Sample Usecases
The following examples provide a high-level overview of how you can utilize PrivateLinks for a specific use case.
Remote resources only
Sample solutionIn this scenario, you do not have any resources in AWS. You only have resources on-premises, or with a cloud provider that is not supported.
In this use case, you will be required to create a bridge to access your resources using a VPN. This bridge consists of empty cloud resources, and serves the purpose of bridging your resources on-premises or on the unsupported cloud environment. For unsupported cloud environments, the recommended connection type is Site-to-Site VPN or an MPLS style connectivity.
Sample solution
This sample solution consists of a bridge VPC that serves the purpose of bridging your on-premises resources with webMethods Cloud through a site-to-site VPN connectivity. The bridge VPC also has security configured in the router as per your corporate security policy. The bridge VPC acts as a secure zone if you need to have firewalls or virus scanners in between webMethods Cloud and your environment.
AWS resources in VPCs
Sample solutionIn this scenario, you have only AWS resources in VPCs that you need to access from webMethods Cloud.
In this use case, you must create a bridge VPC to access your AWS resources using VPC peering. This bridge consists of empty cloud resources and serves the purpose of bridging your resources on AWS.
Sample solution
This sample solution is the default setup and the recommended solution, as the bridge VPC also has security configured in the router as per your corporate security policy. The bridge VPC acts as a secure zone if you need to have firewalls or virus scanners in between webMethods Cloud and your AWS environment.
AWS Transit Gateway
Sample solutionIn this scenario, you are using an AWS transit gateway to orchestrate multiple VPCs across multiple regions into one coherent setup. Your setup is a classic hub and spoke model, with the transit gateway acting as the hub.
You are probably using a VPN or AWS Direct Connect or both to access your on-premises resources. AWS Direct Connect provides you a fast connection to your on-premises resources and VPN most probably acts as a backup in case AWS Direct Connect fails. VPN could also be used to prioritize traffic to certain resources over AWS Direct Connect. The transit gateway is the hub in your environment connecting together all the parts such that they are accessible.
Sample solution
In this use case, you must add a bridge VPC that links webMethods Cloud to your environment. The bridge VPC is then connected to the AWS transit gateway giving the router in the bridge access to all the resources.
