SlideShare a Scribd company logo

Perimeter Protected Access Design Pattern

Mike Reams, profile picture
Mike Reams

This document outlines the design pattern for perimeter application protection in identity access management architecture, focusing on tier 1 solutions. It describes the structure and components of the architectural pattern, which addresses challenges in software engineering like performance limitations and business risk minimization. The implementation involves SSL termination at F5 virtual servers with traffic directed to Oracle OHS for secure access management.

Design
1 of 1
1
Intranet User “On-Network” Perimeter Protected Access Perimeter Application Protection of Identity Access Management Architecture Design Pattern – Tier 1 Solution Building Block Version: 1.0 Author: Mike Reams Last Modified: DMZ Network Design Pattern Perimeter Application Protection of Identity Access Management A Design Pattern provides a scheme for refining the subsystems or components of a software system, or the relationships between them. It describes commonly recurring structure of communicating components that solves a general design problem within a particular context . Architectural patterns are similar to software design patterns but have a broader scope. The architectural patterns address various issues in software engineering, such as computer hardware performance limitations, high availability and minimization of a business risk. Perimeter Protected Access points to a single Public VIP that terminates the SSL session at the external facing F5 Virtual Server. The back-end interface of F5 from the same session directs traffic to Oracle OHS for reverse proxy which in turns proxies to the internal F5 Virtual Servers configured as Load Balancers using the F5 LTM module. This design is ideal for split DNS to allow internal to go exclusively through the internal F5 Virtual Server while having external traffic route through this architectural pattern. The Oracle WebGate is extended to the perimeter network on the F5 using the Access Policy Manager module. Architecture Domain(s) Networking | Identity Management | Security | Middleware External DNS/VIP External Facing Firewall F5 Big-IP Internal Virtual Server Application Internet User “Off-Network” Linux OHS Reverse Proxy Internal Network Data Web Server Access Manager Access Policy Central Login F5 Big-IP External Virtual Server w/ “APM” If login is required Internal DNS/VIP Internal Facing Firewall Webgate Machine Machine General Architecture If login is required Webgate Internal Facing Firewall

More Related Content

ODP
Monolithic to Microservices Architecture - STM 6
Tricode (part of Dept)
 
PPTX
Layered architecture style
Begench Suhanov
 
PPTX
To Microservice or Not to Microservice?
Eran Stiller
 
PPTX
Layered Architecture - Software Architecture Pattern
Thang Nguyen
 
PPT
Software architecture
nazn
 
PDF
Essential Software Architecture - Chapter 1 Understanding Software Architectu...
John Ortiz
 
PDF
3 tier architecture
baabtra.com - No. 1 supplier of quality freshers
 
PPTX
3 tier architecture
baabtra.com - No. 1 supplier of quality freshers
 
Monolithic to Microservices Architecture - STM 6
Tricode (part of Dept)
 
Layered architecture style
Begench Suhanov
 
To Microservice or Not to Microservice?
Eran Stiller
 
Layered Architecture - Software Architecture Pattern
Thang Nguyen
 
Software architecture
nazn
 
Essential Software Architecture - Chapter 1 Understanding Software Architectu...
John Ortiz
 
3 tier architecture
baabtra.com - No. 1 supplier of quality freshers
 
3 tier architecture
baabtra.com - No. 1 supplier of quality freshers
 

What's hot (13)

DOCX
Work Experiences in ChinaTMN
Zhijie Li
 
PPTX
N-Tier Application Architecture
Manoj Kumar
 
PPTX
Software Architecture Patterns
Assaf Gannon
 
PPTX
Software architecture
Ahmad Raza Aslam
 
PPT
3 Tier Architecture
Webx
 
PPTX
Software engineering 17 architectural design
Vaibhav Khanna
 
PPTX
3 tier architecture
baabtra.com - No. 1 supplier of quality freshers
 
DOCX
Architectural Styles and Case Studies, Software architecture ,unit–2
Sudarshan Dhondaley
 
PDF
Integration architecture framework
Yaohua (Ivan) Chen, Ph.D.
 
PPTX
two tier and three tier
Kashafnaz2
 
PPTX
3 tier architecture
baabtra.com - No. 1 supplier of quality freshers
 
PPTX
Layered Software Architecture
Lars-Erik Kindblad
 
PPTX
2 tier and 3 tier architecture
baabtra.com - No. 1 supplier of quality freshers
 
Work Experiences in ChinaTMN
Zhijie Li
 
N-Tier Application Architecture
Manoj Kumar
 
Software Architecture Patterns
Assaf Gannon
 
Software architecture
Ahmad Raza Aslam
 
3 Tier Architecture
Webx
 
Software engineering 17 architectural design
Vaibhav Khanna
 
3 tier architecture
baabtra.com - No. 1 supplier of quality freshers
 
Architectural Styles and Case Studies, Software architecture ,unit–2
Sudarshan Dhondaley
 
Integration architecture framework
Yaohua (Ivan) Chen, Ph.D.
 
two tier and three tier
Kashafnaz2
 
3 tier architecture
baabtra.com - No. 1 supplier of quality freshers
 
Layered Software Architecture
Lars-Erik Kindblad
 
2 tier and 3 tier architecture
baabtra.com - No. 1 supplier of quality freshers
 
Ad

Viewers also liked (7)

PPT
Case study of pay pal
Jean Lordeus
 
PPT
Itec 610 case_study_team_5_final_080910_a
University of Maryland graduate School
 
PPT
Web & Intranet Planning Workshop (half day)
Prescient Digital Media
 
PPTX
CHAP 3 - NETWORK, INTRANET & INTERNET
Cikgu Johan Johari
 
PDF
Contract Management with SharePoint and Office365
Optimus BT
 
PPT
Intranet Mailing System Rahul Raj
vishnu56
 
PDF
Re-engineering Your Intranet With User Friendly Architecture
Patrick Kennedy
 
Case study of pay pal
Jean Lordeus
 
Itec 610 case_study_team_5_final_080910_a
University of Maryland graduate School
 
Web & Intranet Planning Workshop (half day)
Prescient Digital Media
 
CHAP 3 - NETWORK, INTRANET & INTERNET
Cikgu Johan Johari
 
Contract Management with SharePoint and Office365
Optimus BT
 
Intranet Mailing System Rahul Raj
vishnu56
 
Re-engineering Your Intranet With User Friendly Architecture
Patrick Kennedy
 
Ad

Similar to Perimeter Protected Access Design Pattern (20)

PPTX
Blockchain solution architecture deliverable
Sarmad Ibrahim
 
PPTX
Unit_4_Software_Design.pptx
taxegap762
 
PPT
3. Distributed System Models ssssssssssssssssss.ppt
MrVMNair
 
PPTX
Distributed architecture (SAD)
Khubaib Ahmad Kunjahi
 
PPTX
T2_Automotive SWArch_Updated.pptx T2_Automotive SWArch_Upda...
HuyTrn352093
 
PDF
Embedded system design: a modern approach to the electronic design.
ICTperspectives
 
PDF
Mobile gis
Soumik Chakraborty
 
PPTX
How to choose the right software
Rüdiger Gros
 
PDF
"A Highly Decoupled Front-end Framework for High Trafficked Web Applications"...
Prem Gurbani
 
PDF
10 - Architetture Software - More architectural styles
Majong DevJfu
 
PPTX
Middle ware Technologies
prakashk453625
 
PDF
Popeye - Using Fine-grained Network Access Control to Support Mobile Users an...
Tal Lavian Ph.D.
 
PDF
National%20 online%20examination%20system%20an%20architectural%20perspective
kalimullahmohd89
 
PDF
National%20 online%20examination%20system%20an%20architectural%20perspective
kalimullahmohd89
 
PPTX
IBM DataPower Gateways - What's new in 2016 v7.5.2
IBM DataPower Gateway
 
PDF
PARKING ALLOTMENT SYSTEM PROJECT REPORT REPORT.
Kamal Acharya
 
PPTX
01 Interface Design and Management – How-To Guide.pptx
Orest Swystun
 
PPTX
Middleware Technologies
prakashk453625
 
PPTX
Software architectural patterns - A Quick Understanding Guide
Mohammed Fazuluddin
 
PPTX
Modern Microservices Architecture with Docker
Eran Stiller
 
Blockchain solution architecture deliverable
Sarmad Ibrahim
 
Unit_4_Software_Design.pptx
taxegap762
 
3. Distributed System Models ssssssssssssssssss.ppt
MrVMNair
 
Distributed architecture (SAD)
Khubaib Ahmad Kunjahi
 
T2_Automotive SWArch_Updated.pptx T2_Automotive SWArch_Upda...
HuyTrn352093
 
Embedded system design: a modern approach to the electronic design.
ICTperspectives
 
Mobile gis
Soumik Chakraborty
 
How to choose the right software
Rüdiger Gros
 
"A Highly Decoupled Front-end Framework for High Trafficked Web Applications"...
Prem Gurbani
 
10 - Architetture Software - More architectural styles
Majong DevJfu
 
Middle ware Technologies
prakashk453625
 
Popeye - Using Fine-grained Network Access Control to Support Mobile Users an...
Tal Lavian Ph.D.
 
National%20 online%20examination%20system%20an%20architectural%20perspective
kalimullahmohd89
 
National%20 online%20examination%20system%20an%20architectural%20perspective
kalimullahmohd89
 
IBM DataPower Gateways - What's new in 2016 v7.5.2
IBM DataPower Gateway
 
PARKING ALLOTMENT SYSTEM PROJECT REPORT REPORT.
Kamal Acharya
 
01 Interface Design and Management – How-To Guide.pptx
Orest Swystun
 
Middleware Technologies
prakashk453625
 
Software architectural patterns - A Quick Understanding Guide
Mohammed Fazuluddin
 
Modern Microservices Architecture with Docker
Eran Stiller
 

More from Mike Reams (17)

PDF
Design Pattern Logical Model
Mike Reams
 
PPTX
Knowledge Transfer Training Presentation for Identity Lifecycle Manager
Mike Reams
 
PDF
Mobile user single sign on flow
Mike Reams
 
PDF
Solution Delivery Calendar
Mike Reams
 
PDF
Environment Gap Analysis for Applications
Mike Reams
 
PDF
Design Pattern for Federated Single Sign-On Access
Mike Reams
 
PDF
Design Pattern for Oracle Identity Provisioning
Mike Reams
 
PDF
Retiree Data Flow Diagram
Mike Reams
 
PDF
Series of Visual Flow Diagrams
Mike Reams
 
PDF
High-level Architecture viewpoint of a Troux Infrastructure
Mike Reams
 
PDF
Visio Diagram of a user SSO Flow
Mike Reams
 
PDF
Visio Diagram Scripting and Server Management flow
Mike Reams
 
PDF
Visio Diagram for Configuration Management
Mike Reams
 
PDF
User Flow swim-lane Diagram for New Hire
Mike Reams
 
PDF
Architecture Design Presentation for OIM
Mike Reams
 
PDF
Sample Template for Single Sign-On (SSO)
Mike Reams
 
PDF
Visual representation as an architectural artifact
Mike Reams
 
Design Pattern Logical Model
Mike Reams
 
Knowledge Transfer Training Presentation for Identity Lifecycle Manager
Mike Reams
 
Mobile user single sign on flow
Mike Reams
 
Solution Delivery Calendar
Mike Reams
 
Environment Gap Analysis for Applications
Mike Reams
 
Design Pattern for Federated Single Sign-On Access
Mike Reams
 
Design Pattern for Oracle Identity Provisioning
Mike Reams
 
Retiree Data Flow Diagram
Mike Reams
 
Series of Visual Flow Diagrams
Mike Reams
 
High-level Architecture viewpoint of a Troux Infrastructure
Mike Reams
 
Visio Diagram of a user SSO Flow
Mike Reams
 
Visio Diagram Scripting and Server Management flow
Mike Reams
 
Visio Diagram for Configuration Management
Mike Reams
 
User Flow swim-lane Diagram for New Hire
Mike Reams
 
Architecture Design Presentation for OIM
Mike Reams
 
Sample Template for Single Sign-On (SSO)
Mike Reams
 
Visual representation as an architectural artifact
Mike Reams
 

Recently uploaded (20)

PDF
Facade & Landscape Lighting Techniques and Trends.pptx.pdf
Mina Anis
 
DOCX
The story of the first moon landing.docx
Geani7
 
PPTX
YV PROFILE PROJECTS PROFILE PRES. DESIGN
ShaluPriya26
 
PPTX
CLASS_11_BUSINESS_STUDIES_PPT_CHAPTER_1_Business_Trade_Commerce.pptx
PRITTHAKKAR7
 
PDF
Phone away, tabs closed: No multitasking
NaziaNowrin2
 
PPTX
ANATOMY OF ANTERIOR CHAMBER ANGLE AND GONIOSCOPY.pptx
SauravAggarwal12
 
PPT
EGWHermeneuticsffgggggggggggggggggggggggggggggggg.ppt
simonkahinga
 
PPTX
Wisp Textiles: Where Comfort Meets Everyday Style
sportsenerlix
 
PPTX
LITERATURE CASE STUDY DESIGN SEMESTER 5.pptx
banikishika701
 
PPTX
AC-Unit1.pptx CRYPTOGRAPHIC NNNNFOR ALL
prabujayant2022
 
PPTX
HPE Aruba-master-icon-library_052722.pptx
ManalWong
 
PPTX
rapid fire quiz in your house is your india.pptx
rishikjjwala
 
PPTX
Entrepreneur intro, origin, process, method
SANGEETHA PRIYA B
 
PDF
SEVA- Fashion designing-Presentation.pdf
Maya243315
 
PDF
Key Trends in Website Development 2025 | B3AITS - Bow & 3 Arrows IT Solutions
B3AITS - Bow & 3 Arrows IT Solutions
 
DOCX
actividad 20% informatica microsoft project
fernandeznibesky
 
PPTX
building Planning Overview for step wise design.pptx
SamuelJohnson540488
 
PPTX
Media And Information Literacy for Grade 12
CaloyMasion
 
PPT
WHY_R12 Uaafafafpgradeaffafafafaffff.ppt
VijayalakshmiGanesh3
 
PPTX
Complete Guide to Microsoft PowerPoint 2019 – Features, Tools, and Tips"
asmathmohamed2004
 
Facade & Landscape Lighting Techniques and Trends.pptx.pdf
Mina Anis
 
The story of the first moon landing.docx
Geani7
 
YV PROFILE PROJECTS PROFILE PRES. DESIGN
ShaluPriya26
 
CLASS_11_BUSINESS_STUDIES_PPT_CHAPTER_1_Business_Trade_Commerce.pptx
PRITTHAKKAR7
 
Phone away, tabs closed: No multitasking
NaziaNowrin2
 
ANATOMY OF ANTERIOR CHAMBER ANGLE AND GONIOSCOPY.pptx
SauravAggarwal12
 
EGWHermeneuticsffgggggggggggggggggggggggggggggggg.ppt
simonkahinga
 
Wisp Textiles: Where Comfort Meets Everyday Style
sportsenerlix
 
LITERATURE CASE STUDY DESIGN SEMESTER 5.pptx
banikishika701
 
AC-Unit1.pptx CRYPTOGRAPHIC NNNNFOR ALL
prabujayant2022
 
HPE Aruba-master-icon-library_052722.pptx
ManalWong
 
rapid fire quiz in your house is your india.pptx
rishikjjwala
 
Entrepreneur intro, origin, process, method
SANGEETHA PRIYA B
 
SEVA- Fashion designing-Presentation.pdf
Maya243315
 
Key Trends in Website Development 2025 | B3AITS - Bow & 3 Arrows IT Solutions
B3AITS - Bow & 3 Arrows IT Solutions
 
actividad 20% informatica microsoft project
fernandeznibesky
 
building Planning Overview for step wise design.pptx
SamuelJohnson540488
 
Media And Information Literacy for Grade 12
CaloyMasion
 
WHY_R12 Uaafafafpgradeaffafafafaffff.ppt
VijayalakshmiGanesh3
 
Complete Guide to Microsoft PowerPoint 2019 – Features, Tools, and Tips"
asmathmohamed2004
 

Perimeter Protected Access Design Pattern

  • 1. Intranet User “On-Network” Perimeter Protected Access Perimeter Application Protection of Identity Access Management Architecture Design Pattern – Tier 1 Solution Building Block Version: 1.0 Author: Mike Reams Last Modified: DMZ Network Design Pattern Perimeter Application Protection of Identity Access Management A Design Pattern provides a scheme for refining the subsystems or components of a software system, or the relationships between them. It describes commonly recurring structure of communicating components that solves a general design problem within a particular context . Architectural patterns are similar to software design patterns but have a broader scope. The architectural patterns address various issues in software engineering, such as computer hardware performance limitations, high availability and minimization of a business risk. Perimeter Protected Access points to a single Public VIP that terminates the SSL session at the external facing F5 Virtual Server. The back-end interface of F5 from the same session directs traffic to Oracle OHS for reverse proxy which in turns proxies to the internal F5 Virtual Servers configured as Load Balancers using the F5 LTM module. This design is ideal for split DNS to allow internal to go exclusively through the internal F5 Virtual Server while having external traffic route through this architectural pattern. The Oracle WebGate is extended to the perimeter network on the F5 using the Access Policy Manager module. Architecture Domain(s) Networking | Identity Management | Security | Middleware External DNS/VIP External Facing Firewall F5 Big-IP Internal Virtual Server Application Internet User “Off-Network” Linux OHS Reverse Proxy Internal Network Data Web Server Access Manager Access Policy Central Login F5 Big-IP External Virtual Server w/ “APM” If login is required Internal DNS/VIP Internal Facing Firewall Webgate Machine Machine General Architecture If login is required Webgate Internal Facing Firewall