Cloud Platform architecture and key concepts¶

Acquia Cloud Platform infrastructure¶

Acquia Cloud Platform applications run on Drupal-optimized infrastructure hosted in the Amazon Web Services (AWS) cloud environment. The core of the platform is an open-source LAMP infrastructure stack, combining the Linux (Ubuntu) operating system, Apache infrastructure, MySQL database, and PHP programming language with Drupal. Acquia Cloud Platform infrastructure is built on the AWS Elastic Compute Cloud (EC2) and leverages Elastic Block Storage (EBS) and Elastic IPs (EIP).

The Acquia Cloud Next version of Acquia Cloud Platform, first released in 2021, integrates additional AWS services, such as Amazon’s Elastic Kubernetes Service (EKS), Elastic File Service (EFS), and Aurora Database Services.

The exact configuration of a Cloud Platform application’s infrastructure depends on several factors, including anticipated monthly traffic levels, whether the application is part of Cloud Platform Enterprise (including Acquia Site Factory) or Cloud Platform Professional, and whether or not the application’s environments are running on the Cloud Classic version of Acquia Cloud Platform or the more advanced Acquia Cloud Next version. The following diagram displays an example of a Cloud Platform Enterprise application and how the components interact with one another:

For comparison, Acquia’s Cloud Classic infrastructure for Cloud Platform Enterprise and Acquia Site Factory applications has the following configuration for production environments:

For Cloud Platform Professional applications, as well as Cloud Platform Enterprise and Site Factory non-production environments, Acquia’s Cloud Classic infrastructure has the following configuration:

As indicated in the previous diagrams, Cloud Platform Enterprise and Cloud Platform Professional applications each have the following main components:

• Cloud Platform CDN (optional) for global cached content delivery (Fastly)
• Regional reverse proxy caching and load balancing infrastructure (Nginx and Varnish®) with TLS (SSL) termination
• Application layer infrastructure (Apache, PHP, Drupal code, cron, SSH and Memcached)
• File system infrastructure
  • Acquia Cloud Classic: Redhat Gluster
  • Acquia Cloud Next: AWS EFS
• Database infrastructure
  • Acquia Cloud Classic: Percona MySQL
  • Acquia Cloud Next: AWS Aurora

For more information, see Cloud Platform technology platform and supported software.

Compared to Cloud Platform Professional, Cloud Platform Enterprise provides more features for high availability, including redundant infrastructure at each level of the stack and greater levels of support, including unlimited application support and an operations team available 24x7 to remotely administer your applications and manage your infrastructure on demand. For more information, see Comparing Cloud Platform Professional and Cloud Platform Enterprise.

AWS infrastructure regions¶

Acquia Cloud Platform is built on Amazon Web Services (AWS) infrastructure, which is physically remote from Acquia’s offices. The AWS environment consists of major regions and Availability Zones. Acquia Cloud Platform customers may choose the geographic region for their application’s location. Acquia Cloud Platform supports the following zones:

• US (East and West)
• Canada (Central)
• Europe (Frankfurt, Ireland, and London)
• Asia Pacific (Tokyo, Singapore, and Sydney)
• South America (São Paulo)

Acquia Cloud Platform applications are only available in a subset of the above regions.

Virtual Private Cloud¶

Applications hosted by Acquia Cloud Platform are isolated using several security controls, but internal traffic travels over the same network inside Acquia’s shared virtual private cloud (VPC).

For subscribers interested in additional security, Acquia offers the following options:

• Compliant VPC: Applications are deployed on a separate, shared network that is limited to subscribers requiring PCI, HIPAA, or PII compliance. For more information, see Compliance with standards and regulations.
• Dedicated VPC: Applications are deployed on an isolated network environment, which can be used to connect to your virtual private network (VPN) device or Amazon Web Services Virtual Private Cloud (AWS VPC). For more information, see Shield.