Network
ReliaCloud is designed for
exceptional scalability, continuous systems operation, and transport
flexibility.
ReliaCloud is built on the
Nexus line of switches. These are
designed for highly scalable end-to-end 10 Gigabit Ethernet and Cisco DCE
networks. The fabric architecture scales
beyond 15 terabits per second (Tbps) with future support for 40-Gbps and
100-Gbps Ethernet.
The ASA 5500 series security
appliance provides the ReliaCloud firewall capabilities. The ASA 5500 series delivers a robust highly
integrated, market-leading security service for enterprises, service providers
and mission-critical data centers.
ReliaCloud load balancing is based on the Cisco ACE 4700.
For our load balancing
services we have chosen the ACE 4700 line.
The 4700 line is Cisco’s next generation appliance for maximizing the
availability as well as the acceleration and security of data center
applications.
We provide comprehensive,
traditional network security controls to detect and prevent intrusion into the
cloud environment and minimize the likelihood of successful denial of service
attacks. In addition to high-end network
infrastructure utilizing high capacity Internet connectivity at each facility,
each customer is assigned unique VLANs in conjunction with several firewall
options to accommodate a wide array of network segmentation needs including:
- Shared firewall contexts—shared virtual firewall designed for cost conscious
customers who need protection from the Internet for low complexity deployments.
- Dedicated firewall contexts—individually assigned security contexts that provide
full separation of firewall services from all other customers via an exclusive
configuration assigned to a single customer.
- Stand-alone firewalls—separate, physical firewalls installed on your network
segments to provide additional layers of firewalls, e.g. intranet firewalls,
beyond the Internet perimeter.
ReliaCloud offers a variety
of connectivity options including dedicated WAN connections, MPLS and Virtual
Private Networks, all terminating outside of your firewall services to ensure
access is restricted, including:
- IPsec site to site—enable connectivity from your entire office network to your networks at
ReliaCloud via an IPsec VPN.
- IPsec remote—enable
mobile workers and other individual users to connect to your networks at
ReliaCloud via client based IPsec VPNs.
- SSL remote—enable
mobile workers and other individual users to connect to your networks at
ReliaCloud via client based SSL VPNs, ensuring seamless access to ReliaCloud
from networks around the world.
Additional optional
ReliaCloud network security controls deliver strong authentication, advanced
attack mitigation capabilities and ensure critical communications are
encrypted:
- Remote access multi-factor authentication—utilize a variety of strong, multi-factor
authentication solutions for our IPsec and SSL remote solutions including SMS
based one-time passwords, software tokens and physical hardware tokens to
augment traditional password based authentication.
- Intrusion detection/prevention—detect and prevent network reconnaissance, targeted application
exploits and anomalous traffic.
- Denial of service protection—reduce the potential for loss of service via controls implemented across our firewalls’ intrusion prevention
capabilities, through dedicated monitoring and advanced mitigation services.
- SSL acceleration—offload SSL encryption and decryption to dedicated hardware to maximize
performance through our load balancing services