View
98
Download
2
Category
Tags:
Preview:
Citation preview
copyright 2015 1
VNS3 family of security and connectivity solutions protects cloud-based applications
1000+ customers in 20+ countries across all industry verticals and sectors
copyright 2015
PartnerNetwork
TECHNOLOGY PARTNER
About UsFounded by IT and capital markets professionals
VNS3 launched in 2008
Secured over 500 million virtual device hours in public, private, & hybrid clouds
Chicago, London, and Palo Alto
2
copyright 2015
Technical Use Cases
3
copyright 2015
Cloud Security Control: VPN Tunneling
4
ProblemPublic cloud is accessed via unsecured public internet.
VNS3 Solution:
• Extend your network with industry standard IPsec.
• Use your existing network security appliances (Cisco, Juniper, Netscreen, SonicWall).
• Use your existing secure communication methods/practices the same as you currently connect offices, data centers or partners/customers.
Private Data Center
Data Center Server
Overlay Network
IPsec
Data Center Server
VNS3Controller
Firewall / IPsec
Cloud Server Cloud Server
SSL
Public Cloud
copyright 2015
Cloud Security Control: Multiple IPsec Tunnels
5
ProblemCloud providers limit the number of IPsec connections.
VNS3 Solution:
• VNS3 Controllers enables multiple IPsec connections to a cloud-based overlay network segment.
• Serves as user-controlled, virtualized switch/router inside the provider cloud.
• Cloud deployed servers can communicate with multiple IPsec gateways via endpoint-to-endpoint encrypted connections.
IPsec
Site 2
Data Center Server
Firewall / IPsec
Overlay Network
VNS3Controller
Cloud Server Cloud Server
SSL
Public Cloud
Site 1
Data Center Server
Site N
Data Center Server
copyright 2015
Customer-Partner Networks in Public Cloud
6
ProblemConnecting with customers, partners or branches requires dedicated networks or expensive hardware. Security is difficult with when servers are in shared infrastructure.
VNS3 Solution:
• Industry standard secure connectivity to isolated servers in public cloud.
• Encrypts all data in motion in the public cloud.
IPsec
Firewall / IPsec
Overlay Network
VNS3Controller
Cloud Server Cloud Server
SSL
Customer A
Data Center Server
Partner Site
Data Center Server
Customer B
Data Center Server
Shared Infra
copyright 2015
Cloud Address Control
7
ProblemIP addressing remains in the control of the cloud provider.
VNS3 Solution:
• Control static addressing of your cloud servers.
• Local Area Network (LAN) address extension to the cloud.
• Servers and topologies behave as though the are running locally.
• Portable, application-centric network. Private Data Center
192.168.1.0/24
Data Center Server
Overlay Network172.31.10.0/24
IPsec
Data Center Server
VNS3Manager
Firewall / IPsec
SSL
Public Cloud
copyright 2015
Use Existing Monitoring Tools
8
ProblemCloud deployments cannot be connected to existing network operations center.
VNS3 Solution:
• Use your existing monitoring tools for cloud deployments.
• Monitor and manage devices in the data center and the cloud your existing NOC.
Private Data Center
Overlay Network
IPsec
VNS3Manager
Firewall / IPsec
Cloud Server Cloud Server
SSL
Public Cloud
copyright 2015
Cloud Protocol Control: Multicast
9
Problem
• Enterprise software uses multicast protocols for service election and service discovery.
• Many public cloud providers block multicast protocols at the user layer.
VNS3 Solution:
• Send multicast traffic via VNS3 overlay network before it is rejected by underlying network infrastructure.
• Control all your protocols with VNS3. Private Data
Center
Data Center Server
Overlay Network
IPsec
Data Center Server
VNS3Manager
Firewall / IPsec
Public Cloud
copyright 2015
Customer Use Cases
10
copyright 2015 11
New York, NY
Customer 3 Customer N
Data Center ServerData Center Server
Customer 2Customer 1
San Francisco, CASeattle, WA Denver, CO
us-west-2 us-east-1
Geezeo Multi-tenant PFM Overlay
IPsec
Data Center ServerData Center Server
PeeredVNS3Manager
Firewall / IPsec
Online Financial Management Solutions Company provided PCI compliant SaaS
solution to Banks and Credit Unions using VNS3 and AWS public cloud.
Geezeo®
financial services
north america
partner/customer network
Chosen Over AWS Virtual Private Gateway and Traditional Physical Data
Center with Cisco Firewall Connectivity.
copyright 2015 12
Lagos, NigeriaJohannesburg,South Africa
SMS Advertiser’sPlatform Data Center
Firewall / IPsec
Data Center ServerData Center Server
VNS3Manager
Nigeria
Nigeria
Ghana
Uganda
Uganda
MTN Customer
Vodafone Customer
Accra, GhanaAccra, Ghana
IPsec
TECH
Data communications services company needed to connect a patchwork of African telcos to allow users to communicate and
advertisers to reach their targets.
The VNS3 powered Cloud WAN was constructed with no dedicated physical
infrastructure and allowing remarkably cost effective integration service.
telecommunications
africa
cloud WAN
copyright 2015 13
UK’s largest mobile network operator looking to gain additional control over their
existing network investments
The VNS3 powered overlay network was created to connect ‘Super Sites’ and HP Helion. Allowing EE to execute big data
projects.
telecommunications
Europe
cloud WAN / hybrid cloud
Super Site 3
Frankfurt
Super Site 4
Dublin
Super Site 5 Super Site 6
Overlay Networks
D1 D2Overlay Networks
D1 D2Overlay Networks
D1 D2Overlay Networks
D1 D2
Paris Geneva
EE SS7 Overlay Network
PeeredVNS3
Manager
Firewall / IPsec
Super Site 1
London
Super Site 2
Madrid
Overlay Networks
D1 D2
Overlay Networks
D1 D2
US East
copyright 2015
Cohesive AmericasChicago, IL USAContactMe@cohesive.net 888.444.3962
Cohesive EuropeLondon, UK ContactMe@cohesive.net +44 208 144 0156
Next Steps
14
Recommended