SWIFT Alliance Lite2 on Azure
This example is of a Cloud Network Architecture Diagram, typically used by network engineers, system architects, and IT infrastructure teams. It’s essential when designing cloud-based services, helping to visualize how different services, applications, and network components communicate in the cloud. These diagrams are useful during the planning phase of a project or when documenting an existing system for reference.
Who Typically Uses It:
- System Architects: To design and represent the system before it is built.
- Network Engineers: To configure networks based on the diagram.
- Developers & Operations Teams: To understand how their components fit into the larger infrastructure.
- Business Stakeholders: To get a high-level view of how services are connected and secured.
When & Where to Use:
- During the Planning Phase: When you need to design the infrastructure and ensure all components interact as intended.
- For Documentation: To ensure everyone in the organization understands the architecture.
- Troubleshooting & Auditing: To check for misconfigurations or network issues.
In this example architecture diagram, we are looking at an enterprise-level cloud infrastructure using Azure services. This architecture diagram is designed to show a secure and scalable network infrastructure, connecting business users, back-office applications, and external services like SWIFTNet, using virtual networks, VPN, and ExpressRoute.
Components:
- Customer Premises (Left Side): This represents the business users and back-office applications that need to connect to the cloud services. These connections are established via VPN or ExpressRoute.
- AutoClient Subscription (Center): This is the heart of the system where two virtual networks—Hub and AutoClient Spoke—are peered.
- Hub Virtual Network contains critical security components like the Azure Firewall and Azure Bastion.
- Spoke Virtual Network hosts application VMs for business operations, designed with high availability (HA) in mind. Network Security Groups (NSGs) are in place for controlling access.
- Customization Tip: If your architecture focuses on different workloads, you can modify these components or add additional layers of security to reflect your needs.
- Alliance Connect Virtual Subscription (Right Side): This area of the diagram shows another set of virtual networks responsible for connecting to third-party services via secured routes like ExpressRoute or the Internet. SWIFTNet is used here for financial communications.
- Customization Tip: If you're integrating external services, ensure proper routes and gateways are represented.
This diagram serves as a great starting point for designing cloud infrastructure, focusing on network security, scalability, and connectivity. You can use it as a foundation and modify it to fit your unique requirements using tools like MockFlow Flowchart Maker. MockFlow allows you to easily drag and drop icons, modify networks, and create custom architecture diagrams, helping your team stay aligned and your system well-documented.
Once you're ready to expand or refine your design, this diagram can be quickly adjusted, ensuring the flexibility needed for cloud environments.