Layer-2 isolation of network domains is achieved through the dedicated network domain of the financial cloud, to ensure isolation and secure access between DMZ/SF/PTR zones.
Internet gateways (IGW) are to guarantee the secure access between cloud services and internet clients, and security groups are to guarantee the secure access to cloud servers between different network domains.
Dynamic expansion of the number of subnets in the network domain helps users add and delete subnet segments in the network domain at any time when necessary.
Provide multiple plans for the cloud upload architecture, offering flexible hybrid cloud services through VPN gateways and leased lines.
For financial business scenarios requiring high security, a VPC-based disaster recovery system in two places and three centers is built to ensure the cloud business security and high availability. Business is deployed in different availability zones to achieve same-city active-active availability; peering connection is adopted to realize remote data disaster recovery; and multi-level security protection based on ACL, security groups, and CAM is implemented to achieve security isolation of business areas.
Real-time construction and management for user VPC, one-click construction of data center to realize arrangement of resources, service allocation automatically to meet all demands from users.
VPC can be connected easily through leased lines, IPSEC VPN and OPEN VPN for users to build a hybrid cloud.
VPC network domain supports multi-subnets to achieve a flexible expansion of cloud hosts.
The production area, partner area, and DMZ area are isolated using virtual firewalls to ensure the security of the production area.
Ping An Life Insurance
Snowball Finance Inc
Ping An Wanjia Medicare