VSI on existing VPC landing zone - Extension
This deployable architecture extends an existing VPC deployable architecture by creating virtual server instances (VSI) in some or all of the subnets of any existing landing zone VPC deployable architecture. The architecture is based on the IBM Cloud for Financial Services reference architecture.
Architecture diagram
Design requirements
Components
VPC architecture decisions
Requirement | Component | Reasons for choice | Alternative choice |
---|---|---|---|
Create virtual server instances to support management | Management virtual server instances | Create a VPC virtual server instance that can be used for management and maintenance of your hosted application. Configure ACL and security group rules to allow access to IBM Cloud services, and workload and management VPCs. | |
|
Secure landing zone components | Create a minimum set of required components for a secure landing zone | Create a modified set of required components for a secure landing zone in preset |
Key and password management architecture decisions
Requirement | Component | Reasons for choice | Alternative choice |
---|---|---|---|
|
Public SSH key provided by customer | Ask customer to specify the key. Accept the input as secure parameter. |
Next steps
- See the landing zone deployment guide.
- Read about IBM Cloud for Financial Services