State of the Cloud (Server)<br />Where things are now<br />Where they’re headed<br />
“cloud server” or IaaS(Infrastructure as a Service)<br />Barebones servers you can take up or down (or up/downgrade) in ju...
Common use cases<br />High availability, high volume production systems– CDNs, Web Sites<br />Testing + Development – Quic...
Shortcomings<br />Most initial servers are completely secure (no ports open no services running) and therefore, completely...
Major IaaS cloud providers<br />Amazon probably has the most mature, complete product family right now. Great for “Enterpr...
Strengths + Weaknesses<br />Elastic Cloud Computing (EC2)<br />The most mature auto scale API, you define custom condition...
Super easy to set up and maintain (about 4 clicks to set up most of the products)<br />Probably the best performance for t...
A nice mix of Amazon & RS Cloud features, focus on the high-end<br />Auto scale API of Amazon<br />Set up / maintenance ea...
Where do they all fail?<br />Only accessible to Developers -- They just give you an oven. You still have to bring all the ...
Next 3-6 months will see<br />At the providers<br />"one button" installs for popular products will be the norm<br />Matur...
Conclusion<br />Cloud providers are quickly merging in functionality – In 12-18 months, it’s all going to come down to pri...
Questions? Answers?<br />
Securing and Scaling IaaS<br />Security – OSSIM, fail2ban, mod_security (Apache), suhosin (hardened PHP5), Snort IDS/IPS, ...
Upcoming SlideShare
Loading in...5
×

quicloud Apr 20 2010 Boulder New Tech Presentation

475
-1

Published on

rICh morrow presents on quicloud -- good overview of the various cloud server providers and things to consider when moving apps into the cloud.

0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total Views
475
On Slideshare
0
From Embeds
0
Number of Embeds
1
Actions
Shares
0
Downloads
1
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide

quicloud Apr 20 2010 Boulder New Tech Presentation

  1. 1. State of the Cloud (Server)<br />Where things are now<br />Where they’re headed<br />
  2. 2. “cloud server” or IaaS(Infrastructure as a Service)<br />Barebones servers you can take up or down (or up/downgrade) in just a few minutes<br />Charged by use (hour/server GB/storage)<br />Becoming a great choice for high availability applications like Web apps & Web databases.<br />
  3. 3. Common use cases<br />High availability, high volume production systems– CDNs, Web Sites<br />Testing + Development – Quickly set up & tear down benchmarking, Staging environments, Test replicas.<br />Backup -- Copy office desktops, production filesystems & databases…<br />CPU heavy reporting & analysis -- Spin up serious power only when you need it<br />
  4. 4. Shortcomings<br />Most initial servers are completely secure (no ports open no services running) and therefore, completely useless.<br />Security and scalability (individual instance) is all up to you. The second you start doing anything useful (like starting a webserver, opening up SFTP), you become vulnerable.<br />No “Cpanel” interfaces… yet. If you don’t know the OS (Win or Linux), you can’t do much.<br />Not a wide variety of “one button” installs for popular packages (like Drupal, Wordpress, Joomla)…yet.<br />
  5. 5. Major IaaS cloud providers<br />Amazon probably has the most mature, complete product family right now. Great for “Enterprise” apps that need built now.<br />Rackspace probably has the best cost / performance ratio and lowest entry cost ($11/month). Great for small / medium businesses.<br />GoGrid positions at the high end ($200 / month for entry), but has lots of useful advanced software and hardware to secure, balance & scale.<br />
  6. 6. Strengths + Weaknesses<br />Elastic Cloud Computing (EC2)<br />The most mature auto scale API, you define custom conditions (CPU, memory)<br />Extensive (but sometimes conflicting) docs & developer resources<br />Forget trying to talk to a real human<br />Simple Storage Service (S3)<br />Ridiculous cheap network storage ($.15 per GB for first 50 TB of storage).<br />You can FTP, GET, POST and more to build a sort of "roll your own" storage and querying system.<br />Downsides<br />Difficult initial setup -- Private to public IP maps, no internal DNS server, heavy reliance on the API for interactions with your instances.<br />Seem to have lower performance for the same hardware footprint (Google it).<br />Entry solution is costly -- 8.5 cents/hr or $60/month<br />
  7. 7. Super easy to set up and maintain (about 4 clicks to set up most of the products)<br />Probably the best performance for the money<br />Lowest cost on low end (I host unlimited domains with shell access for $11/month)!<br />Claim to be 2x as powerful as comparable EC2 hardware footprints.<br />Use local disk storage (no network lags).<br />100% network SLA + Real humans a phone call or chat away.<br />Will be adding in advanced features<br />Autoscale API (You *can* hack this together with tools like Nagios now).<br />"one button apps" via StandingCloudrelationship<br />Strengths + Weaknesses<br />
  8. 8. A nice mix of Amazon & RS Cloud features, focus on the high-end<br />Auto scale API of Amazon<br />Set up / maintenance ease of Rackspace<br />100% Network SLA<br />Already offer “One button” installs<br />Costly (entry at $200/month), but good value if you need:<br />Unlimited 24x7 “real human” support<br />f5 load balancing<br />Multiple IPs (up to 10)<br />Single datacenter (San Francisco) makes them vulnerable to complete outage<br />Strengths + Weaknesses<br />
  9. 9. Where do they all fail?<br />Only accessible to Developers -- They just give you an oven. You still have to bring all the ingredients & make the muffins.<br />Security, Scalability (of each instance), Maintenance -- You're just getting "from the disk" installs and you’re responsible for *everything* afterward. More than enough rope to hang yourself if you or your IT team are not on top of the security and maintenance.<br />Generally focused on “Enterprise” – Slowly becoming more accessible to small and medium businesses.<br />Costly at the high end --Crack dealer model (cheap when you start, pay once you’re addicted).<br />
  10. 10. Next 3-6 months will see<br />At the providers<br />"one button" installs for popular products will be the norm<br />Mature, rich APIs will be ubiquitous<br />Advanced security features like hardware & software firewalls (at a cost), "custom images”<br />StandingCloud Release<br />Simple cloud-provider agnostic "one button" installs for popular stacks/packages like Drupal, Wordpress, Joomla, Mantis, etc<br />Release scheduled for Q2 (although you can "test drive" it now)<br />Have established relationship with Rackspace. Major PROPS!!!<br />QuiCloud Release<br />Providing security and scalability products / services for clouds<br />Provide expertise to help clients architect for the cloud<br />Help clients maintain products on the cloud (Sys Admin functions)<br />
  11. 11. Conclusion<br />Cloud providers are quickly merging in functionality – In 12-18 months, it’s all going to come down to price and performance.<br />Rackspace offers the best value now (IMHO) – Super cheap to start, great performance, Amazon-level features coming down the pipe.<br />Get a good Sysadmin or Cloud Expert to deal with the complexities. Clouds just make it too easy to get yourself into trouble. Clouds make initial architecture (esp security, scalability) so much more important.<br />QuiCloudand StandingCloud start providing services in a few months. Stay in touch with these companies and make sure to follow their blogs -- they will save you tons of headaches and help you understand how to squeeze maximum value out of the cloud.<br />
  12. 12. Questions? Answers?<br />
  13. 13. Securing and Scaling IaaS<br />Security – OSSIM, fail2ban, mod_security (Apache), suhosin (hardened PHP5), Snort IDS/IPS, TrueCrypt<br />Scalability – Profiling (kcachegrind), Benchmarking (Jmeter, ‘ab’), caching (APC, memcached, Squid)<br />Monitoring + CI Testing –Nagios, NTop, Selenium, PHPUnit / JUnit, Pingdom<br />White hat hacking and penetration testing using tools like nmap, and automated testing of published vulnerabilities<br />QuiCloud plans on offering all of the above services, as well as low cost (probably $200-$300), “common vulnerability” patching for LAMP stacks, Drupal, Joomla, Wordpress, etc.<br />
  1. A particular slide catching your eye?

    Clipping is a handy way to collect important slides you want to go back to later.

×