Home
{[{category.name}]}
- {[{section.name}]}
  - {[{subSection.name}]}
    - {[{ article.title }]}
  - {[{article.title}]}

Syntasa Secure Air-Gapped Network Deployment Checklist

Secure air-gapped environments vary significantly in their infrastructure configuration — from bare metal systems with no existing platform services to fully orchestrated private clouds with managed storage and identity. This checklist helps our team understand what capabilities will be available in your environment so we can plan the deployment and any additional development that is needed to prepare a bespoke installation package for your specific setup.

Please check all capabilities that will be available in the environment.

1. Compute

☐ A private cloud with virtualization and dynamic resource allocation (VMware, OpenStack, or similar) will be available

☐ A Kubernetes cluster with node pools and autoscaling will be available

☐ Fixed bare metal or virtual machines with some Linux OS, and no autoscaling will be the compute environment

☐ Other _____________________________________________________

2. Storage

☐ S3-compatible object storage will be available (MinIO, Ceph, NetApp StorageGRID, or similar)

☐ A data catalog or metastore will be available (Hive, Unity Catalog, or similar)

☐ Network-attached or block storage will be available (NAS, SAN, or mapped drives)

☐ Local disk storage will only be available

☐ Other _____________________________________________________

3. Reporting and Analytics

☐ Trino

☐ Impala

☐ Druid

☐ Other _____________________________________________________

4. Container Platform

☐ A Kubernetes cluster will be deployed and operational in the environment

☐ GPU scheduling and the NVIDIA device plugin will be configured and validated

☐ A private container registry will be available (Harbor, Nexus, Artifactory, or similar)

☐ No container platform will be in place

☐ Other _____________________________________________________

5. Networking & Connectivity

☐ Internal DNS and load balancing will be configured and available

☐ A private package or artifact mirror will be available for software dependencies (Python, Java, container images)

☐ The environment is air-gapped with a defined process for ingesting approved software packages

☐ The environment is air-gapped with no defined software ingestion process yet

☐ Other _____________________________________________________

6. Identity & Security

☐ SSO will be available (SAML, OIDC, OAuth, Active Directory, or LDAP)

☐ An internal certificate authority will manage certificates for internal services

☐ OS-level administrative privileges will be granted to the deployment team

☐ Custom or manual access controls will be in place with no SSO available

☐ Other _____________________________________________________

7. GPU & AI Stack

☐ GPU drivers and CUDA stack will be installed and validated prior to deployment

☐ The NVIDIA device plugin will be configured for containerized GPU workloads

☐ GPUs will be available but the software stack will not be configured prior to deployment

☐ No GPU infrastructure will be available in the environment

☐ Other _____________________________________________________