For a class, I need to create a theoretical web server, a dns server, database server and remote backup solution for a cloud web service for my “company” and secure these systems.

All we’ve been asked was:

“how would you design this cloud-based network”

“how would you secure it?”

“what type of resources would you need in addition to the above mentioned system?”

—————————————————-

So I’m looking for some resources to point me in the right direction of wrapping my head around this...I’m somewhat of a visual learner so I’ve been looking for images that conceptualize this (or something close to it)

We’re using Azure for a couple of assignments so I thought that I would use some cloud service like Azure, AWS, Google Cloud Platform, etc. in my design.

I would use separate virtual machines for the web server and DNS server.

I would put firewalls in front of each.
Only allowing port 443 for the web server and only allowing UDP 53 for the DNS.

Do I want a VPN for the web server and DNS server?

I’m not familiar with database servers so I don’t have a clue about how to secure it.

Would I want to backup to my company’s or backup to another cloud solution?

And how do I make sure the backup is secure in transit? VPN?

Despite this being a 2 week course, I’d really like to figure this out so I have a better understanding of how networks work with respect to the above mentioned services.