2017-01-26 - accelerite summit · vlan or vpc network type. vpc is used for s2s vpn, mpls, connect...
TRANSCRIPT
• Networking, Security & Mobile Workforce
• Unified Communications and Collaboration
• Mobility Solutions
• Datacenter and IT Solutions
Integrated Solutions
Main Client Industries
Finance (Bank + Insurance) = 88
Education (mostly universities) = 33
Food and Beverage = 26
Healthcare = 32
Professional Services – 80
Technology = 34
Retail = 25
Total = 458 clients
DATACENTERIT INFRASTRUCTURE
CONTINUITY SOLUTIONS
IT INFRASTRUCTURE
SOLUTIONS
IT CONTINUITY SOLUTIONS
Software Defined
Datacenter(Cloud
Platform)
Fully Managed IaaS
Seamless Continuity
Backup and Recovery
Virtual Private Cloud
Virtual Datacenter
Private Zone Single Tenant
IaaS VirtualWindows/LInux
IaaS VirtualOVM SPARCIaaS Power
AIXIaaS Power
IBM i/OS AS400Dedicated Servers
x86 – Power – SPARC
Windows / Linux
Oracle Database
AIXCloudEasy Backup
Remote BackupIBM i/OS
AS400
IT PaaS / SaaS SOLUTIONS
Hosted Exchange
OwnCloud SAP as a Service
Oracle PaaS
CWC IT Portfolio
INTEGRATED Hybrid IT
C&W BusinessCloud Portal Business
Manager
TocancipaTierIVCertified
CuracaoTierIII
PanamaTierIIICertified
COLOCATION
C&W received PERFECT (five out of five) customer satisfaction scores for its hybrid configuration support and account management quality from its reference customers
Mission-Critical Workload Recovery
2016
Sustainable Competitive Advantages
• RAM, CPU, Storage, networking• Self-service (creation, change, distribution)• Consume in any datacenter
Pool of resources
• Self-Managed• Resources can be distributed by department in the
company.• Enterprise / Standard categories
Self-Provisioning Portal
• Calculated based on the amount of allocated resources (account quota)
• Increase of the Resource Pool is made through the Account Manager.
Fixed monthly fee
Virtual Data Center – VDC
VPC is our metered service. No minimal commitment
Usage is reported to 3rd party Billing system
Credit limit associated to each account
Product Catalog implemented at CPBM
Virtual Private Cloud – VPC
Clients in this mode will have VMs running on hosts that are exclusively dedicated to their VMs
Private Zone is provided through dedication of resources to an account. We achieve it through ‘Explicit Dedication’ at the Host level
Customization was needed at CPBM level in order to be able to use the explicit dedication groups
Private Zone
CWC ACP – General Comments
Our Cloud allows no self-subscription from the Portal
Multi-Tenant or dedicated hardware (Private Zone)
5 ACP instances. All 5 instances are connected to CPBM Portal (front-end)
Each ACP instance have a single zone with one or more PODs and clusters
Hypervisors: Vmware is used for our Enterprise cluster while XenServer is used for our Standard claster
ACP access via SSO (Single-Sign-On) from CPBM account. Clients do not have access to ACP user interface
CWC ACP – Architecture
Physical Hosts: Cisco UCS
Primary Storage: Hitachi HUS
Secondary Storage: Nexenta virtual storage over JBOD
ACP and CPBM Management Servers with redundacy and HA schema
No LDAP for authentication
CWC ACP – Networking and Security
All clients share the same 100 Mbps internet pipe at each ACP instance. No BW guarantee
Firewall in front of the platform on transparent mode
VLAN or VPC network type. VPC is used for S2S VPN, MPLS, connect the ACP to other managed service
We are using Virtual Router network and security services (Firewall, Load Balancer, Port Forwarding, VPN). When required we integrate external FW and LB via networking solution using VPC network
CWC ACP – Users
Users can enable service in any of the 5 ACP instances (datacenters). Service is enabled a domain is created in the chosen ACP instance.Each account in CPBM is mapped to a Domain in ACP.
We use the resource controls in ACP in order to create the resource container (our VDC)
We support both Shared or Isolated account modes. This choice is made on CPBM and affects how accounts and users are mapped into ACP.
Shared mode allows users to see all the resources and share network. Isolated mode do not have visibility of resources of other users
CWC ACP Implementation
• Most on Enterprise cluster and on a VDC. They use the environment for fixed workloads running critical services on them.Use Cases
• We have ZenOss connected to ACP servers via CloudStack ZenPack.
• Need built-in monitoring capabilities for client VMs inside the tool so that clients could see their VM metrics and configure alarms
Monitoring
• Snapshots or Managed Backup (extra fees). In the latter case we use Commvault
• Need corporate-grade backup integrated to ACP and CPBM to provide self-service backup capabilities to our clients
Client VM Backup
CWC ACP Implementation
• Billing system for clients on consumption basis (VPC)• Our Billing system consumes CPBM usage and rating data via the
API and we perform aggregations and invoice the customerIntegrations
• Removed all pricing when selling VDCs• Show real-time consumption of resources against the assigned
quotaCustomizations
CWC ACP – Final Comments
We want to deliver integrated solutions from a single console (need Openstack and others to be managed by CPBM)
We need to have a corporate-grade Backup tool seamlessly integrated into CPBM
Integrated corporate-grade firewalls and load balancers
We had several challenges in order to have external monitoring in place and we would love to see some built-in monitoring metrics exposed to the end clients related to the VMs they are runningTemplate management is a bit challenging because whenever we want to do some update we need to create a VM with the old template, implement changes, create new template, publish and copy to all the other ACP instances.
Cloudstack is not the most popular of the cloud management platforms, but…it works.
Marcelo OliveiraDirector Datacenter, Infrastructure, and Continuity [email protected]+1-305-934-4686