...
The IP ranges for the subnets will need to be further discussed to ensure there is clarity in what is public/private and elasticity
Load balancers will need to be defined perhaps in a lower level diagram
Jumpbox/Bastion hosts may not be needed if we have the tools/monitoring
Security
Application
The applications we develop and deploy fit roughly in 3 groups
Front end applications, publicly available, typically served via a web server (in Azure)
Back end applications that are public accessible via HTTP once a user is authenticated
Back end applications that don't require public accessibility but run to serve other applications or do data transformation
With these broad types of applications, we need to find a suitable deployment strategy for each and seeing as this migration is greenfield, all is up for grabs.
Some investigations have already been kicked off around ECS and lambda but like previous sessions we should try and standardise before we invest into any one approach