solving Puzzles Benefits Everyone (English).pptx
 
Employee wellbeing at the workplace.pptx
Employee wellbeing at the workplace.pptxEmployee wellbeing at the workplace.pptx
Employee wellbeing at the workplace.pptx
 
call girls in Kamla Market (DELHI) 🔝 >༒9953330565🔝 genuine Escort Service 🔝✔️✔️
call girls in Kamla Market (DELHI) 🔝 >༒9953330565🔝 genuine Escort Service 🔝✔️✔️call girls in Kamla Market (DELHI) 🔝 >༒9953330565🔝 genuine Escort Service 🔝✔️✔️
call girls in Kamla Market (DELHI) 🔝 >༒9953330565🔝 genuine Escort Service 🔝✔️✔️
 
How to Make a Pirate ship Primary Education.pptx
How to Make a Pirate ship Primary Education.pptxHow to Make a Pirate ship Primary Education.pptx
How to Make a Pirate ship Primary Education.pptx
 
Concept of Vouching. B.Com(Hons) /B.Compdf
Concept of Vouching. B.Com(Hons) /B.CompdfConcept of Vouching. B.Com(Hons) /B.Compdf
Concept of Vouching. B.Com(Hons) /B.Compdf
 
Separation of Lanthanides/ Lanthanides and Actinides
Separation of Lanthanides/ Lanthanides and ActinidesSeparation of Lanthanides/ Lanthanides and Actinides
Separation of Lanthanides/ Lanthanides and Actinides
 
URLs and Routing in the Odoo 17 Website App
URLs and Routing in the Odoo 17 Website AppURLs and Routing in the Odoo 17 Website App
URLs and Routing in the Odoo 17 Website App
 

Anypoint VPC, VPN and DLB Architecture

  • 1. Nov 3, 2020 Toronto MuleSoft Meetup Group Anypoint VPC, VPN and DLB Architecture
  • 2. 3 ● Introductions ● Anypoint VPC, VPN and DLB Architecture ● What’s next? ● Next event Agenda #MuleSoftMeetups
  • 3. 4 Organizers #MuleSoftMeetups Alexandra Martinez Senior MuleSoft Developer at Bits In Glass MuleSoft Ambassadress Founder and Content Creator at ProstDev 3+ years using MuleSoft 5x MuleSoft certified Mahesh Pujari MuleSoft Developer at Mackenzie Investments Around 6 years of integration expertise Pravallika Nagaraja Senior MuleSoft Developer at Roche Overall 10 years of experience developing integration solutions using MuleSoft and other integration technologies 3+ years using MuleSoft 4x MuleSoft certified Content Creator at ProstDev Kishore Reddy Paluri Senior Consultant at MuleSoft Certified Solutions Architect 14+ years of experience building Integration, ESB, SOA, API, Security and Middleware solutions on Cloud, On-Prem, and Hybrid environments
  • 4. Jitendra Bafna Senior Solution Architect at Capgemini Anypoint VPC, VPN and DLB Architecture
  • 5. 6 ● Introductions ● What is Anypoint VPC, VPN and DLB ● DLB V/S SLB ● Live Demonstration on Anypoint VPC, VPN and DLB ● Networking time Agenda
  • 7. 8 VPC stands for Virtual Private Cloud and it allows you to create logical or isolated networks in the cloud where you can deploy or run the resources securely. MuleSoft cloudhub is a multi-tenant integration platform as a service. Anypoint VPC allows you to create an isolated network where you can host the workers or mule applications. Anypoint VPC allows you to extend your corporate network and allows cloudhub workers to connect resources behind the firewalls. VPC allows to connect cloudhub workers to on premise datacenter using below techniques.  Secure VPN Tunnel (IPSec Tunneling)  Private AWS using VPC Peering.  AWS Direct Connect. What is Anypoint VPC?
  • 8. 9 Advantages of Anypoint VPC  Create a secure virtual network within CloudHub.  Connect CloudHub to assets behind the firewall.  Deploy mule runtime securely.  Connect Cloudhub to any public cloud or on premise data center securely. Anypoint VPC Characteristics  Multiple VPC can be created in the same region.  Always create VPC in the same region or near to your datacenter or AWS region (VPC peering).  All non prod environments like dev, test, sit can be mapped to non prod vpc and production environment to prod vpc.  Multiple environments can be mapped to the same VPC’s.  Always create the VPC in the parent business group and share with sub business groups. Anypoint VPC
  • 10. 11  You have four environments dev, test, sit and prod.  Application on dev and sit must run on 1 Worker.  Application on the test must be run on 2 Workers.  Application on prod must run on 2 Workers.  Total Application = 100 (Near Future)  The organization will have 2 VPC’s, one for PROD and another for NON PROD. The problem statement is that we need to decide the minimum CIDR block will be needed for PROD and NON-PROD VPC. VPC Sizing Requirements
  • 11. 12 VPC Sizing Solution There will be 2 IPs reserved for each VPC for infrastructure. For Production VPC, we require around 302 IPs and it will be provided by a subnet mask of /23 (e.g. 192.168.0.0/23). This subnet mask will provide 512 IPs. For Non-Production VPC, we require around 602 IPs and it will be provided by a subnet mask of /22 (e.g. 192.168.0.0/22). This subnet mask will provide 1024 IPs.
  • 12. 13  Always create a VPC in the same region or close to your datacenter or AWS region (VPC Peering).  Always choose a higher or appropriate range of CIDR masks because the CIDR mask cannot be updated once VPC is created. To change the CIDR mask, we need to re-create VPC and it requires downtime for your applications.  Always choose a CIDR mask which doesn't overlap with your datacenter IP addresses or subnets.  Always create a separate VPC for production and non production environments.  Always create VPC in parent business groups and share with child business groups. VPC Sizing Best Practices
  • 15. 16  Dedicated Load Balancer is optional components in Anypoint Platform which allows to route external HTTP/HTTPs traffic to multiple applications deployed to cloudhub within VPC.  Each Dedicated Load Balancer has a DNS A record lb-name.lb.anypointdns.net that resolves to the two public IP addresses of the two instances. What is Dedicated Load Balancer?
  • 17. 18 SLB V/S DLB Shared Load Balancer  Shared Load Balancer available in all environments by default.  Shared Load Balancer provided basic functionality like TCP load balancing.  Shared Load Balancer doesn’t allow you to configure custom SSL certificates and proxy rules.  Shared Load Balancers have lower rate limits and it is different for each region.  Application deployed to Cloudhub exceeds the rate limit for shared load balancers, it will return 503 - Service Unavailable. Dedicated Load Balancer  One of the limitations of SLB is the lower rate limit. To avoid that issue, you can use a dedicated load balancer.  All applications can be hosted under a single domain.  Custom SSL certificates can be configured on DLB and optionally two-way authentication can be enforced.  Handle load balancing among the different CloudHub workers that run your application.
  • 18. 19 Dedicated Load Balancer HTTP Inbound Mode  Off: Causes the load balancer to silently drop the request.  On: Accepts the inbound request on the default SSL endpoint using the HTTP protocol.  Redirect: Redirects the request to the same URL using the HTTPS protocol. Other Configurations  Disable Static IPs specify to use dynamic IPs, which do not persist when the DLB restarts.  Keep URL encoding specifies the DLB passes only the %20 and %23 characters as is. If you deselect this option, the DLB decodes the encoded part of the request URI before passing it to the CloudHub worker.  Support TLS 1.0 specifies to support TLS 1.0 between the client and the DLB.  Upstream TLS 1.2 specifies to force TLS 1.2 between the DLB and the upstream CloudHub worker.
  • 19. 20 Dedicated Load Balancer Certificates Configure SSL certificate to enable HTTPS (Public Key and Private Key). For two way authentication, you can configure Client Certificate and that is optional. The dedicated load balancer must be associated with at least a pair of one certificates. Generally, we configure the certificates on Dedicated Load Balancer from CA authority. For testing purposes, you can use self signed certificates. openssl req -newkey rsa:2048 -nodes -keyout test-private.pem -x509 -days 3000 –out test-public-crt.pem Above command will generate Private Key and Public Key that can be configured on dedicated load balancer.
  • 20. 21 Dedicated Load Balancer Certificates Alternatively, you can generate certificates by passing .cfg file in openssl command. You can add below content in .cfg file and pass to openssl command. [ req ] default_bits = 2048 distinguished_name = req_distinguished_name req_extensions = req_ext prompt = no [ req_distinguished_name ] countryName = US stateOrProvinceName = Arizona localityName = Phoenix organizationName = Test commonName = example.com [ req_ext ] subjectAltName = @alt_names [alt_names] DNS.1 = api-dev.example.com DNS.2 = api-qa.example.com openssl req -newkey rsa:2048 -nodes -keyout test-private.pem -x509 -days 3000 –out test-public-crt.pem -config test-com.cfg
  • 21. 22 Dedicated Load Balancer Certificates Creating wildcard Certificates You can even create the wild card certificate to support subdomain requests. [ req ] default_bits = 2048 distinguished_name = req_distinguished_name req_extensions = req_ext prompt = no [ req_distinguished_name ] countryName = US stateOrProvinceName = Arizona localityName = Phoenix organizationName = Test commonName = *.example.com
  • 22. 23 Dedicated Load Balancer Mapping Rules Mapping rules are used on dedicated load balancers to translate input URI to call applications deployed on CloudHub. A pattern is a string that defines a template for matching an input text. Whatever value is placed within curly brackets ({ }) is treated as a variable. Variable names can contain only lowercase letters (a-z) and no other characters, including slashes.
  • 23. 24 Dedicated Load Balancer Mapping Rules Mapping rules are used on dedicated load balancers to translate input URI to call applications deployed on CloudHub. A pattern is a string that defines a template for matching an input text. Whatever value is placed within curly brackets ({ }) is treated as a variable. Variable names can contain only lowercase letters (a-z) and no other characters, including slashes.
  • 24. 25 Dedicated Load Balancer Mapping Rules
  • 25. 26 Dedicated Load Balancer Whitelisted CIDR’s To allow dedicated load balancers must be used by a set of IP addresses or single IP addresses, you need to add those IP addresses in form of CIDR notations (e.g. 192.168.1.0/24). By default CIDR mask is 0.0.0.0/0 which means all IP addresses are allowed to access dedicated load balancer.
  • 27. 28 What is Anypoint VPN? VPN stands for Virtual Private Network and Anypoint VPN creates a secure connection between CloudHub and On Premise data centers.  Anypoint VPN supports site-to-site internet protocol security (IPSec) connections.  Each Anypoint VPN connection consists of two tunnels that enable you to connect to a single public IP address at a remote location. To connect additional remote locations,create another VPN.  The physical or software appliances, called VPN endpoints, are terminators on your side of connection.  The MuleSoft side of the connection is an implementation of a virtual private gateway (VGW). The MuleSoft VGW is associated with a single MuleSoft VPC but can support up to 10 VPN connections.  The MuleSoft VGW implementation supports a maximum throughput of 1.25 Gbps.
  • 28. 29 Anypoint VPN Types of VPN Routing Anypoint VPN supports dynamic or static routing for VPN connections.  Dynamic routing - Your device uses Border Gateway Protocol (BGP) to advertise routes to Anypoint VPN. Use BGP routing if your device supports this protocol.  Static routing - Requires you to specify the routes (subnets) in your network that are accessible through Anypoint VPN.
  • 29. 30 Anypoint VPN IP Sec Tunneling Anypoint VPN IPSec Tunneling VPN IPSec tunnel is set of protocols or standards to establish the connection with on premise datacenter. IPSec tunnel is applied at the IP layer and it allows to connect the entire network instead of a single device.
  • 30. 31 VPC Peering VPC peering basically connects two VPCs. In this case, it pairs your private Amazon VPC directly to your Anypoint VPC. This enables you to route traffic between the two VPCs so they can communicate as though they are in the same network.
  • 31. 32 Anypoint VPN Custom Configuration CIDR Block not supported for Custom VPN configuration  169.254.0.0/30  169.254.1.0/30  169.254.2.0/30  169.254.3.0/30  169.254.4.0/30  169.254.5.0/30  169.254.169.252/30
  • 33. 34 Accessing Application within VPC For accessing applications within VPC, you can use below urls.  Port 8091: - http://mule-worker-internal-<appname>.region.cloudhub.io:8091/  Port 8092: - https://mule-worker-internal-<appname>.region.cloudhub.io:8092/ Creating AnyPoint VPC, VPN and DLB is the self service but you can request MuleSoft to create VPN IPSec tunneling, VPC Peering or AWS Direct Connect by filling AnyPoint VPC discovery template.
  • 34. 35 Accessing Application within VPC Important Points  Once a VPC is created, to modify the name, CIDR mask, you need to delete and recreate the VPC which may lead to downtime of your applications.  Always select the higher range of the CIDR mask. So you have enough IP addresses available. VPC Use Cases  To run the integration or api's within secure networks or private subnets, you can deploy api withithe VPC. For example, you have system api's that are accessing backend databases and those api's must be deployed within a secure or private network in cloudhub, so it is accessible by the applications deployed within the same VPC.  For creating the dedicated load balancer, we need to create a VPC.  For creating VPN IPSec tunneling, AWS Direct Connect or VPC peering, we need to create a VPC. There are many other use cases where we have requirements of VPC.
  • 35. 36 Accessing Application Over Public Internet deployed within VPC There are various ways that you can api's over the public internet when an application is deployed within the VPC. Deploy the application on port 8081 (http.port) or 8082 (https.port), as per firewall rule these ports are accessible anywhere. So this apis can be access using http://<appname>.region.cloudhub.io/ or https://<appname>.region.cloudhub.io/ In case an application deployed on port 8091 (http.private.port) or 8092 (https.private.port), as per above firewall rule these ports are accessible within VPC. So this apis can be accessible on our public internet using a dedicated load balancer if your IP Address is whitelisted in DLB configurations.
  • 36. 37 Accessing Application via SLB deployed within VPC
  • 37. 38 Accessing Application via DLB deployed within VPC
  • 38. 39 Anypoint VPC, VPN and DLB Architecture
  • 40. 41 Demo 1: Setting Up Anypoint VPC dsffd Anypoint Platform Runtime Manager 10.0.1.0/24 us-e1
  • 41. 42 Demo 2: Deploying the Application on 8081 dsffd Anypoint Platform Runtime Manager 10.0.1.0/24 vpc-8081 us-e1 External Consumer http://vpc-8081.us-e1.cloudhub.io/test http://mule-worker-vpc-8081.us- e1.cloudhub.io:8081/test To find internal or private IP Address of Application ping mule-worker-internal-vpc-8081.us-e1.cloudhub.io To find public IP Address of Application ping mule-worker-vpc-8081.us-e1.cloudhub.io
  • 42. 43 Demo 3: Deploying the Application on 8091 dsffd Anypoint Platform Runtime Manager 10.0.1.0/24 vpc-8091 us-e1 External Consumer http://vpc-8091.us-e1.cloudhub.io/test http://mule-worker-vpc-8091.us- e1.cloudhub.io:8091/test To find internal or private IP Address of Application ping mule-worker-internal-vpc-8091.us-e1.cloudhub.io To find public IP Address of Application ping mule-worker-vpc-8091.us-e1.cloudhub.io Note: - Application deployed to 8091 is not directly accessible publicly as per firewall rule defined on Anypoint VPC and it can be access within VPC using url http://mule-worker-internal-vpc-8091.us-e1.cloudhub.io:8091/test
  • 43. 44 Demo 4: Accessing Application within VPC dsffd Anypoint Platform Runtime Manager 10.0.1.0/24 vpc-8091 us-e1 External Consumer http://vpc-8081.us-e1.cloudhub.io/test http://mule-worker-vpc-8081.us- e1.cloudhub.io:8081/test Note: - Application deployed on 8081 can access application deployed to port 8091 as both are in same VPC. Hence external consumer can send request on application deployed to port 8081 and 8081 can access application deployed on port 8091 vpc-8081 http://mule-worker-internal-vpc- 8091.us-e1.cloudhub.io:8091/test
  • 44. 45 Demo 5: Setting Up Anypoint DLB dsffd Anypoint Platform Runtime Manager 10.0.1.0/24 us-e1 Worker 1 Worker 2 Dedicated Load Balancer External Consumer http://lbname.lbanypointdns.net/<appName>/
  • 45. 46 Demo 6: Accessing Application Via DLB deployed on 8091 dsffd Anypoint Platform Runtime Manager 10.0.1.0/24 us-e1 Worker 1 Worker 2 Dedicated Load Balancer External Consumer http://lbname.lbanypointdns.net/<appName>/ vpc-8091 http://mule-worker-internal-vpc-8091.us-e1.cloudhub.io:8091/test
  • 46. 47 Demo 4: Accessing Application within VPC dsffd Anypoint Platform Runtime Manager 10.0.1.0/24 vpc-8091 us-e1 External Consumer http://vpc-8081.us-e1.cloudhub.io/test http://mule-worker-vpc-8081.us- e1.cloudhub.io:8081/test Note: - Application deployed on 8081 can access application deployed to port 8091 as both are in same VPC. Hence external consumer can send request on application deployed to port 8081 and 8081 can access application deployed on port 8091 vpc-8081 http://mule-worker-internal-vpc- 8091.us-e1.cloudhub.io:8091/test
  • 47. 48 Demo 7: Setting Up Anypoint VPN dsffd Anypoint Platform Runtime Manager 10.0.1.0/24 us-e1 Google Cloud Platform VPN IPSec Tunneling (BGP or Dynamic Routing)
  • 48. 49 References  https://docs.mulesoft.com/runtime-manager/vpc-architecture-concept  https://docs.mulesoft.com/runtime-manager/virtual-private-cloud  https://docs.mulesoft.com/runtime-manager/vpn-about  https://docs.mulesoft.com/runtime-manager/dedicated-load-balancer-tutorial  https://dzone.com/articles/what-is-cidr-classless-inter-domain-routing-in-mul  https://dzone.com/articles/implementing-mapping-rules-with-mulesoft-dedicated  https://youtu.be/z-xGhij5MME  https://drive.google.com/drive/folders/1BOfvz0zB5sR_JUCD0kIZDcEduBsR8dyp  https://www.youtube.com/playlist?list=PL5GwZHHgKcuDQ6vWarTLgVbrPEQipzbOM
  • 50. How does the quiz work? 1. Organizers show the question. 2. Organizers read the question out loud. 3. Organizers will write in the chat the following message: “Answers from question n start here” after reading the question. 4. Only answers that appear after this message will be taken into account. 5. A final raffle, with the people that answered the quiz correctly, will take place after the quiz, where the 3 lucky winners will receive a training or certification voucher. 6. The 3 winners will send their email in the chat so we can contact them for further steps. 51 #MuleSoftMeetups
  • 51. Rules: 1. First person to give the correct answer in the chat will enter the final raffle. 2. If you already answered one question correctly, please stop answering and give a chance to the rest. You don’t receive “extra points” for answering correctly more than once. 3. If the answer is sent before the “Answers from question n start here” message appears in the chat, it won’t be taken into account. 52 #MuleSoftMeetups
  • 52. 1. What protocol does “VPN Dynamic Routing” use? 53 #MuleSoftMeetups
  • 53. 1. What protocol does “VPN Dynamic Routing” use? A: BGP 54 #MuleSoftMeetups
  • 54. 2. What is the default private port for accessing applications within VPC over HTTP protocol? 55 #MuleSoftMeetups
  • 55. 2. What is the default private port for accessing applications within VPC over HTTP protocol? A: 8091 56 #MuleSoftMeetups
  • 56. 3. What is the correct URL for accessing applications within VPC in US east 1 region over HTTP? a) http://mule-worker-external.us- e1.cloudhub.io:8091/ b) http://mule-worker-external.us- e1.cloudhub.io:8092/ c) http://mule-worker-internal.us-e1.cloudhub.io:8091/57 #MuleSoftMeetups
  • 57. 3. What is the correct URL for accessing applications within VPC in US east 1 region over HTTP? A: C http://mule-worker-internal.us-e1.cloudhub.io:8091 58 #MuleSoftMeetups
  • 58. 4. What is the correct way of connecting AWS VPC if CloudHub VPC and AWS VPC are in the same region for accessing backend services or databases? 59 #MuleSoftMeetups VPN IPSec Tunneling AWS Direct Connect VPC Peering None
  • 59. 4. What is the correct way of connecting AWS VPC if CloudHub VPC and AWS VPC are in the same region for accessing backend services or databases? A: VPC Peering 60 #MuleSoftMeetups
  • 60. 5. What does CIDR mean? 61 #MuleSoftMeetups
  • 61. 5. What does CIDR mean? A: Classless Inter-Domain Routing 62 #MuleSoftMeetups
  • 62. 6. Default Whitelisted CIDRs With Anypoint Dedicated Load Balancer? 63 #MuleSoftMeetups 0.0.0.0/0 192.168.0.1/24 0.0.0.1/24 10.1.1.0/16
  • 63. 6. Default Whitelisted CIDRs With Anypoint Dedicated Load Balancer? A: 0.0.0.0/0 64 #MuleSoftMeetups
  • 64. 7. How many IP addresses are available in subnet mask 0/22? 65 #MuleSoftMeetups
  • 65. 7. How many IP addresses are available in subnet mask 0/22? A: 1024 66 #MuleSoftMeetups
  • 66. 8. What is the subdomain in this DNS: api-dev.example.com? 67 #MuleSoftMeetups
  • 67. 8. What is the subdomain in this DNS: api-dev.example.com? A: api-dev 68 #MuleSoftMeetups
  • 68. 9. What component cannot be configured at Dedicated Load Balancer? 69 #MuleSoftMeetups Whitelisted CIDRs Mapping Rules SSL Certificates Firewall Rules
  • 69. 9. What component cannot be configured at Dedicated Load Balancer? A: Firewall Rules 70 #MuleSoftMeetups
  • 70. 10. What does VPN Tunnel Status Available (UP/DOWN or UP/UP) mean? a) VPN connection is created and actions pending in background. b) VPN is successfully created but the remote side is not configured. c) VPN is successfully created and remote connection is established in Active/Active mode or Active/Passive mode. d) VPN connection is not created. You need to delete and try again. 71 #MuleSoftMeetups
  • 71. 10. What does VPN Tunnel Status Available (UP/DOWN or UP/UP) mean? A: C VPN is successfully created and remote connection is established in Active/Active mode or Active/Passive mode 72 #MuleSoftMeetups
  • 72. 73 ● Share: ○ Tweet using the hashtag #MuleSoftMeetups ○ Invite your network to join: https://meetups.mulesoft.com/toronto/ ● Feedback: ○ Fill out the survey feedback and suggest topics for upcoming events ○ Contact MuleSoft at meetups@mulesoft.com for ways to improve the program What’s next? #MuleSoftMeetups
  • 73. 75 ● You choose! ● Speaker: ○ This can be you  ● Earn a certification or training voucher by being a speaker! Next event YOU! #MuleSoftMeetups