AKS Cluster

The possible infrastructure vary depending on how the PostgreSQL database is provisioned

Options:

Azure AKS with VMs + Azure PostgreSQL
Azure AKS with VMs + PostgreSQL Pod

We offer a provisioning script that depending on the selection, we automatically provision the cluster for you and install the K8S components needed for MetaDefender ICAP Server service. See AKS Cluster Deployment

MetaDefender PostgreSQL database details

Recommendations

For running MetaDefender ICAP Server in a Kubernetes cluster we recommend to use, for production environments, an external database service for PostgreSQL. In case of Azure it is Azure PostgreSQL.

For non-production environments or for stateless use cases, we offer the option of installing the database within the cluster using a standard PostgreSQL image.

Azure VMs + Azure PostgreSQL / PostgreSQL Pod Diagram

Resources Inventory

Networking

Service Type	Resource Name	Description
Azure Virtual Network	<resource-group-name>-vnet
Azure Subnet	<resource-group-name>-aks-subnet
Azure Subnet	<resource-group-name>-db-subnet
Azure Private DNS Zone	<postgres_db_account_name>.postgres.database.azure.com
Azure Private DNS Zone Virtual Network Link	<postgres__db__account_name>.com

Monitoring

Service Type	Resource Name	Description
Azure Log Analytics WorkSpace	<log_analytics_workspace_name>	Workspace for analyzing the AKS Service
Azure Log Analytics Solution	ContainerInsights	Solution for gathering metrics of containers

Compute

Service Type	Resource Name	Description	Option
Azure AKS	<cluster_name>	Azure Kubernetes Service Cluster	All
Azure ProstgreSQL Flexible Server	postgresql-<postgres_db_account_name>	PostgreSQL Server for MetaDefender Core	Option with Azure PostgreSQL
Azure ProstgreSQL Flexible Server Configuration	azure.extensions	Configuration for installing PG_TRGM,DBLINK,BTREE_GIN_	Option with Azure PostgreSQL

Last updated on

Was this page helpful?