Multi-Cloud Network Architecture (MCNA)

Question 1

Challenged of On-Prem Architectures in the Cloud (3 items)

Answer 1

1 - each component of networking is an island in the CSP
2 - Adding on-prem architectures not build for cloud
(use CSRs, Palo-Alto, SD-WAN) built for on-prem
don’t integrate cloud networking constructrs
no network correctness
3 - Cloud becomes “bolted on” not “built-in”

Question 2

The Lack of right Reference Architecture creates ______

Answer 2

Chaos

Question 3

Cloud Network Reference Architecture blueprints (5 items)

Answer 3

1 - Single Cloud, multi-region, multi-account
2 - Repeatable network design and infrastructure as code automation
3 - Service insertion and chaining
4 - Consistent Security Policy
5 - Common Operational Visibility and Control

Question 4

Cloud Network Segmentation

Answer 4

1 - In Cloud resoruces (at CSP) - provide automation, troubleshooting, cpacity, logging, flow, packet caprute, health alert, monitor
2 - Common Global Transit Networking - provide access routing, aggregation routing, core routing, L4 FW, NGGW, Load Balancer, Internet, workloads, storage, SaaS, vendor links, multi-region/cloud, WAN optimized
3 - DataCenter(s) - Branch, Partner, Users, SD-WAN, MPLS, Direct Connect, ExpressRoute, CGP Cloud Interconnect, Encrypted access, Internet backhaul, WAN optimized, NGFW, Ingelligent Edge, 5G, IoT AI Devices, Autonomous Systems
4 - Network Segmentation - End to end encryption, HPE, Secure Egress FQDN, Secure user access, Secure Site-to-Cloud, DC-To-cloud encryption

Question 5

4 Benefits of MCNA

Answer 5

1 - Normalized control and data plan
2 - repeatable (pod) like architecture
3 - Flexible modular design
4 - Embrace and extend
5 - security embedded at each layer
6 - Fast and quick Day-2 ops