network services, cloud computing and...

31
Network Services, Cloud Computing and Virtualization

Upload: others

Post on 23-Oct-2019

7 views

Category:

Documents


0 download

TRANSCRIPT

Page 1: Network Services, Cloud Computing and Virtualizationalgonquinhosting.ca/~russd/16-NetworkServices,CloudComputingand... · IaaS •Infrastructure as a Service (IaaS) is a form of cloud

Network Services, Cloud Computing and Virtualization

Page 2: Network Services, Cloud Computing and Virtualizationalgonquinhosting.ca/~russd/16-NetworkServices,CloudComputingand... · IaaS •Infrastructure as a Service (IaaS) is a form of cloud

Client Side Virtualization

• Purpose of virtual machines

• Resource requirements

• Emulator requirements

• Security requirements

• Network requirements

• Hypervisor

Page 3: Network Services, Cloud Computing and Virtualizationalgonquinhosting.ca/~russd/16-NetworkServices,CloudComputingand... · IaaS •Infrastructure as a Service (IaaS) is a form of cloud

Purpose of virtual machines

• A virtual machine (VM) is an operating system (OS) or application environment that is installed on software, which imitates dedicated hardware

• The end user has the same experience on a virtual machine as they would have on dedicated hardware.

Page 4: Network Services, Cloud Computing and Virtualizationalgonquinhosting.ca/~russd/16-NetworkServices,CloudComputingand... · IaaS •Infrastructure as a Service (IaaS) is a form of cloud

Resource requirements

• With VMs you must consider• The requirements of the guest operating system

• Memory required for the OS to perform the task

• Core requirements

• Storage requirements

• Peripheral connections

• The hosting hardware ability• The more cores/memory/storage space the better

• Specific hardware can be designed for VM environments i.e. Multi processor boards

Page 5: Network Services, Cloud Computing and Virtualizationalgonquinhosting.ca/~russd/16-NetworkServices,CloudComputingand... · IaaS •Infrastructure as a Service (IaaS) is a form of cloud

Emulator requirements

• In computing, an emulator is hardware or software that enables one computer system (called the host) to behave like another computer system (called the guest).

• An emulator typically enables the host system to run software or use peripheral devices designed for the guest system.

• Emulation refers to the ability of a computer program in an electronic device to emulate (or imitate) another program or device

Page 6: Network Services, Cloud Computing and Virtualizationalgonquinhosting.ca/~russd/16-NetworkServices,CloudComputingand... · IaaS •Infrastructure as a Service (IaaS) is a form of cloud

Security requirements

• As with any computer system security should be of the upmost concern

• Just because your operating system is working in a virtual environment does not mean that it is safe from vulnerabilities.

• Anti virus/Anti malware/patches etc must be considered

Page 7: Network Services, Cloud Computing and Virtualizationalgonquinhosting.ca/~russd/16-NetworkServices,CloudComputingand... · IaaS •Infrastructure as a Service (IaaS) is a form of cloud

Network requirements

• Because of the large size of virtual machine files, it is a best practice to connect all computers in a VMM configuration with at least a 100 MB Ethernet connection. Using a gigabit Ethernet connection and a more powerful processor for the VMM server than the recommended processor can further improve performance.

Page 8: Network Services, Cloud Computing and Virtualizationalgonquinhosting.ca/~russd/16-NetworkServices,CloudComputingand... · IaaS •Infrastructure as a Service (IaaS) is a form of cloud

Hypervisor

• A hypervisor or virtual machine monitor (VMM) is a piece of computer software, firmware or hardware that creates and runs virtual machines.

• The hypervisor presents the guest operating systems with a virtual operating platform and manages the execution of the guest operating systems.

• Multiple instances of a variety of operating systems may share the virtualized hardware resources: for example, Linux, Windows, and OS X instances can all run on a single physical x86 machine.

Page 9: Network Services, Cloud Computing and Virtualizationalgonquinhosting.ca/~russd/16-NetworkServices,CloudComputingand... · IaaS •Infrastructure as a Service (IaaS) is a form of cloud

Basic cloud concepts

Page 10: Network Services, Cloud Computing and Virtualizationalgonquinhosting.ca/~russd/16-NetworkServices,CloudComputingand... · IaaS •Infrastructure as a Service (IaaS) is a form of cloud

What is Cloud Computing

• The practice of using a network of remote servers hosted on the Internet to store, manage, and process data, rather than a local server or a personal computer.

Page 11: Network Services, Cloud Computing and Virtualizationalgonquinhosting.ca/~russd/16-NetworkServices,CloudComputingand... · IaaS •Infrastructure as a Service (IaaS) is a form of cloud

SaaS

• Software as a service (SaaS; pronounced /sæs/) is a software licensing and delivery model in which software is licensed on a subscription basis and is centrally hosted. It is sometimes referred to as "on-demand software". SaaS is typically accessed by users using a thin client via a web browser.

• A way of delivering applications over the Internet—as a service. Instead of installing and maintaining software, you simply access it via the Internet, freeing yourself from complex software and hardware management.

Page 12: Network Services, Cloud Computing and Virtualizationalgonquinhosting.ca/~russd/16-NetworkServices,CloudComputingand... · IaaS •Infrastructure as a Service (IaaS) is a form of cloud

IaaS

• Infrastructure as a Service (IaaS) is a form of cloud computing that provides virtualized computing resources over the Internet. IaaS is one of three main categories of cloud computing services, alongside Software as a Service (SaaS) and Platform as a Service (PaaS)

Page 13: Network Services, Cloud Computing and Virtualizationalgonquinhosting.ca/~russd/16-NetworkServices,CloudComputingand... · IaaS •Infrastructure as a Service (IaaS) is a form of cloud

PaaS

• Platform as a service (PaaS) is a category of cloud computing services that provides a platform allowing customers to develop, run, and manage applications without the complexity of building and maintaining the infrastructure typically associated with developing and launching an app.

Page 14: Network Services, Cloud Computing and Virtualizationalgonquinhosting.ca/~russd/16-NetworkServices,CloudComputingand... · IaaS •Infrastructure as a Service (IaaS) is a form of cloud

https://apprenda.com/library/paas/iaas-paas-saas-explained-compared/

Page 15: Network Services, Cloud Computing and Virtualizationalgonquinhosting.ca/~russd/16-NetworkServices,CloudComputingand... · IaaS •Infrastructure as a Service (IaaS) is a form of cloud

Public vs Private vs Hybrid vs Community

• A public cloud is one in which the services and infrastructure are provided off-site over the Internet. These clouds offer the greatest level of efficiency in shared resources; however, they are also more vulnerable than private clouds.

• A private cloud is one in which the services and infrastructure are maintained on a private network. These clouds offer the greatest level of security and control, but they require the company to still purchase and maintain all the software and infrastructure, which reduces the cost savings

• A hybrid cloud includes a variety of public and private options with multiple providers. By spreading things out over a hybrid cloud, you keep each aspect at your business in the most efficient environment possible. The downside is that you have to keep track of multiple different security platforms and ensure that all aspects of your business can communicate with each other.

• A community cloud in computing is a collaborative effort in which infrastructure is shared between several organizations from a specific community with common concerns (security, compliance, jurisdiction, etc.), whether managed internally or by a third-party and hosted internally or externally

Page 16: Network Services, Cloud Computing and Virtualizationalgonquinhosting.ca/~russd/16-NetworkServices,CloudComputingand... · IaaS •Infrastructure as a Service (IaaS) is a form of cloud

Rapid Elasticity

• Rapid elasticity is a cloud computing term for scalable provisioning, or the ability to provide scalable services

Page 17: Network Services, Cloud Computing and Virtualizationalgonquinhosting.ca/~russd/16-NetworkServices,CloudComputingand... · IaaS •Infrastructure as a Service (IaaS) is a form of cloud

On-demand

• On-demand (OD) computing is an increasingly popular enterprise model in which computing resources are made available to the user as needed. The resources may be maintained within the user's enterprise, or made available by a service provider.

Page 18: Network Services, Cloud Computing and Virtualizationalgonquinhosting.ca/~russd/16-NetworkServices,CloudComputingand... · IaaS •Infrastructure as a Service (IaaS) is a form of cloud

Resource pooling

• When sharing identical IT resources for scalability purposes, it can be error-prone and burdensome to keep them fully synchronized on an on-going basis.

• An automated synchronization system is provided to group identical IT resources into pools and to maintain their synchronicity.

Page 19: Network Services, Cloud Computing and Virtualizationalgonquinhosting.ca/~russd/16-NetworkServices,CloudComputingand... · IaaS •Infrastructure as a Service (IaaS) is a form of cloud

Measured service

• Measured service is a term that is applied to cloud computing. This is a reference to services where the cloud provider measures or monitors the provision of services for various reasons, including billing, effective use of resources, or overall predictive planning.

Page 20: Network Services, Cloud Computing and Virtualizationalgonquinhosting.ca/~russd/16-NetworkServices,CloudComputingand... · IaaS •Infrastructure as a Service (IaaS) is a form of cloud

Networked Hosts

• A network host is a computer or other device connected to a computer network. A network host may offer information resources, services, and applications to users or other nodes on the network

Page 21: Network Services, Cloud Computing and Virtualizationalgonquinhosting.ca/~russd/16-NetworkServices,CloudComputingand... · IaaS •Infrastructure as a Service (IaaS) is a form of cloud

Server roles

• A server role is a set of software programs that, when they are installed and properly configured, lets a computer perform a specific function for multiple users or other computers within a network

Page 22: Network Services, Cloud Computing and Virtualizationalgonquinhosting.ca/~russd/16-NetworkServices,CloudComputingand... · IaaS •Infrastructure as a Service (IaaS) is a form of cloud

Web server

• A Web server is a program that uses HTTP (Hypertext Transfer Protocol) to serve the files that form Web pages to users, in response to their requests, which are forwarded by their computers.

• Web servers may reside on all nodes if equiped

Page 23: Network Services, Cloud Computing and Virtualizationalgonquinhosting.ca/~russd/16-NetworkServices,CloudComputingand... · IaaS •Infrastructure as a Service (IaaS) is a form of cloud

File server

• A device that controls access to separately stored files, as part of a multiuser system.

• File servers can be shares on a computer or NAS or external drive plugged into a home router (if capable)

Page 24: Network Services, Cloud Computing and Virtualizationalgonquinhosting.ca/~russd/16-NetworkServices,CloudComputingand... · IaaS •Infrastructure as a Service (IaaS) is a form of cloud

Print server

• A print server, or printer server, is a device that connects printers to client computers over a network. It accepts print jobs from the computers and sends the jobs to the appropriate printers, queuing the jobs locally to accommodate the fact that work may arrive more quickly than the printer can actually handle.

• This can be a specialized stand alone device or server computer

Page 25: Network Services, Cloud Computing and Virtualizationalgonquinhosting.ca/~russd/16-NetworkServices,CloudComputingand... · IaaS •Infrastructure as a Service (IaaS) is a form of cloud

DHCP server

• Dynamic Host Configuration Protocol (DHCP) is a network protocol that enables a server to automatically assign an IP address to a computer from a defined range of numbers (i.e., a scope) configured for a given network.

• All network IP information is given by the DHCP server if the client is set to receive it.. i.e. not set statically.

Page 26: Network Services, Cloud Computing and Virtualizationalgonquinhosting.ca/~russd/16-NetworkServices,CloudComputingand... · IaaS •Infrastructure as a Service (IaaS) is a form of cloud

DNS server

• (Domain Name System) The Internet's system for converting alphabetic names into numeric IP addresses. For example, when a Web address (URL) is typed into a browser, DNS servers return the IP address of the Web server associated with that name.

• Without a working DNS server names of resources will not be resolved to the IP address.

• You may still connect to a resource if you know the IP address of said resource

Page 27: Network Services, Cloud Computing and Virtualizationalgonquinhosting.ca/~russd/16-NetworkServices,CloudComputingand... · IaaS •Infrastructure as a Service (IaaS) is a form of cloud

Proxy server

• A proxy server is a dedicated computer or a software system running on a computer that acts as an intermediary between an endpoint device, such as a computer, and another server from which a user or client is requesting a service.

• Proxy servers can be used to lessen the load on an infrastructures internet connection and or be used to filter resources “not permitted” by the company or organization

Page 28: Network Services, Cloud Computing and Virtualizationalgonquinhosting.ca/~russd/16-NetworkServices,CloudComputingand... · IaaS •Infrastructure as a Service (IaaS) is a form of cloud

Mail server

• A mail server (also known as a mail transfer agent or MTA, a mail transport agent, a mail router or an Internet mailer) is an application that receives incoming e-mail from local users (people within the same domain) and remote senders and forwards outgoing e-mail for delivery.

• Mail server use protocols • SMTP port 25 Used to send email and transfer between email servers

• POP3 port 110 Used to receive email

• IMAP4 port 143 used to receive email but has more features

Page 29: Network Services, Cloud Computing and Virtualizationalgonquinhosting.ca/~russd/16-NetworkServices,CloudComputingand... · IaaS •Infrastructure as a Service (IaaS) is a form of cloud

Authentication server

• An authentication server is an application that facilitates authentication of an entity that attempts to access a network. Such an entity may be a human user or another server. An authentication server can reside in a dedicated computer, an Ethernet switch, an access point or a network access server.

Page 30: Network Services, Cloud Computing and Virtualizationalgonquinhosting.ca/~russd/16-NetworkServices,CloudComputingand... · IaaS •Infrastructure as a Service (IaaS) is a form of cloud

Internet appliance

• UTM• Unified Threat Management (UTM) is a term first used by IDC to describe a category of

security appliances which integrates a range of security features into a single appliance. UTM appliances combine firewall, gateway anti-virus, and intrusion detection and prevention capabilities into a single platform.

• IDS• An intrusion detection system (IDS) is a device or software application that monitors a

network or systems for malicious activity or policy violations. Any detected activity or violation is typically reported either to an administrator or collected centrally using a security information and event management (SIEM) system. A SIEM system combines outputs from multiple sources, and uses alarm filtering techniques to distinguish malicious activity from false alarms.

• IPS• Intrusion Prevention System systems are deployed inline and actually take action by blocking

the attack, as well as logging the attack and adding the source IP address to the block list for a limited amount of time. Depending on setting there may be a permanent block of the address depending on the defined settings

Page 31: Network Services, Cloud Computing and Virtualizationalgonquinhosting.ca/~russd/16-NetworkServices,CloudComputingand... · IaaS •Infrastructure as a Service (IaaS) is a form of cloud

Legacy / embedded systems

• A legacy system, in the context of computing, refers to outdated computer systems, programming languages or application software that are used instead of available upgraded versions.

• Legacy systems also may be associated with terminology or processes that are no longer applicable to current contexts or content, thus creating confusion. In theory, it would be great to be able to have immediate access to use the most advanced technology. But in reality, most organizations have legacy systems - to some extent. A legacy system may be problematic, due to compatibility issues, obsoletion or lack of security support.

• An embedded system is some combination of computer hardware and software, either fixed in capability or programmable, that is specifically designed for a particular function. Industrial machines, automobiles, medical equipment, cameras, household appliances, airplanes, vending machines and toys (as well as the more obvious cellular phone and PDA) are among the myriad possible hosts of an embedded system.