Solution architecture

IBM® App Connect Enterprise as a Service is deployed across multiple availability zones in each Amazon Web Services (AWS) region.

The following diagram represents the IBM App Connect Enterprise as a Service architecture.
An application in an enterprise network uses a secure agent that routes through a public load balancer to connect to a data plane in their App Connect as a Service account. A runtime that is running in the data plane uses an NAT gateway to connect to an application on a public network or an application in the customer's account. A user or application in a public network connects through a web application firewall to a control plane in their account. The control plane provides user management and authoring capabilities. The control and data planes run in an AWS region, which contains three or more isolated availability zones for high availability.
Amazon Web Services (AWS) hosts instances of App Connect Enterprise as a Service in Regions, which are geographic areas. App Connect Enterprise as a Service is available in the following regions.
  • us-east-1 (North Virginia, US East)
  • eu-west-2 (London, Europe)
  • eu-central-1 (Frankfurt, Europe)
  • ap-southeast-2 (Sydney, Asia Pacific)
  • ap-south-1 (Mumbai, Asia Pacific)
Each AWS region contains three or more isolated Availability Zones, which provide high availability within a region. For more information, see Regions and Availability Zones in the AWS documentation.
App Connect Enterprise as a Service resources run in virtual private clouds (VPCs). One VPC contains a control plane, which provides the App Connect Designer authoring tool, and management of users and deployed integrations. Another VPC contains a data plane, which hosts the runtimes where your integrations run. To meet your organization’s data residency requirements, you can choose the region where you provision each instance of App Connect Enterprise as a Service.
Note: Some regions contain both a control plane and a data plane. However, the three Asia Pacific regions share a control plane in Sydney. When you provision an instance of App Connect Enterprise as a Service in any of these Asia Pacific regions, the control plane is hosted in Sydney, and the data plane is hosted in your chosen region.