Related Topics: Cloud Computing, Cloudonomics Journal, CIO, CTO Journal, Cloud Hosting & Service Providers Journal

Blog Feed Post

Building a Private Cloud Within a Public Cloud

Users within the corporate firewalls can access the server in the cloud seamlessly

One of our customers wanted to establish a site to site connectivity between their datacenter and  public cloud (Amazon EC2) and then have a private network within Amazon EC2 with their own custom IP addresses for their servers in the cloud. 

Basically the idea here is to augment the internal datacenter resources with the resources in the public cloud securely so that the servers in the cloud appear as if they are part of their own private corporate network.  The idea here is to isolate the servers used by the customer in the cloud from the rest of the servers in the cloud using private network, just like the corporate internal datacenters are isolated using private network with private routers routing the internal traffic.

Kaavo team setup the required network using OpenSwan and OpenVPN, see the figure below.

Private Cloud within a Public Cloud

The advantage of this setup is that users within the corporate firewalls can access the server in the cloud seamlessly as servers in the cloud are part of the private corporate network.

One of the barriers to cloud adoption for a large number of enterprise customers is that, they can’t just lift and load applications and run them in isolation in the cloud as majority of enterprise applications are connected to backend systems, internal authentication servers, etc.  Having a secure seamless connectivity b/w corporate datacenters and the servers in cloud reduces the barrier for enterprise customers to gradually move applications in the cloud without having to worry about the integration issues between internal resources and the resources in the cloud.

Having the ability to create secure, high-bandwidth network, on-demand between two end points (in this case customer datacenter and cloud or between two different clouds) via API would be an ideal solution.  Hopefully networking solution providers can step up to the plate and deliver solutions where we can dynamically create networks for applications and manage the bandwidth and Service Levels, in the context of the application, on-demand.  So for example if we know some application has a peak bandwidth usage during afternoon we can allocate the appropriate bandwidth on-demand in the afternoon and release extra bandwidth when the usage is low.  Another example is data warehouse application which may require high bandwidth during batch load window (typically late night) and relatively small bandwidth during other times of the day.

Read the original blog entry...

More Stories By Jamal Mazhar

Jamal Mazhar is Founder & CEO of Kaavo. He possesses more than 15 years of experience in technology, engineering and consulting with a range of Fortune 500 companies including GE and ING. He established ING’s “Center of Excellence for B2B” which streamlined $2 billion per month in electronic money transfer operations. As Lead Architect at GE Capital e-Business team, Jamal directed analysis and implementation efforts and improved the performance of the website generating more than $1 billion in annual lease revenues. At Trilogy he provided technical and managerial expertise for several large scale e-business implementation projects for companies such as Boeing, NCR, Gartner, British Airways, Quantas Airways and Alltel. Jamal has BS in Electrical and Computer Engineering from the University of Texas at Austin and MBA from NYU Stern School of Business.

Comments (0)

Share your thoughts on this story.

Add your comment
You must be signed in to add a comment. Sign-in | Register

In accordance with our Comment Policy, we encourage comments that are on topic, relevant and to-the-point. We will remove comments that include profanity, personal attacks, racial slurs, threats of violence, or other inappropriate material that violates our Terms and Conditions, and will block users who make repeated violations. We ask all readers to expect diversity of opinion and to treat one another with dignity and respect.