About This Architecture

Multi-tier fintech payment platform on AWS af-south-1 with Cloudflare edge protection, dual VPCs for production and UAT, and isolated subnets for compute, storage, and data layers. Internet Users route through Cloudflare to an ALB in the Public Subnet, which distributes traffic to three EC2 App Servers in the Private App Subnet, while a Pritunl VPN Server enables secure operations access. Shared storage via EFS, observability through Graylog, deployment via GoCD, and task automation via Rundeck support operational excellence. RDS MySQL 8.0.44 Primary and ElastiCache Redis with replicas provide persistent and in-memory data layers with high availability. Fork this diagram to customize subnets, add cross-region failover, or integrate additional AWS services like Secrets Manager or VPC Flow Logs.

People also ask

How do you design a secure, scalable fintech payment platform on AWS with separate production and UAT environments?

This diagram shows a production VPC (20.0.0.0/16) and UAT VPC (10.0.0.0/16) on AWS af-south-1, each with isolated subnets for compute, storage, and data. Cloudflare protects the edge, ALBs distribute traffic to EC2 clusters, RDS MySQL and ElastiCache Redis provide persistent and cached data, and Pritunl VPN, GoCD, Graylog, and Rundeck enable secure operations and observability.