F5 APPLICATION DELIVERY SERVICES IN THE GOOGLE CLOUD
2
CHALLENGE
Infinite scalability, unmatched flexibility, and reduced overheads make computing in the public cloud
seem like the perfect IT solution. However, many enterprises making the shift to the cloud do so
amidst concerns that their applications’ security and performance may be diminished, or that they’ll
fall victim to vendor lock-in and incur large re-architecting costs. This is a common fear, with a recent
study finding that 78 percent of IT decision makers worry about the portability of their workloads in
the cloud.
2
Increased network segregation and inconsistent application services across hybrid cloud
architectures are also placing additional strain on IT departments while generating new security
vulnerabilities for attackers to take advantage of. But it doesn’t need to be this way.
SOLUTION
Following continued adoption of the Google Cloud among enterprises, F5 has made BIG-IP virtual
editions available in the Google Cloud Launcher, which deploys VEs directly into a virtual cloud
environment. Because VEs are built on the same base code as BIG-IP hardware, they can oer
complete feature parity with their physical counterparts. This allows you to take advantage of the
scalability and flexibility of the public cloud without jeopardizing application performance and security.
Whether you decide to run your applications entirely in the Google Cloud or across a hybrid cloud
architecture, F5 will protect your applications and data. F5’s application services can also be quickly
and easily replicated across data centers and all leading cloud environments—reducing
re-architecting time and costs, should you ever need to relocate your application workloads.
EMPLOY ENTERPRISE-CLASS SECURITY FOR GOOGLE CLOUD APPLICATIONS
Public cloud security can be broken down into two distinct categories: security of the cloud and
security in the cloud. The first relates to the security of the underpinning infrastructure including
compute resources, databases, and networking, which is the sole responsibility of the cloud
provider. On the other hand, security in the cloud implies the security of any applications and
theirsupporting data, which is ultimately the responsibility of the application owner.
Running BIG-IP VEs in your Google Cloud environment and taking advantage of F5’s advanced
L4–7 security services is the easiest and most eective way of ensuring your applications and
network are continuously protected. At the network level, BIG-IP® Advanced Firewall Manager™
Virtual Edition (AFM VE) defends against large volumetric based DDoS attacks. At the application
level, BIG-IP® Application Security Manager™ Virtual Edition (ASM VE) mitigates against common
application vulnerabilities and L7 DDoS attacks, while providing protection against all OWASP top
10 threats. Should you already have BIG-IP security modules elsewhere within your hybrid-cloud
infrastructure, it’s simple to replicate the custom security policies you currently employ onto BIG-IP
VEs in the Google Cloud—ensuring consistent security across your architecture.
KEY BENEFITS
• Cut costs by scaling in the cloud,
not on premises
• Protect customer data anywhere
within a hybrid cloud architecture
• Easily move workloads between
Google Cloud and data centers
• Maintain high availability of web
applications
• Keep sensitive data on premises
• Increase agility of deployment
through automation
• Simplify architecture with a single
set of programmable, consistent
app services
• Provide advanced app services
for apps running in GKE and GKE
On-Prem