Skip to content

Customer provided networks

Customer provided networks is an advanced service model that allows your customers to define network partitioning on a dedicated stack, while keeping the service Hosted by the service providers. This allows complete isolation, provisioning a dedicated stack that is not shared with other customers, that gives the ability to setup a private network path for your customer to connect with the service.

Note

This feature is available for Customer Hosted hosting model only. BYOA hosting model always provides isolation by provisioning the services in the customer account directly. The model is not supported for Omnistrate Hosted hosting model.

Enabling Customer Provided Networks

Customer Provided Networks can only be disabled (default) or enabled. When enabled, your customers will have to choose or create a new Custom Network whenever creating a new instance. Instances created with the same Custom Network will be co-located on same Deployment Cell and will share the same network interface.

A Customer Network is an abstract concept that defines a CIDR range for a specific Cloud Provider and a Region. Because each such network is owned by certain customer, instances belonging to different customers within the service plan are never co-located on Deployment Cells with instances from other customers.

Warning

Enabling this feature can potentially increase your infrastructure cost significantly as it can result in additional Kubernetes Host Clusters being provisioned, one for each Customer defined Custom Network.

Customer Provided Networks can be enabled when creating new Service Plan by adding following lines to your compose spec file:

x-omnistrate-service-plan:
  features:
    CUSTOM_NETWORKS:

or the following lines on the service spec file: 

features:
  CUSTOM_NETWORKS:

This feature cannot be modified once service model is created.

Configuring VPC peering

For each Custom Network created it is possible to configure private network connectivity to allow customers to use the services with private networking.

A way to define private networking is using VPC peering. For more details on how to configure VPC peering you can referent to the VPC peering guideline.