Compute Infrastructure

In with the new: Meet the Virtual Router Appliance

Share this post:

We’ve got good news: You can give your network the gift of the Virtual Router Appliance, now generally available at IBM. With the Virtual Router Appliance, you can turn your high-performance bare metal servers into enterprise-grade virtual routers, firewalls, and VPNs to fit your unique application requirements—all from a standalone appliance or a pair of high availability (HA) appliances.

Our Virtual Router Appliance offers a number of enhancements over our legacy gateway service: higher performance, capacity, throughput, and standards updates to meet your compliance needs.

What are some of the ways you can make the Virtual Router Appliance work for you? This post will describe a few examples.

Virtual Router Appliance as a Firewall

To protect your environment from external threats, the Virtual Router Appliance can be leveraged as a firewall. You have the ability to add firewall rules to allow or deny inbound or outbound network traffic to the ports on which your application is running. You have the ability to filter the traffic within your own networks. The Virtual Router Appliance can also be configured to perform stateful IPv4 and IPv6 filtering to protect your critical data.

Virtual Private Network (VPN) Gateway

Perhaps you want to connect your on-site data center to the IBM Cloud using VPN tunneling. To do this, you can provision your Virtual Router Appliance as a network gateway device. You can use an IPsec site-to-site VPN tunnel for secure communication from your enterprise data center to your IBM Bluemix network.

Network Address Translation (NAT)

With the Virtual Router Appliance, you can provision application and database servers without public network interfaces while still allowing your servers to access the Internet via Source NAT. You can also hide your servers behind the gateway device with Destination NAT for enhanced security.

Enterprise-grade Routing

For multi-tiered applications on different isolated networks, the Virtual Router Appliance enables you to build connectivity between these networks with greater flexibility.

Let’s say you have a three-tiered web application. You’d want to ensure that only certain traffic from your web tier can communicate with your database tier. How would the Virtual Router Appliance work in this scenario? You’d provision databases on a separate VLAN, use the Virtual Router Appliance to route traffic between them, and create firewall rules to ensure that the database VLAN is secure.

Ready to get started?

Get enhanced control over your network infrastructure with the new Virtual Router Appliance. If you’re ready to take the Virtual Router Appliance plunge, we’re ready to get you started.

Content Marketing Manager at IBM Cloud

More Compute Infrastructure stories
May 6, 2019

Use IBM Cloud Certificate Manager to Obtain Let’s Encrypt TLS Certificates for Your Public Domains

IBM Cloud Certificate Manager now lets you obtain TLS certificates signed by Let’s Encrypt. Let’s Encrypt is an automated, ACME-protocol-based CA that issues free certificates valid for 90 days.

Continue reading

May 2, 2019

Video – What is a DDoS Attack?

Ryan Sumner, Chief Networking Architect, gives an overview of DDoS attacks and just how the attacker's botnet can affect the target application and its users.

Continue reading

April 18, 2019

Load Balancing API Calls Across Regions with IBM Cloud Internet Services and Cloud API Gateway

In this article, we'll explore load balancing traffic across two geographically-separated backends built on IBM Cloud Functions. We'll use the IBM Cloud API Gateway to deploy the same API definition in both regions, and then intelligently route traffic with IBM Cloud Internet Services.

Continue reading