Dimension Data Cloud Business Unit - Solution Offering

Dimension Data

Cloud Services

Overview

Accelerate Your

Cloud Journey

August 2013

2 21 October 2013

Agenda

• Dimension Data cloud credentials

• Dimension Data Cloud Services

• The Cloud Journey

• Why Dimension Data for cloud

3 21 October 2013

Dimension Data today

2011 global revenues of

US$5.8 billion

Over 14,000 employees

with operations in 51

countries across 5

regions

Extensive experience in

emerging markets Client-centric, services

focused business

Over 6,000 clients across all industry sectors, including financial

services, telecommunications, healthcare, manufacturing,

government and education

78% of Global Fortune 100 and

59% of Global Fortune 500 are

Dimension Data clients

4 21 October 2013

We have built our expertise in cloud

We are ready to

accelerate

your journey!

System Integration

and Services

Internet Solutions

• Networks

• Data centres

• Managed hosting

• Iaas (DC)

• Voice services

IT Outsourcing

(MEA)

• Comms tower

• Hosting

• Applications

LoB focus

• Consulting

• Infrastructure

virtualisation

• Public cloud

services

Public cloud SaaS

• 1 million BPOS seats

• Cloud integration and federation

NTT Group assets

• NTTC global MPLS

• NTTC data centres

• NTT data

OpSource (US)

• Managed hosting

• Cloud hosting

• IaaS (DC)

• Scalable cloud architecture

BlueFire (AU)

• Managed hosting

• IaaS (DC)

• Managed apps

Dimension Data

(Asia)

• 6 Tier 3 data centres

• Managed hosting

• Cloud service

roadmap

5 21 October 2013

Dimension Data launched Cloud Business in June

2011

100% 100%

Regional

communications business

100%

Long distance

and international

communications

business

54.2%

Application

integration

business

66.6%

Voting rights ratio

Mobile

communication

business

Real estate, finance, construction

and power business

Other business

Other Group companies

100%

Managed ICT

infrastructure

Dimension Data acquired cloud

services leader OpSource and formed

Cloud Business Unit in June 2011

Cloud

Business Unit

http://www.ntt.com/

http://www.nttdocomo.co.jp/

6 21 October 2013

Dimension Data cloud credentials

Virtualization Expertise

Built and managed 8000+ IP networks WW and enabled 12.5m+ users to connect to their organizations

Concluded over 1,000s of server virtualization projects with 100,000+

servers virtualized

Delivered 1000’s of server & Desktop

virtualization assessments

Data Centre Experience

Over 2200 Data Centre muti-vendor certifications

Highest level of Cisco, VMware, EMC and VCE certifications

Global Cisco, Microsoft and VMware partner

Cloud Experience

Recognized Cloud IaaS leader

Cloud management system technology

Deep SaaS hosting expertise

More than 1 million Office 365 seat deployments

7 21 October 2013

challengers leaders

visionaries niche players

completeness of

vision

ab

ility

to

exe

cu

te

Dimension Data is a Cloud Market Leader

Source: Gartner 2012 IaaS MQ For IaaS Providers

GoGrid

Virtustream OVH

SoftLayer Tier

3

Joyent

Rackspace

Amazon Web

Services

CSC

Terremark Savvis

Blueloc

k

Fujitsu

Dell

Dimension Data

Global Footprint

Hosted - Hybrid - On-Premise

Industry leading SLA

End to End Automation

10+ Years Operational Expertise

Rich Portfolio and Roadmap

8 21 October 2013

Global reach, local presence, customisation & investment.

About Dimension Data Asia Pacific

9 MCPs globally, 5 in AsiaPac

Our cloud platform’s features are unmatched in the local market

Wholly-owned IP; high speed of innovation

9 21 October 2013

Dimension Data extends its footprint through its

OneCloud Alliance and Global Cloud Exchange

USA

EU

MEA

Asia

Australia

10 21 October 2013

Tolly Group Report Findings

Fast processing Faster memory

throughput

Faster file access speed Greater network

throughput

11 21 October 2013

Tolly CPU Test – fast processing

Notes: For Amazon Web Services, the number shown is the number of EC2 units. Neither IBM nor Rackspace offers

a 1vCPU solution. IBM running RHEL 6.3, all others running Ubuntu 10.04LTS Server. All systems were 64-bit.

Source: Tolly, May 2013

606

284

141

909

433

227 190

101

289

144

0

200

400

600

800

1000

Small Medium Large

Dimension Data Amazon Web Services IBM SmartCloud Rackspace

Lower Numbers

Are Better

Be

nc

hm

ark

co

mp

leti

on

tim

e (

se

co

nd

s)

System Category

Linux Cloud Server CPU Performance C-Ray 1.1 Benchmark

(as reported by Phoronix Test Suite 3.6.1)

1 vCPU 2 vCPUs 4 vCPUs

12 21 October 2013

Tolly RAM Test – faster memory throughput

Note: Neither IBM nor Rackspace offers a 1 vCPU solution.

IBM running RHEL 6.3, all others running Ubuntu 10.04LTS Server. All systems were 64-bit.


3,110

10,831

18,542

1,225 2,523

3,200

9,985 8,772

6,522 7,818

0

5,000

10,000

15,000

20,000

Small Medium Large


Me

mo

ry O

pe

rati

on

s p

er

se

co

nd

(a

ve

rag

e)

System Category

Linux Cloud Server System Memory Performance RAMSpeed 3.5 Benchmark


2 GB RAM

4 GB RAM 8 GB RAM

13 21 October 2013

Tolly Storage Test – faster file access speed

1,448

3,472 3,472

402

1,278 1,342

684 527 642 659

0

1,000

2,000

3,000

4,000

Small Medium Large


Tra

ns

ac

tio

ns p

er

se

co

nd

(a

ve

rag

e)

Linux Cloud Server Local File Performance PostMark 1.51 Benchmark


1vCPU /

2 GB RAM

2vCPU /

4 GB RAM

4 vCPU /

8 GB RAM

Note: Neither IBM nor Rackspace offers a 1 vCPU solution. Default file systems used: ext4 for Dimension Data, ext3 for the other

solutions.



14 21 October 2013

Tolly Network Test – greater network throughput

Note: Neither IBM nor Rackspace offers a 1 vCPU solution. For this test, the Rackspace “small” machine has 2vCPUs and 2GB RAM. All

tests run with a “large” system as a partner across low-latency, internal network. Throughput can exceed GbE because of 10GbE back-

end trunking.



2,252

3,260

4,463

344

1,052 1,244

1,834 1,864

233 377 479

0

1,000

2,000

3,000

4,000

5,000

Small Medium Large

Dimension Data Amazon Web Services IBM SmartCloud RackspaceBid

ire

cti

on

al th

rou

gh

pu

t p

er

se

co

nd

(a

ve

rag

e)

Linux Cloud Server Bidirectional Local Area Network Performance iPerf Benchmark

(as reported by iPerf 2.0.4)

1vCPU /

2 GB RAM

2vCPU /

4 GB RAM

4 vCPU /

8 GB RAM

15 21 October 2013

SaaS ISV Service Provider Enterprise

Thousands of clients with millions of end-users and

growing

21 October 2013

Dimension Data –

Managed Cloud Platform

17 21 October 2013

Cloud Solutions And Services

Cloud Enablement Services

Custom Public Private Hosted

Private

Cloud

Exchange

Compute-as-a-Service Managed Hosting

Cloud Enablement Cloud Integration

Cloud Services

for Microsoft

(CSfM)

Communications

services Application

services

Advanced

compute

services

Security

services

•Exchange

•Sharepoint

• Lync

• Email Filtering

• Web Filtering

•Mobile Device

Mgmt

• UCaaS

• Hosted

Applications

• SaaS

• Backup & Recovery

• Disaster Recovery

• Desktop Virtualisation

On the roadmap

18 21 October 2013

Dimension Data Managed Cloud Platform™

Dimension Data

Managed Cloud Platform™

Dimension Data CloudControl™

Delivery platform

MCP Types:

• Public MCP

• Private MCP

• Hosted Private MCP

• Provider MCP

Public CaaS Public cloud IaaS deployed in

each region

Managed Hosting Managed physical and virtual

infrastructure hosted in Dimension

Data data centre

Private CaaS On-premise or hosted managed

private cloud service

Provider CaaS Dedicated cloud platform for resale

by service provider or community

Compute Services

Hosted Private CaaS Hosted managed private cloud

service

19 21 October 2013

Product Families and Cost Principles for CaaS

DD

Price *Hosted

Private MCP

“custom”

*Hosted

Private MCP

“custom”

Hosted

Private MCP

*Hosted Private

MCP

“Fully Dedicated -

custom”

Small Med Custom Usage Bundles

Lower Cost

More Shared

Elements

Higher Cost

Less Shared

Elements

Level of Sharing Cost of Service


CloudControl™


CloudControl™


CloudControl™

Public CaaS Hosted Private CaaS Private CaaS

Dedicated:

Servers

Storage

Hypervisor

Hosted in DD DC

Dedicated:

Servers

Storage

Hypervisor

Array

Hosted in DD DC

Dedicated:

Servers

Storage

Hypervisor

Array

Physical NW

Hosted in DD DC

Dedicated:

Entire Private MCP

Hosted in a DD DC

20 21 October 2013

Managed Cloud Platform™ (MCP)

- A fully managed and integrated cloud platform delivered as a service

- Designed to deliver enterprise class service levels

Dimension Data



Hosted or On-Premise

Fully Automated

Available as OPEX

Monitored & Managed

21 21 October 2013

Flexible architecture….that supports hybrid constructs

Interoperability between platforms for full hybrid functionality:

Connected to the Dimension Data Global Cloud Exchange

Managed Hosting

Dedicated

servers

Virtual

servers

Hybrid

Connect™

Hybrid

Connect™

• Under load conditions (burst)

• To supplement capacity

• To overcome latency

• Time-to-market

Private MCP

Cloud servers


Public MCP

Cloud servers

Dimension Data

CloudControl™

22 21 October 2013

A scalable Architecture…that includes Managed

Hosting

• Consistent architecture between cloud types

• Allows for bursting between cloud types

• Provides the platform for further services

Hybrid

Connect™

Security Layer

Data Centre Network

Network in DC

DC Switching Fabric

Compute

Server

Virtualisation Layer

O/S

Storage

O/S O/S O

pera

tion

al M

ana

ge

me

nt

Orchestration & Automation

Metering & Billing

Resourc

e m

anag

em

ent

Pro

vis

ion m

anag

em

ent

Se

rvic

e c

ata

log

ue

ma

na

ge

me

nt

Serv

ers

C

PU

RA

M

Sto

rage

VLA

N

Firew

all

Load b

ala

ncin

g

O/S

NA

T

Multic

ast

App App App

Service delivery layer

RE

ST

ful

AP

I W

eb c

onsole

Public MCP

Cloud servers

Dimension Data

CloudControl

Dimension Data CloudControl – Cloud management

system Orchestration Administration Billing Provisioning Management Support Federation

Private MCP

Cloud servers

Dimension Data

CloudControl

23 21 October 2013

Security: Cloud Networks built on physical hardware

Physical Network 1. Provision a Cloud

Network - Layer 2 Physical VLAN

- Customizable Cisco Firewall

- Load Balancer

- VPN Client 2. Provision Cloud Server - CPU 1 – 16 Core

- Memory 1 – 128 GB

- Storage 10 – 2.5 TB

3. Provision Cloud Software - Custom/Std. Server images

- Application Templates

4. Service Levels - 24 X 7 X 365 SLA & Helpdesk

- 30 Min – 2 Hr. Response time

24 21 October 2013

MCP to MCP WAN Optimization

- how does it work?

Seamless integration to Global Dimension Data cloud

• Data streamlining using compression

• Extensive use of data de-duplication

• 60-95% reduction in WAN traffic

• LAN-like performance across MCP locations

• Example:

Before: As measured during our proof of concept testing, a 120 GB file required 5

hours to transfer from MCP A to MCP B

After: Following the deployment of WAN Optimization, the same file required only 30

minutes to travel the same route

MCP Location MCP Location

WAN

Dimension Data



Dimension Data



VPN

All Private IP Traffic Optimised

25 21 October 2013

MCP with Tiered Storage

- High Performance, Standard and Economy

Internet

Border Router

VPN

Firewall

Load Balancers

Core Switching IDS Monitoring

DOS Prevention

Secure Access

Router

Workloads Workload

Database

Dedicated

servers

Virtualized

servers

High

performance

Public Private

Hosted Private CaaS

Tiered

Storage

Standard Economy

Tier 1 High Performance

Type 600 GB 15k Drives (RAID 5)

Usage Cloud applications that use on-line active

files, DB tables, log, web and user files

Tier 2 Standard

Type 2TB 7200 RPM (RAID 5)

Usage Cloud applications that use VM/VDI files,

on-line videos, snapshots, OS images

Tier 3 Economy

Type 3TB 7200 RPM (RAID 5)

Usage Cloud applications that use off-line master

backup, long term retention, DR

Dimension Data


Dimension Data

CloudControl™

21 October 2013

MCP Network Architecture

27 21 October 2013

Private Network Pool Cisco Virtual Contexts

dedicated to Private ESX

Virtualization Layer

Border Switches

2 x Cisco Core Switches

and routers

Aggregate Tier

2 x Cisco Core Switches

With firewall/load

balancing/VLAN capabilities

Public ESX


Servers

4x Xeon x4870 CPU

10 Core (2.406 GHz)

512 GB RAM

Public Storage Network Layer

SAN Switches with

NetApp or EMC SAN w/100 GB Fast

Cache SAS Flash and

Trays of 2TB 7200RPM SATA Drives

Dimension Data

CloudControl

Client VPN Access

VPN Appliance

250 Simultaneous SSL

Security Layer

DDOS - Intrusion

Detection - Protection

Private ESX


Servers

4 x Xeon x7560 CPU

8 Core (2.26GHz)

512 GB RAM

Private

vCenter

Servers

2 x Xeon

X5675

(4 Core)

64 GB

RAM

Private Storage Pool

Trays of 2TB 7200RPM SATA Drives

Dedicated to Private ESX Virtualization Layer

1 Gbps

10 Gbps

10 Gbps

Internet

Managed Cloud Platform Hosted Private Cloud

Solution Overview

Hosted Private Cloud Architecture

28 21 October 2013

Dimension Data CaaS

Hardware-based Layer 2 Networking

Web App DB

VLAN A VLAN B VLAN C

Public (NAT’ed) IP Space

Public Traffic filtered at

Firewall

Private IP Space

Traffic filtered at VLAN A

Firewall

Multi-cast turned on for

application clustering

Private IP Space

Specific server to server

traffic is filtered at VLAN

B Firewall

Public

user

VPN Gateway

Administrator Administrator

Load Balancing SSL Offloading

• Layer 2 networks have

better performance and

security than Layer 3

networks

• Closest device to Physical

Layer 1 cable into a switch

port resulting in improved

security and performance

• Layer 3 software

emulation devices are less

secure, have no QoS, and

are prone to congestion

(e.g. firewalls, load

balancers, etc..)

• MCPs utilize Layer 2

network controllers via the

Cisco Cat 6509 and the

ACE modules which are

highly secure and scalable

29 21 October 2013

Dimension Data CaaS

CaaS Aggregate Network Layer

Inspection / Application security features are built into the

Application Control Engine IPS

Cisco ACE modules are used with multiple contexts to provide firewall

functionality to customer networks Firewalls

• Firewalls Client-to-site VPN services from all end customers to the

private IP addresses of their Cloud Networks (i.e. Cisco Ace contexts) is

provided using Cisco ASA 5540 devices

• Encrypted cloud data center to cloud data center connectivity at the

WAN edge with Cisco IPSEC VPN modules

• Extending MPLS provider terminated connections into a customer’s

network is optionally available at an additional cost

Encryption /

VPN

ACE modules within the 65xx switches are used with multiple contexts,

providing customers with their own load balancing instances

Load

Balancing

A number of network services are provided from the Cisco services layer:

21 October 2013

MCP Security, Compliance and

Processes

31 21 October 2013

Dimension Data CaaS

Security Attributes

Dimension Data

CloudControl

Dimension Data


Account-based Security

Administrator & Account:

Unique username/password for

each administrator

Roles-based permissions

controlling the activities of each

administrator

Secure Facility

Physical Security:

24x7x365 Monitored & Manned

Facility

Network Centricity

Classic DC Switching

Architecture:

Dedicated VLANs to each client

User-determined private or public

connectivity (for VMs)

Client defined Access Lists

Perimeter Security

Securing the DC Border:

Firewall protection

IDS/IPS Monitoring

Secure User Access

Securing the network:

Client-to-Site VPN administration

for all servers.

Secure VPN Access

Security Management

Audit trial & Monitoring:

Audit logs of all environmental

changes

24x7x365 Public IP Monitoring

DoS/DDoS mitigation

Identifies traffic and routing instability,

equipment failures, or

misconfigurations

Compliance

Authority and Client Audits:

SSAE-16

PCI DSS Level I Service Provider

European Safe Harbor

Data Security

Client Data Protection:

User Data Encrypted

32 21 October 2013

Dimension Data CaaS

Private MCP Security Features

On-Site Co-Located

Cloud Networks with Layer 2 VLAN

Isolation, user-determined public Internet

connectivity, and firewall support

Client-to-Site VPN administration of all

servers

Unique username/password for each

administrator

Role-based permissions controlling the

activities of each administrator

Audit logs of all environmental changes

Intrusion-Detection Monitoring of Cloud

Orchestration Layer

Cloud Networks with Layer 2 VLAN Isolation,

user-determined public Internet connectivity,

and firewall support

Client-to-Site VPN administration of all servers

Unique username/password for each

administrator

Role-based permissions controlling the

activities of each administrator

Audit logs of all environmental changes

Intrusion-Detection Monitoring of Orchestration

Layer

24x7x365 Public IP Monitoring

- DoS/DDoS mitigation

- Identifies traffic and routing instability,

equipment failures, or misconfigurations

24x7x365 Monitored & Manned Secure Facility

SSAE-16 Type II Certification

21 October 2013

MCP CloudControl

34 21 October 2013

Dimension Data CaaS

CloudControl Orchestration Software

Admin UI and API

• Intuitive, easy-to-use

• REST-based API

• Fully-functional

• Supports 3rd party integration for capacity control, provisioning, configuration, and reporting

Administrator

• User sign-up

• Metering

• Reporting

• User permissions

• Billing, Invoicing, Collections

Manage

• Cloud Networks

• Cloud Servers

• Firewalls

• Load Balancers

• Storage

Monitor (Nimsoft , Gomez):

• Network, Server, Storage infrastructure

• VMware vCenter, ESX hosts

• Proprietary CloudControl application

Dimension Data

CloudControl™


Dim

ensio

n D

ata

Clo

ud

Co

ntro

l™

Deploy & Customize

• Networks (VLANs)

• Servers

• Firewalls

• Load Balancers

• Storage

• IP addresses

• OS Images

35 21 October 2013

Dimension Data CaaS

CloudControl Overview

• CloudControl refers to the complete set of technologies deployed to deliver

the Dimension Data Compute-as-a-Service (CaaS) offering:

• Dimension Data CloudControl application software

• VMWare vSphere for Enterprise

• Cisco Application Control Engine (ACE) and other technologies

• Nimsoft and Compuware Gomez for platform monitoring

• Arbor Peakflow for Flow Monitoring and DOS/DDOS protection

• Alert Logic for Intrusion Protection

36 21 October 2013

Dimension Data CaaS

CloudControl Application Overview

Our software architecture includes four primary layers:

UI Tier provides easy-to-use web interfaces for two audiences:

a) Customers to control their CaaS account

b) Vendors to create and manage the CaaS accounts of Customers

API Tier provides programmatic support for the UI Tier, as well as for

direct calls by Customers/Vendors

Integration Tier houses the underlying intelligence and interfaces with

the underlying infrastructure to instantiate changes

Cloud Usage Tier identifies changes in account environment that result

in changes to the usage elements (CPU Hours, RAM Hours, etc..)

1

2

3

4

The Cloud Journey …

39 21 October 2013

The Changing Role Of IT

This matters more This matters less

What changes

with this shift in

focus?

Skills required

Investment approach

Business knowledge

Global thinking

Competitive pressure

Outcomes-driven

40 21 October 2013

The Reality …

‘There is little CIO movement towards using external data center providers

and many are continuing to build data center capacity.’

Uptime Institute: 2012 Data Center Survey (registration required)

80% of respondents have

built/are building/have

upgraded data center capacity

30% of these expect to run out of

capacity within 18 months

41 21 October 2013

Generic Apps

Standardize

Simplify

Rent

Genetic Apps

Specialize

Invest

Own

A Structured Transition …

42 21 October 2013

Generic Apps

Standardize

Simplify

Rent

Genetic Apps

Specialize

Invest

Own

• Email

• Conferencing

• CRM

• ERP

• Project

management

• Telephony

• Mobile device

management

• Core transactional

systems

• Telemetry app

• Analytics app

• Content animation

A Structured Transition …

43 21 October 2013

The Inhibitions To Move To The Cloud …

Possible reasons CIOs are reluctant to adopt cloud

computing include:

Security Reliability Reliability Support

44 21 October 2013

Security

Cloud

Is

Insecure

Fear

• Most cloud providers

have stringent

security policies that

surpass many

organisations’ internal

processes

• Enterprise-grade

cloud providers are

compliant to stringent

international security

standards like SSAE-

16 & PCI-DSS

Reality

45 21 October 2013

Reliability & Performance

Cloud

Is

Unreliable

Fear

• Many organisations

are plagued by

downtimes due to

lapse of internal

processes


cloud providers

provide SLAs of up to

99.99%

Reality

46 21 October 2013

Support

You Can’t Get

Support When

You Need It

Most

Fear


service providers

provide timely

“human” responses

during downtimes

including service

credits

Reality

47 21 October 2013

User

s

Public Cloud

Corporate IT

CC (1)

User

s

Public Cloud

Corporate IT

Contract (2)

Public Cloud Hosted Private

Managed

Hosting

Corporate IT

On-Prem

vs. Cloud ??

Tech Refresh

or SW Update (3)

Private Cloud

Enterprise Journey To Cloud …

48 21 October 2013

Key Tenets Of An Enterprise Cloud Service Provider

Proven experience in mission

critical cloud operations

Compelling SLAs

Breadth of offerings

Open standards based

Complementary services

Technology

Dimension Data Cloud Business Unit - Solution Offering