Deploying BrowserBox Pro in the Cloud - A Brief Guide to Set Up RBI with Public and Private Subnets
Deploying BrowserBox Pro in the Cloud: A Complete Guide to Set Up RBI with Public and Private Subnets
Creating a robust cybersecurity framework is more critical than ever. This tutorial will guide you through deploying BrowserBox Pro (BBPro), a leading Remote Browser Isolation (RBI) solution, using public and private subnets on your chosen cloud platform.
BrowserBox Pro provides an enhanced browsing experience with superior rendering, top-tier graphics, and minimal lag. It’s an ideal choice for businesses looking to enhance their cybersecurity, privacy, and browsing capabilities. The following guide outlines how to leverage BBPro using a segmented network architecture where some resources are exposed to the internet (the “edge” machines running BBPro) and some are kept private, accessible only through your intranet.
Creating a Segmented Network Architecture
Regardless of your cloud provider, the overall network architecture will be similar: create a Virtual Private Cloud (VPC) or Virtual Network with two subnets, one public and one private. The public subnet will contain your RBI servers, while the private subnet will host your internal applications.
Here’s how you might achieve this with various cloud providers:
Amazon Web Services (AWS)
You can create a Virtual Private Cloud (VPC) with two subnets: a public subnet for your RBI servers and a private subnet for your internal applications. The RBI servers in the public subnet can be associated with an Internet Gateway (IGW) to make them accessible from the internet. For your intranet users to access the private subnet, you can use AWS Direct Connect or AWS Site-to-Site VPN to securely connect your on-premises network to AWS.
Google Cloud Platform (GCP)
Similar to AWS, GCP allows you to set up a VPC with public and private subnets. Your RBI servers would reside in the public subnet and be associated with a Cloud Router and Cloud NAT for internet access. To connect your on-premises network to GCP, you can use Cloud Interconnect or Cloud VPN.
Microsoft Azure
You would create a Virtual Network (VNet) with two subnets: one public and one private. The public subnet would contain your RBI servers and be associated with an Internet Gateway for internet access. Azure ExpressRoute or VPN Gateway can be used to connect your on-premises network to Azure.
IBM Cloud
Here, you can create a Virtual Private Cloud with two subnets: one public, one private. The public subnet hosts your RBI servers and the private subnet hosts your internal applications. For intranet users to access the private subnet, you can use IBM Cloud Direct Link or VPN for IBM Cloud.
Oracle Cloud Infrastructure (OCI)
You would set up a Virtual Cloud Network with public and private subnets. Your RBI servers would be placed in the public subnet. OCI’s FastConnect or Site-to-Site VPN can be used to connect your on-premises network to OCI.
Alibaba Cloud
Alibaba Cloud provides Virtual Private Cloud which can be set up with a public subnet (VSwitch) for RBI servers and a private subnet for internal applications. Alibaba Cloud’s Express Connect or VPN Gateway can be used for connecting your on-premises network.
DigitalOcean
You can set up a VPC with two subnets. Your RBI servers would be located in the public subnet with a floating IP for internet access. For connecting your on-premises network to DigitalOcean, you might need to leverage a third-party VPN solution as, to my knowledge as of 202