Making Your Public Cloud, Private
By Dave Meizlik, Dome9
If you’re like most today, you’re looking to the cloud with cautious optimism to assist make your enterprise more efficient and agile. virtualization technology
I say “cautious” concerns for security, cost, and complexity within the cloud run rampant. Will my infrastructure be more or less secure? what proportion will the cloud really save me? What do I even have to try to do (or give up), and what is going to it get me? These are just a couple of the questions you’re likely mulling over.
Cost is very hooked into your infrastructure, so I’ll focus totally on the way to simultaneously tackle the difficulty of security and complexity, by making your public cloud, private.
First off, what's a personal cloud and why would you like one?
A private cloud maybe a piece of infrastructure operated solely for one organization. Private clouds are growing in popularity as a safer means to urge more control over an infrastructure-as-a-service (IaaS). It allows you to segregate your cloud from other organizations, building a cloud infrastructure that's – in essence – an extension of your network.
The truth, however, is that creating a personal cloud and applying your legacy approach to networking and security creates complexity and drives up cost – two things you’re moving to the cloud to avoid, and doesn’t necessarily increase your security. You pay a premium for a personal cloud so you'll isolate your infrastructure from others, create secure connectivity (using VPNs), and maintain control over your security. the reality is, there’s a far better thanks to achieving an equivalent result, but at a way lower cost and with far less resource.
Instead of creating an expanded perimeter around your cloud by making it private, simply isolate each individual server during a public cloud via a firewall management service, locking down each individual server with dynamic policy controls for remote access, on-demand. In this manner you’re, in effect, making your public cloud servers, private. Note the stress on “servers” in my last sentence. That’s because each server is locked down and isolated, instead of the whole cloud. Each server, in isolation during a public cloud, is simply like one big private cloud.
For example, imagine you've got a cluster of application servers and databases during a public cloud. employing a firewall management service, you'll close administrative service ports like SSH, and RDP, and configure server-to-server communications for MySQL and other services. Then, using the firewall management tool, you enable secure, time-based remote access only and for whom you authorize with the press of a button. This ensures protected access to your servers without exposing them to risk (e.g., brute force attacks and vulnerabilities from open service ports). What’s more, it makes your cloud servers virtually invisible to hackers and eliminates the necessity for clunky, pain-in-the-tail VPN clients. In effect, you’ve made your public cloud, private!
This approach saves you significant time and price, both upfront since you'll safely leverage public cloud infrastructure. And it makes it easier on you and your team, since remote access is out there anytime, from anywhere, without having to attach back through a VPN. Moreover, this approach actually provides increased security, since you’re controlling access to every individual cloud server instead of the whole network (i.e., through a VPN).
Now because you’re managing potentially thousands of individual server firewalls, you would like a firewall management service to form this efficient. With a firewall management service, you'll automate policy administration and secure access, on-demand. You can, for instance, apply a group-based policy for all of your web servers. That’s one policy for multiple machines. Then, with a click of a button, your web developers can self-grant secure access to any machine on-the-fly, with time-based controls to make sure that while they’re accessing the servers, the cloud server’s firewall port(s) are open just for the machines from which they're connecting. Bye-bye VPN clients!
You can also set up multiple group-based policies with a firewall management service. for instance, one for your SQL databases, another for your web servers, a 3rd for your application servers, and so on. And you'll create role-based access controls with user-administered (yet monitored) secure access. This lets your developers and IT staff do their jobs, securely, for hundreds if not thousands of servers, while making management easy and scalable.
Now there aren’t too many firewall management services out there. just like the cloud itself, this is often a replacement space. However, as you'll have guessed, I work for one called Dome9. an outline of Dome9 is below, and you'll learn more at www.dome9.com, but first let me take a moment to list out a couple of important belongings you should consider during a firewall management service:
#1) Agent-based vs. API-based deployments – Some firewall management solutions provide only agent-based solutions. But if you’re an AWS or OpenStack user, you'll benefit greatly from managing the prevailing firewall capabilities of those environments by connecting them to your firewall manager using your cloud provider API keys rather than installing agents on each server. API-based deployments into your cloud offer you immediate-on firewall management, without the necessity to deploy an agent on each server. That’s a rapid scale!
#2) Automated access controls – You don’t want to possess to go away ports open all the time, even for trusted IPs. Instead, search for a service that allows you to dynamically open and shut service ports with time-based controls. In this manner, your ports are only opened for specific users, services, and time-periods, and your cloud servers are virtually invisible to hackers.
#3) Multi-cloud & server policy groups – You likely have (or will) multiple servers across multiple infrastructures. no matter the distribution, you’ll want to abstract security as an application layer across all of them and use group-based policy management to make sure you’ve got consolidation together with your security management. That’s one policy set across multiple servers, even in multiple infrastructures.
Hopefully, this has given you some ideas for a way you'll get more value from public cloud computing without having to leap through all the hoops of fixing a personal cloud. As you explore the subject more, I invite you to go to www.dome9.com and check in today for free of charge to ascertain how we will assist you in Secure Your Cloud™.
Dome9 is one of today’s fastest-growing cloud security services. With over 1,200 customers, worldwide, Dome9 provides cloud-based firewall management to centralize and automate policy controls for any server running in any infrastructure.
Partner opportunities for traditional I.T. companies
By Richard May, director of Virtual DCS
Before virtualization technology entered the market, two of the foremost popular traditional I.T. opportunities were hardware-based infrastructure upgrades and tape-based disaster recovery solutions. information technology schools these solutions have now been replaced by ‘as a Service’ technologies, that hold additional benefits to the customer like reduced downtime, a lower cost of ownership, and a discount in cost.
It is no surprise that because the demand for the Cloud soars; many I.T. resellers are rethinking their business strategy and therefore the technology that they're offering to potential businesses. Now, many resellers are choosing to use their industry knowledge of both traditional and non-traditional methods so as to supply a variety of solutions to their customers.
Cloud suppliers aren't the sole businesses that are in demand for partnerships, as resellers themselves play an important part in the success of the providers. In light of this, more creative tactics are getting used in an attempt to supply the foremost attractive business solutions for resellers, and thus the foremost attractive business solutions for their customers.
This blog will explore virtualDCS’ experiences when creating and retaining new Cloud reseller partnerships, highlighting important aspects that we believe should be within any partnership scheme.
Ideally, when selecting a replacement provided the bulk of resellers appreciate a mixture of an honest support response, and a spread of solutions to settle on. one among the foremost details that a Cloud provider could make is offering a robust service selection. for instance, virtualDCS enables our partners to resell all of our headlining services, including, CloudCover™, our business continuity solution, and our Software as a Service enabShould our resellers ever need it, we offer support and guidance on all of their proposals and solutions, additionally to simple reseller tools wont to calculate and alter pricing. We also offer our partners an easy referral scheme and a lead registration process to guard their leads. Partners that prefer to log leads also receive a further margin.
In addition to our core solutions, we provide a Virtual Service Provider (VSP) program that's completely tailored towards the requirements of the reseller. This solution offers an easy business model, where the reseller has dedicated space on our platform. they will then use our Cloud interface to resell this space, adding unique software applications and resources for their customers. We don’t believe in ‘putting a square peg during a round hole’ which is why we work with our partners to make tailored solutions. Our partners agree that this is often the foremost beneficial to both themselves and their customers.
As an extension of our support services, we provide free marketing material to assist our resellers to sell their solutions. this is often another proven and successful tool employed by many Cloud providers throughout the industry. additionally, to pictures, booklets, and templates, virtualDCS also creates custom branded material for our partners that prefer to ‘white label’ our services, which few providers offer. Our partners believe that this helps them throughout the whole sales process.
We have also witnessed the necessity for a high level of administrative control. Any reseller, albeit they supply a standard, Cloud, or hybrid solution, maybe a business. Therefore, throughout all of our reseller offerings, we deliver administrative tools to form the sales process simple. for instance, our VSP Cloud interface contains a complicated invoicing system and multi-currency support.
We believe that these points are vital to a successful reseller opportunity, especially for partners that are moving from a standard I.T. solution.
For more information on our partnership opportunities and our services, contact a Cloud expert on 08453 888 327 or email email@example.com
The founders of virtualDCS have pioneered the event of the Cloud Computing industry for over a decade. together with the primary companies dedicated to Cloud services within the world, customers are confident that they're going to only receive the best solutions. Their approach is to figure in the partnership with clients to make sure that their infrastructure is prepared to exceed the service levels demanded by their business.
The Sky’s the Limit
By Micheal Higgins, CloudSigma, Manager of Enterprise Solutions Architecture
As public cloud services still evolve, we’re learning the true extent of possibilities for cloud computing. A Forrester survey revealed that a full 36 percent of enterprise IT managers decide to invest in infrastructure-as-a-service (IaaS) in 2012, which suggests that cloud-hosted infrastructure is not any longer a distinct segment market.
Part of the rationale for this is often the sheer range of applications for IaaS in practically every industry imaginable. At CloudSigma, we’re exploring the cloud’s potential in markets as diverse because of the media industry and research science. We’re finding that by taking full advantage of the general public cloud’s storage and compute capabilities, matched with the pliability and customization to satisfy clients’ unique needs, there’s no limit to how we will tailor our customers’ public cloud implementations.
Recently, at the 2012 National Association of Broadcasters (NAB) Show, we officially launched our Media Services Ecosystem, a public cloud environment created exclusively for media industry professionals, to supply them with one roof under which to collaborate. Whether it’s a subsequent blockbuster feature or a future Grammy-winning pop hit, media productions are often built faster, cheaper, and more efficiently within a cloud environment. By utilizing features like our powerful solid-state drive (SSD) storage capabilities and 10GigE networking, industry partners everywhere on the planet are building services within our cloud. Media production companies can now store and move large format files at the blink of an eye fixed and at a minimal cost between different service providers, saving countless dollars and hours. meaning that even smaller companies can move the type of workloads necessary to assemble a high-end production.
for organizations that have a high degree of variance in data flows.
With a cloud build to handle the foremost demanding sorts of computing requirements, we shine at running core enterprise systems and web services also. The redundancy and high throughput needed to enable our HPC customer workflows to let mainstream business uses, from databases to web servers, fly in our cloud.
The potential applications for our cloud are barely starting to roll out. We’re establishing ourselves as a totally unique, pure-cloud provider on many fronts, including our ability to supply full compliance with national data privacy laws by providing an EU cloud free from the domain of the U.S. Patriot Act; our vendor lock-in free model allowing full retrieval of drive images at any time; and our emphasis on security, with private fiber connectivity and virtual servers separated at the hypervisor level. information technology degree or unique position is that the reason we’ve formed such successful partnerships, including those with Besol, with its Tapp Platform for cloud migrations; Attend, with its MediaCloud media collaboration tool; Strategic Blue, with its cloud brokerage and billing services; and now, with Compare the Cloud, helping them to create out their comprehensive cloud provider comparison services.
We’re looking forward excitedly to where our one-of-a-kind public cloud takes us next. More and more, with IaaS and other cloud services, it seems that the question isn’t what can the cloud do, it’s what can’t the cloud do.