Customer LAN (CLAN) Network
Primary path for customer access to the systems the customer uses, such as Vantage and supporting services. CLAN is typically an extension of the customer network.
Customer LAN (CLAN) Network | |
---|---|
Connection types | 10/25-Gbps SFP28 ports |
Connections per site |
10 Gbps – 1 (2 HA) to 20 (40 HA) 40 Gbps – 1 (2 HA) to 6 (12 HA) 100 Gbps – 1 (2 HA) to 2 (4 HA) |
Redundancy | Active / Active |
Control Plane Network
Required to manage and support the cloud environment.
Control Plane Network | |
---|---|
Connection types | 2 x 1 Gb |
VPNs per site | 2 Active |
Minimum VPN bandwidth per VPN | 1 Gbps |
Maximum latency to Internet | 15 msec |
Private transit network IP addresses per site | 4 |
Public IP addresses per site | 2 |
Public IP addresses termination point | IC firewalls |
Redundancy |
Active / Active – Physical connections 2 Active – VPNs |
Out-of-Band Network
Required for the IntelliCloud team to reach the cloud infrastructure if the primary path is not available. This path should be independent from the CLAN and Control Plane networks.
Out-of-Band Network | |
---|---|
Connection types | 1000 Base-T SFP Copper |
Connections per site | 1 |
Minimum bandwidth | 100 Mbps |
Maximum latency to Internet | 15 msec |
Diverse path requirement | Diverse compared to Control Plane / OOB |
Private transit network IP addresses per site | 2 |
Public IP addresses per site | 1 |
Public IP addresses termination point | OOB router |
Redundancy |
Active / Active – Physical connections 2 Active – VPNs |
Lightweight Directory Access Protocol (LDAP) Support
The LDAP mechanism supports directory authentication and authorization of users defined in an LDAP-compliant directory. You can configure Vantage to authenticate database users to their LDAP/AD systems, which requires opening ports to facilitate the connection.
Domain Name System (DNS) Servers
The DNS host and domain names for the directory server appear on each Vantage node. IntelliCloud provides a list of IP addresses for the services, and customers can add them in their DNS. If you do not consistently define the directory server throughout the DNS, LDAP user authentication fails.