Auto Generate GCP Diagrams

Free yourself from drag-and-drop forever.

 

What is Hava.io for Google Cloud Platform

Hava automates your GCP cloud documentation production by automatically generating a suite of interactive diagrams and reports when you connect Hava to your GCP account.  Once connected your diagrams are constantly updated so you always have accurate documentation to hand and you can optionally set alerts to let you know when your architecture changes.

Creating GCP architecture diagrams with hava.io is as simple as creating a read-only Service Account and plugging the credentials into Hava.  The application will then scan your account configuration and produce a set of fully interactive diagrams laid out by Environment.

This automated process saves hours or days over traditional drag and drop diagram builders by providing logically laid out cloud topology diagrams that make it easy for your  engineers to see what's running where and helps identify potential improvements or vulnerabilities.

Versioning built into Hava means you can inspect how your architecture looked at any point in time giving you the ability to compare any two revisions via Diff Diagrams

Let's take a look at the different views of your network topology automatically generated by Hava. 

Automated Azure Diagrams

Automated Diagrams

Simply connect your Google Cloud account to Hava and your infrastructure is automatically diagrammed.

Auto Updated GCP Infrastructure Diagrams

Always Up To Date

Once connected, Hava continuously polls your GCP account and updates your diagrams when changes are detected.

Azure Infrastructure History

With Versioning

Your superseded infrastructure diagrams are retained in a fully interactive & exportable form.

There are numerous reasons to accurately document your cloud infrastructure. Enabling key stakeholders to fully understand your cloud architecture is easily achieved with a good set of accurate interactive diagrams. Which means new engineers and external consultants don't waste valuable time working out what you have configured.

 

GCP Architecture Diagrams

Creating a set of GCP Architecture Diagrams using Hava is as simple as creating a read-only service account in your GCP Console, generating a JSON key and entering it into Hava.

Hava will create a set of diagrams based on the discovered resource groups in your GCP account.

 

GCP_Architecture_Diagram

 

The "Infrastructure View" diagram that is automatically created, logically lays out your GCP environment for each discovered environment. Each Virtual Network is visualized and contains subnets and the resources they contain. Resources external to the subnets such as URL maps or DNS managed zones are visualised outside of the virtual network border.

Each diagram is interactive, in that selecting a zone, subnet or individual resource will change the contextual attributes pane to the right of the diagram to show metadata pertaining to the selected item.

Selecting a SQL Instance for instance will detail the zone, region, status, database version, connection name, IP addresses, availability, disk type, disk size etc.

Visualized Resources Include:

Compute Backend External VPN G'way Compute Instance Compute Interconnect Compute Nat G'way
Compute Network Compute Router Compute Subnet Compute URL Map VPN Gateway
DNS Managed Zone MemStore Instance SQL Instance Storage Buckets  

 

gcp_attributes

 

Resource Attributes at Your Fingertips

Selecting an individual resource on your interactive diagram will display the associated attribute metadata in the attribute pane to the right of the diagram.

 

This ensures you can quickly see all the associated connections and settings related to the selected resource without having to exit to your GCP Portal.

 

The same goes for selecting an entire virtual network or subnet.  All the associated settings like firewall security groups, peerings or route tables are displayed in the attribute pane.

 

Within the attribute pane, some attributes are also selectable. Clicking on the selectable attribute will display even more data related to that attribute, which includes resources not visualised on the diagrams like backend service settings.

ALWAYS UP TO DATE

Automatically generating GCP architecture diagrams ensures you have accurate documentation. However they are only accurate until the next configuration change. Hava continuously syncs your standard and custom diagrams, so an up-to-date documentation set is always at hand. Should you need "up to the second" updates, you can manually sync your data sources at any time to build a fresh set of diagrams on the fly using the Hava Console, Hava's CLI, API or using one of the many pipeline integrations such as Terraform or GitHub..

 

Exporting your diagrams

Your diagrams are constructed using the resources discovered in your connected GCP account. Hava provides the ability to export both the rendered diagrams and the underlaying data in a number of formats.

Export-diagram-formats

The PDF and PNG option will allow you to export an image of your rendered diagrams.

The Visio (VSDX) export will produce a file you can open in Microsoft Visio other compatible applications like draw.io and make edits to your infrastructure diagrams. Hava maintains 100% accurate diagrams by only building diagrams based on existing running resources that can be referenced for audit and compliance purposes.  If you need to diagram proposed changes or add annotations to your diagrams, then the VDSX export provides this flexibility.

The third available type of export is the data in both CSV and JSON formats.  This allows you to process the data using whatever methods you prefer.  A typical use case would be to export the current infrastructure data to compare with a previous version to quickly identify changes.

 

Versioning

Hava continuously polls your GCP infrastructure looking for changes.

Once a change is detected, Hava automatically generates a new set of diagrams - hands-free.

When a diagram set is superseded, the old version is placed into a Version History.  This is a fully functional interactive diagram set with all the associated metadata and attributes also archived.

This means you can open it up just like the live infrastructure and inspect all the resources as they existed at that point in time.

This is important, especially when responding to an unexpected network event, PCI  or insurance audit where you need to prove network integrity from a source of truth.

Versions are automatically generated whether you have logged into your Hava account or not, which means if several configuration changes occur in between logins, you will be able to establish exactly what changed and when.

Hava_Versions

 

DIFF VIEW

One of the unique features of Hava is the ability to compare any two diagram versions using the Diff View.

 

GCP_Diff_View

 

This on demand view shows you exactly what changed between the two architecture diagrams selected (points in time) - You get to see what was added and what was taken away which can be invaluable if you are trying to track down the cause of an outage or unexpected application errors.

 

ARCHITECTURAL MONITORING ALERTS

When things change in your cloud architecture, you're probably going to want to know about it. Your security team might be quite interested too.

 

Hava_Architectural_Monitoring_Alerts_Console

By setting up Alerts in Hava, you can nominate individuals to receive alerts when changes are detected. Alerts are placed in the Hava alerts console and an email is sent to everyone you nominate with a diff diagram showing you the changes that triggered the alert.

You get to know straight away so you can assess the impact on budget, security and application performance. You get to avoid architecture drift or nasty bill shock when the AWS invoice arrives at the end of the month.

 

View and Export Cost Estimates

When you first view your GCP infrastructure diagrams without anything on the diagram selected, the attribute pane will show details for the entire environment. 

This includes a "Monthly Estimate"  which will detail the resources found in your architecture that attract a usage charge from GCP.  The estimate is the published default cost for the resource and may not exactly reflect actual billing.

 

GCP_Environment_Cost_Estimates

 

When inspecting individual resources, the individual estimated cost for the resource is displayed in the attribute pane.

Another diagram in the automated GCP diagram set Hava produces when you connect your GCP account is the "List View" which can be used to view and export cost estimates.

Hava_Integrations

CLI

Hava has a fully featured CLI 

This will enable you to perform functions like adding new cloud accounts or environments to your Hava account as well as generating and updating diagrams as you deploy resources via IaC or command line scripts.

This delivers absolute real-time architecture and security diagrams without the need to wait for scheduled syncs or having to request updates manually.

This powerful tool is a CLI binary to interface with the Hava API so that cloud practitioners to script commands inside pipeline tools like:

  • Github Actions
  • Gitlab CI
  • Azure DevOps
  • Circle CI
  • Buildkite
  • Jenkins

Leveraging Hava's CLI ensures your cloud documentation is updated in real-time from right within the CI/CD tools you already use.

 

 

 

List View

The list view is a representation of all the resources discovered in your GCP configuration.  This includes resources that are not visualized on your infrastructure diagrams including disks, firewalls, forwarding rules, instance groups and so on.

In this view you can sort the list by resource type, resource name and price and filter the list by resource type to just show the resource types you are interested in.

The list view can be exported to CSV and JSON which provides an easy method of sending a list of costed resources to spreadsheet for financial analysis.

 

GCP_List_View

 

CUSTOM GCP DIAGRAMS

While automatically generated GCP diagrams delineated by Environment are incredibly useful and time saving, sometimes you need to diagram specific elements within your cloud accounts or to collate resources from different virtual networks or even different cloud providers.  

Hava's toolset addresses this with a very flexible query and search tool that allows you to build custom diagrams based on numerous criteria like region, resource name, VPC name and even arbitrary tags.

This enables you to customise diagrams to just include the key information you need that is dynamic and ready to view at a glance.

Custom Environment Diagrams can be used to:

    • Filter and diagram only the specific components of your environment you are interested in viewing

    • Combine data from separate environments into one diagram

    • Combine data from separate cloud providers into one diagram

    • View specific components from multiple sources on the one diagram

The search and filter box at the top of the environments dashboard is the starting point for creating a custom diagram and contains prompts for the available filters.

 

Hava_Query_Modifiers

Using the region: search parameter for instance, would return anything in the specified region, including resources in any matching Azure or GCP data sources you have connected to Hava.

Ie:    region:us-west-1 or region:us-west-2  would construct a diagram with any of your resources found in the nominated regions.
 
Quite complex queries can be constructed using the query/search function like: 
 
(vpc:vpc-1234 and ((CostCenter:dev and !Owner:"Jim Smith") or (CostCenter:test and !Owner:"Jim Smith"))) or
(vpc:vpc-4567 and (@type:"AWS::EC2::Instance or type:"AWS::RDS::DBInstance"))

 

Using the Deep Search modifier "@" within the query, the search will also return resources connected to the ones that meet your search criteria.

 

You can use this feature to quickly locate a resource from within 100's of connected cloud accounts with a single search command.

 

Embed Diagrams Anywhere

Hava provides the ability to generate an iFrame code snippet that allows you to embed your diagrams anywhere that allows iFrames. This means you can provide fully interactive diagrams of your GCP infrastructure without the need for log in credentials or complex API programming.

Embedded_Viewer_iframe

Typically for internal use like Wiki's, intranets, dashboards and support/development tickets the embedded diagrams are fully interactive and will contain the same potentially sensitive data as the diagrams viewed through the Hava application, so caution should be exercised when embedding diagrams outside of your intranet.

Embedded_Diagrams

 

INTEGRATIONS

There are a number of product specific integrations built by Hava to make integrating or triggering diagrams easy.

The Confluence plug-in for instance allows you to place interactive diagrams directly into your Confluence Wiki.

Diagram_Embedded_in_Confluence

There are also Terraform provider and GitHub Actions that make it easy to trigger diagram production and retrieval as part of your CI/CD pipeline activity so you can capture architecture states at the point they are deployed.

 

API

Hava has a fully featured API that enables you to pull config data, fire sync requests and any perform number of tasks and functions.

The API can be used to extend Hava's functionality. Customers have documented tasks like adding animated gifs of a network topology diagram as a build pipeline artifact

The API functions include listing and creating environments, fetching and exporting diagrams in various formats, JSON exports, fetching and creating teams and team members and creating, fetching and syncing your AWS, Azure and GCP data sources.

 

SAAS OR SELF HOSTED

The Hava SaaS is ready for you 24/7.  Simply pick a plan and you'll be set up with a free trial within seconds.

Create a set of read-only credentials and connect your cloud to Hava. 

Within a few minutes Hava will map your cloud configuration and produce a full set of  interactive diagrams.

You can access a free 14 day trial to any of the available SaaS plans via the button below.  No credit card required.

 

AWS MARKETPLACE

We understand that you might want to get your hands on diagrams right away, but the procurement process within your organisation may make that a longer process that you would like.

If you also have an AWS account, you have options.

To help remove any friction, you can add Hava to your existing AWS bill by signing up to Hava via the AWS marketplace inside your existing AWS Console. This removes the need to add us as a new vendor within your accounting system and all the trials and tribulations that usually involves.

You can then add your GCP accounts to Hava and have your diagrams generated automatically from any GCP, AWS, Azure or Kubernetes clusters you connect.

 

Just search for "Hava" in AWS Marketplace

 

Do you have questions?

You can contact us via the live chat widget on the bottom right of this page, or by emailing sales@hava.io.  If you would like an in-depth run through of Hava, we would be happy to arrange a one-to-one screenshare demonstration where we can discuss your use-cases and answer all your questions.

If you would like to jump right in and try Hava for yourself, we offer a 14 day free trial (no credit card required) where you can import demo data or connect directly to your GCP account