{"id":731,"date":"2020-06-28T18:58:33","date_gmt":"2020-06-28T18:58:33","guid":{"rendered":"https:\/\/reviewnprep.com\/blog\/?p=731"},"modified":"2021-03-27T15:05:52","modified_gmt":"2021-03-27T15:05:52","slug":"understanding-private-cloud-on-the-cloud-platforms","status":"publish","type":"post","link":"https:\/\/reviewnprep.com\/blog\/understanding-private-cloud-on-the-cloud-platforms\/","title":{"rendered":"Understanding Private Cloud on the Cloud platforms"},"content":{"rendered":"\n<h2 class=\"wp-block-heading\">A lot of choices when it comes to choosing the cloud providers<\/h2>\n\n\n\n<p class=\"has-very-dark-gray-color has-text-color\">Hello everyone, hope all of you are doing well and keeping healthy and safe. I am kicking off these series of blogs on understanding cloud offerings by different cloud providers. There are at least three ulterior motives behind this and I am hoping it becomes apparent as you read through these articles.<\/p>\n\n\n\n<p class=\"has-very-dark-gray-color has-text-color\">Ever wondered why Google, Amazon and IBM calls something VPC (virtual private cloud) on GCP, AWS and IBM cloud respectively, while Oracle calls it VCN (virtual cloud network) on OCI and Microsoft calls it VNET (virtual network) on Azure.&nbsp; <\/p>\n\n\n\n<p class=\"has-very-dark-gray-color has-text-color\">Well, not all of us may know it as they might practically be the same feature in the cloud to provide an isolated network in the cloud in a shared network infrastructure but there might still be subtle differences between how these private cloud environments are orchestrated by these different cloud providers. This is the first and foremost objective of this blog and that is to break the myth around the private cloud. In order to accomplish this, we will proceed in a step by step manner \u2013<\/p>\n\n\n\n<h3 class=\"wp-block-heading\"><u>Understanding network IP and subnet addressing<\/u><\/h3>\n\n\n\n<p class=\"has-very-dark-gray-color has-very-light-gray-background-color has-text-color has-background has-medium-font-size\"><strong>Internet Protocol Addressing<\/strong><\/p>\n\n\n\n<p class=\"has-very-dark-gray-color has-text-color\">An IP address serves two main functions. It identifies the host and location of the host in the network and thereby an ability to establish a path to that host.<\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>An IPv4 address has a size of 32 bits and that is because and that is because the IPv4 address in dotted-decimal notation has 4 &#8211; 8 bits separated by dots.<\/li><li>These 4*8 comes to 32 bits which limits the address space to 2<sup>32<\/sup> IPv4 address space which is approximately ~ 4.29 billion addresses.<\/li><li>Out of these 4.29B addresses, some are reserved: all 0s and 1s, private address, broadcast and so forth. Remaining Addresses are known as Public IP Addresses (~4B).<\/li><li>Since each IP address has 4*8 bit combination, each 8 bit can expand to 2<sup>8 <\/sup>bit IP beginning with zero to 255.<\/li><\/ul>\n\n\n\n<p class=\"has-very-dark-gray-color has-text-color\">Public IPv4 addresses are globally unique and can be reachable from anywhere. That\u2019s why these global addresses have a DNS configured that interprets the domain name to a public IPv4 address. Routing works by delivering packets to a destination network and the organization that owns the destination network is responsible for internally routing\/delivering the packet to a machine.<\/p>\n\n\n\n<p class=\"has-very-dark-gray-color has-text-color\"><strong>Three classes of network were defined as per internet protocol <a href=\"https:\/\/tools.ietf.org\/html\/rfc791\" target=\"_blank\" rel=\"noreferrer noopener\">RFC791<\/a>:<\/strong><\/p>\n\n\n\n<figure class=\"wp-block-image size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"383\" src=\"https:\/\/reviewnprep.com\/blog\/wp-content\/uploads\/2021\/01\/image-16-1024x383-1.jpg\" alt=\"Classes of Network Used By Cloud Providers\" class=\"wp-image-1568\" srcset=\"https:\/\/reviewnprep.com\/blog\/wp-content\/uploads\/2021\/01\/image-16-1024x383-1.jpg 1024w, https:\/\/reviewnprep.com\/blog\/wp-content\/uploads\/2021\/01\/image-16-1024x383-1-300x112.jpg 300w, https:\/\/reviewnprep.com\/blog\/wp-content\/uploads\/2021\/01\/image-16-1024x383-1-768x287.jpg 768w\" sizes=\"(max-width: 1024px) 100vw, 1024px\" \/><figcaption>Classes of Network Used By Cloud Providers<\/figcaption><\/figure>\n\n\n\n<p class=\"has-very-dark-gray-color has-very-light-gray-background-color has-text-color has-background has-medium-font-size\"><strong>Classless Inter domain range (CIDR)<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>Classless inter domain routing (CIDR) was introduced to accommodate a flexible addressing scheme to conserve address space.<\/li><li>Number of bits used to identify network is explicitly stated with&nbsp;&nbsp; \/&lt;number&gt; notation<\/li><li>Address is allocated based on organization\u2019s actual need<\/li><li>IPv6 also uses CIDR Notation and more comprehensively handles address space shortage<\/li><li>Example of CIDR notation \u2013<\/li><\/ul>\n\n\n\n<figure class=\"wp-block-image size-large is-resized\"><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/reviewnprep.com\/blog\/wp-content\/uploads\/2020\/06\/image-20-1024x92.png\" alt=\"CIDR notation\" class=\"wp-image-746\" width=\"689\" height=\"62\" srcset=\"https:\/\/reviewnprep.com\/blog\/wp-content\/uploads\/2020\/06\/image-20-1024x92.png 1024w, https:\/\/reviewnprep.com\/blog\/wp-content\/uploads\/2020\/06\/image-20-300x27.png 300w, https:\/\/reviewnprep.com\/blog\/wp-content\/uploads\/2020\/06\/image-20-768x69.png 768w, https:\/\/reviewnprep.com\/blog\/wp-content\/uploads\/2020\/06\/image-20-1536x139.png 1536w, https:\/\/reviewnprep.com\/blog\/wp-content\/uploads\/2020\/06\/image-20-2048x185.png 2048w\" sizes=\"(max-width: 689px) 100vw, 689px\" \/><figcaption>CIDR notation<\/figcaption><\/figure>\n\n\n\n<p class=\"has-very-dark-gray-color has-very-light-gray-background-color has-text-color has-background has-medium-font-size\"><strong>Subnets<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>Network are more or less sub-divided into subnets inside an organization<\/li><li>This subnetting of address assists in manageability of network, security, isolation etc.<\/li><li>CIDR block convention is followed to identify subnets<\/li><\/ul>\n\n\n\n<figure class=\"wp-block-image size-large is-resized\"><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/reviewnprep.com\/blog\/wp-content\/uploads\/2020\/06\/image-17-1024x308.png\" alt=\"\" class=\"wp-image-739\" width=\"705\" height=\"212\" srcset=\"https:\/\/reviewnprep.com\/blog\/wp-content\/uploads\/2020\/06\/image-17-1024x308.png 1024w, https:\/\/reviewnprep.com\/blog\/wp-content\/uploads\/2020\/06\/image-17-300x90.png 300w, https:\/\/reviewnprep.com\/blog\/wp-content\/uploads\/2020\/06\/image-17-768x231.png 768w, https:\/\/reviewnprep.com\/blog\/wp-content\/uploads\/2020\/06\/image-17-1536x462.png 1536w, https:\/\/reviewnprep.com\/blog\/wp-content\/uploads\/2020\/06\/image-17-2048x615.png 2048w\" sizes=\"(max-width: 705px) 100vw, 705px\" \/><figcaption><strong>CIDR Block to identify subnets<\/strong><\/figcaption><\/figure>\n\n\n\n<p class=\"has-very-dark-gray-color has-text-color\">A private cloud configuration on a cloud platform requires you to specify a CIDR and a subnet CIDR.<\/p>\n\n\n\n<p class=\"has-very-light-gray-background-color has-background has-medium-font-size\"><strong>Private Address Space<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>Private address is a reserved space (<a href=\"https:\/\/tools.ietf.org\/html\/rfc1918\" target=\"_blank\" rel=\"noreferrer noopener\">RFC1918<\/a>)<\/li><li>Organizations are free to use this space for their own internal private network<\/li><li>These addresses cannot be used for public addresses<\/li><\/ul>\n\n\n\n<figure class=\"wp-block-image size-large is-resized\"><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/reviewnprep.com\/blog\/wp-content\/uploads\/2020\/06\/image-18-1024x220.png\" alt=\"CIDR Block to identify subnets\" class=\"wp-image-741\" width=\"648\" height=\"139\" srcset=\"https:\/\/reviewnprep.com\/blog\/wp-content\/uploads\/2020\/06\/image-18-1024x220.png 1024w, https:\/\/reviewnprep.com\/blog\/wp-content\/uploads\/2020\/06\/image-18-300x64.png 300w, https:\/\/reviewnprep.com\/blog\/wp-content\/uploads\/2020\/06\/image-18-768x165.png 768w, https:\/\/reviewnprep.com\/blog\/wp-content\/uploads\/2020\/06\/image-18-1536x330.png 1536w, https:\/\/reviewnprep.com\/blog\/wp-content\/uploads\/2020\/06\/image-18-2048x440.png 2048w\" sizes=\"(max-width: 648px) 100vw, 648px\" \/><figcaption>CIDR Block to identify subnets<\/figcaption><\/figure>\n\n\n\n<p class=\"has-very-dark-gray-color has-text-color\">You can read more about IP addresses and usage from the <a href=\"https:\/\/en.wikipedia.org\/wiki\/IP_address\">WIKI<\/a> page. I have added my interpretation here for clarity and also to build a background for what we want to discuss about virtual private clouds.<\/p>\n\n\n\n<p class=\"has-very-dark-gray-color has-very-light-gray-background-color has-text-color has-background has-medium-font-size\"><strong>Identifying Overlapping CIDR ranges<\/strong><\/p>\n\n\n\n<p class=\"has-very-dark-gray-color has-text-color\">You may always run into a situation where you are configuring VPCs and need to accurately identify if the CIDRs overlap before you can peer the VPCs or use some other networking options to peer them. I am have enlisted a few examples below in order to demonstrate a simplification of identifying overlapping CIDRs.<\/p>\n\n\n\n<figure class=\"wp-block-image size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"596\" src=\"https:\/\/reviewnprep.com\/blog\/wp-content\/uploads\/2020\/06\/image-19-1024x596.png\" alt=\"How to identify overlapping CIDRs\" class=\"wp-image-742\" srcset=\"https:\/\/reviewnprep.com\/blog\/wp-content\/uploads\/2020\/06\/image-19-1024x596.png 1024w, https:\/\/reviewnprep.com\/blog\/wp-content\/uploads\/2020\/06\/image-19-300x175.png 300w, https:\/\/reviewnprep.com\/blog\/wp-content\/uploads\/2020\/06\/image-19-768x447.png 768w, https:\/\/reviewnprep.com\/blog\/wp-content\/uploads\/2020\/06\/image-19-1536x895.png 1536w, https:\/\/reviewnprep.com\/blog\/wp-content\/uploads\/2020\/06\/image-19-2048x1193.png 2048w\" sizes=\"(max-width: 1024px) 100vw, 1024px\" \/><figcaption>How to identify overlapping CIDRs<\/figcaption><\/figure>\n\n\n\n<p class=\"has-very-dark-gray-color has-text-color\">I think you all may already know this but let me document it so that we all understand what I have understood how to identify starting and ending addresses quickly in CIDR range. The subnet mask in a CIDR range in a way identifies what parts of the 4 \u2013 8 bits will change in CIDR.<\/p>\n\n\n\n<p class=\"has-very-dark-gray-color has-text-color\">Take this example &#8211; 192.168.0.0\/16<\/p>\n\n\n\n<p class=\"has-very-dark-gray-color has-text-color\">The most significant 16 bits \u2013 highlighted in RED \u2013 identifies the network &#8211; 11000000.10101000.00000000.00000000<\/p>\n\n\n\n<p class=\"has-very-dark-gray-color has-text-color\">The remaining 16 bits identify the variable portion of the network for hosts and since each 8 bit is 2<sup>8<\/sup> number of hosts, the ending address of CIDR can span to 255 max on last 16 bits.<\/p>\n\n\n\n<figure class=\"wp-block-table is-style-regular\"><table class=\"has-fixed-layout\"><thead><tr><td><strong>Provider<\/strong><\/td><td><strong>GOOGLE<\/strong><\/td><td><strong>AMAZON<\/strong><\/td><td><strong>MICROSOFT<\/strong><\/td><td><strong>ORACLE<\/strong><\/td><td><strong>IBM<\/strong><\/td><\/tr><\/thead><tbody><tr><td>Console<\/td><td><a href=\"https:\/\/cloud.google.com\/\" target=\"_blank\" rel=\"noreferrer noopener\">Google Cloud Platform<\/a><\/td><td><a href=\"https:\/\/aws.amazon.com\/\" target=\"_blank\" rel=\"noreferrer noopener\">Amazon Web Services<\/a><\/td><td><a href=\"https:\/\/azure.microsoft.com\/en-us\/\" target=\"_blank\" rel=\"noreferrer noopener\">MS Azure<\/a><\/td><td><a href=\"https:\/\/myservices.us.oraclecloud.com\/mycloud\/\" target=\"_blank\" rel=\"noreferrer noopener\">Oracle Cloud Infrastructure<\/a><\/td><td><a href=\"https:\/\/cloud.ibm.com\/\" target=\"_blank\" rel=\"noreferrer noopener\">IBM Cloud<\/a><\/td><\/tr><tr><td>Data Centers<\/td><td><a href=\"https:\/\/cloud.google.com\/compute\/docs\/regions-zones\" target=\"_blank\" rel=\"noreferrer noopener\">Google Regions &amp; Zones<\/a><\/td><td><a href=\"https:\/\/docs.aws.amazon.com\/AWSEC2\/latest\/UserGuide\/using-regions-availability-zones.html\" target=\"_blank\" rel=\"noreferrer noopener\">AWS Regions, Availability Zones, and Local Zones<\/a><\/td><td>Azure Regions, Geographies &amp; Availability Zones<\/td><td><a href=\"https:\/\/docs.cloud.oracle.com\/en-us\/iaas\/Content\/General\/Concepts\/regions.htm\" target=\"_blank\" rel=\"noreferrer noopener\">OCI Regions &amp; Availability Domains<\/a><\/td><td><a href=\"https:\/\/cloud.ibm.com\/docs\/containers?topic=containers-regions-and-zones\" target=\"_blank\" rel=\"noreferrer noopener\">IBM Cloud Regions &amp; Zones<\/a><\/td><\/tr><tr><td>VPC Documentation<\/td><td><a href=\"https:\/\/cloud.google.com\/vpc\/docs\/overview\" target=\"_blank\" rel=\"noreferrer noopener\">Virtual Private Cloud (VPC)<\/a><\/td><td><a href=\"https:\/\/docs.aws.amazon.com\/vpc\/index.html\" target=\"_blank\" rel=\"noreferrer noopener\">Virtual Private Cloud (VPC)<\/a><\/td><td><a href=\"https:\/\/docs.microsoft.com\/en-us\/azure\/virtual-network\/virtual-networks-overview\" target=\"_blank\" rel=\"noreferrer noopener\">Virtual Networks (VNet)<\/a><\/td><td><a href=\"https:\/\/docs.cloud.oracle.com\/en-us\/iaas\/Content\/Network\/Tasks\/quickstartnetworking.htm\" target=\"_blank\" rel=\"noreferrer noopener\">Virtual Cloud Network (VCN)<\/a><\/td><td><a href=\"https:\/\/cloud.ibm.com\/docs\/vpc\" target=\"_blank\" rel=\"noreferrer noopener\">Virtual Private Cloud (VPC)<\/a><\/td><\/tr><tr><td>VPC Scope<\/td><td>1. Global (VPCs are global with regional subnets).<br>2. <a rel=\"noreferrer noopener\" href=\"https:\/\/cloud.google.com\/vpc\/docs\/shared-vpc\" target=\"_blank\">Shared VPCs<\/a> allow sharing resources across projects.<\/td><td>1. Regional<br>2. Amazon also allows creating <a rel=\"noreferrer noopener\" href=\"https:\/\/docs.aws.amazon.com\/vpc\/latest\/userguide\/vpc-sharing.html\" target=\"_blank\">shared VPC<\/a>s.<\/td><td>Regional<\/td><td>Regional<\/td><td>Regional<\/td><\/tr><tr><td>VPC Types<\/td><td>1. <a href=\"https:\/\/cloud.google.com\/vpc\/docs\/using-vpc#create-auto-network\">Auto<\/a> &amp; <a rel=\"noreferrer noopener\" href=\"https:\/\/cloud.google.com\/vpc\/docs\/using-vpc#create-custom-network\" target=\"_blank\">Custom<\/a> mode VPC<br>2. Global VPC not tied to a CIDR<br>3. Support for IPV4<\/td><td>1. Only custom or dedicated VPC tied to a CIDR<br>2. Support for IPv4 and IPv6<\/td><td>1. VPC created in a resource group<br>2. Support for IPv4 and IPv6<\/td><td>VPC created in a compartment Supports IPv4 and <a href=\"https:\/\/docs.cloud.oracle.com\/en-us\/iaas\/Content\/Network\/Concepts\/ipv6.htm\" target=\"_blank\" rel=\"noreferrer noopener\">IPv6<\/a> &nbsp; &nbsp;<\/td><td>VPC created in account Supports only <a href=\"https:\/\/cloud.ibm.com\/docs\/vpc-on-classic-network?topic=vpc-on-classic-network-about-networking-for-vpc\" target=\"_blank\" rel=\"noreferrer noopener\">IPv4<\/a><\/td><\/tr><tr><td>Network Service Tiers<\/td><td><a href=\"https:\/\/cloud.google.com\/network-tiers\/docs\/overview\" target=\"_blank\" rel=\"noreferrer noopener\">Standard and Premium<\/a><\/td><td>None<\/td><td>None<\/td><td>None<\/td><td>None<\/td><\/tr><tr><td>Subnets on VPCs<\/td><td>1. <a rel=\"noreferrer noopener\" href=\"https:\/\/cloud.google.com\/vpc\/docs\/vpc#specifications\" target=\"_blank\">Subnets are regional<\/a>.<br>2. Subnets can expand but not shrink.<br>3. <a rel=\"noreferrer noopener\" href=\"https:\/\/cloud.google.com\/vpc\/docs\/vpc#reserved_ip_addresses_in_every_subnet\" target=\"_blank\">Reserves 4 IP addresses<\/a> within each CIDR subnet range &nbsp;<\/td><td>1. Subnets are zonal.<br>2. <a rel=\"noreferrer noopener\" href=\"https:\/\/docs.aws.amazon.com\/vpc\/latest\/userguide\/VPC_Subnets.html\" target=\"_blank\">AWS reserves 5 IP addresses<\/a> within each subnet.<\/td><td>1. Subnets are zonal <br>2. <a rel=\"noreferrer noopener\" href=\"https:\/\/docs.microsoft.com\/en-us\/azure\/virtual-network\/virtual-networks-faq#virtual-network-basics\" target=\"_blank\">Azure reserves 5 IP addresses<\/a> within each subnet.<\/td><td>1. Subnets are zonal.<br>2. <a rel=\"noreferrer noopener\" href=\"https:\/\/docs.cloud.oracle.com\/en-us\/iaas\/Content\/Network\/Concepts\/overview.htm#Reserved\" target=\"_blank\">OCI reserves 3 IP addresses<\/a> within each subnet.<\/td><td>1. Subnets are zonal<br>2. <a rel=\"noreferrer noopener\" href=\"https:\/\/cloud.ibm.com\/docs\/vpc-on-classic-network?topic=vpc-on-classic-network-about-networking-for-vpc#reserved-ip-addresses\" target=\"_blank\">BM reserves 5 IP addresses<\/a> within each subnet.<\/td><\/tr><tr><td>Maximum &amp; Minimum VPC CIDR Ranges<\/td><td>1. <a rel=\"noreferrer noopener\" href=\"https:\/\/cloud.google.com\/vpc\/docs\/vpc#manually_created_subnet_ip_ranges\" target=\"_blank\">Default Network IP Range<\/a><br>2. <a rel=\"noreferrer noopener\" href=\"https:\/\/cloud.google.com\/vpc\/docs\/vpc#ip-ranges\" target=\"_blank\">Auto Network IP Range<\/a><br>3. <a rel=\"noreferrer noopener\" href=\"https:\/\/cloud.google.com\/vpc\/docs\/vpc#subnet-ranges\" target=\"_blank\">Subnet Creation Mode<\/a><br>4. VPC networks can be moved from auto mode to custom but not vice versa.<\/td><td><a href=\"https:\/\/aws.amazon.com\/vpc\/faqs\/\" target=\"_blank\" rel=\"noreferrer noopener\">AWS VPC Size<\/a>: Max \u2013 16 Min &#8211; \/28 &nbsp; IPv6 &#8211; \/64<\/td><td><a href=\"https:\/\/docs.microsoft.com\/en-us\/azure\/virtual-network\/virtual-networks-faq#configuration\" target=\"_blank\" rel=\"noreferrer noopener\">Allowed VNET Size<\/a>: Max \u2013 \/8 Min &#8211; \/29 &nbsp; IPv6 &#8211; \/64<\/td><td><a href=\"https:\/\/docs.cloud.oracle.com\/en-us\/iaas\/Content\/Network\/Concepts\/overview.htm#size\" target=\"_blank\" rel=\"noreferrer noopener\">Allowed VCN Size<\/a>: Max &#8211; \/16 Min &#8211; \/30 &nbsp; IPv6 &#8211; \/64<\/td><td><a href=\"https:\/\/cloud.ibm.com\/docs\/vpc?topic=vpc-quotas\" target=\"_blank\" rel=\"noreferrer noopener\">VPC Quotas<\/a> &nbsp; [<strong>Limits not apparent from documentation<\/strong>]<\/td><\/tr><tr><td>VPC Size &#8211; Expand<\/td><td><a href=\"https:\/\/cloud.google.com\/vpc\/docs\/using-vpc#expand-subnet\" target=\"_blank\" rel=\"noreferrer noopener\">Primary IP range of subnet can be extended<\/a><\/td><td>VPCs can be <a href=\"https:\/\/aws.amazon.com\/vpc\/faqs\/\" target=\"_blank\" rel=\"noreferrer noopener\">expanded<\/a> by adding four (4) secondary IPv4 IP ranges (CIDRs). VPC can be shrunk by deleting the secondary CIDR blocks you have added to your VPC.<\/td><td><a href=\"https:\/\/docs.microsoft.com\/en-us\/azure\/virtual-network\/virtual-networks-faq#configuration\" target=\"_blank\" rel=\"noreferrer noopener\">Subnets can be added, removed or expanded<\/a> if no VMs\/services deployed<\/td><td><a href=\"https:\/\/docs.cloud.oracle.com\/en-us\/iaas\/Content\/Network\/Concepts\/overview.htm#Allowed\" target=\"_blank\" rel=\"noreferrer noopener\">VCN sizes cannot be extended or shrunk<\/a>.<\/td><td>&nbsp;<\/td><\/tr><tr><td>Secondary IP Addresses<\/td><td>Secondary IP addresses can be added to a subnet from primary IP range (a.k.a <a href=\"https:\/\/cloud.google.com\/vpc\/docs\/alias-ip\" target=\"_blank\" rel=\"noreferrer noopener\">alias IP range<\/a>s)<\/td><td>Allows one of more <a href=\"https:\/\/docs.microsoft.com\/en-us\/azure\/virtual-network\/virtual-network-multiple-ip-addresses-portal\" target=\"_blank\" rel=\"noreferrer noopener\">static or dynamic public and private IP to be assigned to the network interfaces (NIC)<\/a> attached to a VM<\/td><td>You can <a href=\"https:\/\/docs.aws.amazon.com\/vpc\/latest\/userguide\/VPC_Subnets.html#vpc-resize\" target=\"_blank\" rel=\"noreferrer noopener\">associate secondary IPv4<\/a> CIDR blocks with your VPC<\/td><td>You can add <a href=\"https:\/\/docs.cloud.oracle.com\/en-us\/iaas\/Content\/Network\/Tasks\/managingVNICs.htm\" target=\"_blank\" rel=\"noreferrer noopener\">secondary VNICs<\/a> to an existing instance and also add <a href=\"https:\/\/docs.cloud.oracle.com\/en-us\/iaas\/Content\/Network\/Tasks\/managingIPaddresses.htm\" target=\"_blank\" rel=\"noreferrer noopener\">secondary private IPs<\/a> to a VNIC.<\/td><td>IBM offers <a href=\"https:\/\/cloud.ibm.com\/docs\/subnets?topic=subnets-getting-started#ordering-subnets\" target=\"_blank\" rel=\"noreferrer noopener\">portable and static<\/a> IP addresses under secondary subnets.<\/td><\/tr><tr><td>Static Public IP Addresses<\/td><td>1. <a rel=\"noreferrer noopener\" href=\"https:\/\/cloud.google.com\/compute\/docs\/ip-addresses#reservedaddress\" target=\"_blank\">Static External IP addresses<\/a><br>2. <a href=\"https:\/\/cloud.google.com\/compute\/docs\/ip-addresses#ephemeraladdress\" target=\"_blank\" rel=\"noreferrer noopener\">Static Ephemeral IP addresses<\/a><\/td><td><a href=\"https:\/\/docs.aws.amazon.com\/AWSEC2\/latest\/UserGuide\/elastic-ip-addresses-eip.html\" target=\"_blank\" rel=\"noreferrer noopener\">Elastic IP Addresses<\/a><\/td><td><a href=\"https:\/\/docs.microsoft.com\/en-us\/azure\/virtual-network\/public-ip-addresses#allocation-method\" target=\"_blank\" rel=\"noreferrer noopener\">Basic and Standard<\/a><\/td><td>Allows <a href=\"https:\/\/docs.cloud.oracle.com\/en-us\/iaas\/Content\/Network\/Tasks\/managingVNICs.htm\" target=\"_blank\" rel=\"noreferrer noopener\">static IP<\/a> Addresses<\/td><td>Allows <a href=\"https:\/\/cloud.ibm.com\/docs\/subnets?topic=subnets-getting-started#ordering-subnets\" target=\"_blank\" rel=\"noreferrer noopener\">static IP<\/a> addresses<\/td><\/tr><tr><td>Network Routing<\/td><td><a rel=\"noreferrer noopener\" href=\"https:\/\/cloud.google.com\/vpc\/docs\/routes#routing_in\" target=\"_blank\">Routing in GCP<\/a> :<br>1. <a rel=\"noreferrer noopener\" href=\"https:\/\/cloud.google.com\/vpc\/docs\/routes#routingpacketsinternet\" target=\"_blank\">Default Route<\/a><br>2. <a rel=\"noreferrer noopener\" href=\"https:\/\/cloud.google.com\/vpc\/docs\/routes#subnet-routes\" target=\"_blank\">Subnet Route<\/a><br>3. <a rel=\"noreferrer noopener\" href=\"https:\/\/cloud.google.com\/vpc\/docs\/routes#custom-routes\" target=\"_blank\">Custom Route<\/a> &nbsp;<\/td><td>AWS uses <a href=\"https:\/\/docs.aws.amazon.com\/vpc\/latest\/userguide\/VPC_Route_Tables.html\" target=\"_blank\" rel=\"noreferrer noopener\">route tables<\/a> for network traffic.<\/td><td>Uses <a href=\"https:\/\/docs.microsoft.com\/en-us\/azure\/virtual-network\/tutorial-create-route-table-portal\" target=\"_blank\" rel=\"noreferrer noopener\">network virtual appliances(NVAs)<\/a> and <a href=\"https:\/\/docs.microsoft.com\/en-us\/azure\/virtual-network\/tutorial-create-route-table-portal#create-a-route-table\" target=\"_blank\" rel=\"noreferrer noopener\">route tables<\/a>.<\/td><td>OCI uses <a href=\"https:\/\/docs.cloud.oracle.com\/en-us\/iaas\/Content\/Network\/Tasks\/managingroutetables.htm\" target=\"_blank\" rel=\"noreferrer noopener\">route tables and route rules<\/a> to manage traffic.<\/td><td>Uses <a href=\"https:\/\/cloud.ibm.com\/docs\/vpc?topic=vpc-advanced-routing\" target=\"_blank\" rel=\"noreferrer noopener\">VPC Routes<\/a> with many limitations.<\/td><\/tr><tr><td>Internet Access<\/td><td><a href=\"https:\/\/cloud.google.com\/nat\/docs\/overview\" target=\"_blank\" rel=\"noreferrer noopener\">Cloud NAT<\/a><\/td><td>1. AWS <a rel=\"noreferrer noopener\" href=\"https:\/\/docs.aws.amazon.com\/vpc\/latest\/userguide\/vpc-nat-gateway.html\" target=\"_blank\">NAT Gateway<\/a><br>2. AWS <a rel=\"noreferrer noopener\" href=\"https:\/\/docs.aws.amazon.com\/vpc\/latest\/userguide\/VPC_NAT_Instance.html\" target=\"_blank\">NAT instances<\/a> <br><a rel=\"noreferrer noopener\" href=\"https:\/\/docs.aws.amazon.com\/vpc\/latest\/userguide\/vpc-nat-comparison.html\" target=\"_blank\">NAT instances vs NAT gateways<\/a><\/td><td><a href=\"https:\/\/docs.microsoft.com\/en-us\/azure\/virtual-network\/nat-gateway-resource\" target=\"_blank\" rel=\"noreferrer noopener\">NAT Gateway<\/a><\/td><td>OCI <a href=\"https:\/\/docs.cloud.oracle.com\/en-us\/iaas\/Content\/Network\/Tasks\/NATgateway.htm\" target=\"_blank\" rel=\"noreferrer noopener\">NAT Gateway<\/a><\/td><td>IBM <a href=\"https:\/\/docs.cloud.oracle.com\/en-us\/iaas\/Content\/Network\/Tasks\/NATgateway.htm\" target=\"_blank\" rel=\"noreferrer noopener\">NAT masquerade<\/a> on virtual router appliance<\/td><\/tr><tr><td>Network Traffic Control<\/td><td>1. <a rel=\"noreferrer noopener\" href=\"https:\/\/cloud.google.com\/vpc\/docs\/firewalls\" target=\"_blank\">Firewall Rules<\/a><br>2. <a rel=\"noreferrer noopener\" href=\"https:\/\/cloud.google.com\/vpc\/docs\/firewalls#default_firewall_rules\" target=\"_blank\">Implied Rules<\/a> &nbsp; <br><a href=\"https:\/\/cloud.google.com\/vpc\/docs\/firewalls#firewall_rule_components\">Components<\/a> of firewall rules.<\/td><td>1. AWS <a rel=\"noreferrer noopener\" href=\"https:\/\/docs.aws.amazon.com\/vpc\/latest\/userguide\/VPC_SecurityGroups.html\" target=\"_blank\">Security Groups<\/a> <br>2. AWS <a rel=\"noreferrer noopener\" href=\"https:\/\/docs.aws.amazon.com\/vpc\/latest\/userguide\/vpc-network-acls.html\" target=\"_blank\">Network Access Control Lists<\/a> (NACLs)<\/td><td>1. Azure <a rel=\"noreferrer noopener\" href=\"https:\/\/docs.microsoft.com\/en-us\/azure\/virtual-network\/security-overview\" target=\"_blank\">security groups<\/a><br>2. <a rel=\"noreferrer noopener\" href=\"https:\/\/docs.microsoft.com\/en-us\/azure\/virtual-network\/application-security-groups\" target=\"_blank\">Application security groups<\/a> &nbsp; &nbsp; &nbsp;<\/td><td>1. <a rel=\"noreferrer noopener\" href=\"https:\/\/docs.cloud.oracle.com\/en-us\/iaas\/Content\/Network\/Concepts\/networksecuritygroups.htm\" target=\"_blank\">Network security groups<\/a> (NSGs) and <a rel=\"noreferrer noopener\" href=\"https:\/\/docs.cloud.oracle.com\/en-us\/iaas\/Content\/Network\/Concepts\/networksecuritygroups.htm#support\" target=\"_blank\">supported services<\/a><br>2. <a rel=\"noreferrer noopener\" href=\"https:\/\/docs.cloud.oracle.com\/en-us\/iaas\/Content\/Network\/Concepts\/securitylists.htm\" target=\"_blank\">Security Lists<\/a> &nbsp;<\/td><td>1. <a rel=\"noreferrer noopener\" href=\"https:\/\/cloud.ibm.com\/docs\/vpc?topic=vpc-using-security-groups\" target=\"_blank\">Security Groups<\/a><br>2.  <a rel=\"noreferrer noopener\" href=\"https:\/\/cloud.ibm.com\/docs\/vpc?topic=vpc-using-acls\" target=\"_blank\">Network ACLs<\/a> &nbsp;<\/td><\/tr><tr><td>DDoS\/Web Application Firewall<\/td><td>Google <a href=\"https:\/\/cloud.google.com\/blog\/products\/gcp\/getting-to-know-cloud-armor-defense-at-scale-for-internet-facing-services\" target=\"_blank\" rel=\"noreferrer noopener\">Cloud Armor<\/a><\/td><td>1. <a rel=\"noreferrer noopener\" href=\"https:\/\/aws.amazon.com\/waf\/\" target=\"_blank\">AWS WAF<\/a><br>2. <a href=\"https:\/\/aws.amazon.com\/shield\/\" target=\"_blank\" rel=\"noreferrer noopener\">AWS Shield<\/a> &amp; <a rel=\"noreferrer noopener\" href=\"https:\/\/aws.amazon.com\/shield\/features\/#AWS_Shield_Advanced\" target=\"_blank\">Shield Advanced<\/a><\/td><td>Azure <a href=\"https:\/\/docs.microsoft.com\/en-us\/azure\/virtual-network\/ddos-protection-overview\" target=\"_blank\" rel=\"noreferrer noopener\">DDoS protection<\/a> Standard<\/td><td>OCI provides a <a href=\"https:\/\/docs.cloud.oracle.com\/en-us\/iaas\/Content\/WAF\/Concepts\/ddos.htm\" target=\"_blank\" rel=\"noreferrer noopener\">DDoS mitigation<\/a> service<\/td><td>1. IBM Cloud <a rel=\"noreferrer noopener\" href=\"https:\/\/www.ibm.com\/cloud\/architecture\/architectures\/securityArchitecture\/security-for-network\/\" target=\"_blank\">DDoS protection<\/a> <br>2. IBM Partners with <a rel=\"noreferrer noopener\" href=\"https:\/\/www.cloudflare.com\/integrations\/ibm-cloud-internet-services\/\" target=\"_blank\">CloudFlare<\/a> to provide WAF and DDoS Services<\/td><\/tr><tr><td>VPC Peering<\/td><td>1. GCP allows <a rel=\"noreferrer noopener\" href=\"https:\/\/cloud.google.com\/vpc\/docs\/vpc-peering\" target=\"_blank\">VPC peering<\/a> for VPCs in the same project or same organization<br>2. <a rel=\"noreferrer noopener\" href=\"https:\/\/cloud.google.com\/vpc\/docs\/vpc-peering#shared_vpc\" target=\"_blank\">Shared VPC peering<\/a> between projects &nbsp; &nbsp; VPC <a rel=\"noreferrer noopener\" href=\"https:\/\/cloud.google.com\/vpc\/docs\/vpc-peering#restrictions\" target=\"_blank\">peering restrictions<\/a> &nbsp;<\/td><td>1. AWS allows <a rel=\"noreferrer noopener\" href=\"https:\/\/docs.aws.amazon.com\/vpc\/latest\/peering\/vpc-peering-basics.html\" target=\"_blank\">VPC peering<\/a><br>2. AWS also offers&nbsp; <a rel=\"noreferrer noopener\" href=\"https:\/\/docs.aws.amazon.com\/vpc\/latest\/tgw\/what-is-transit-gateway.html\" target=\"_blank\">transit gateways<\/a> &amp; <a rel=\"noreferrer noopener\" href=\"https:\/\/docs.aws.amazon.com\/vpc\/latest\/tgw\/what-is-network-manager.html\" target=\"_blank\">transit gateway manager<\/a> for managing traffic between VPCs &amp; VPN connections &nbsp; <a rel=\"noreferrer noopener\" href=\"https:\/\/docs.aws.amazon.com\/vpc\/latest\/peering\/vpc-peering-basics.html#vpc-peering-limitations\" target=\"_blank\">VPC peering limitations<\/a><\/td><td>1. Azure allows <a rel=\"noreferrer noopener\" href=\"https:\/\/docs.microsoft.com\/en-us\/azure\/virtual-network\/virtual-network-peering-overview\" target=\"_blank\">VNETs peering<\/a> <br><a rel=\"noreferrer noopener\" href=\"https:\/\/docs.microsoft.com\/en-us\/azure\/virtual-network\/virtual-network-manage-peering#requirements-and-constraints\" target=\"_blank\">Peering requirements &amp; constraints<\/a><\/td><td>OCI provides two options for <a rel=\"noreferrer noopener\" href=\"https:\/\/docs.cloud.oracle.com\/en-us\/iaas\/Content\/Network\/Tasks\/VCNpeering.htm\" target=\"_blank\">VCN peering<\/a>: 1. <a rel=\"noreferrer noopener\" href=\"https:\/\/docs.cloud.oracle.com\/en-us\/iaas\/Content\/Network\/Tasks\/localVCNpeering.htm\" target=\"_blank\">Local VCN peering<\/a> for VCNs in same region<br>2. <a rel=\"noreferrer noopener\" href=\"https:\/\/docs.cloud.oracle.com\/en-us\/iaas\/Content\/Network\/Tasks\/remoteVCNpeering.htm\" target=\"_blank\">Remote VCN peering<\/a> for cross-regions VCNs &nbsp;<\/td><td>IBM allows <a href=\"https:\/\/www.ibm.com\/support\/knowledgecenter\/STHLEK_8.3.1\/spectrum.virtualize.cloud.831.doc\/svcl_vpcpeerconfig.html\" target=\"_blank\" rel=\"noreferrer noopener\">VPC peering with AWS cloud<\/a> but <a href=\"https:\/\/cloud.ibm.com\/docs\/vpc-on-classic?topic=vpc-on-classic-known-limitations\" target=\"_blank\" rel=\"noreferrer noopener\">not with VPCs within its own infrastructure<\/a>, however, it allows&nbsp; to connect VPCs using VPN gateways, floating IPs, or IBM Cloud Transit Gateway.<\/td><\/tr><tr><td>Access to managed services on cloud providers platform<\/td><td>GCP offers <a rel=\"noreferrer noopener\" href=\"https:\/\/cloud.google.com\/vpc\/docs\/private-access-options\" target=\"_blank\">private access options<\/a>: 1. <a rel=\"noreferrer noopener\" href=\"https:\/\/cloud.google.com\/vpc\/docs\/private-access-options#pga\" target=\"_blank\">Private Google Access<\/a><br>2. <a rel=\"noreferrer noopener\" href=\"https:\/\/cloud.google.com\/vpc\/docs\/private-access-options\" target=\"_blank\">Private Google Access for on-premises hosts<\/a><br>3. <a rel=\"noreferrer noopener\" href=\"https:\/\/cloud.google.com\/vpc\/docs\/private-access-options#service-networking\" target=\"_blank\">Private services access<\/a><a rel=\"noreferrer noopener\" href=\"https:\/\/cloud.google.com\/vpc\/docs\/private-access-options#serverless-vpc-access\" target=\"_blank\"> <\/a><br>4. <a rel=\"noreferrer noopener\" href=\"https:\/\/cloud.google.com\/vpc\/docs\/private-access-options#serverless-vpc-access\" target=\"_blank\">Serverless VPC access<\/a> &nbsp;<\/td><td>1. AWS <a rel=\"noreferrer noopener\" href=\"https:\/\/docs.aws.amazon.com\/vpc\/latest\/userguide\/vpce-gateway.html\" target=\"_blank\">VPC gateway endpoints<\/a> for S3 &amp; DynamoDB<br>2. AWS <a rel=\"noreferrer noopener\" href=\"https:\/\/docs.aws.amazon.com\/vpc\/latest\/userguide\/vpce-interface.html\" target=\"_blank\">VPC interface endpoints<\/a> using <a rel=\"noreferrer noopener\" href=\"https:\/\/aws.amazon.com\/privatelink\/\" target=\"_blank\">PrivateLink<\/a> &nbsp;<\/td><td>1. Azure <a rel=\"noreferrer noopener\" href=\"https:\/\/docs.microsoft.com\/en-us\/azure\/virtual-network\/virtual-network-service-endpoints-overview\" target=\"_blank\">service endpoints<\/a><br>2. Azure <a rel=\"noreferrer noopener\" href=\"https:\/\/docs.microsoft.com\/en-us\/azure\/private-link\/private-endpoint-overview\" target=\"_blank\">private endpoints<\/a> <a rel=\"noreferrer noopener\" href=\"https:\/\/docs.microsoft.com\/en-us\/azure\/virtual-network\/virtual-network-service-endpoints-overview#limitations\" target=\"_blank\">Limitations<\/a><\/td><td>OCI offers: <a href=\"https:\/\/docs.cloud.oracle.com\/en-us\/iaas\/Content\/Network\/Tasks\/servicegateway.htm\" target=\"_blank\" rel=\"noreferrer noopener\">Service Gateway<\/a><a href=\"https:\/\/docs.cloud.oracle.com\/en-us\/iaas\/Content\/Network\/Concepts\/privateaccess.htm\">Private Access<\/a><\/td><td>IBM Cloud offers: <br>1. <a rel=\"noreferrer noopener\" href=\"https:\/\/cloud.ibm.com\/docs\/vpc-on-classic?topic=vpc-on-classic-connecting-to-ibm-cloud-object-storage-from-a-vpc#regional-endpoints\" target=\"_blank\">Regional Endpoints<\/a><br>2. <a rel=\"noreferrer noopener\" href=\"https:\/\/cloud.ibm.com\/docs\/vpc-on-classic?topic=vpc-on-classic-connecting-to-ibm-cloud-object-storage-from-a-vpc#cross-region-endpoints\" target=\"_blank\">Cross-region endpoints<\/a><br>3. <a rel=\"noreferrer noopener\" href=\"https:\/\/cloud.ibm.com\/docs\/vpc-on-classic?topic=vpc-on-classic-connecting-to-ibm-cloud-object-storage-from-a-vpc#single-datacenter-endpoints\" target=\"_blank\">Single Data center endpoints<\/a><\/td><\/tr><tr><td>Hybrid Networking (VPN)<\/td><td>GCP offers <a rel=\"noreferrer noopener\" href=\"https:\/\/cloud.google.com\/network-connectivity\/docs\/vpn\/concepts\/overview\" target=\"_blank\">Cloud VPN<\/a>: <br>1. <a href=\"https:\/\/cloud.google.com\/network-connectivity\/docs\/vpn\/concepts\/overview#ha-vpn\" target=\"_blank\" rel=\"noreferrer noopener\">HA VPN<\/a><br>2. <a rel=\"noreferrer noopener\" href=\"https:\/\/cloud.google.com\/network-connectivity\/docs\/vpn\/concepts\/overview#classic-vpn\" target=\"_blank\">Classic VPN<\/a><\/td><td>AWS Offers: <br>1. <a rel=\"noreferrer noopener\" href=\"https:\/\/docs.aws.amazon.com\/vpn\/latest\/s2svpn\/VPC_VPN.html\" target=\"_blank\">Site-to-Site VPN<\/a><br>2. <a rel=\"noreferrer noopener\" href=\"https:\/\/docs.aws.amazon.com\/vpn\/latest\/clientvpn-admin\/what-is.html\" target=\"_blank\">Client VPN<\/a><br>3. <a rel=\"noreferrer noopener\" href=\"https:\/\/docs.aws.amazon.com\/vpn\/latest\/s2svpn\/VPN_CloudHub.html\" target=\"_blank\">VPN CloudHub<\/a><br>4. <a rel=\"noreferrer noopener\" href=\"https:\/\/aws.amazon.com\/marketplace\/search\/results\/ref=brs_navgno_search_box?searchTerms=vpn\" target=\"_blank\">Third party software VPN appliance<\/a><\/td><td>Azure offers: <br>1. <a rel=\"noreferrer noopener\" href=\"https:\/\/docs.microsoft.com\/en-us\/azure\/vpn-gateway\/design\" target=\"_blank\">Site-to-Site and Multi-Site (IPsec\/IKE VPN tunnel)<\/a><br>2. <a rel=\"noreferrer noopener\" href=\"https:\/\/docs.microsoft.com\/en-us\/azure\/vpn-gateway\/design#P2S\" target=\"_blank\">Point-to-Site VPN<\/a><br>3. <a rel=\"noreferrer noopener\" href=\"https:\/\/docs.microsoft.com\/en-us\/azure\/vpn-gateway\/design#V2V\" target=\"_blank\">VNet-to-VNet connections (IPsec\/IKE VPN tunnel)<\/a><\/td><td>OCI offers: <a href=\"https:\/\/docs.cloud.oracle.com\/en-us\/iaas\/Content\/Network\/Tasks\/managingIPsec.htm\" target=\"_blank\" rel=\"noreferrer noopener\">VPN Connect<\/a> &nbsp;<\/td><td>IBM Cloud offers <a href=\"https:\/\/cloud.ibm.com\/docs\/iaas-vpn?topic=iaas-vpn-getting-started\">VPN<\/a>: <br>1. <a rel=\"noreferrer noopener\" href=\"https:\/\/cloud.ibm.com\/docs\/iaas-vpn?topic=iaas-vpn-using-ssl-vpn\" target=\"_blank\">SSL VPN<\/a><br>2. <a rel=\"noreferrer noopener\" href=\"https:\/\/cloud.ibm.com\/docs\/iaas-vpn?topic=iaas-vpn-setup-ipsec-vpn\" target=\"_blank\">IPSec VPN<\/a> &nbsp; <br><br><a rel=\"noreferrer noopener\" href=\"https:\/\/www.ibm.com\/cloud\/vpn-access\" target=\"_blank\">VPN endpoints<\/a> on IBM Cloud &nbsp; &nbsp;<\/td><\/tr><tr><td>Hybrid Networking (Dedicated Private Connectivity)<\/td><td>GCP Offers <a href=\"https:\/\/cloud.google.com\/network-connectivity\/docs\/interconnect\">Cloud Interconnect<\/a>: <br>1. <a rel=\"noreferrer noopener\" href=\"https:\/\/cloud.google.com\/network-connectivity\/docs\/interconnect\/how-to\/dedicated\/provisioning-overview\" target=\"_blank\">Dedicated Interconnect<\/a><br>2. <a href=\"https:\/\/cloud.google.com\/network-connectivity\/docs\/interconnect\/how-to\/partner\/provisioning-overview\" target=\"_blank\" rel=\"noreferrer noopener\">Partner Interconnect<\/a><\/td><td>AWS Offers: <br>1. <a rel=\"noreferrer noopener\" href=\"https:\/\/docs.aws.amazon.com\/directconnect\/latest\/UserGuide\/Welcome.html\" target=\"_blank\">Direct Connect<\/a> <br>2. <a href=\"https:\/\/docs.aws.amazon.com\/directconnect\/latest\/UserGuide\/direct-connect-gateways-intro.html\">Direct Connect Gateways<\/a><\/td><td>Azure Offers: <a href=\"https:\/\/docs.microsoft.com\/en-us\/azure\/expressroute\/expressroute-faqs\" target=\"_blank\" rel=\"noreferrer noopener\">ExpressRoute<\/a> with <a href=\"https:\/\/docs.microsoft.com\/en-us\/azure\/expressroute\/expressroute-faqs#expressroute-premium\">premium<\/a>, <a href=\"https:\/\/docs.microsoft.com\/en-us\/azure\/expressroute\/expressroute-faqs#expressroute-local\">local<\/a> and <a href=\"https:\/\/docs.microsoft.com\/en-us\/azure\/expressroute\/expressroute-faqs#expressroute-for-office-365\" target=\"_blank\" rel=\"noreferrer noopener\">Office 365<\/a> options &nbsp;<\/td><td>OCI Offers: <a href=\"https:\/\/docs.cloud.oracle.com\/en-us\/iaas\/Content\/Network\/Concepts\/fastconnect.htm\">FastConnect<\/a><\/td><td>IBM Offers: <br>1. <a rel=\"noreferrer noopener\" href=\"https:\/\/cloud.ibm.com\/docs\/dl?topic=dl-how-to-order-ibm-cloud-dl-dedicated#before-you-begin-dedicated\" target=\"_blank\">Direct Link Dedicated<\/a><br>2. <a rel=\"noreferrer noopener\" href=\"https:\/\/cloud.ibm.com\/docs\/direct-link?topic=direct-link-how-to-order-ibm-cloud-direct-link-dedicated-hosting#before-you-begin\" target=\"_blank\">Direct Link Dedicated Hosting<\/a><br>3. <a rel=\"noreferrer noopener\" href=\"https:\/\/cloud.ibm.com\/docs\/direct-link?topic=direct-link-how-to-order-ibm-cloud-direct-link-connect-classic#ordering-process-overview-connect\" target=\"_blank\">Direct Link Connect<\/a><br>4. <a href=\"https:\/\/cloud.ibm.com\/docs\/direct-link?topic=direct-link-how-to-order-ibm-cloud-direct-link-exchange#exchange-location\" target=\"_blank\" rel=\"noreferrer noopener\">Direct Link Exchange<\/a><\/td><\/tr><tr><td>Network Gateways<\/td><td>GCP Offers: <br>1. <a href=\"https:\/\/cloud.google.com\/network-connectivity\/docs\/router\" target=\"_blank\" rel=\"noreferrer noopener\">Cloud router<\/a><br>2. <a href=\"https:\/\/cloud.google.com\/network-connectivity\/docs\/vpn\/how-to\/configuring-peer-gateway\" target=\"_blank\" rel=\"noreferrer noopener\">VPN Gateways<\/a> for HA &amp; Classic VPN<\/td><td>AWS Offers: <a href=\"https:\/\/docs.aws.amazon.com\/directconnect\/latest\/UserGuide\/virtualgateways.html\" target=\"_blank\" rel=\"noreferrer noopener\">Virtual Private Gateways<\/a> &amp; <a href=\"https:\/\/docs.aws.amazon.com\/vpn\/latest\/s2svpn\/cgw-options.html\">Customer Gateways<\/a><\/td><td>Azure Offers <a href=\"https:\/\/docs.microsoft.com\/en-us\/azure\/vpn-gateway\/vpn-gateway-about-vpn-gateway-settings\" target=\"_blank\" rel=\"noreferrer noopener\">VPN gateways<\/a>: VPN ExpressRoute<\/td><td>OCI offers <a href=\"https:\/\/docs.cloud.oracle.com\/en-us\/iaas\/Content\/Network\/Tasks\/managingDRGs.htm\" target=\"_blank\" rel=\"noreferrer noopener\">Dynamic Routing Gateways<\/a><\/td><td>IBM Offers <a href=\"https:\/\/cloud.ibm.com\/docs\/solution-tutorials?topic=solution-tutorials-vpc-site2site-vpn#create-vpn\" target=\"_blank\" rel=\"noreferrer noopener\">VPN gateway<\/a> connection options<\/td><\/tr><tr><td>Load Balancers<\/td><td>GCP Offers multiple global &amp; regional <a href=\"https:\/\/cloud.ibm.com\/docs\/solution-tutorials?topic=solution-tutorials-vpc-site2site-vpn#create-vpn\" target=\"_blank\" rel=\"noreferrer noopener\">cloud load balancing<\/a> options: <br>1. <a rel=\"noreferrer noopener\" href=\"https:\/\/cloud.google.com\/load-balancing\/docs\/l7-internal\" target=\"_blank\">Internal HTTP(s)<\/a><br>2. <a href=\"https:\/\/cloud.google.com\/load-balancing\/docs\/https\">External HTTP(s)<\/a><br>3. <a rel=\"noreferrer noopener\" href=\"https:\/\/cloud.google.com\/load-balancing\/docs\/internal\" target=\"_blank\">Internal TCP\/UDP<\/a><br>4. <a rel=\"noreferrer noopener\" href=\"https:\/\/cloud.google.com\/load-balancing\/docs\/network\" target=\"_blank\">External TCP\/UDP<\/a> \u2013 Network LB<br>5. <a rel=\"noreferrer noopener\" href=\"https:\/\/cloud.google.com\/load-balancing\/docs\/ssl\" target=\"_blank\">External SSL Proxy<\/a><br>6. <a href=\"https:\/\/cloud.google.com\/load-balancing\/docs\/tcp\" target=\"_blank\" rel=\"noreferrer noopener\">External TCP Proxy<\/a><\/td><td>AWS Offers three load balancer types: <a href=\"https:\/\/docs.aws.amazon.com\/AmazonECS\/latest\/developerguide\/load-balancer-types.html#alb\">Application<\/a> <a href=\"https:\/\/docs.aws.amazon.com\/AmazonECS\/latest\/developerguide\/load-balancer-types.html#clb\">Classic<\/a> <a href=\"https:\/\/docs.aws.amazon.com\/AmazonECS\/latest\/developerguide\/load-balancer-types.html#nlb\">Network<\/a> &nbsp;<\/td><td>Azure Offers: <br>1. <a rel=\"noreferrer noopener\" href=\"https:\/\/docs.microsoft.com\/en-us\/azure\/load-balancer\/components#frontend-ip-configurations\" target=\"_blank\">Public load balancer<\/a><br>2. <a rel=\"noreferrer noopener\" href=\"https:\/\/docs.microsoft.com\/en-us\/azure\/load-balancer\/components#frontend-ip-configurations\" target=\"_blank\">Internal (Private) load balancer<\/a> &nbsp;<\/td><td>OCI Offers: <br>1. <a rel=\"noreferrer noopener\" href=\"https:\/\/docs.cloud.oracle.com\/en-us\/iaas\/Content\/Balance\/Concepts\/balanceoverview.htm\" target=\"_blank\">Public LB<\/a><br>2. <a rel=\"noreferrer noopener\" href=\"https:\/\/docs.cloud.oracle.com\/en-us\/iaas\/Content\/Balance\/Concepts\/balanceoverview.htm\" target=\"_blank\">Private LB<\/a> &nbsp;<\/td><td>IBM Cloud Offers: <br>1. <a href=\"https:\/\/cloud.ibm.com\/docs\/loadbalancer-service\/getting-started.html\">IBM Cloud LB<\/a><br>2. <a rel=\"noreferrer noopener\" href=\"https:\/\/cloud.ibm.com\/docs\/citrix-netscaler-vpx\/getting-started.html\" target=\"_blank\">Citrix Netscaler VPX<\/a> &nbsp;<\/td><\/tr><tr><td>Globally distributed content delivery network (CDN)<\/td><td>GCP <a href=\"https:\/\/cloud.google.com\/cdn\/docs\/concepts\" target=\"_blank\" rel=\"noreferrer noopener\">Cloud CDN<\/a><\/td><td>AWS <a href=\"https:\/\/docs.aws.amazon.com\/AmazonCloudFront\/latest\/DeveloperGuide\/Introduction.html\" target=\"_blank\" rel=\"noreferrer noopener\">CloudFront<\/a><\/td><td><a href=\"https:\/\/docs.microsoft.com\/en-us\/azure\/cdn\/\" target=\"_blank\" rel=\"noreferrer noopener\">Azure CDN<\/a><\/td><td>Oracle bought <a href=\"https:\/\/www.bizety.com\/2018\/02\/15\/oracle-acquires-zenedge-therefore-oracle-is-in-the-cdn-business\/\">zenedge<\/a> but there is no single source to identify OCI CDN<\/td><td><a href=\"https:\/\/cloud.ibm.com\/catalog\/infrastructure\/content-delivery-network\" target=\"_blank\" rel=\"noreferrer noopener\">IBM CDN<\/a><\/td><\/tr><tr><td>Network Logs<\/td><td>GCP <a href=\"https:\/\/cloud.google.com\/vpc\/docs\/flow-logs\" target=\"_blank\" rel=\"noreferrer noopener\">VPC Flow Logs<\/a> GCP <a href=\"https:\/\/cloud.google.com\/vpc\/docs\/firewall-rules-logging\" target=\"_blank\" rel=\"noreferrer noopener\">Firewall Logs<\/a><\/td><td>AWS <a href=\"https:\/\/docs.aws.amazon.com\/vpc\/latest\/userguide\/flow-logs.html\">VPC Flow Logs<\/a><\/td><td>Azure <a href=\"https:\/\/docs.microsoft.com\/en-us\/azure\/network-watcher\/network-watcher-nsg-flow-logging-overview\" target=\"_blank\" rel=\"noreferrer noopener\">Flow Logs for Network Security Groups<\/a><\/td><td>OCI <a href=\"https:\/\/blogs.oracle.com\/cloud-infrastructure\/announcing-vcn-flow-logs-for-oracle-cloud-infrastructure\" target=\"_blank\" rel=\"noreferrer noopener\">VCN Flow Logs<\/a><\/td><td>IBM <a href=\"https:\/\/cloud.ibm.com\/docs\/vpc?topic=vpc-flow-logs&amp;locale=en\" target=\"_blank\" rel=\"noreferrer noopener\">VPC Flow Logs<\/a><\/td><\/tr><tr><td>Servers\/ Instances<\/td><td>Compute Engine<\/td><td>Elastic Cloud Compute (EC2) instances<\/td><td>Virtual Machines<\/td><td>Virtual Machines<\/td><td>Virtual Server Instances<\/td><\/tr><tr><td>Instance Types<\/td><td><a href=\"https:\/\/cloud.google.com\/compute\/docs\/machine-types\" target=\"_blank\" rel=\"noreferrer noopener\">GCP Compute Engine Machine Types<\/a><\/td><td><a href=\"https:\/\/docs.aws.amazon.com\/AWSEC2\/latest\/UserGuide\/instance-types.html\" target=\"_blank\" rel=\"noreferrer noopener\">AWS Instance Types<\/a><\/td><td><a href=\"https:\/\/azure.microsoft.com\/en-us\/pricing\/details\/virtual-machines\/series\/\" target=\"_blank\" rel=\"noreferrer noopener\">Azure VM Shapes<\/a><\/td><td><a href=\"https:\/\/docs.cloud.oracle.com\/en-us\/iaas\/Content\/Compute\/References\/computeshapes.htm\" target=\"_blank\" rel=\"noreferrer noopener\">OCI VM Shapes<\/a><\/td><td><a href=\"https:\/\/cloud.ibm.com\/catalog?category=compute#services\" target=\"_blank\" rel=\"noreferrer noopener\">IBM Cloud Virtual Servers<\/a><\/td><\/tr><\/tbody><\/table><figcaption><strong>Compare and Contrast Cloud Providers<\/strong><\/figcaption><\/figure>\n\n\n\n<p class=\"has-very-dark-gray-color has-text-color\">Now, that we have few basic networking concepts out of the way, lets look at the private cloud and networking options of different cloud providers. I have tabulated the data below and provided links to the specific cloud providers documentation for every feature identified below.<\/p>\n\n\n\n<p class=\"has-very-dark-gray-color has-text-color\">I am sincerely hoping that this documentation to serve a few specific purposes \u2013<\/p>\n\n\n\n<ol class=\"wp-block-list\" type=\"a\"><li>This should help the readers identify the commonalities of design and networking concepts behind creating a private cloud on a cloud providers platform.<\/li><li>We still need a collective voice from the certification community as well as customers deploying these multi-cloud patterns to ensure that these cloud providers work towards common nomenclature of service offerings on their platforms. This will definitely help adoptions faster. It has to be understood that the more exclusivity in these naming conventions \u2013 just to sound and look different \u2013 will not only increase the time in demystifying a service offering but also increase the chances of falling behind a competition as well as a larger probability of extinction.<\/li><li>If you are preparing for certification for a specific cloud provider platform, you might as well use this documentation to prepare for certification for others cloud providers. This will become more and more relevant as you see organizations choosing multiple cloud providers instead of just selecting one and get locked.<\/li><\/ol>\n\n\n\n<p class=\"has-very-dark-gray-color has-text-color\">There is also another motive behind this documentation. Please see our effort to create a global data center map of the five cloud providers.<\/p>\n\n\n\n<figure class=\"wp-block-image alignfull size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"503\" src=\"https:\/\/reviewnprep.com\/blog\/wp-content\/uploads\/2021\/01\/image-23-1024x503-1.jpg\" alt=\"World map of Datacenters for Cloud Providers\" class=\"wp-image-1569\" srcset=\"https:\/\/reviewnprep.com\/blog\/wp-content\/uploads\/2021\/01\/image-23-1024x503-1.jpg 1024w, https:\/\/reviewnprep.com\/blog\/wp-content\/uploads\/2021\/01\/image-23-1024x503-1-300x147.jpg 300w, https:\/\/reviewnprep.com\/blog\/wp-content\/uploads\/2021\/01\/image-23-1024x503-1-768x377.jpg 768w\" sizes=\"(max-width: 1024px) 100vw, 1024px\" \/><figcaption>World map of Datacenters for Cloud Providers<\/figcaption><\/figure>\n\n\n\n<p class=\"has-very-dark-gray-color has-text-color\">As organizations mature towards multiple cloud platforms it become necessary that these cloud providers have some clairvoyance towards a globally unified world where these data centers are created with more globally distributed locations versus being concentrated in specific geographic locations. This will connect and unify the world especially in times of dire need like what we are going through!!<\/p>\n\n\n\n<p class=\"has-very-dark-gray-color has-text-color\">That\u2019s all I have for today. I plan to bring similar perspective to other cloud options like storage, databases (relational or otherwise), big data analytics, security options, IaaS, PaaS or SaaS offerings. I hope all of you find this useful.<\/p>\n\n\n\n<p class=\"has-very-dark-gray-color has-pale-cyan-blue-background-color has-text-color has-background\"><strong><u>References\/Links:<\/u><\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\"><li><a href=\"https:\/\/cloud.google.com\/about\/locations\" target=\"_blank\" rel=\"noreferrer noopener\">GCP Locations<\/a><\/li><li><a href=\"https:\/\/azure.microsoft.com\/en-us\/global-infrastructure\/regions\/\" target=\"_blank\" rel=\"noreferrer noopener\">Azure Cloud Locations<\/a><\/li><li><a href=\"https:\/\/www.oracle.com\/cloud\/architecture-and-regions.html\" target=\"_blank\" rel=\"noreferrer noopener\">Oracle Cloud Locations<\/a><\/li><li><a href=\"https:\/\/aws.amazon.com\/about-aws\/global-infrastructure\/\" target=\"_blank\" rel=\"noreferrer noopener\">AWS Cloud Global Infrastructure<\/a><\/li><li><a href=\"https:\/\/www.ibm.com\/cloud\/data-centers\/\" target=\"_blank\" rel=\"noreferrer noopener\">IBM Cloud Data Centers<\/a><\/li><li><a href=\"https:\/\/www.managedsentinel.com\/2019\/05\/28\/on-prem-vs-cloud\/\" target=\"_blank\" rel=\"noreferrer noopener\">Managed Sentinel \u2013 Documentation of On-Premises versus Cloud<\/a><\/li><\/ul>\n\n\n\n<p class=\"has-very-dark-gray-color has-text-color\">If you are interested in other cloud certifications and how to prepare for them, check out our&nbsp;<a href=\"https:\/\/reviewnprep.com\/reviewed-certificates\" target=\"_blank\" rel=\"noreferrer noopener\">website<\/a>.<\/p>\n\n\n\n<p class=\"has-vivid-cyan-blue-color has-text-color\" style=\"font-size:18px\"><strong>Have questions? Participate in Cloud discussions on our Forums. <a href=\"https:\/\/reviewnprep.com\/forums\/\">Click here<\/a>.<\/strong><\/p>\n\n\n\n<p class=\"has-very-dark-gray-color has-text-color\">More from same author:<\/p>\n\n\n\n<ul class=\"wp-block-list\"><li><a href=\"https:\/\/reviewnprep.com\/blog\/cloud-101-for-mainframe-developers\/\" target=\"_blank\" rel=\"noreferrer noopener\">Cloud 101 for mainframe developer<\/a><\/li><li><a href=\"https:\/\/reviewnprep.com\/blog\/practical-learnings-from-aws-architect-certification-dynamodb-for-the-mainframe-cobol-vsam-programmer\/\" target=\"_blank\" rel=\"noreferrer noopener\">Practical Comparisons of DynamoDB and VSAM<\/a><\/li><li><a href=\"https:\/\/reviewnprep.com\/blog\/preparation-notes-on-how-to-pass-oci-architect-associate-certification\/\" target=\"_blank\" rel=\"noreferrer noopener\">How to Pass OCI Associate Architect Exam<\/a><\/li><li><a href=\"https:\/\/reviewnprep.com\/blog\/preparation-guide-for-the-oracle-cloud-infrastructure-oci-2019-architect-professional-exam-1z0-997\/\" target=\"_blank\" rel=\"noreferrer noopener\">How to Pass OCI Professional Architect Exam<\/a><\/li><\/ul>\n\n\n\n<p class=\"has-very-dark-gray-color has-text-color\">AUTHOR: Mukesh Sharma is a multi and hybrid cloud enthusiast with a bias for building robust hybrid cloud systems around mainframes for financial services organizations. You can reach him<strong>&nbsp;<\/strong>on&nbsp;<a href=\"https:\/\/www.linkedin.com\/in\/mukesh-s-a399303\/\" target=\"_blank\" rel=\"noreferrer noopener\">LinkedIn<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>A lot of choices when it comes to choosing the cloud providers Hello everyone, hope all of you are doing well and keeping healthy and safe. I am kicking off these series of blogs on understanding cloud offerings by different cloud providers. There are at least three ulterior motives behind this and I am hoping [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":774,"comment_status":"open","ping_status":"open","sticky":true,"template":"","format":"standard","meta":{"footnotes":""},"categories":[70,2,30,53,3],"tags":[18,32,14,38,57,95,54],"class_list":["post-731","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-alibaba","category-aws","category-azure","category-oracle-cloud","category-reviewnprep","tag-aws","tag-azure","tag-cloud","tag-cloud-for-mainframe","tag-gcp","tag-ibm-cloud","tag-oci"],"_links":{"self":[{"href":"https:\/\/reviewnprep.com\/blog\/wp-json\/wp\/v2\/posts\/731"}],"collection":[{"href":"https:\/\/reviewnprep.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/reviewnprep.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/reviewnprep.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/reviewnprep.com\/blog\/wp-json\/wp\/v2\/comments?post=731"}],"version-history":[{"count":47,"href":"https:\/\/reviewnprep.com\/blog\/wp-json\/wp\/v2\/posts\/731\/revisions"}],"predecessor-version":[{"id":1957,"href":"https:\/\/reviewnprep.com\/blog\/wp-json\/wp\/v2\/posts\/731\/revisions\/1957"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/reviewnprep.com\/blog\/wp-json\/wp\/v2\/media\/774"}],"wp:attachment":[{"href":"https:\/\/reviewnprep.com\/blog\/wp-json\/wp\/v2\/media?parent=731"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/reviewnprep.com\/blog\/wp-json\/wp\/v2\/categories?post=731"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/reviewnprep.com\/blog\/wp-json\/wp\/v2\/tags?post=731"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}