Development and deployment of hybrid cloud
Once we decide on the required architectural pattern based on the problem we are trying to solve, the next step is to select the appropriate products and technologies to implement the hybrid cloud infrastructure design. The development phase includes the following:
- Compute design considerations:
- Bare metal servers
- Hypervisor/virtual machines
- Identification of cloud regions
- Hardening and certifying virtual machine images
- OS certification and hardening
- Network design considerations and trust extension:
- Network perimeter and firewall rules (ingress/egress)
- Next-generation firewall appliance, if applicable
- VPC definition and cloud network security
- Private and public subnets
- The Demilitarized Zone (DMZ) on the on-premises network
- A Web Application Firewall (WAF) to protect against Distributed Denial-of-Service (DDoS)
- Restricted internet connectivity to internal systems
- Domain controller and DNS:
- Use cloud DNS
- Use on-premises DNS
- Cloud load balancers...
