Embed Size (px)
Citation preview
DIGITAL TRANSFORMATION OF THE ENTERPRISE
How to regain control and continue innovating in a distributed world of cloud applications
Alexander GrendelProduct Manager
2005
2018
FROM THE GROUND TO THE CLOUD
2002
2012
2014
2009
2006
2,5k+
Digital Transformation @ Interoute
Gartner MQ Managed Hybrid Cloud Hosting, Europe,
June 2017
Gartner Critical Capabilities for Network Services, Pan
European. March 2017
2017 Magic Quadrant
Managed Hybrid Cloud Hosting,
Europe
Critical Capabilities
For Network Services,
Pan European
External validation
• ISO 9001
• ISO 14001
• OHSAS 18001
• ISO 20000
• ISO 22301
• ISO 27001
• PCI DSS (9 &12)
• ISAE/SSAE
(SOC1 & 2)3402
• BSI Grundschultz
• FINMA
• SSAE 16 TYPE II
• CAS / DNSP (PSN)
• UK G-Cloud
(Official Sensitive)
• ITIL FRAMEWORK
Interoute
Digital Transformation
• Manage complexity in hybrid cloud environments• Scale the number of services, users, and data• Support speed and agility• Visualize your business services
Customer Case: Parking
Overview
• One of the largest European parking facility provider
6000 parking facilities 12 countries 800.000 + parking places
• Smart Parking and Parking App data.
• 24/7 operation and points of sale; downtime means loss of income and customers trapped with their cars in a garage.
Interoute MPLSExisting MPLS
Prim.
VRF RoutersHSRP
11x country VRF
BackupHSRP
2x 100Mb P2P Eth
2xASA
Country 1 Country 2
Country 1
Active / active
Managed SQL3 node cluster
VDC Zone 1
Country 2
Active / active
Country n
Active / active
Country n
Current Internet Interoute Internet
Inter VRF traffic
C2C servers, load balancedC2C servers are only accessed by internal servers
DMZADFS, RO AD controller,CRM, web proxy, CAT scanner, Lync Server
Servers with public IP addresses
UCManaged SfB& OneBridge
DR Replication
Zone 2
Managed VDCProd. Servers+A365
Remote Access tunnels3rd party tunnels
OTA TEST (colo)
Unmanaged VDCOTAPMS (3x zone)SQL 2 node cluster (managed)C2C balanced by F5 belowManaged BU
HA Corp PA with IPS/IDSURL Filtering, configured by ParkSite 2 site VPN sRemote users
Managed F5 load balancingRev. Proxy*
Park Control Room Maastricht
Possibly temporary 1 Gb between hosting switch and PA
to overcome ASAs BW limit.
2x 100Mb P2P Eth
Colo / QCRManaged
switch
Managed switch
QCR (Colo)
2xASR1001
Physical serversOrcale (only when virtual is not possible)
HA Compute PA with IPS
- QCR -
MPLS
Managed hosting Public DMZ
Managed HostingProduction
13 x VRF
Managed hosting Ext DMZ
0/0/2.2 to OTA0/0/2.31 to A switches (lokale switches in MC)0/0/2.32 to B switches (lokale switches in MST)0/0/2.120 to QCR0/0/2.130 to VM Network0/0/2.134 to iLO0/0/2.199 to Valid (management)
Managed switch
Managed switch
PE CR15 & CR16
extdmznew-001
extdmznew-002
Managed hosting Ext DMZ
0/0/3.3805 to trusted new
Old Environment New Environment
Customer Case:
Digital Transformation Project
• Renewal of IT infrastructure :
Expanding globally and current datacenter hosting running out of capacity.
• Small team of only a handfull ICT
• Focus on innovation and applications core to their business
Manage complexity in hybrid cloud environments
Cloud Complexity
Enterprise Digital Platform
VDC
VDC
VDC
VDCVDC
Cloud FabricPrivate Network
VDC
VDC
3rd Party Colo/PoPColo
Connect your offices with Interoute Edge VNF in 142 countries.
Build hybrid solutions, catering for legacy devices and cloud.
Connect your existing data for free at over 300 locations with Interoute Connect.
Connect to 3rd
party clouds over low latency links.
Unique Hybrid cloud integration of all your IT
One
Bridge
Communicate, conference and collaborate with unified communications & One Bridge
Edge Security
SD-WANConnectivity
Containers
Virtual Appliances
Virtual Machines
Cloud Connections
Internet Access
Private Networks
Virtual Data CentreGlobal IaaS platform
EdgeSoftware defined WAN & NFV
Application Acceleration
Cloud FabricSoftware defined global network
Block Storage
Enterprise Digital Platform
ObjectStorage
Hybrid Networking
SDN Core Edge Compute
The Enterprise Digital platform is entirely software defined from customer site to virtual datacentre.
Our unique cloud fabric binds together the virtual data centre and network edge.
The Interoute Security
Proposition
Comprehensive Product range includes
firewalling, DDoS protection, Sandboxing, URL filtering, Intrusion Detection/Prevention and many other features & services
Security Consulting for additional services
such as risk assessment, threat modelling, Gap analysis etc
Multiple Datacentres Certified to
ISO27001, ISO20000, PCI DSS, ISAE 3402/SSAE 16 standards
CESG approved network services for UK
government services
Three levels of support to choose from
ADDITIONAL PROFESSIONAL SERVICES
FLE
XIB
LE S
UP
PO
RT
BO
UN
DA
RY
PLA
TFO
RM
AS
SIS
T
MA
NA
GE
D
Fully managedNetwork
ManagedOperatingSystems
AV, Backup,Patching
CapacityPlanning
Applicationand Database Management
DedicatedService
Management
DedicatedTechnical
consultants
Network Setup Discovery Migration Deployment PlatformIntegration
DedicatedSpecialist
BespokeDocumentation
Implementation& Operation
My ServicesPortal API Control
24/7/365PlatformSupport
VDC Live Chat(business hours) White Papers How to Guides
Managed Services -Extended Support
Virtual AppliancesJuniper VSRX
Palo Alto FirewallCheckPoint Firewall
F5 Local Traffic ManagerF5 DNS
SilverpeakVDC vFiler
DatabasesMicrosoft SQL Server
MySQLPostgreSQLMongoDB
Oracle Database
Operating SystemsWindows Server
Redhat LinuxCentos LinuxUbuntu Linux
Core OS
ApplicationsApache TomcatApache HTTPMicrosoft IIS
Microsoft Active DirectoryMicrosoft Exchange
2017 Gartner Magic QuadrantManaged Hybrid Cloud Hosting, EuropeNamed as a leader 2014, 2015, 2016, 2017
Interoute
Customer Case: manage Complexity in hybrid cloud
Customer Managed Services
• Outsourcing of Managed services not core to their business
Networked Cloud Connectivity
• Use our cloud, network + colocation services and bind them into a single platform
• Direct Connect with Azure for Office 365• Direct Connect with SAP for hosted SAP
Scale the number of services, users, and data
Founded in 2002
€2Bn Pan European fibre optic network
Relied on by 25 of the top 30 service providers in the world
Customer Case: Scaling the number of services, users and data
• Global network connecting all offices, parking lots
• Multiple Interoute VDC cloud zones
Edge Network Acceleration
• Use of smart network management to allow for optimized traffic characteristics
• cost efficient edge connectivity for offices, parking lots and datacenter locations (Interoute EDGE/SD-WAN).
Support speed and agility necessary in highly competitive environments
Disruption
Are we able to withstand the wave of innovation?
Are we future proof?
How do we optimize?
• CTO/CIO/CEO– Transform the business
– Greater flexibility
– Driving ‘cloud first’ strategy
• Infrastructure and Operations– 24/7/365 lights on
– Operating legacy/core platforms
– Governance
– Business integration
• Developers– Building the evolution
– Driving towards DevOps
– Natively cloud
– Want the new
Transformation iscompany driven,but about people
CxO
Development Operations
Edge Security
SD-WANConnectivity
Containers
Virtual Appliances
Virtual Machines
Cloud Connections
Internet Access
Private Networks
Virtual Data CentreGlobal IaaS platform
Application Acceleration
Block Storage
Enterprise Digital Platform
ObjectStorage
Hybrid Networking
SDN Core Edge Compute
Virtual Data CentreCompute
Any CPU, RAM and disk configuration
No noisy neighbours Dedicated compute
hosts available
Containers facilitate AGILE development
Free connections for colocation & Physical Hosting
Direct Cloud Fabric Integration
Virtual Data CentreEnterprise Block Storage (EBS)
All-flash block storageAllocated I/O
Storage snapshots for data protection
No charges for transactions
Local data residency and compliance
ZERO
Connect VMs
Virtual Data CentreObject Storage
Multiple data copies -extreme durability
and high availability
HTTP and S3 compliant API access
No charges for transactions or internet access
Direct Cloud Fabric Integration
ZEROLocal data residency
and compliance
Speed and Agility
Right level of management:
• Interoute Managed for critical applications
• Self-Care of cloud for their innovations and test / dev environments
Single coherent platform
• Networking
• computing
Interoute global VPN
• quickly onboard and integrate take-over companies
• quickly connect third party cloud locations
Connect and Visualize your business services
Interoute Edge WAN for the cloud age
As applications move to the cloud, traffic can take an indirect route, resulting in poor performance.
Traditional networks were designed to deliver applications from a central data centre, with low latency from each site.
InternetWANOffice
Office
Data Centre
Security policy is controlled and enforced centrally.
Interoute Edge Interoute Edge Access optimises access to all applications in the data centre and the cloud.
With Interoute Edge, SaaS traffic is sent securely and directly to the application.
Office
Office
Data Centre
Bandwidth to the data centreis not consumed by internet traffic.
Security policy is pushed to the edge but is centrally managed.
Cloud Fabric
Cloud Fabric services both private WAN and public internet.
Interoute Edge WAN Acceleration
TCP and application-level optimization to reduce the effects of jitter and network latency.
LAN-like responsiveness regardless of the actual latency of the connection.
Transmit 50 ms
Total 450 ms
Office LAN
Server
Without acceleration With acceleration
1
User’s Computer
WAN/Internet DC LAN
Router Router
Transmit 50 ms
Total 150 ms
Office LAN
ServerUser’s Computer
WAN/Internet DC LAN
Edge Boost Core Boost
1234Transmit 50 ms
2
Transmit 50 ms3
Transmit 50 ms4
1234
1234
Request 50 ms Request 50 ms
Request <1 ms
1234
Total < 1 ms
2nd User
Interoute Edge Security
Centralised local security policy management and reporting
Firewall, IPS, Anti-X Protection from inbound threats
Remote access to DMZ and LAN-side workloads
3 6 1
Office
Cloud Fabric
Cloud Fabric
WAN
Internet
Interoute Edge One device, multiple functions
Edge CPE
IP Routing
IP QoS
Clo
ud
Fabric C
on
nect
High Availability
Compression
De-duplication
Caching
WA
N O
pti
mis
atio
n
Firewalling
IPS
Anti-X
Next G
en FW
Hybrid Networking
Application Performance Monitoring
Application routing
SD-W
AN
Service Chaining
LAN
AES 256
Interoute Edge Low touch secure provisioning
Edge CPE
Certificate
2. Edge “Calls home” over internet using HTTPS
4. Approval sent HTTPS
3. Customer approves in MyServices
1. Edge boots
6. Edge downloads key-pair, images & configuration
5. Edge Connects to repositories via crypto aggregator
Cloud Fabric
7. Edge joins cloud fabric
Interoute Edge
Enabling
Analysis for troubleshooting and best value performance
Improved network visibility to understand network use
Significantly improved capacity management, planning and network audit capabilities
Detailed platform statistics
Usage per business application
Optimisation and acceleration performance
Packet loss, latency and throughput levels
Real-time and historical dashboards
Global overview and site specific details
Bandwidth Requested Actual Bandwidth Used
Detailed statistics on network usage, performance and optimisationTop 10 Applications
Bandwidth Savings
0
5
10
15
20
25
30
35
40
45
50
08:00 09:00 10:00 11:00 12:00 13:00 14:00 15:00 16:00 17:00 18:00 19:00 20:00 21:00 22:00 23:00 00:00 01:00 02:00 03:00 04:00 05:00 06:00 07:00
GB
TerminalServices InterouteVDC O365 AWS *googlevideo.comSAP Force.com Workday ServiceNow Other
Customer Case: End Result
• Single pane of glass management portal for both network and cloud resources
• Insights in traffic flows and application use accross the VPN
• Ability to correctly size all branch, parking and office location
Visualise
• Big Data analytics in VDC cloud
• Outsource standard IT management
• Insource business value application
• Network integrated and optimized
• Single point of contact
Digital Transformation
THANK YOU
Come along to our stand to see our products in action or for more information.
Alexander GrendelCloud Computing Products
E –[email protected] – cloudstore.interoute.com
