Private Compute-as-a-Service

Private Compute-as-a-Service

Today, organisations of all sizes are facing challenges unlike any they’ve experienced before. Globalisation and economic pressures are changing the business landscape, increasing the pressure to expedite time-to-market with new products and services, while keeping costs down.

In addition, constant technology change has resulted in ad hoc infrastructure build-outs, creating complexity and complicating the management and support of IT infrastructure

Internet Solutions Private

Compute-as-a-Service

Internet Solutions (IS) Private Compute-as-a-Service (CaaS) is a dedicated cloud infrastructure-as-a-service (IaaS) that provides on-demand, self-service, pay-for-use access and control of virtual servers, storage and networking. Our Private CaaS is hosted within a client’s data centre and includes enterprise-class security, controls and performance guarantees as well as a REST-based application interface (API) for easy integration into backend systems, enterprise system management tools or third-party cloud applications.

Overview of IS’ Private CaaS

IS’ Private CaaS provides clients with a secure and scalable private cloud environment for compute – hosted within a client data centre. A Private CaaS is available in multiple standard builds, each for a fixed monthly cost. Key features:

• Simple-to-use, self-service access – Provisioning of virtual servers,

networks, and storage in minutes – Web-based administrative user

interface (UI) and REST-based APIs – Common interface across private cloud

deployments

– Customisable look and feel of the home page of the user interface

• Fully-managed service

– Comprehensive, ongoing management of the entire private cloud infrastructure as part of the Private CaaS

– Management of underlying operating systems, VMware virtualisation software, hardware (servers, network and storage), and cloud management system

– IS’ management processes address the key elements of implementation, change control, monitoring, patching, and lifecycle management so that cloud availability and performance are maintained

– Ongoing software lifecycle

management. We evaluate all major software releases from VMware, Cisco, and the other components of the solution and test these releases within its lab environment to ensure they function as expected

– IS will review new features and capabilities of any releases and will update its software to allow you to take full advantage of new software

Cloud Servers

Built on VMware’s vSphere hypervisor, IS cloud servers are highly configurable, secure, virtual machines that provide granular control and allow easy customisation. Each cloud server can be configured with up to 8 CPUs, 64 GB of RAM and 2.5 TB of storage.

Our secure virtual machines are hosted on physical servers and are built on the infrastructures from Cisco, EMC and Dell. IS cloud servers support Microsoft Windows, Red Hat Enterprise Linux, Ubuntu and CentOS operating systems and can be deployed and managed either through the administrative UI or through corresponding functions of the open API.

Additional features include:

• Granular configuration of CPU, RAM and Storage for each cloud server • Licensing for the underlying operating

system is included with the service, allowing automated patch updates through Red Hat Network and Microsoft Windows Update Services • Full server management capabilities

including start, shut-down, reboot, power off, restart, delete, add local storage, or change CPU/RAM • Static private IP address assigned to

all servers accessible only via VPN, and are mapped to static public IP addresses only as required • Role-based administration control

over which the user can manage servers

– IS’ multipoint monitoring systems scrutinise key system parameters, system availability, network and the overall user experience 24x7x365 to ensure the highest possible uptime and performance

– IS’ Uptime Maintenance Service includes traditional break-fix support such as troubleshooting and incident restoration within agreed service levels – 24x7 cloud support

• Enterprise security and compliance – Virtual Private Clouds with

user-determined public Internet connectivity – Unique customisable firewalls for

security

– VPN administration of all servers – Unique username/password for each

administrator

– Role-based permissions controlling the activities of each user

– Audit logs of all environmental changes • Enterprise performance

– Availability service level agreement (SLA) for Private CaaS

– Latency guarantee

– Industry-standard technology, including VMware virtualisation, Cisco networking, Dell servers and EMC storage

• End-user controls

– Centralised control and billing – In-depth usage reporting by asset – Audit log reporting by user and

department

– 24x7 phone support with ticketing/ status tracking

• Optional managed services

– Technical operations– provides system monitoring and system administration for cloud servers

Private CaaS components

IS is the only dedicated, private cloud IaaS offering that includes hardware-based security and scalability, complete customisation and control, easy integration, 24x7 live support and 100% availability guaranteed. Our Private CaaS comprises: cloud servers and cloud networks.

Key facts

IS’ Private CaaS Service is: • An enterprise-class compute

infrastructure as a service (IaaS) offering

• Built using industry-leading hardware and software

• Fully automated and orchestrated via purpose-built software

• Comprises servers, storage and network elements coupled with virtualisation technology and operating system software. • Deployed in a client’s data centre

• Cloning ability to duplicate virtual servers to create ‘customer images’ which can be used to deploy copies of a server configuration

• Capability to import/export server images which can be used to transfer virtual machines to and from a client’s own infrastructure

Cloud networks

Cloud networks are VLANs built on Cisco hardware-based networking providing network isolation, security and performance for a client’s environment. Cloud networks can be customised with additional networking features such as firewalls, load balancing, multicast and network address translation (NAT). Additional features include the following: • Private IP addressing for all cloud

servers, with the ability for cloud servers located on separate cloud networks to communicate across this private IP space • Client-to-site VPN access for

administrators to securely manage servers on their cloud networks

• Customisable ACL-based firewall rules to control access into each network VLAN • NAT and VIP functions to expose private

IP addresses to the public Internet • VIP functions support load balancing

and port translation across multiple virtual servers, with the ability to take servers in and out of service based on client-defined monitoring probes • Multicast support for clustering

implementations

Infrastructure with a client data centre IS will install and manage the Private CaaS Service equipment at a client’s data centre, which will provide the public IP connectivity, space, power, heating, ventilation and air-conditioning for the equipment. IS will work with you to ensure that any unique data centre infrastructure specification or design guidelines are taken into account. Internet Solutions also works with you to implement facility access and escalation procedures. IS takes full responsibility for

implementation and ongoing maintenance of the hardware and software layers.

Accessing the Private CaaS

Web-based user interface: Our Private CaaS can be accessed via the Internet using the web-based administrative UI. Each Private MCP has a URL associated with it for login. REST-based API: Both Public and Private MCPs can be accessed with easy-to-use REST-based API designed to allow seamless control over all aspects of a client’s cloud servers and cloud networks.

Private CaaS SLA

IS provides strong performance guarantees: Network uptime guarantee

Availability of the Internet Solutions cloud network.

Server uptime guarantee

Availability of individual servers within the IS cloud environment.

Support response time guarantee Our support personnel will review and update any case submitted via the IS community.

Latency guarantee

IS guarantees latency for the transfer of data packets from one server to another within IS’ cloud environment and within the same network (VLAN).

Private CaaS service

management

IS provides comprehensive, ongoing management of the entire private cloud infrastructure as part of the Private CaaS. This includes responsibility for maintaining the following:

• Physical infrastructure (servers, networking equipment, storage) • Underlying operating systems • VMware software

• Internet Solutions CloudControl™ cloud management system. Our management processes address the key elements of implementation, change control, monitoring, patching, and lifecycle management so that cloud availability and performance are maintained.

Ongoing software lifecycle management is a key component of the Private CaaS. IS evaluates all major software releases from VMware, Cisco and the other components of the solution, and test these releases within its lab environment to ensure they function as expected. Furthermore, IS will review new features and capabilities of any releases and will update its operating system, virtualisation and IS CloudControl™ software to allow you to take full advantage of new software. IS’ multipoint monitoring systems scrutinise key system parameters, system availability, network and the overall user experience 24x7x365 to ensure the highest possible uptime and performance.

Uptime Maintenance Service

IS’ Uptime Maintenance Service includes traditional break-fix support such as troubleshooting and incident restoration within agreed service levels. The service includes the following:

• Multi-vendor Management procures and manages underpinning contracts with multiple global and regional vendors.

• Incident Management enables a quick and accurate diagnosis of a reported incident and the determination of the necessary steps to resolution, thereby minimising downtime.

• Engineer to Site provides for

dispatching of a technician to a client site when resources are unable to resolve the incident remotely. • Parts to Site provides speedy

replacements should any cloud hardware fail.

Cloud support – 24x7x365

Our monitoring systems report to a central aggregation engine that drives Private and Public CaaS client care and technical support for all emergency or after hours client-to-IS communications.

Internet Solutions

will work with you

to ensure that any

unique data centre

infrastructure

specification or

The 24x7x365 Global Service Centre (GSC) has the tools, technology and administrative expertise to effectively support client environments, including: • 24x7x365 staffing with experienced

technicians – first-level support is via the Global Service Centre;

• Level 1 and Level 2 industry expertise to resolve Severity 1 and Severity 2 issues immediately;

• In-depth domain knowledge;

• Escalation management expertise; and • A focus on 100% client satisfaction. Private CaaS Service clients also have the choice of providing their end users with access to the IS’ Cloud Community. The community provides users and developers with the support, education and

knowledge base to use the service to build applications on IS’ Cloud.

IS Managed Cloud Platform™

(MCP)

IS’ Cloud Services are delivered on the company’s Managed Cloud Platform™ (MCP), a fully-managed cloud delivery platform. Hosted within an IS or client data centre, the MCP comprises industry-leading hardware and software, coupled with virtualisation technology, operating system software, and IS CloudControl™. IS CloudControl™ is our cloud management system that provides operational control and automation of cloud resource provisioning, orchestration, administration and billing.

The MCP can be accessed via a web-based user interface or REST-based API, enabling integration of the platform with third-party cloud or enterprise system management software. Based on the cloud management system of OpSource, IS’ wholly-owned enterprise cloud and managed hosting business was further developed for use across public and private cloud environments with a common framework for management.

As a single platform for all of IS’ Cloud Services, clients are able to easily move between public cloud, private cloud and hybrid cloud models without having to re-architect and re-integrate the underlying infrastructure, saving time and money.

• Public MCP: deployed around the world, Public MCPs are accessible via the Internet and meet the requirements of a true public cloud: self-service, pay-per-use and with standardised services. IS Public CaaS are delivered from our Public MCPs.

• Private MCP: deployed in a client data centre or a third-party data centre, a Private MCP is dedicated to a single client. Private MCPs deliver a fully-managed Private CaaS service. • Hosted Private MCP: hosted by IS, the

Hosted Private MCP is dedicated to a single client. Hosted Private MCPs deliver a fully managed Private CaaS service. • Provider MCP: deployed in a service

provider data centre or a third-party data centre, a Provider MCP is dedicated to a single service provider for the use of its clients. Provider MCPs deliver a fully managed Private CaaS service that can be productised into a white label public or private cloud offering.

Cloud Communities are supported within the architecture, on a public or private basis with enterprise grade security, allowing for organisations such as education institutions, government agencies, or trading partners to cost-effectively offer cloud services to all community members.

Internet Solutions

CloudControl™

IS CloudControl™ is a sophisticated cloud management system developed by IS that provides complete automation of the orchestration, administration, provisioning, management, support, metering and billing of cloud-based resources. In building IS CloudControl™, we used the same operations principles and architecture used to manage complex application hosting environments for some of the largest SaaS companies. IS CloudControl™ goes beyond providing simple provisioning of virtual machines onto physical servers.

Internet Solutions global availability

IS’ Cloud Services are available worldwide. Our Public CaaS and Hosted Private CaaS are accessible via the internet from anywhere in the world, anytime.

Clients are able to

easily move between

public cloud, private

cloud and hybrid

cloud models without

having to re-architect

and re-integrate

the underlying

infrastructure, saving

time and money.

Our Public MCPs are physically deployed in San Jose, California, and Ashburn, Virginia, USA; Amsterdam, the Netherlands; Sydney, Australia; Johannesburg, South Africa; Hong Kong.

Private MCPs are deployed within client data centres and can be accessed via their private network or the public Internet. IS’ CloudControl™ cloud management system enables federation between Public MCPs and Private. Our strategically located Public MCPs have the ability to interconnect or ‘peer’ with one another and other Private MCPs, as capacity requirements ebb and flow to create a ‘Cloud Exchange’. This means performance and latency may be optimised and time-to-service reduced. This model also ensures that any data sovereignty requirements on a client’s part may be satisfied.

Pricing

With our Private CaaS, you pay a one-time setup and monthly fee for a fixed set of resources (CPU, RAM and storage). IS offers several types of MCPs to

Cloud Server infrastructure

Operating systems supported RedHat Enterprise Linux 6, Red Hat Enterprise Linux 5 , CentOS 6, CentOS 5, Ubuntu 10 LTS, Ubuntu 8 LTS, Microsoft Windows Server 2008 R2 Standard and Enterprise, Microsoft Windows Server 2008 Standard and Enterprise, Microsoft Windows Server 2003 Standard and Enterprise

Virtualisation platform VMware vSphere

Infrastructure providers VMware, Cisco, EMC, Dell, NetApp

CPU 1 - 8, configurable

RAM 1 - 64 GB, configurable

Storage 10 GB – 2.5 TB, configurable

Cloud Server performance

Availability Platform Availability; network availability

Latency Latency between cloud servers on the same cloud network

(VLAN)

Response Minute support response time guarantee

Security and control

Data centre Deployed in a client data centre

Network configuration Configurable Layer-2 VLANs based on Cisco-based switching

fabric; customisable ACL-based firewall rules; NAT and VIP functions; load-balancing and port translation; Multicast support for clustering implementations

Encryption Data stored with 256-bit encryption at rest and 128-bit SSL

encryption while in transit (Cloud Files only)

Access Public Internet and virtual private network (VPN)

Administrative control VPN administration of all servers; unique username and

password for multiple administrators; role-based permissions allow administrator to limit sub-administrators to manage only certain resources, such as servers, storage or networks.

Server control Take servers in and out of service manually, programmatically,

or based on monitoring probes

Reporting Audit logs of all environmental changes

Compliance SSAE 16 (formerly SAS70 Type II) compliant

Incident response 24x7 incident response

API REST-based API