Cloud Computing Design Strategies

People, I am back with the “Cloud”, and this time its the design strategies. In my last Cloud blog, I mentioned about what Cloud computing basically means. Now I am going to talk about the strategies and the concerns that companies have before moving them, how it can benefit in the long term, so on and so forth.

The three basic kinds of clouds are

  1. Private Cloud
  2. Public Cloud
  3. Hybrid Cloud

I don’t think they need an explanation as most of us know what public, private and hybrid means. Now before actually diving down in to what kind of strategy needs to be followed, let me explain the biggest concern

cloud-lock

The above mentions the biggest concern of all the companies who know what a cloud is and are sceptical about moving to the cloud. Its the “Cloud Security” . Its because of this the cloud computing is not developing as fast as it should be.

Companies are worried about their data being stolen on the cloud as it is on the Internet and is a Shared Platform. Now there are a variety of security precautions that are being taken. SSL being one of the major one. I will also talk about SSL and its utility in cloud in future blogs, but that and IPSec are being used to secure clouds, along with a Three Tier Firewall design and MSS model.

Now if you are a Huge company and even this doesn’t instil confidence in you, you should probably look at a Private Cloud. The private cloud is nothing more than a Virtualised Data Centre. Nothing would change for you other than the fact that you will spend less on hardware, space, power, cooling and other overheads. If properly designed, you will have better redundancy, lesser failover times, more scalability, more availability and all the things you could ask for. As the days go by and the Cloud computing becomes the De Facto, then you can move on to the Hybrid Cloud, where in you can put some stuff on the public cloud and some stuff can be retained at the private cloud.

The Public Cloud will turn out to be a boon for a Small to a Medium sized company. You don’t have to bother about purchasing hardware, leasing space or anything, every thing is taken care by the cloud company itself. This means lesser Capital Expenditure and pay for only what you use. Today, we have providers for almost all the services. VoIP in the Cloud, Proxy in the Cloud, Hosting and Security in a cloud. The desktops are left for now, which are also moving towards being made a dumb terminal and will be moved to the cloud.

The security in the cloud is especially well designed by top in class security professionals. The security is good. Normally a lot of people going in for the hybrid cloud model go in for a IPSec/SSL tunnel between the companies exit point and the Cloud service provider. With the MSS (Managed Security Services) piece also coming into the cloud, we have IPS design, Logs are analyzed of your database, application and other important servers on the cloud. This logs are presented in a very neat format and also trigger alerts if something is going horribly wrong. With advent of the cloud computing, a lot more control is being given to the customer themselves and transparency is increased.

Design considerations:

When you are either the service provider or the customer, here are the aspects that you need to make sure that are in the design.

  • Security
    • Is MSS being provided
    • What kind of Security logs are given and what is the interval
    • What proactive protection measures are being used
    • Client –> Cloud Security
    • Isolation between the customer
  • Redundancy
    • Failover timings
    • Possibility of a Site/Data centre DR
    • Internet redundancy
    • Change Management / Outage Management
  • Transparency
    • Portals given to customers
    • The knowledge of the Cloud architecture block.
    • SLA’s
  • Technology / Products used
    • Are we using best in class products
    • Patch Management
  • Features set provided
    • Current Features
    • Expansion capabilities.

Shown above are the few things which you need to question the provider on, or question yourself while designing the cloud.

We will talk about a base design and some products in the later blogs … Stay Tuned !!!

Comments

  1. BloggerOctober 4, 2016 at 6:49 AM

    This comment has been removed by a blog administrator.

    ReplyDelete

Post a Comment

Popular posts from this blog

Juniper Aggregate Interfaces (LACP/No LACP)

Image
Last week, I was implementing link aggregation on Juniper EX Series switches (EX4200). I was moving them off HP switches and putting them into Juniper. We were moving VMWare ESX boxes, NetApp and some physical boxes, though the configuration is very simple, I would like to mention how to do those with these boxes. Points to remember: You will explicitly need to create “Aggregated Ethernet” interfaces on juniper You cannot have more than 64 AE interfaces on a single Virtual Chassis You cannot change the algorithm for load balancing between the multiple links. (If you are interested in the Junipers LAG algorithm read this ) Now having said this, lets look at the common steps, you need to create the Aggregated Ethernet interfaces on the Juniper. root@EX4200#set chassis aggregated-devices ethernet device-count  4 The above command will create 4 “ae” interfaces, after you commit, you should see ae0 – ae 3 created. You can have any value between 1 and 64 in the
Read more

HA Proxy for Exchange 2010 Deployment & SMTP Restriction

Image
Hi ... Sorry I have been away for some time doing some stuff, so I hadn't got a chance to update my blog. I thought I would share my recent experience of deploying an Open Source "Linux Load Balancer" (HA Proxy -  http://haproxy.1wt.eu/  ). This Load Balancer is amazing ... I have been able to do so much with it in the past, here is one of the very simple and effective solutions (Cost wise & Performance) that we gave to the client using this ... I worked with a friend M L N Rao , who was helping me out with the Exchange front of things. Please read on to see .... I have tried to explain how to do it as well as why ... let me know what you think in the comments ... So, here is what happened, Our Exchange Team deployed Microsoft Exchange Server 2010 at a clients location and decided to go with MS-NLB. The MS NLB (Network Load Balancer) is a Load Balancer for different Microsoft products like IIS Servers/ISA/TMG, etc but the truth be told more pain than good for ne
Read more

Configuring Multicasting with Juniper EX switches (Part 1)

Image
Configuring multicast routing using Protocol Independent Multicast in a all Juniper environment is as simple as the Cisco environment, but when I searched, I dint find good articles or KB’s explaining this, so I decided to write one. I am fairly certain that if you have searched and arrived at this post, you know the basics of multicasting and IGMP, but yet, for the benefit of all readers, I will in brief describe the need for multicast. Please note, that this is just the IPv4 version of the story presented in a understandable manner and not all aspects of multicast are covered, but only the ones needed for this post. What is Multicast ? In IPv4 we have 3 kinds of packets, Unicast – One Source, One Destination Broadcast – One source and all destinations Multicast – One source and many destinations Now, all of us are familiar with the first one, we use it almost every minute we are on a network connected equipment. To, explain all this, lets choose different
Read more