1 / 12

En route to a ‘Trusted Cloud’

Building on our shared services …. En route to a ‘Trusted Cloud’ Rhys Davies, Chairman of YHMAN, Director of Information Technology, University of Leeds Hugh Lavery, Director of Information, Media & Technology Services, Leeds Met ropolitan University

naeva
Download Presentation

En route to a ‘Trusted Cloud’

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript


  1. Building on our shared services … En route to a ‘Trusted Cloud’ Rhys Davies, Chairman of YHMAN, Director of Information Technology, University of Leeds Hugh Lavery, Director of Information, Media & Technology Services, Leeds Metropolitan University Ed Carter, YHMAN Business Manager, University of Leeds Leadership in the Public Sector UCISA 2012 University Showcase

  2. Content … Background Vision & Objectives Unique Resilient ‘Stretched’ Data Centre Network Multi-Tenant Security & Compliance Topology, Secure Service Mobility & Optimised Access Potential Service Development Pathfinder Apps 1Q2012 Service Management Service Catalogue Opportunities Rhys Davies Director of IT, Leeds University , Chair of YHMAN Board Ed Carter ISS Special Project Mgr, Leeds Univ YHMAN Business Manager Hugh Lavery Director of Information, Media & Technical Services, Leeds Met Univ YHMAN SVDC Project Sponsor

  3. Background… • Trusted Shared Service Provider for 14 years • JANET network to 68 institutions across HE, FE, Local Gov since 1998 • Fully resilient network at speeds up to 4GBS • 99.99% availability over last 12 months • Infrastructure • fibre-optic cable either owned by YHMAN or leased from Telco’s and connected by YHMAN in resilient rings • Ability to provide multiple laser wavelengths over the cable infrastructure is ideal for supporting multiple services such as JANET and the pathfinder Shared Virtual Data Centre service. • Supports the new JANET6/YHMAN interconnect due 2013 • Value Add • Enabling Research Collaboration, e.g. • White Rose Grid • N8 High Performance Computing Service for all northern Research Led universities, to be installed by April 2012 = one of the largest HPC facilities in the country • Delivering and evolving Shared Virtual Data Centre services for the benefit of the • HE & FE community in YH area • Upgrades to support the Super-Hi Vision TV for 2012 Olympics transmission to the National Media Museum in Bradford, one of 3 nationally • Other services being explored…

  4. Shared Virtual Data Centre (SVDC) - vision & objectives … Green Vision: To maximise the use of existing and planned data centre capacity across the Yorkshire & Humberside joint venture universities; facilitate improved levels of Business Continuity & Disaster Recovery provision, leading to region wide strategic planning of data centre capacity requirements. • Objectives: • The aggregation of resources and greater utilisation • Shared ‘back-office’ (& ‘front-office’) support • Secure real-time offsite data storage by design • Replicable & scaleable service model • How we have achieved this: • Built a Shared Virtual Data Centre across 3 diverse locations • What we have achieved: • Built the SVDC on time, budget, to cost • Pushed the boundaries of cloud provision creating a leadership postion and now regular speaker at International conferences

  5. Unique resilient ‘stretched’ Data Centre network provides performance, business continuity & disaster recovery … JANET/YHMAN Core Network Connection Points (Points-of-Presence, PoP) University of York University of Leeds University of Leeds University of Bradford Leeds Met University Leeds Met University University of Huddersfield University of Hull JANET5 & Internet 80km University of Sheffield Sheffield Hallam Univ University of Sheffield

  6. Multi-tenant security & compliance … Tenant IP Address options: Private, SVDC or University registered subnet Pathfinder Data Centres - Sheffield, Leeds & Leeds Met Virtual Data Centre 2 Virtual DC1 Endpoint Security (Intruder Prevention / Detection) vManager Admin Data Sensitive Streamline and accelerate anti-virus protection solutions Multi-Tenancy Tenant 1 Edge Security (Boundary & Tenant Protection) App Security (Application Group Protection VM-VM) Data Security Protect against Data Leaks + Compliance Protect Apps from Threats Secure the edge of the VDC & Tenants Hypervisor with Security Manager Appropriate Tenant Access via Public- VLAN Secure Tunnel Campus-to-SVDC IPSec VPN Physical Server

  7. 3 site DC topology, secure service mobility & optimised access … Virtual Data Centre (Leeds Host) Virtual Data Centre (Sheffield Host) Virtual Data Centre (Leeds Met Host) Tier 1 & Tier 2 Synchronous Write 3-Way Mirror iSCSI Virtual Storage Resilient Storage Compute & Memory Resource Pool 3 x Site Cluster Network Service Mobility (App & Firewalls) over the trusted overlay DC Network Assigned ‘Affinity Rules’ allow VMs to execute on preferred local servers but still failover. Resilient Trusted Data Centre Network YHMAN Access Network Sheffield Host Default Users Sheffield, Sheffield Hallam Leeds Host Default Users Bradford, Leeds, York Leeds Met Default Users Huddersfield, Leeds Met, Hull JANET Internet Transit

  8. Potential service development … White Rose Grid N8 HPC National SVDC Collaborative Group Tenancies Burst Capacity CCOE Clusters & Tenancies Beyond the Region Shared Applications SVDC Shared Applications Within Region SVDC Multi-Tenancy Cluster Integrate with Self-Provision Client Servers using Hybrid Burst Technology for Disaster Recovery over Secure-VLAN IPv4 or IPv6 Campus Servers

  9. Pathfinder service deployment … • • Virtual Desktops • Cloud-Campus VDI • • Sophos PMX • This is an appliance for email anti-virus • and spam scanning. • • University Web Servers • University main website node deployment, (apache/php) • Web applications servers (prospectus, jobs, ‘ • apply-on-line’ etc. • • Webmail • Typical apache/php web server. • • Application Servers • A range of trial apps during the Pathfinder • • Radius & Active Director • to support Eduroam • Should an individual university campus • network be down, the university user • community would still be able to make • authenticated access to Eduroam (globally). • Windows Domain Controller • UNIX Infrastructure Services • • DNS for individual University Domains • (eg university.ac.uk) • Individual University DNS is currently hosted completely on-campus. Having one or more DNS nodes hosted externally will increase resilience. • • Email Relay • To handle both in-bound and out-bound SMTP relaying, message scanning etc. • • Network Management Server • Off-campus copy of campus • network performance monitor • Windows Terminal Services

  10. Service management … • User support • - User support/experience is as on campus via University Campus Helpdesk • - Campus IT/IS Support maintain Guest VDC from a campus console • within their secure tenancy • (2) Regional support • - Multi-tenancy support is provided • by YHMAN • - Delivered to agreed Service Standard • (3) Operational Agreements (OLA) • - Defining all support duties • - YHMAN support • - VDC Hosting organisations • - Distributed support (Bradford - storage support) • (4) OEM/Vender support • - on-line monitoring & fault resolution Familiar Network Management extended to Server Infrastructure

  11. Service Catalogue Opportunities … INFRASTRUCTURE-as-a-Service SECURITY-as-a-Service BCDR-as-a-Service ‘Cloud’ VDI-as-a-Service DATA-as-a-Service SOFTWARE-as-a-Service HPC-as-a-Service 24x7SUPPORT-as-a-Service

  12. Thank you … Q & A Rhys Davies s.r.davies@leeds.ac.uk Hugh Lavery h.lavery@leedsmet.ac.uk Ed Carter issejc@leeds.ac.uk Presentations at … http://www.yhman.net.uk/projects/index.htm

More Related