Capgemini SE

06/02/2023 | Press release | Archived content

Networking in cloud: The context

Networking in cloud: The context

Renjith Sreekumar

2 Jun 2023

Network management in public cloud is fundamentally different from how organizations used to manage legacy networks in their on-premises data centers.

Public clouds bring a unique set of hyperscaler-specific models for network and security management, including access controls (IAM), accounts, subscriptions, subnets, tenants, routing tables, etc. These constructs abstract the underlying network into cloud-native resources and services for simplicity, leaving limited ability for engineers to control and manage them.

The challenge

Application and user traffic in the cloud needs to traverse multiple network paths - across the internet, across the DCs, to the cloud, within the cloud, and between clouds. The networking must be able to scale-up and scale-out across multiple paths at high throughput (active-active paths). Additionally, enterprises need to insert advanced security controls in between, segment the traffic according to policies, provide end-to-end encryption, and inspect inbound and outbound traffic. They need to automate the lifecycle of infrastructure and need to be provided with deep visibility and troubleshooting tools to improve the performance and MTTR of the application services.

The public cloud comes with basic constructs such as VPCs, routetable, subnets, etc. to manage networking - which is simple to start with. However, as the cloud deployments accelerate and span across regions and multi-cloud boundaries, the complexities start evolving. The lack of mature operational toolkits, limited visualization, and the lack of interest from cloud providers to support your multi-cloud patterns make the matter worse, leaving engineers and operators to "figure out" things on their own.

The opportunity: Solve networking challenges for enterprises in public cloud

The opportunity is here to create a network control plane that runs over public clouds to provide enterprises with the flexibility to build, configure, and operate a network, securely and in a repeatable way. This provides engineers with the ability to dynamically manage network performance for improved application and user experience. Achieving this goal requires the following:

  • Develop a simple and consistent, declarative networking architecture in and across cloud service providers
  • Use a unified and single Terraform module to build, deploy, and manage network as a code
  • Embedded network security to deliver central policy creation with distributed inspection and enforcement
  • Deep operational observability and control to increase agility and automation and reduce MTTR and costs

Summary

Software-defined networks (SDNs) revolutionized network management in DCs. SDWAN/SASE simplified the connectivity across branches and DCs. All these innovations along with cloud-specific constructs such as ExpressRoute, Direct Connect, Cloud Interconnect, Transit Gateways, Azure vWAN, and GCP NCC are allowing organizations to drive the best path to access public clouds. However, within cloud, due to the inherent limitations of visibility and control of the underlying network construct, organizations are challenged with scaling their cloud across regions and multiple clouds and providing a consistent user and application experience.

This is where the need for building cloud networking as a unified control plane arises. It simplifies network management, centralizes policy management, and provides engineers with control and visibility to manage network lifecycle and application traffic as a code.

How we deliver value

At Capgemini, we help clients establish a cloud platform team, with a community focus on engineering innovation in the cloud. We bring expertise in cloud platform engineering to enable a lifecycle approach to cloud services, from engineering to operations, by abstracting cloud foundational services into developer-friendly self-services for agile and high-speed development.

Our thought leadership and services are creating a profound impact in the market, helping organizations to deliver products faster while ensuring resiliency and reliability, and driving customer experience.

Author

Renjith Sreekumar

Global Portfolio Leader, Cloud Platform Engineering and SRE Services

Connect with us

First Name *
First Name is not valid.
Last Name *
Last Name is not valid.
Email *
Email is not valid.
Company *
Company is not valid.
Country
Country Afghanistan Aland Islands Albania Algeria American Samoa Andorra Angola Anguilla Antarctica Antigua And Barbuda Argentina Armenia Aruba Australia Austria Azerbaijan Bahamas Bahrain Bangladesh Barbados Belarus Belgium Belize Benin Bermuda Bhutan Bolivia Bosnia And Herzegovina Botswana Bouvet Island Brazil British Indian Ocean Territory Brunei Darussalam Bulgaria Burkina Faso Burundi Cambodia Cameroon Canada Cape Verde Cayman Islands Central African Republic Chad Chile China Christmas Island Cocos (Keeling) Islands Colombia Comoros Congo Congo, Democratic Republic Cook Islands Costa Rica Cote D'Ivoire Croatia Cuba Cyprus Czech Republic Denmark Djibouti Dominica Dominican Republic Ecuador Egypt El Salvador Equatorial Guinea Eritrea Estonia Ethiopia Falkland Islands (Malvinas) Faroe Islands Fiji Finland France French Guiana French Polynesia French Southern Territories Gabon Gambia Georgia Germany Ghana Gibraltar Greece Greenland Grenada Guadeloupe Guam Guatemala Guernsey Guinea Guinea-Bissau Guyana Haiti Heard Island & Mcdonald Islands Holy See (Vatican City State) Honduras Hong Kong Hungary Iceland India Indonesia Iran, Islamic Republic Of Iraq Ireland Isle Of Man Israel Italy Jamaica Japan Jersey Jordan Kazakhstan Kenya Kiribati Korea Kuwait Kyrgyzstan Lao People's Democratic Republic Latvia Lebanon Lesotho Liberia Libyan Arab Jamahiriya Liechtenstein Lithuania Luxembourg Macao Macedonia Madagascar Malawi Malaysia Maldives Mali Malta Marshall Islands Martinique Mauritania Mauritius Mayotte Mexico Micronesia, Federated States Of Moldova Monaco Mongolia Montenegro Montserrat Morocco Mozambique Myanmar Namibia Nauru Nepal Netherlands Netherlands Antilles New Caledonia New Zealand Nicaragua Niger Nigeria Niue Norfolk Island Northern Mariana Islands Norway Oman Pakistan Palau Palestinian Territory, Occupied Panama Papua New Guinea Paraguay Peru Philippines Pitcairn Poland Portugal Puerto Rico Qatar Reunion Romania Russian Federation Rwanda Saint Barthelemy Saint Helena Saint Kitts And Nevis Saint Lucia Saint Martin Saint Pierre And Miquelon Saint Vincent And Grenadines Samoa San Marino Sao Tome And Principe Saudi Arabia Senegal Serbia Seychelles Sierra Leone Singapore Slovakia Slovenia Solomon Islands Somalia South Africa South Georgia And Sandwich Isl. Spain Sri Lanka Sudan Suriname Svalbard And Jan Mayen Swaziland Sweden Switzerland Syrian Arab Republic Taiwan Tajikistan Tanzania Thailand Timor-Leste Togo Tokelau Tonga Trinidad And Tobago Tunisia Turkey Turkmenistan Turks And Caicos Islands Tuvalu Uganda Ukraine United Arab Emirates United Kingdom United States United States Outlying Islands Uruguay Uzbekistan Vanuatu Venezuela Viet Nam Virgin Islands, British Virgin Islands, U.S. Wallis And Futuna Western Sahara Yemen Zambia Zimbabwe
Country is not valid.
Phone (optional)
Your Message *
Your Message is not valid.
I agree to Capgemini collecting and processing my personal data to allow me to receive information on Capgemini services. For further information, please see our Privacy Notice. .
Expert title
Page URL
Send
Thank you for your submission. We will be in touch with you soon!

We are sorry, the form submission failed. Please try again.