Rearc.io logoContact us
Case Study

GCP Load Balancing Foundational IAC

Challenge

The customer, a large financial media company, operates a hybrid cloud environment comprised of on-premise data centers and multiple cloud providers. Rearc worked with the customer's internal cloud team, which strives to empower their application developer teams to rapidly deploy both containerized and VM based workloads in ANY cloud provider by providing a simple menu item of foundational compute capabilities and platforms they can choose from. This insulates developer teams from having to deal with idiosyncrasies of individual cloud compute platforms. One of those foundational capabilities is load balancing. GCP has myriad load balancing options and the objective was to present those options as easy-to-consume Infrastructure-as-code (IAC) modules to encourage proper, fast and secure adoption.

Solution

Rearc researched and understood the capabilities of various load balancing options available in GCP and compared those with required customer use-cases. Rearc then leveraged Terraform in a "module library pattern" to implement and document the various flavors of GCP load balancing. The modules are consumed by Jenkins as the CI/CD platform to deploy infrastructure in GCP for Internet-facing as well as internal web applications.

Outcome

With Rearc's assistance, the customer has enriched their IAC module registry with multiple load balancing options that application developer teams can leverage to expose their applications in GCP. These options include:

  • Global External Load Balancer module for Internet-facing compute applications running on NEGs and Instance Groups that require multi-region redundancy. The same module could be optionally "locked down" for Internal-only access if required.
  • Global Kubernetes Ingress Load Balancer module for Internet-facing layer-7 applications running on GKE. This employed both the Google and Kubernetes providers for Terraform.
  • Internal Kubernetes Ingress Load Balancer module for internal layer-7 applications running on GKE. This also employed both the Google and Kubernetes providers for Terraform.

Latest Articles

Read more about the latest and greatest work Rearc has been up to.

Container Signing with AWS Signer

This project for a Fortune 500 company strengthened the security of deployed applications by implementing notarization for container artifacts, that can be used to established a chain of trust.

Financial Services
Security
AWS

Post-Quantum Cipher Scanning

This project for a Fortune 500 company strengthened the security of deployed applications by implementing automated cryptographic cipher scanning, analysis, and reporting, ensuring security compliance while maintaining development velocity.

Financial Services
Security
AWS

AWS Tenancy Migration And Azure Integration

Rearc performed an application portfolio assessment and designed a migration strategy for Avesis as they moved to a new AWS Organization. Post planning, Rearc leveraged infrastructure as code to deliver a new cloud landing zone in AWS and created an account factory for future growth. Rearc integrated Avesis's new AWS environment with their new Azure environment.

Cloud
AWS
Azure

Securing CI/CD Pipelines for Databricks Platform

This project for a Fortune 500 company strengthened the security of Databricks-integrated data lake pipelines by implementing automated vulnerability detection, secure credential management, and third-party dependency scanning, resulting in a compliant and resilient infrastructure.

Financial Services
Data
AWS
Next steps

Ready to talk about your next project?

1

Tell us more about your custom needs.

2

We’ll get back to you, really fast

3

Kick-off meeting

Let's Talk