Como llevar un Banco a la nube?

Slide 1

Slide 1 text

Como llevar un banco   a la nube?

Slide 2

Slide 2 text

Why?

Slide 3

Slide 3 text

1. CHOOSING THE RIGHT PROVIDER

Slide 4

Slide 4 text

Benchmark Service Level Agreements (SLA) Uptime Guarantees Security, Compliance and Privacy Standards Data Ownership Pricing Model Where the Data Centers Are Located Support

Slide 5

Slide 5 text

2. ALL IN

Slide 6

Slide 6 text

The Problem

Slide 7

Slide 7 text

By 2020, 90 Percent of Organizations Will Adopt Hybrid Infrastructure Management https://www.gartner.com/newsroom/id/3666917

Slide 8

Slide 8 text

Benefits of a Smoothly Migration Keep the business up & running Security every step Learning

Slide 9

Slide 9 text

3. Connections

Slide 10

Slide 10 text

VPC VPN Direct Connect Toolset

Slide 11

Slide 11 text

What’s VPC? https://docs.aws.amazon.com/AmazonVPC/latest/UserGuide/VPC_Introduction.html “Amazon Virtual Private Cloud (Amazon VPC) enables you to launch AWS resources into a virtual network that you've defined. This virtual network closely resembles a traditional network that you'd operate in your own data center, with the benefits of using the scalable infrastructure of AWS.”

Slide 12

Slide 12 text

What’s VPN? “Internet Protocol Security (IPsec) is a protocol suite for securing Internet Protocol (IP) communications by authenticating and encrypting each IP packet of a communication session. IPsec includes protocols for establishing mutual authentication between agents at the beginning of the session and negotiation of cryptographic keys to be used during the session. “

Slide 13

Slide 13 text

What’s Direct Connect? “Dedicated, private pipes into AWS Create private (VPC) or public virtual interfaces to AWS Reduced data-out rates (data-in still free)) Consistent network performance At least 1 location to each AWS region Option for redundant connections Multiple AWS accounts can share a connection Inter-Region enables connectivity to multiple regions in US Uses BGP to exchange routing information over a VLAN”

Slide 14

Slide 14 text

VPN vs Direct Connect?

Slide 15

Slide 15 text

La primer VPN

Slide 16

Slide 16 text

How to create a VPN? 1. Create a VGW 2. Attach it to the VPC 3. Create a CGW 4. Create a VPN 5. Update Route Tables 6. Configure CGW

Slide 17

Slide 17 text

Create a Customer Gateway

Slide 18

Slide 18 text

Create a Virtual Private Gateway And attach it to a VPC

Slide 19

Slide 19 text

Create VPN

Slide 20

Slide 20 text

High Availability

Slide 21

Slide 21 text

Direct Connect

Slide 22

Slide 22 text

Direct Connect: Letter of Authorization

Slide 23

Slide 23 text

Create VIF

Slide 24

Slide 24 text

VIF

Slide 25

Slide 25 text

VIF

Slide 26

Slide 26 text

Final Solution Direct Connect with VPN Backup

Slide 27

Slide 27 text

Arquitectura Simplificada VPC  peering Banco APi Manager AWS Apps Apps Internet AWS Direct Connect NAT App Server Legacy

Slide 28

Slide 28 text

4. How to Operate

Slide 29

Slide 29 text

Security ultra first priority Multi VPC VPC Peering Log Everything Practices

Slide 30

Slide 30 text

mauricio.ferreyra@incluit.com @mauriff mferreyra GRACIAS!