Home > Design Patterns > Secure External Cloud Connection

Secure External Cloud Connection (Cope, Erl, Kristan)

How can a cloud network establish a secure connection with on-premise IT resources?

Secure External Cloud Connection

Problem

Solutions and service compositions can be required to execute partially in the cloud and partially on-premise due to scaling requirements, compliance regulations or organizational policy, creating the need for secure connectivity.

Solution

A virtual private network (VPN) is used to establish an encrypted connection between the cloud service provider and the cloud consumer.

Application

A VPN is established between the cloud consumer gateway (CCG) and the cloud provider’s virtual private gateway (VPG) using the Border Gateway Protocol (BGP).
Secure External Cloud Connection: A secure connection is established between the cloud consumer network and virtual private cloud.

A secure connection is established between the cloud consumer network and virtual private cloud.

Secure External Cloud Connection: A customer network securely connected to a VPC.

A customer network securely connected to a VPC.

Secure External Cloud Connection: VPN connections are established via the use of a cloud hub.

VPN connections are established via the use of a cloud hub.