SAP on AWS
EDI for SAP
How to Separate Your SAP on AWS Application Layers for Maximum Security
Security by design in the AWS cloud
Amazon Web Services (AWS) offers users advanced, dedicated networking solutions through their Virtual Private Cloud (VPC) services. VPCs are virtual networks within AWS that are similar to traditional networks in an on-premises data center but with the scalability that only AWS can offer.
When running SAP on AWS in a VPC, separating your various SAP application layers into different zones can provide exceptional scalability and security.
A traditional deployment model can look something like this:
Using AWS features like Network Access Control Lists (ACLs) and Security Groups, data transfer between zones can be made possible only from the zone above or other whitelisted sources. An AWS Web Application Firewall (WAF) and other AWS security services can be blanketed across the entire VPC to help in preventing attacks.
Application zone separation for SAP on AWS should be the starting point for businesses looking to transition their SAP stack to the cloud. Starting with a backbone that prioritizes security will give you peace of mind to focus on scaling the business.
Source for this article: VPC Subnet Zoning Patterns for SAP on AWS, Part 2: Network Zoning | AWS for SAP (amazon.com)
By: Tim Bryan