The Architecture Center provides content resources across a wide variety of hybrid and multicloud subjects.
Get started
If you are new to Google Cloud or new to designing hybrid and multicloud architectures that include Google Cloud, begin by reading Hybrid and multicloud overview.
Hybrid and multicloud resources in the Architecture Center
You can filter the following list of hybrid and multicloud resources by typing a product name or a phrase that's in the resource title or description.
Authenticate workforce users in a hybrid environment How to extend your identity management solution to Google Cloud to enable your workforce to authenticate and consume services in a hybrid computing environment. Products used: Cloud Identity |
Provides guidance on extending your existing, on-premises render farm to use compute resources on Google Cloud (Google Cloud). Products used: BigQuery, Cloud Interconnect, Cloud Storage, Cloud VPN, Compute Engine, Dedicated Interconnect |
Build hybrid and multicloud architectures using Google Cloud Provides practical guidance on planning and architecting your hybrid and multi-cloud environments using Google Cloud. Products used: Cloud Load Balancing, Compute Engine, GKE Enterprise, Google Kubernetes Engine (GKE) |
Configure Active Directory for VMs to automatically join a domain Shows you how to configure Active Directory and Compute Engine so that Windows virtual machine (VM) instances can automatically join an Active Directory domain. Products used: Cloud Run, Cloud Scheduler, Compute Engine, Container Registry, Secret Manager |
Cross-Cloud Network for distributed applications Describes how to design Cross-Cloud Network for distributed applications. Products used: Cloud Load Balancing, Virtual Private Cloud |
Cross-Cloud Network inter-VPC connectivity using VPC Network Peering Describes how to design the network segmentation structure and connectivity of Cross-Cloud Network for distributed applications. Products used: Cloud Load Balancing, Virtual Private Cloud |
Data management with Cohesity Helios and Google Cloud How Cohesity works with Google Cloud Storage. Cohesity is a hyperconverged secondary storage system for consolidating backup, test/dev, file services, and analytic datasets onto a scalable data platform. Products used: Cloud Storage |
Deploy an Active Directory forest on Compute Engine Shows you how to deploy an Active Directory forest on Compute Engine in a way that follows the best practices. Products used: Cloud DNS, Compute Engine, Identity-Aware Proxy |
Disaster recovery planning guide The first part of a series that discusses disaster recovery (DR) in Google Cloud. This part provides an overview of the DR planning process: what you need to know in order to design and implement a DR plan. Products used: Cloud Key Management Service, Cloud Storage, Spanner |
Discusses how the edge hybrid pattern addresses connectivity challenges by running time- and business-critical workloads locally, at the edge of the network. Products used: Cloud Pub/Sub, Cloud Storage, Google Kubernetes Engine (GKE) |
Discusses how to keep the production environment of a workload in the existing data center but use the public cloud for other, non-production environments. Products used: Cloud Pub/Sub, Cloud Storage, Google Kubernetes Engine (GKE) |
Federate Google Cloud with Active Directory Products used: Cloud Identity, Google Cloud Directory Sync |
Federate Google Cloud with Microsoft Entra ID (formerly Azure AD) Products used: Google Cloud Directory Sync |
File storage on Compute Engine Describes and compares options for file storage on Compute Engine. Products used: Compute Engine, Filestore |
FortiGate architecture in Google Cloud Describes the overall concepts around deploying a FortiGate Next Generation Firewall (NGFW) in Google Cloud. Products used: Cloud Load Balancing, Cloud NAT, Compute Engine, Virtual Private Cloud |
Discusses how the gated egress pattern is based on exposing select APIs from various environments to workloads that are deployed in Google Cloud. Products used: Cloud Interconnect, Cloud NAT, Cloud VPN, Compute Engine, Google Kubernetes Engine (GKE) |
Gated egress and gated ingress Discusses scenarios that demand bidirectional usage of selected APIs between workloads that run in various environments. Products used: Cloud Interconnect, Cloud NAT, Cloud VPN, Compute Engine, Google Kubernetes Engine (GKE) |
Discusses exposing select APIs of workloads running in Google Cloud to the private computing environment without exposing them to the public internet. Products used: Cloud Interconnect, Cloud NAT, Cloud VPN, Compute Engine, Google Kubernetes Engine (GKE) |
Hub-and-spoke network architecture Evaluate the architectural options for designing hub-and-spoke network topologies in Google Cloud. Products used: Cloud NAT, Cloud VPN, Virtual Private Cloud |
Hybrid and multicloud architecture patterns Discusses common hybrid and multicloud architecture patterns, and describes the scenarios that these patterns are best suited for. Products used: Cloud DNS, Cloud Interconnect, Cloud Pub/Sub, Cloud Run, Cloud SQL, Cloud Storage, Google Cloud Armor, Google Kubernetes Engine (GKE), Looker |
Hybrid and multicloud monitoring and logging patterns Discusses monitoring and logging architectures for hybrid and multicloud deployments, and provides best practices for implementing them by using Google Cloud. Products used: Cloud Logging, Cloud Monitoring, GKE Enterprise, Google Distributed Cloud, Google Kubernetes Engine (GKE) |
Hybrid and multicloud secure networking architecture patterns Discusses several common secure network architecture patterns that you can use for hybrid and multicloud architectures. Products used: Cloud DNS, Cloud Interconnect, Cloud NAT, Cloud VPN, Compute Engine, Google Cloud Armor, Google Kubernetes Engine (GKE) |
Identify and prioritize security risks with Wiz Security Graph and Google Cloud Describes how to identify and prioritize security risks in your cloud workloads with Wiz Security Graph and Google Cloud. Products used: Artifact Registry, Cloud Audit Logs, Cloud SQL, Cloud Storage, Compute Engine, Google Kubernetes Engine (GKE), Security Command Center |
Log and monitor on-premises resources with BindPlane Describes considerations and design patterns for using Cloud Logging, Cloud Monitoring, and BindPlane to provide logging and monitoring services for on-premises resources. Products used: Cloud Logging, Cloud Monitoring |
Migrate to a Google Cloud VMware Engine platform Describes the VMware Engine blueprint, which deploys a platform for VM workloads. |
Migrating On-Premises Hadoop Infrastructure to Google Cloud Guidance on moving on-premises Hadoop workloads to Google Cloud... Products used: BigQuery, Cloud Storage, Dataproc |
Overview of identity and access management Explores the general practice of identity and access management (generally referred to as IAM) and the individuals who are subject to it, including corporate identities, customer identities, and service identities. Products used: Cloud Identity, Identity and Access Management |
Patterns for connecting other cloud service providers with Google Cloud Helps cloud architects and operations professionals decide how to connect Google Cloud with other cloud service providers (CSP) such as Amazon Web Services (AWS) and Microsoft Azure. Products used: Cloud Interconnect, Dedicated Interconnect, Partner Interconnect |
Patterns for using Active Directory in a hybrid environment Requirements to consider when you deploy Active Directory to Google Cloud and helps you choose the right architecture. Products used: Cloud Identity |
Reference architecture: Resource management with ServiceNow Provides architectural recommendations to integrate Google Cloud assets into ServiceNow discovery tools. Products used: Cloud Asset Inventory, Compute Engine |
Secure virtual private cloud networks with the Palo Alto VM-Series NGFW Describes the networking concepts that you need to understand to deploy Palo Alto Networks VM-Series next generation firewall (NGFW) in Google Cloud. Products used: Cloud Storage |