Upload
rifaharyadi
View
1.149
Download
3
Embed Size (px)
DESCRIPTION
Dimension Data - Cloud Business Unit Solution Offering. This presentation will take you through Dimension Data Solution Offering and Roadmap to the Future of Cloud Computing. Dimension Data Cloud Computing Solution are fully control by Manage Cloud Platform - Dimension Data Propretiary Orchestration and Automation Tools
Citation preview
Dimension Data
Cloud Services
Overview
Accelerate Your
Cloud Journey
August 2013
2 21 October 2013
Agenda
• Dimension Data cloud credentials
• Dimension Data Cloud Services
• The Cloud Journey
• Why Dimension Data for cloud
3 21 October 2013
Dimension Data today
2011 global revenues of
US$5.8 billion
Over 14,000 employees
with operations in 51
countries across 5
regions
Extensive experience in
emerging markets Client-centric, services
focused business
Over 6,000 clients across all industry sectors, including financial
services, telecommunications, healthcare, manufacturing,
government and education
78% of Global Fortune 100 and
59% of Global Fortune 500 are
Dimension Data clients
4 21 October 2013
We have built our expertise in cloud
We are ready to
accelerate
your journey!
System Integration
and Services
Internet Solutions
• Networks
• Data centres
• Managed hosting
• Iaas (DC)
• Voice services
IT Outsourcing
(MEA)
• Comms tower
• Hosting
• Applications
LoB focus
• Consulting
• Infrastructure
virtualisation
• Public cloud
services
Public cloud SaaS
• 1 million BPOS seats
• Cloud integration and federation
NTT Group assets
• NTTC global MPLS
• NTTC data centres
• NTT data
OpSource (US)
• Managed hosting
• Cloud hosting
• IaaS (DC)
• Scalable cloud architecture
BlueFire (AU)
• Managed hosting
• IaaS (DC)
• Managed apps
Dimension Data
(Asia)
• 6 Tier 3 data centres
• Managed hosting
• Cloud service
roadmap
5 21 October 2013
Dimension Data launched Cloud Business in June
2011
100% 100%
Regional
communications business
100%
Long distance
and international
communications
business
54.2%
Application
integration
business
66.6%
Voting rights ratio
Mobile
communication
business
Real estate, finance, construction
and power business
Other business
Other Group companies
100%
Managed ICT
infrastructure
Dimension Data acquired cloud
services leader OpSource and formed
Cloud Business Unit in June 2011
Cloud
Business Unit
6 21 October 2013
Dimension Data cloud credentials
Virtualization Expertise
Built and managed 8000+ IP networks WW and enabled 12.5m+ users to connect to their organizations
Concluded over 1,000s of server virtualization projects with 100,000+
servers virtualized
Delivered 1000’s of server & Desktop
virtualization assessments
Data Centre Experience
Over 2200 Data Centre muti-vendor certifications
Highest level of Cisco, VMware, EMC and VCE certifications
Global Cisco, Microsoft and VMware partner
Cloud Experience
Recognized Cloud IaaS leader
Cloud management system technology
Deep SaaS hosting expertise
More than 1 million Office 365 seat deployments
7 21 October 2013
challengers leaders
visionaries niche players
completeness of
vision
ab
ility
to
exe
cu
te
Dimension Data is a Cloud Market Leader
Source: Gartner 2012 IaaS MQ For IaaS Providers
GoGrid
Virtustream OVH
SoftLayer Tier
3
Joyent
Rackspace
Amazon Web
Services
CSC
Terremark Savvis
Blueloc
k
Fujitsu
Dell
Dimension Data
Global Footprint
Hosted - Hybrid - On-Premise
Industry leading SLA
End to End Automation
10+ Years Operational Expertise
Rich Portfolio and Roadmap
8 21 October 2013
Global reach, local presence, customisation & investment.
About Dimension Data Asia Pacific
9 MCPs globally, 5 in AsiaPac
Our cloud platform’s features are unmatched in the local market
Wholly-owned IP; high speed of innovation
9 21 October 2013
Dimension Data extends its footprint through its
OneCloud Alliance and Global Cloud Exchange
USA
EU
MEA
Asia
Australia
10 21 October 2013
Tolly Group Report Findings
Fast processing Faster memory
throughput
Faster file access speed Greater network
throughput
11 21 October 2013
Tolly CPU Test – fast processing
Notes: For Amazon Web Services, the number shown is the number of EC2 units. Neither IBM nor Rackspace offers
a 1vCPU solution. IBM running RHEL 6.3, all others running Ubuntu 10.04LTS Server. All systems were 64-bit.
Source: Tolly, May 2013
606
284
141
909
433
227 190
101
289
144
0
200
400
600
800
1000
Small Medium Large
Dimension Data Amazon Web Services IBM SmartCloud Rackspace
Lower Numbers
Are Better
Be
nc
hm
ark
co
mp
leti
on
tim
e (
se
co
nd
s)
System Category
Linux Cloud Server CPU Performance C-Ray 1.1 Benchmark
(as reported by Phoronix Test Suite 3.6.1)
1 vCPU 2 vCPUs 4 vCPUs
12 21 October 2013
Tolly RAM Test – faster memory throughput
Note: Neither IBM nor Rackspace offers a 1 vCPU solution.
IBM running RHEL 6.3, all others running Ubuntu 10.04LTS Server. All systems were 64-bit.
Source: Tolly, May 2013
3,110
10,831
18,542
1,225 2,523
3,200
9,985 8,772
6,522 7,818
0
5,000
10,000
15,000
20,000
Small Medium Large
Dimension Data Amazon Web Services IBM SmartCloud Rackspace
Me
mo
ry O
pe
rati
on
s p
er
se
co
nd
(a
ve
rag
e)
System Category
Linux Cloud Server System Memory Performance RAMSpeed 3.5 Benchmark
(as reported by Phoronix Test Suite 3.6.1)
2 GB RAM
4 GB RAM 8 GB RAM
13 21 October 2013
Tolly Storage Test – faster file access speed
1,448
3,472 3,472
402
1,278 1,342
684 527 642 659
0
1,000
2,000
3,000
4,000
Small Medium Large
Dimension Data Amazon Web Services IBM SmartCloud Rackspace
Tra
ns
ac
tio
ns p
er
se
co
nd
(a
ve
rag
e)
Linux Cloud Server Local File Performance PostMark 1.51 Benchmark
(as reported by Phoronix Test Suite 3.6.1)
1vCPU /
2 GB RAM
2vCPU /
4 GB RAM
4 vCPU /
8 GB RAM
Note: Neither IBM nor Rackspace offers a 1 vCPU solution. Default file systems used: ext4 for Dimension Data, ext3 for the other
solutions.
IBM running RHEL 6.3, all others running Ubuntu 10.04LTS Server. All systems were 64-bit.
Source: Tolly, May 2013
14 21 October 2013
Tolly Network Test – greater network throughput
Note: Neither IBM nor Rackspace offers a 1 vCPU solution. For this test, the Rackspace “small” machine has 2vCPUs and 2GB RAM. All
tests run with a “large” system as a partner across low-latency, internal network. Throughput can exceed GbE because of 10GbE back-
end trunking.
IBM running RHEL 6.3, all others running Ubuntu 10.04LTS Server. All systems were 64-bit.
Source: Tolly, May 2013
2,252
3,260
4,463
344
1,052 1,244
1,834 1,864
233 377 479
0
1,000
2,000
3,000
4,000
5,000
Small Medium Large
Dimension Data Amazon Web Services IBM SmartCloud RackspaceBid
ire
cti
on
al th
rou
gh
pu
t p
er
se
co
nd
(a
ve
rag
e)
Linux Cloud Server Bidirectional Local Area Network Performance iPerf Benchmark
(as reported by iPerf 2.0.4)
1vCPU /
2 GB RAM
2vCPU /
4 GB RAM
4 vCPU /
8 GB RAM
15 21 October 2013
SaaS ISV Service Provider Enterprise
Thousands of clients with millions of end-users and
growing
21 October 2013
Dimension Data –
Managed Cloud Platform
17 21 October 2013
Cloud Solutions And Services
Cloud Enablement Services
Custom Public Private Hosted
Private
Cloud
Exchange
Compute-as-a-Service Managed Hosting
Cloud Enablement Cloud Integration
Cloud Services
for Microsoft
(CSfM)
Communications
services Application
services
Advanced
compute
services
Security
services
•Exchange
•Sharepoint
• Lync
• Email Filtering
• Web Filtering
•Mobile Device
Mgmt
• UCaaS
• Hosted
Applications
• SaaS
• Backup & Recovery
• Disaster Recovery
• Desktop Virtualisation
On the roadmap
18 21 October 2013
Dimension Data Managed Cloud Platform™
Dimension Data
Managed Cloud Platform™
Dimension Data CloudControl™
Delivery platform
MCP Types:
• Public MCP
• Private MCP
• Hosted Private MCP
• Provider MCP
Public CaaS Public cloud IaaS deployed in
each region
Managed Hosting Managed physical and virtual
infrastructure hosted in Dimension
Data data centre
Private CaaS On-premise or hosted managed
private cloud service
Provider CaaS Dedicated cloud platform for resale
by service provider or community
Compute Services
Hosted Private CaaS Hosted managed private cloud
service
19 21 October 2013
Product Families and Cost Principles for CaaS
DD
Price *Hosted
Private MCP
“custom”
*Hosted
Private MCP
“custom”
Hosted
Private MCP
*Hosted Private
MCP
“Fully Dedicated -
custom”
Small Med Custom Usage Bundles
Lower Cost
More Shared
Elements
Higher Cost
Less Shared
Elements
Level of Sharing Cost of Service
Managed Cloud Platform
CloudControl™
Managed Cloud Platform
CloudControl™
Managed Cloud Platform
CloudControl™
Public CaaS Hosted Private CaaS Private CaaS
Dedicated:
Servers
Storage
Hypervisor
Hosted in DD DC
Dedicated:
Servers
Storage
Hypervisor
Array
Hosted in DD DC
Dedicated:
Servers
Storage
Hypervisor
Array
Physical NW
Hosted in DD DC
Dedicated:
Entire Private MCP
Hosted in a DD DC
20 21 October 2013
Managed Cloud Platform™ (MCP)
- A fully managed and integrated cloud platform delivered as a service
- Designed to deliver enterprise class service levels
Dimension Data
Managed Cloud Platform™
Dimension Data CloudControl™
Hosted or On-Premise
Fully Automated
Available as OPEX
Monitored & Managed
21 21 October 2013
Flexible architecture….that supports hybrid constructs
Interoperability between platforms for full hybrid functionality:
Connected to the Dimension Data Global Cloud Exchange
Managed Hosting
Dedicated
servers
Virtual
servers
Hybrid
Connect™
Hybrid
Connect™
• Under load conditions (burst)
• To supplement capacity
• To overcome latency
• Time-to-market
Private MCP
Cloud servers
Dimension Data CloudControl™
Public MCP
Cloud servers
Dimension Data
CloudControl™
22 21 October 2013
A scalable Architecture…that includes Managed
Hosting
• Consistent architecture between cloud types
• Allows for bursting between cloud types
• Provides the platform for further services
Hybrid
Connect™
Security Layer
Data Centre Network
Network in DC
DC Switching Fabric
Compute
Server
Virtualisation Layer
O/S
Storage
O/S O/S O
pera
tion
al M
ana
ge
me
nt
Orchestration & Automation
Metering & Billing
Resourc
e m
anag
em
ent
Pro
vis
ion m
anag
em
ent
Se
rvic
e c
ata
log
ue
ma
na
ge
me
nt
Serv
ers
C
PU
RA
M
Sto
rage
VLA
N
Firew
all
Load b
ala
ncin
g
O/S
NA
T
Multic
ast
App App App
Service delivery layer
RE
ST
ful
AP
I W
eb c
onsole
Public MCP
Cloud servers
Dimension Data
CloudControl
Dimension Data CloudControl – Cloud management
system Orchestration Administration Billing Provisioning Management Support Federation
Private MCP
Cloud servers
Dimension Data
CloudControl
23 21 October 2013
Security: Cloud Networks built on physical hardware
Physical Network 1. Provision a Cloud
Network - Layer 2 Physical VLAN
- Customizable Cisco Firewall
- Load Balancer
- VPN Client 2. Provision Cloud Server - CPU 1 – 16 Core
- Memory 1 – 128 GB
- Storage 10 – 2.5 TB
3. Provision Cloud Software - Custom/Std. Server images
- Application Templates
4. Service Levels - 24 X 7 X 365 SLA & Helpdesk
- 30 Min – 2 Hr. Response time
24 21 October 2013
MCP to MCP WAN Optimization
- how does it work?
Seamless integration to Global Dimension Data cloud
• Data streamlining using compression
• Extensive use of data de-duplication
• 60-95% reduction in WAN traffic
• LAN-like performance across MCP locations
• Example:
Before: As measured during our proof of concept testing, a 120 GB file required 5
hours to transfer from MCP A to MCP B
After: Following the deployment of WAN Optimization, the same file required only 30
minutes to travel the same route
MCP Location MCP Location
WAN
Dimension Data
Managed Cloud Platform™
Dimension Data CloudControl™
Dimension Data
Managed Cloud Platform™
Dimension Data CloudControl™
VPN
All Private IP Traffic Optimised
25 21 October 2013
MCP with Tiered Storage
- High Performance, Standard and Economy
Internet
Border Router
VPN
Firewall
Load Balancers
Core Switching IDS Monitoring
DOS Prevention
Secure Access
Router
Workloads Workload
Database
Dedicated
servers
Virtualized
servers
High
performance
Public Private
Hosted Private CaaS
Tiered
Storage
Standard Economy
Tier 1 High Performance
Type 600 GB 15k Drives (RAID 5)
Usage Cloud applications that use on-line active
files, DB tables, log, web and user files
Tier 2 Standard
Type 2TB 7200 RPM (RAID 5)
Usage Cloud applications that use VM/VDI files,
on-line videos, snapshots, OS images
Tier 3 Economy
Type 3TB 7200 RPM (RAID 5)
Usage Cloud applications that use off-line master
backup, long term retention, DR
Dimension Data
Managed Cloud Platform™
Dimension Data
CloudControl™
21 October 2013
MCP Network Architecture
27 21 October 2013
Private Network Pool Cisco Virtual Contexts
dedicated to Private ESX
Virtualization Layer
Border Switches
2 x Cisco Core Switches
and routers
Aggregate Tier
2 x Cisco Core Switches
With firewall/load
balancing/VLAN capabilities
Public ESX
Virtualization Layer
Servers
4x Xeon x4870 CPU
10 Core (2.406 GHz)
512 GB RAM
Public Storage Network Layer
SAN Switches with
NetApp or EMC SAN w/100 GB Fast
Cache SAS Flash and
Trays of 2TB 7200RPM SATA Drives
Dimension Data
CloudControl
Client VPN Access
VPN Appliance
250 Simultaneous SSL
Security Layer
DDOS - Intrusion
Detection - Protection
Private ESX
Virtualization Layer
Servers
4 x Xeon x7560 CPU
8 Core (2.26GHz)
512 GB RAM
Private
vCenter
Servers
2 x Xeon
X5675
(4 Core)
64 GB
RAM
Private Storage Pool
Trays of 2TB 7200RPM SATA Drives
Dedicated to Private ESX Virtualization Layer
1 Gbps
10 Gbps
10 Gbps
Internet
Managed Cloud Platform Hosted Private Cloud
Solution Overview
Hosted Private Cloud Architecture
28 21 October 2013
Dimension Data CaaS
Hardware-based Layer 2 Networking
Web App DB
VLAN A VLAN B VLAN C
Public (NAT’ed) IP Space
Public Traffic filtered at
Firewall
Private IP Space
Traffic filtered at VLAN A
Firewall
Multi-cast turned on for
application clustering
Private IP Space
Specific server to server
traffic is filtered at VLAN
B Firewall
Public
user
VPN Gateway
Administrator Administrator
Load Balancing SSL Offloading
• Layer 2 networks have
better performance and
security than Layer 3
networks
• Closest device to Physical
Layer 1 cable into a switch
port resulting in improved
security and performance
• Layer 3 software
emulation devices are less
secure, have no QoS, and
are prone to congestion
(e.g. firewalls, load
balancers, etc..)
• MCPs utilize Layer 2
network controllers via the
Cisco Cat 6509 and the
ACE modules which are
highly secure and scalable
29 21 October 2013
Dimension Data CaaS
CaaS Aggregate Network Layer
Inspection / Application security features are built into the
Application Control Engine IPS
Cisco ACE modules are used with multiple contexts to provide firewall
functionality to customer networks Firewalls
• Firewalls Client-to-site VPN services from all end customers to the
private IP addresses of their Cloud Networks (i.e. Cisco Ace contexts) is
provided using Cisco ASA 5540 devices
• Encrypted cloud data center to cloud data center connectivity at the
WAN edge with Cisco IPSEC VPN modules
• Extending MPLS provider terminated connections into a customer’s
network is optionally available at an additional cost
Encryption /
VPN
ACE modules within the 65xx switches are used with multiple contexts,
providing customers with their own load balancing instances
Load
Balancing
A number of network services are provided from the Cisco services layer:
21 October 2013
MCP Security, Compliance and
Processes
31 21 October 2013
Dimension Data CaaS
Security Attributes
Dimension Data
CloudControl
Dimension Data
Managed Cloud Platform
Account-based Security
Administrator & Account:
Unique username/password for
each administrator
Roles-based permissions
controlling the activities of each
administrator
Secure Facility
Physical Security:
24x7x365 Monitored & Manned
Facility
Network Centricity
Classic DC Switching
Architecture:
Dedicated VLANs to each client
User-determined private or public
connectivity (for VMs)
Client defined Access Lists
Perimeter Security
Securing the DC Border:
Firewall protection
IDS/IPS Monitoring
Secure User Access
Securing the network:
Client-to-Site VPN administration
for all servers.
Secure VPN Access
Security Management
Audit trial & Monitoring:
Audit logs of all environmental
changes
24x7x365 Public IP Monitoring
DoS/DDoS mitigation
Identifies traffic and routing instability,
equipment failures, or
misconfigurations
Compliance
Authority and Client Audits:
SSAE-16
PCI DSS Level I Service Provider
European Safe Harbor
Data Security
Client Data Protection:
User Data Encrypted
32 21 October 2013
Dimension Data CaaS
Private MCP Security Features
On-Site Co-Located
Cloud Networks with Layer 2 VLAN
Isolation, user-determined public Internet
connectivity, and firewall support
Client-to-Site VPN administration of all
servers
Unique username/password for each
administrator
Role-based permissions controlling the
activities of each administrator
Audit logs of all environmental changes
Intrusion-Detection Monitoring of Cloud
Orchestration Layer
Cloud Networks with Layer 2 VLAN Isolation,
user-determined public Internet connectivity,
and firewall support
Client-to-Site VPN administration of all servers
Unique username/password for each
administrator
Role-based permissions controlling the
activities of each administrator
Audit logs of all environmental changes
Intrusion-Detection Monitoring of Orchestration
Layer
24x7x365 Public IP Monitoring
- DoS/DDoS mitigation
- Identifies traffic and routing instability,
equipment failures, or misconfigurations
24x7x365 Monitored & Manned Secure Facility
SSAE-16 Type II Certification
21 October 2013
MCP CloudControl
34 21 October 2013
Dimension Data CaaS
CloudControl Orchestration Software
Admin UI and API
• Intuitive, easy-to-use
• REST-based API
• Fully-functional
• Supports 3rd party integration for capacity control, provisioning, configuration, and reporting
Administrator
• User sign-up
• Metering
• Reporting
• User permissions
• Billing, Invoicing, Collections
Manage
• Cloud Networks
• Cloud Servers
• Firewalls
• Load Balancers
• Storage
Monitor (Nimsoft , Gomez):
• Network, Server, Storage infrastructure
• VMware vCenter, ESX hosts
• Proprietary CloudControl application
Dimension Data
CloudControl™
Managed Cloud Platform
Dim
ensio
n D
ata
Clo
ud
Co
ntro
l™
Deploy & Customize
• Networks (VLANs)
• Servers
• Firewalls
• Load Balancers
• Storage
• IP addresses
• OS Images
35 21 October 2013
Dimension Data CaaS
CloudControl Overview
• CloudControl refers to the complete set of technologies deployed to deliver
the Dimension Data Compute-as-a-Service (CaaS) offering:
• Dimension Data CloudControl application software
• VMWare vSphere for Enterprise
• Cisco Application Control Engine (ACE) and other technologies
• Nimsoft and Compuware Gomez for platform monitoring
• Arbor Peakflow for Flow Monitoring and DOS/DDOS protection
• Alert Logic for Intrusion Protection
36 21 October 2013
Dimension Data CaaS
CloudControl Application Overview
Our software architecture includes four primary layers:
UI Tier provides easy-to-use web interfaces for two audiences:
a) Customers to control their CaaS account
b) Vendors to create and manage the CaaS accounts of Customers
API Tier provides programmatic support for the UI Tier, as well as for
direct calls by Customers/Vendors
Integration Tier houses the underlying intelligence and interfaces with
the underlying infrastructure to instantiate changes
Cloud Usage Tier identifies changes in account environment that result
in changes to the usage elements (CPU Hours, RAM Hours, etc..)
1
2
3
4
The Cloud Journey …
39 21 October 2013
The Changing Role Of IT
This matters more This matters less
What changes
with this shift in
focus?
Skills required
Investment approach
Business knowledge
Global thinking
Competitive pressure
Outcomes-driven
40 21 October 2013
The Reality …
‘There is little CIO movement towards using external data center providers
and many are continuing to build data center capacity.’
Uptime Institute: 2012 Data Center Survey (registration required)
80% of respondents have
built/are building/have
upgraded data center capacity
30% of these expect to run out of
capacity within 18 months
41 21 October 2013
Generic Apps
Standardize
Simplify
Rent
Genetic Apps
Specialize
Invest
Own
A Structured Transition …
42 21 October 2013
Generic Apps
Standardize
Simplify
Rent
Genetic Apps
Specialize
Invest
Own
• Conferencing
• CRM
• ERP
• Project
management
• Telephony
• Mobile device
management
• Core transactional
systems
• Telemetry app
• Analytics app
• Content animation
A Structured Transition …
43 21 October 2013
The Inhibitions To Move To The Cloud …
Possible reasons CIOs are reluctant to adopt cloud
computing include:
Security Reliability Reliability Support
44 21 October 2013
Security
Cloud
Is
Insecure
Fear
• Most cloud providers
have stringent
security policies that
surpass many
organisations’ internal
processes
• Enterprise-grade
cloud providers are
compliant to stringent
international security
standards like SSAE-
16 & PCI-DSS
Reality
45 21 October 2013
Reliability & Performance
Cloud
Is
Unreliable
Fear
• Many organisations
are plagued by
downtimes due to
lapse of internal
processes
• Enterprise-grade
cloud providers
provide SLAs of up to
99.99%
Reality
46 21 October 2013
Support
You Can’t Get
Support When
You Need It
Most
Fear
• Enterprise-grade
service providers
provide timely
“human” responses
during downtimes
including service
credits
Reality
47 21 October 2013
User
s
Public Cloud
Corporate IT
CC (1)
User
s
Public Cloud
Corporate IT
Contract (2)
Public Cloud Hosted Private
Managed
Hosting
Corporate IT
On-Prem
vs. Cloud ??
Tech Refresh
or SW Update (3)
Private Cloud
Enterprise Journey To Cloud …
48 21 October 2013
Key Tenets Of An Enterprise Cloud Service Provider
Proven experience in mission
critical cloud operations
Compelling SLAs
Breadth of offerings
Open standards based
Complementary services