Architecture View

The Architecture View

The Architecture page provides a unified, read-only diagram that combines the information from your Zones and Flows into a single, comprehensive view. It is designed to give you a holistic understanding of your entire cloud security architecture at a glance.

A Combined View

This diagram visualizes:

  • Security Zones -- Your defined zones are shown as large container nodes.
  • Resources within Zones -- The actual cloud resources (subnets, VMs) that you have assigned to each zone are displayed as smaller nodes inside their parent zone container.
  • Data Flows between Zones -- The allowed data flows you defined on the Flows page are shown as arrows connecting the zones.

This powerful visualization helps you answer key questions:

  • What resources are in my Public DMZ?
  • Is there a valid data flow path from my web servers to my databases?
  • Which zones are allowed to communicate with the Management Zone?

Interacting with the Diagram

While the primary purpose of this page is visualization, it offers some interactivity.

Re-assigning Resources

You can re-assign a resource from one zone to another directly from this diagram:

  1. Find the resource you want to move inside its current zone.
  2. Click and drag the resource node.
  3. Drop it into the container of the new target zone.

The application automatically saves this change, updating the resource's zone assignment just as if you had done it on the Zones page.

Exploring Resource Details

Each resource node displays basic information. For more details:

  1. Hover over a resource node.
  2. Click the Info (i) icon.
  3. A popover will appear, showing detailed metadata fetched from the cloud provider:
    • Full Identifier (e.g., AWS Instance ID, Azure VM ID)
    • Resource Type
    • Region
    • VPC / VNet ID
    • Associated Tags

Navigating the Diagram

The Architecture view provides rich interactivity:

  • Pan and Zoom -- Navigate large architectures with mouse drag and scroll.
  • Auto-layout -- Nodes are automatically positioned for clarity.
  • Responsive -- The diagram adapts to your browser window size.

The Architecture view is invaluable for security reviews, compliance audits, and onboarding new team members. It provides a single source of truth for your cloud security posture.

Use Cases

ScenarioHow the Architecture View Helps
Security ReviewVisualize all zones, resources, and allowed flows in one diagram. Identify unprotected resources or overly permissive flows.
Compliance AuditDemonstrate to auditors how resources are segmented and which communication paths exist. Export or screenshot for documentation.
Team OnboardingNew team members can quickly understand the organization's cloud security design without reading hundreds of firewall rules.
Incident ResponseDuring a security incident, quickly identify which zones and resources could be affected based on the defined flow paths.