About topologies: multi-region and hybrid

  • 1 minute(s) read
Prev Next

This document describes the cluster topologies supported by Segura, focusing on multi-region and hybrid scenarios. These topologies address business continuity, global scalability, and compliance with regional security and governance requirements.

Supported scenarios

Segura supports cluster operation in different topologies to meet specific needs:

  • Multi-region: Cluster distributed across multiple data centers or geographic regions, whether on-premises, cloud, or hybrid.
  • Hybrid environment: Cluster combining on-premises data centers with public cloud infrastructure such as AWS, Azure, or GCP.

Benefits

  • Global high availability: Minimizes the impact of localized failures, natural disasters, or regional outages.
  • Low latency for global users: Sessions and proxies provisioned close to users and resources.
  • Compliance: Meets regulatory requirements for data residency, segmentation, and governance.

How to expand clusters to multi-region

Prerequisites

  • Stable and secure network interconnectivity between regions.
  • Time synchronization (NTP) among all nodes.
  • Firewall rules allowing required ports between nodes.
  • Licensing covering multiple regions or data centers.

Step-by-step – expansion example

  1. Planning

    • Define the regions or data centers to compose the cluster.
    • Validate network, latency, throughput, and security requirements.

  2. Node provisioning

    • Install and configure the operating system and recommended dependencies at each location.
    • Ensure all nodes are accessible via internal network (preferably VPN/MPLS).

  3. Adding nodes to the cluster

    • Access the Segura central console, navigate to “Cluster Management”.
    • Select “Add Node” and provide connection/identification parameters for the new remote node.
    • The system will perform connectivity and replication tests.

  4. Load balancing and regional affinity configuration

    • Optionally configure rules to route sessions based on user location or workload.
    • Adjust failover policies between regions.

  5. Synchronization and monitoring

    • Check the dashboard to confirm nodes are “Healthy” and synchronized.
    • Configure alerts for latency, connection loss, or remote node degradation.

Important considerations

  • Latency: Cross-region communication can increase replication time; adjust thresholds and monitoring accordingly.
  • Firewall and security: VPN/IPsec between regions is recommended.
  • Cross-region failover: Assess if each region has sufficient resources to absorb load during total site unavailability.

Limitations and recommendations

  • The number of supported regions varies depending on infrastructure, connectivity, and licensing.
  • Perform periodic failover tests between regions.
  • Always validate data residency compliance when distributing nodes across countries in regulated environments.