Overview of landing zone deployable architectures
The deployable architecturesCloud automation for deploying a common architectural pattern that combines one or more cloud resources that is designed for easy deployment, scalability, and modularity. are a preconfigured set of infrastructure as code (IaC) assets that are based on the IBM Cloud for Financial Services reference architecture.
The landing zone deployable architectures include Cloud foundation for VPC, Landing zone for containerized applications with OpenShift and Landing zone for applications with virtual servers. You can use the deployable architectures to create a secure and customizable Virtual Private CloudA virtual network that is tied to a private user account and isolated from other networks in a public cloud. Only authorized users can access virtual private cloud resources, which include virtual servers, storage, and subnets. (VPC) environment.
For more information about deployable architectures, read about infrastructure architectures in "Running secure enterprise workloads on IBM Cloud".
Cloud foundation for VPC
The Cloud foundation for VPC deploys a simple IBM Cloud VPC infrastructure without any compute resources, such as Virtual Server Instances (VSIs) or Red Hat OpenShift clusters.
You can use this architecture as the base for your compute resources. Other landing zone deployable architectures use the Cloud foundation for VPC as the base to deploy their resources.
The Cloud foundation for VPC is also a modular solution. The Cloud foundation for VPC creates network topology that uses two default VPCs, each containing multiple subnets to organize resources and define IP ranges. A transit gateway connects these VPCs to facilitate communication. An optional edge VPC in a specific location isolates and accelerates public internet traffic. IBM Cloud Object Storage is employed for Flow Logs and Activity Tracker to help ensure infrastructure observability and auditing.
You can deploy this architecture that uses various ways of configurations and thus can be employed for various use-cases. The following table outlines these Variations and use-cases they can suffice.
| Type of variation | Best suited for |
|---|---|
| Standard (Integrated setup with configurable services) | Ideal for users who seek flexibility to provide a dependable foundation. It grants complete control over architecture parameters, featuring optimized defaults that facilitate a fully functional Virtual Private Cloud (VPC) environment along with seamless integration of IBM Cloud services, eliminating the need for manual configuration. |
| Standard - Financial Services edition | Ideal for production workloads. It adheres to financial services compliance standards. It offers a validated configuration, which is designed to align with the IBM Cloud Framework for Financial Services, to help ensure all necessary regulatory requirements are met. |
For more information about Financial Services Framework, see Getting started with IBM Cloud for Financial Services.
Landing zone for containerized applications with OpenShift
The Landing zone for containerized applications with OpenShift deployable architecture deploys a Red Hat OpenShift Container Platform cluster on IBM Cloud in a VPC environment.
This deployment architecture can create a customizable cluster, specifying its version and size. It offers features like worker pools for managing nodes with similar configurations, subnet configuration for worker node deployment, and endpoint settings for private and public access. Additionally, it includes ingress configuration to manage external traffic routing to internal services within the cluster.
You can deploy this architecture that uses various ways of configurations and thus can be employed for various use-cases. The following table outlines these Variations and use-cases they can suffice.
| Type of variation | Best suited for |
|---|---|
| Landing zone for containerized applications with OpenShift - QuickStart (Basic and simple) | Ideal for rapid deployment for demonstration and development purposes without extensive configuration. It creates a fully customizable Virtual Private Cloud (VPC) environment in a single region. |
| Landing zone for containerized applications with OpenShift - Standard (Integrated setup with configurable services) | Ideal for users seeking flexibility, providing a robust foundation to cater to production workloads. It grants complete control over architecture parameters, featuring optimized defaults that facilitate a fully functional OpenShift cluster and seamless integration with IBM Cloud services, eliminating the need for manual configuration |
| Landing zone for containerized applications with OpenShift - QuickStart (Financial Services edition) | Ideal for rapid deployment for demonstration and development purposes without extensive configuration. It offers a single Red Hat OpenShift cluster within a secure VPC, tailored for your workloads that adheres to the Financial Services reference architecture. |
| Landing zone for containerized applications with OpenShift - Standard (Financial Services edition) | Ideal for production workloads. It can create secure and compliant Red Hat OpenShift Container Platform workload clusters within a Virtual Private Cloud (VPC) network that adheres to the Financial Services reference architecture. |
For more information about the concepts of using Red Hat OpenShift Container Platform on VPC, see this reference architecture from the IBM Cloud for Financial Services docs.
Landing zone for applications with virtual servers
The Landing zone for applications with virtual servers deployment architecture deploys Virtual Server Instances (VSIs) on IBM Cloud. This deployable architecture provides you with secure and customizable compute resources for running your applications and services.
You can deploy this architecture that uses various ways of configurations and thus can be employed for various use-cases. The following table outlines these Variations and use-cases they can suffice.
| Type of variation | Best suited for |
|---|---|
| Landing zone for applications with virtual servers - QuickStart | Ideal for rapid deployment for demonstration and development purposes without extensive configuration. It sets up a fully customizable Virtual Private Cloud (VPC) environment in a single region. |
| Landing zone for applications with virtual servers - Standard | Ideal for users who seek a robust, secure, and customizable infrastructure based on the Financial Services reference architecture. It sets up virtual servers within a Virtual Private Cloud (VPC) across multiple zones to deploy workloads in a compliant, and scalable environment. |
| Landing zone for applications with virtual servers - Extension | Ideal for extending an existing VPC setup by generating virtual server instances (VSI) within one or multiple subnets of an existing landing zone VPC deployable architecture. |
For more information about the concepts of using this deployment architecture, see this reference architecture from the IBM Cloud for Financial Services docs.