About the NetFoundry Cloud demo network
At NetFoundry, we have provisioned a network with a web app that would provide an experience to organizations that would like to have an experience of the platform as an admin and a user. The application is unavailable for access over the public internet and can be access only over the NetFoundry Cloud zero trust network from an identity that is authorized to access the application. You can also get a view of the configurations of this demo network by logging into the NetFoundry console. You could experience this demo network before you start provisioning your own network with NetFoundry.
As a NetFoundry console admin, you would be able to:
1. View the configurations such as identities, routers, service and service policy configs
2. Explore metrics such as identity wise and service wise utilization over time, dial logs, service health etc
3. View config for "BrowZer" app, authentication policy etc
As a user assigned an identity in the network:
1. You would be able to access the demo app from your device running the NetFoundry endpoint software
2. Experience the ziti desktop edge app and it's features
3. Experience agentless zero trust networking " BrowZer" from a chromium based browser
Architecture of the NetFoundry Cloud demo network:
How to get started?
A customer success engineer from NetFoundry would be onboarding you on the demo network. Alternatively you can write an email to selfsignups <selfsignups@netfoundry.io>
1. We would be sharing an email that has the registration token for your device ( Mobile / Laptop - Windows / MAC / IOS / Android / Linux)
You won't have restrictions to run a private network from your personal laptop or mobile. But if you are trying to install the endpoint on a company provided and "locked" device, you may need to open IPs, ports and URLs in the outbound direction from your device.
The following IPs / URLs have to be allowed in your corporate network or security tool in the outbound direction. No ports or IPs are required to be open inbound.
TYPE | IPS | DOMAIN NAMES | PORTS |
Network Controller |
132.226.46.112 | facd6eb5-fe35-4d73-b4fe-953d775f1845.production.netfoundry.io | 443 |
Hosted Edge Routers |
129.80.177.188
18.141.80.150
(To test BrowZer) - 129.158.39.18 |
63ff91aa-dda5-432d-8f89-eabcc570fe74.production.netfoundry.io
e9e56091-626d-495d-90eb-77a17181f0c4.production.netfoundry.io
3a9b0a64-f289-4762-95a5-c814c52717c6.production.netfoundry.io |
443 |
You can then proceed to installing and registering your endpoint identity to the network. Refer the firewall requirements guide for more details.
The instructions to download the endpoint and register your identity to the network can be found as below:
2. You would receive an invite to the NetFoundry Cloud demo network:
You would receive an invite to the NetFoundry Cloud demo network from no-reply@netfoundry.io
Once you accept the invite and set your login credentials, you would get a confirmation from no-reply@netfoundry.io
Key things to go through in the console:
You have been provided a read-only role to the network.
This is the dashboard view
1. Your endpoint - you can see the details of your endpoint including the online status under the endpoints section
2. Service configuration
3. APPNet Configuration
APPNet configuration defines the list of services that a set of endpoints have access to
Demo A. Access the app from your device with Ziti Desktop Edge:
For you to experience our platform real-time, we create an identity and provide the one-time registration token over email.
As you receive the registration token, you can proceed with the installation of the ZDE client and enroll your identity.
Your endpoint with a enrolled identity looks like this.
Access the private web app from your browser using the URL - http://myapp.ziti/
You can safely ignore the "not secure" alert on your browser. We chose not to go for a https version so that you don't have the trouble of downloading certs.
When you turn off your endpoint and try to connect to the app, you won't be able to reach the app http://myapp.ziti/ since it is available only via the NetFoundry Cloud zero trust network.
Demo B. Access the app from your device with BrowZer:
The NetFoundry Cloud demo network has a browZer enabled app.
BrowZer requires integration with IDP for authentication. For our Lab, Auth0 has been configured to use google as a federated login. We will require your Gsuite or google email address to create a browZer endpoint for you.
Access the private web app with BrowZer using the URL - https://ziti.myapp.browzer.cloudziti.io/
Share your feedback of this demo experience at customer.success@netfoundry.io. Your feedback matters.