NetFoundry On-Prem

A cloud-hosted solution doesn't suit every customer. Some need to host their own infrastructure in private datacenters or public clouds where they've got full control over security policies and access control lists.

For isolated or partially air-gapped environments, some setups require that the Ziti controller and edge routers are only resolvable and reachable from within a private network. Usually, these installations also need to be managed from within that same private space. In these cases, NetFoundry On-Premise is likely the best fit.

What we deploy

• Ziti controller: This deployment uses the open-source ziti-controller helm chart to bootstrap the entire PKI infrastructure needed for the Ziti control plane.
• ZAC (Ziti Admin Console): This is a lightweight, open-source UI that ships natively with the controller helm chart and deploys alongside it.
• Ziti router: Using the open-source ziti-router helm chart, we typically deploy at least one edge router right next to the controller. Setting up a controller and a router with the edge listener enabled gives you a fully functional Ziti network that's ready to pass traffic in minutes.
• NetFoundry support stack: This relies on our proprietary helm chart and requires a private access token. It's designed to help you leverage all the telemetry and events available in Ziti. All components are currently open-source and pre-configured to provide comprehensive support, including telemetry dashboards and searchable logs that mirror what we use internally.
• Automated backups: We provide the setup for scheduled automated backups and clear processes for restoring your entire network.