The NetFoundry Cloud Demo Network

About the NetFoundry Cloud demo network

At NetFoundry, we have provisioned a network with a web app that would provide an experience to organizations that would like to have an experience of the platform as an admin and a user. The application is unavailable for access over the public internet and can be access only over the NetFoundry Cloud zero trust network from an identity that is authorized to access the application. You can also get a view of the configurations of this demo network by logging into the NetFoundry console. You could experience this demo network before you start provisioning your own network with NetFoundry.

As a NetFoundry console admin, you would be able to:

1. View the configurations such as identities, routers, service and service policy configs

2. Explore metrics such as identity wise and service wise utilization over time, dial logs, service health etc

3. View config for "BrowZer" app, authentication policy etc

As a user assigned an identity in the network:

1. You would be able to access the demo app from your device running the NetFoundry endpoint software

2. Experience the ziti desktop edge app and it's features

3. Experience agentless zero trust networking " BrowZer" from a chromium based browser 

 

Architecture of the NetFoundry Cloud demo network:

cloudziti.png

 

How to get started?

A customer success engineer from NetFoundry would be onboarding you on the demo network. Alternatively you can write an email to selfsignups <selfsignups@netfoundry.io>

 

1. We would be sharing an email that has the registration token for your device ( Mobile / Laptop - Windows / MAC / IOS / Android / Linux)

You won't have restrictions to run a private network from your personal laptop or mobile. But if you are trying to install the endpoint on a company provided and "locked" device, you may need to open IPs, ports and URLs in the outbound direction from your device.

The following IPs / URLs have to be allowed in your corporate network or security tool in the outbound direction. No ports or IPs are required to be open inbound.

TYPE IPS DOMAIN NAMES PORTS

Network

Controller

132.226.46.112 facd6eb5-fe35-4d73-b4fe-953d775f1845.production.netfoundry.io   443
Hosted Edge Routers

129.80.177.188

 

 

18.141.80.150

 

(To test BrowZer) - 129.158.39.18

63ff91aa-dda5-432d-8f89-eabcc570fe74.production.netfoundry.io

 

e9e56091-626d-495d-90eb-77a17181f0c4.production.netfoundry.io

 

3a9b0a64-f289-4762-95a5-c814c52717c6.production.netfoundry.io

  443

You can then proceed to installing and registering your endpoint identity to the network. Refer the firewall requirements guide for more details. 

The instructions to download the endpoint and register your identity to the network can be found as below:

Windows

Mac

Linux

Android

IOS

 

2.  You would receive an invite to the NetFoundry Cloud demo network:

You would receive an invite to the NetFoundry Cloud demo network from no-reply@netfoundry.io

Once you accept the invite and set your login credentials, you would get a confirmation from no-reply@netfoundry.io

Key things to go through in the console:

You have been provided a read-only role to the network.

This is the dashboard view

1. Your endpoint - you can see the details of your endpoint including the online status under the endpoints section

2. Service configuration 

3. APPNet Configuration

APPNet configuration defines the list of services that a set of endpoints have access to

Demo A. Access the app from your device with Ziti Desktop Edge:

For you to experience our platform real-time, we create an identity and provide the one-time registration token over email.

As you receive the registration token, you can proceed with the installation of the ZDE client and enroll your identity.

Your endpoint with a enrolled identity looks like this.

 

Access the private web app from your browser using the URL  - http://myapp.ziti/ 

You can safely ignore the "not secure" alert on your browser. We chose not to go for a https version so that you don't have the trouble of downloading certs. 

When you turn off your endpoint and try to connect to the app, you won't be able to reach the app http://myapp.ziti/  since it is available only via the NetFoundry Cloud zero trust network.

Demo B. Access the app from your device with BrowZer:

 

The NetFoundry Cloud demo network has a browZer enabled app.

BrowZer requires integration with IDP for authentication. For our Lab, Auth0 has been configured to use google as a federated login. We will require your Gsuite or google email address to create a browZer endpoint for you.

Access the private web app with BrowZer using the URL  - https://ziti.myapp.browzer.cloudziti.io/ 

 

Share your feedback of this demo experience at customer.success@netfoundry.io. Your feedback matters.

 

Was this article helpful?
4 out of 4 found this helpful