SAP - Virtual Network and Subnet

JMN-2253 596 Reputation points
2022-02-01T20:43:12.983+00:00

Hi there,

I am going to deploy SAP Infrastructure as a Service for one of our customer includes: Development, QA, and Prod environment.

I am looking for recommendation:

  1. Customer has an existing Virtual Network using it for AD and other management server. Should I use the Same vNet and just add new subnets for each environment? or better to create a new Vnet with new subnets?
SAP HANA on Azure Large Instances
SAP HANA on Azure Large Instances
Microsoft branding terminology for an Azure offer to run HANA instances on SAP HANA hardware deployed in Large Instance stamps in different Azure regions.
120 questions
0 comments
Accepted answer
  1. Andreas Baumgarten 102.7K Reputation points MVP
    2022-02-01T21:19:36.963+00:00

    Hi @JanNuaman-2253 ,

    please take a look here on the "SAP on Azure Architecture Guide".
    https://video2.skills-academy.com/en-us/azure/architecture/reference-architectures/sap/sap-overview#scalability

    There you will find a recommendation to use a different SAP vNet (hub-spoke topology).

    In a lot of the SAP Architecture Guides from Microsoft you will find these kind of hub-spoke topologies
    https://video2.skills-academy.com/en-us/azure/architecture/reference-architectures/sap/sap-s4hana
    https://video2.skills-academy.com/en-us/azure/architecture/reference-architectures/sap/sap-netweaver
    https://video2.skills-academy.com/en-us/azure/architecture/reference-architectures/sap/run-sap-hana-for-linux-virtual-machines

    ----------

    (If the reply was helpful please don't forget to upvote and/or accept as answer, thank you)

    Regards
    Andreas Baumgarten

    1 person found this answer helpful.

3 additional answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Andreas Baumgarten 102.7K Reputation points MVP
    2022-02-02T15:53:40.657+00:00

    Hi @JanNuaman-2253 ,

    at the end it's up to you which network topology you like most (single vNet with all environments or one vNet for each environment).
    I don't know all your requirements.
    if it's up to me: I would go for 3 different vNets (one vNet per environment).

    • Dev-vNet with 3 Subnets: App Tier, DB Tier, Storage Tier
    • QA-vNet 3 Subnets: App Tier, DB Tier, Storage Tier
    • Prod-vet 3 Subnets: App Tier, DB Tier, Storage Tier

    This way I would have the most flexible control of the network communication and access. Also this approach is scalable.

    (If the reply was helpful please don't forget to upvote and/or accept as answer, thank you)

    Regards
    Andreas Baumgarten

    1 person found this answer helpful.
  2. Andreas Baumgarten 102.7K Reputation points MVP
    2022-02-13T20:02:08.79+00:00

    Hi @JanNuaman-2253 ,

    I don't know how this is done with your customer and the developers.
    I see 3 options:

    1. Copy the content from Dev to Hub (maybe a file share). From Hub you can copy the content to QA Spoke.
    2. Add a peering from Dev to QA Spoke
    3. Add a routing device in Hub and route the network traffic from Dev Spoke to QA Spoke via Hub network

    My personal favorite would be option 3.
    At the end ... in Azure you have the same "rules" and "solutions" like in on-premises networks. How would you solve the requirement in a on-premises environment?

    (If the reply was helpful please don't forget to upvote and/or accept as answer, thank you)

    Regards
    Andreas Baumgarten

    0 comments
  3. JMN-2253 596 Reputation points
    2022-02-13T20:38:05.17+00:00

    Hi @Andreas Baumgarten ,

    This is the first time I deal with SAP, usually, I deal with IBM FileNet and MSSQL or Oracle; for that I am not confident with my responses and looking for your support.

    Option 3 seems to be an optimal solution, from your experience is this link is the best way to achieve it?
    https://video2.skills-academy.com/en-us/azure/architecture/example-scenario/networking/manage-routing-azure-route-server

    Thank you