IT in the Jungle
GAMA ProjEx are specialist providers of project management and field support services in the oil exploration sector. GAMA operate in environments that are extremely challenging in all respects, not least the provision of the robust wide ranging IT services that oil exploration surveys demand. Imagine the challenge of providing quality IT services to a string of camps in the PNG highlands: low bandwidth, compute intensive applications, large shared data sets, shifting camps, satellite links, a virtual back office, helicopter access only. Come and hear how GAMA meets these challenges with the support of Auckland based Managed Services partner Eagle Technology and extensive use of the AWS platform.
Speakers:
Mark Askey, PNG Seismic Project Manager, GAMA ProjEx and Mark Mulholland, Senior Consultant, Eagle Technology
1. IT in the Jungle
AWS Enablement of a Complex Distributed Environment
Eagle Technology Group
Gerard Lelieveld – GIS Defence Consultant
Mark Mulholland – Senior Systems Consultant
1.2 4/5/2015
3. The Client
• Oil and gas industry
• Seismic survey services
PNG
Since 2000 • PNG • AUS • NZ
4. The Client
• Oil and gas industry
• Seismic survey services
• Remote logistics, air operations
PNG
Since 2000 • PNG • AUS • NZ
5. The Client
• Oil and gas industry
• Seismic survey services
• Remote logistics, air operations
• Remote field camps
Since 2000 • PNG • AUS • NZ
6. The Client
• Oil and gas industry
• Seismic survey services
• Remote logistics, air operations
• Remote field camps
• Local labour management
Since 2000 • PNG • AUS • NZ
7. The Client
• Oil and gas industry
• Seismic survey services
• Remote logistics, air operations
• Remote field camps
• Local labour management
• Community relations
Since 2000 • PNG • AUS • NZ
8. The Client
• Oil and gas industry
• Seismic survey services
• Remote logistics, air operations
• Remote field camps
• Local labour management
• Community relations
• Integrated operations management
Since 2000 • PNG • AUS • NZ
9. Esri Official Distributor • Amazon Web Services Consulting Partner
Eagle Technology Group
Since 1969 • Private NZ ownership • Auckland Hamilton Wellington Christchurch
ArcGIS • AWS • Oracle
Cloud and Hybrid Solutions
Strategy, Design, Enablement, Support
Professional Services
10. Eagle Technology’s Brief
“Design, build, deploy and manage a modern distributed
IT solution to meet and keep pace with GAMA’s evolving
business needs.”
12. GAMA - Core Business Challenges
Time
Broad Surveillance
0000 1200 2400
Status Reporting Situation ReportingWeather
Situation
Management
Triggered
OverWatchDeconflict
Location and Activity
Drill’s
Monitor Production
Tasks
Chief’s
Update
Intelligence
Chief’s
Update
13. GAMA - Core Business Challenges
Time
Appreciation
Process
0000 1200 2400
MA
Reporting may trigger
Deliberate Planning
Intelligence Preparation of the Environment
COA Dev COA Analysis ExecutionDecision
Uncorrelated
Activity
Correlated
Activity
Concept of
Operations
Coordination
Product
Pre planning allows Immediate Action
Time
Broad Surveillance
0000 1200 2400
Status Reporting Situation ReportingWeather
Situation
Management
Triggered
OverWatchDeconflict
Location and Activity
Drill’s
Monitor Production
Tasks
Chief’s
Update
Intelligence
Chief’s
Update
14. GAMA - Core Business Challenges
Targeted
Production
0000 1200 2400
Analyse/Exploit
Locate Isolate Effect
Information
Requests Isolation triggers
Deliberate Planning
Narrow Surveillance
Time
Target
Information Feedback
Time
Appreciation
Process
0000 1200 2400
MA
Reporting may trigger
Deliberate Planning
Intelligence Preparation of the Environment
COA Dev COA Analysis ExecutionDecision
Uncorrelated
Activity
Correlated
Activity
Concept of
Operations
Coordination
Product
Pre planning allows Immediate Action
Time
Broad Surveillance
0000 1200 2400
Status Reporting Situation ReportingWeather
Situation
Management
Triggered
OverWatchDeconflict
Location and Activity
Drill’s
Monitor Production
Tasks
Chief’s
Update
Intelligence
Chief’s
Update
15. GAMA - Core Business Challenges
• Functional Processes
– Personnel
– Logistics
– Shipping
– Communications and IT
– Medical
– Survey
– Labour management
– Community Relations
Targeted
Production
0000 1200 2400
Analyse/Exploit
Locate Isolate Effect
Information
Requests Isolation triggers
Deliberate Planning
Narrow Surveillance
Time
Target
Information Feedback
Time
Appreciation
Process
0000 1200 2400
MA
Reporting may trigger
Deliberate Planning
Intelligence Preparation of the Environment
COA Dev COA Analysis ExecutionDecision
Uncorrelated
Activity
Correlated
Activity
Concept of
Operations
Coordination
Product
Pre planning allows Immediate Action
Time
Broad Surveillance
0000 1200 2400
Status Reporting Situation ReportingWeather
Situation
Management
Triggered
OverWatchDeconflict
Location and Activity
Drill’s
Monitor Production
Tasks
Chief’s
Update
Intelligence
Chief’s
Update
25. Some Technical Challenges
• WAN connectivity and satellite
bandwidth
• Flexible VPN requirements
• Firewall tuning and tunnel linkages
26. Some Technical Challenges
• WAN connectivity and satellite
bandwidth
• Flexible VPN requirements
• Firewall tuning and tunnel linkages
• Physical environment for equipment
27. Some Technical Challenges
• WAN connectivity and satellite
bandwidth
• Flexible VPN requirements
• Firewall tuning and tunnel linkages
• Physical environment for equipment
• Backup volume
28. Some Technical Challenges
• WAN connectivity and satellite
bandwidth
• Flexible VPN requirements
• Firewall tuning and tunnel linkages
• Physical environment for equipment
• Backup volume
• Challenging AD deployment
29. Some Technical Challenges
• WAN connectivity and satellite
bandwidth
• Flexible VPN requirements
• Firewall tuning and tunnel linkages
• Physical environment for equipment
• Backup volume
• Challenging AD deployment
• No fixed back office
30. Some Technical Challenges
• WAN connectivity and satellite
bandwidth
• Flexible VPN requirements
• Firewall tuning and tunnel linkages
• Physical environment for equipment
• Backup volume
• Challenging AD deployment
• No fixed back office
• Data over radio in the field
31. Some Technical Challenges
• WAN connectivity and satellite
bandwidth
• Flexible VPN requirements
• Firewall tuning and tunnel linkages
• Physical environment for equipment
• Backup volume
• Challenging AD deployment
• No fixed back office
• Data over radio in the field
• Dynamic mix of LAN and remote users
39. Internet
Availability Zone
Public VPC subnet
Region – Asia Pacific Sydney
Private VPC subnet
VPC
Router
Internet
Gateway
Security Group
DC Data
and App
SCOM
Web
FTP
FortigateVi
rtual
Firewall
Security
Group
Security
Group
Elastic IP
(VPN Traffic)
53
(Public) (Private)System
Architecture
Overview
40. Snapshot
CloudWatch
alarm
Backup
IAM
Internet
Availability Zone
Public VPC subnet
Region – Asia Pacific Sydney
Private VPC subnet
VPC
Router
Internet
Gateway
Security Group
DC Data
and App
SCOM
Web
FTP
FortigateVi
rtual
Firewall
Security
Group
Security
Group
Elastic IP
(VPN Traffic)
53
(Public) (Private)
Components
• EC2, EBS
• S3
• Route 53
• CloudWatch
• IAM
• Fortigate Firewall
System
Architecture
Overview
41. VPN connections
ESX host
DC F&P
Base
Camp 1
Snapshot
CloudWatch
alarm
Backup
IAM
Internet
Availability Zone
Public VPC subnet
Region – Asia Pacific Sydney
Private VPC subnet
VPC
Router
Internet
Gateway
Security Group
DC Data
and App
SCOM
Web
FTP
FortigateVi
rtual
Firewall
Security
Group
Security
Group
Elastic IP
(VPN Traffic)
53
(Public) (Private)
Components
• EC2, EBS
• S3
• Route 53
• CloudWatch
• IAM
• Fortigate Firewall
System
Architecture
Overview
42. VPN connections
ESX host
DC F&P
Base
Camp 1
In-country
Logistics
Dialup
VPN
Snapshot
CloudWatch
alarm
Backup
IAM
Internet
Availability Zone
Public VPC subnet
Region – Asia Pacific Sydney
Private VPC subnet
VPC
Router
Internet
Gateway
Security Group
DC Data
and App
SCOM
Web
FTP
FortigateVi
rtual
Firewall
Security
Group
Security
Group
Elastic IP
(VPN Traffic)
53
(Public) (Private)
Components
• EC2, EBS
• S3
• Route 53
• CloudWatch
• IAM
• Fortigate Firewall
System
Architecture
Overview
43. VPN connections
ESX host
DC F&P
Base
Camp 1
Base
Camp ..n
ESX host
DC F&P
In-country
Logistics
Dialup
VPN
Snapshot
CloudWatch
alarm
Backup
IAM
Internet
Availability Zone
Public VPC subnet
Region – Asia Pacific Sydney
Private VPC subnet
VPC
Router
Internet
Gateway
Security Group
DC Data
and App
SCOM
Web
FTP
FortigateVi
rtual
Firewall
Security
Group
Security
Group
Elastic IP
(VPN Traffic)
53
(Public) (Private)
Components
• EC2, EBS
• S3
• Route 53
• CloudWatch
• IAM
• Fortigate Firewall
System
Architecture
Overview
44. VPN connections
ESX host
DC F&P
Base
Camp 1
Base
Camp ..n
ESX host
DC F&P
ESX host
SCOM F&P
Eagle Network
Operations
Centre (NOC)
Eagle
Service Desk
In-country
Logistics
Dialup
VPN
Snapshot
CloudWatch
alarm
Backup
IAM
Internet
Availability Zone
Public VPC subnet
Region – Asia Pacific Sydney
Private VPC subnet
VPC
Router
Internet
Gateway
Security Group
DC Data
and App
SCOM
Web
FTP
FortigateVi
rtual
Firewall
Security
Group
Security
Group
Elastic IP
(VPN Traffic)
53
(Public) (Private)
Components
• EC2, EBS
• S3
• Route 53
• CloudWatch
• IAM
• Fortigate Firewall
System
Architecture
Overview
45. VPN connections
ESX host
DC F&P
Base
Camp 1
Base
Camp ..n
ESX host
DC F&P
ESX host
SCOM F&P
Eagle Network
Operations
Centre (NOC)
Eagle
Service Desk
ESX host
DC F&P
Eagle Test/
Dev
In-country
Logistics
Dialup
VPN
Snapshot
CloudWatch
alarm
Backup
IAM
Internet
Availability Zone
Public VPC subnet
Region – Asia Pacific Sydney
Private VPC subnet
VPC
Router
Internet
Gateway
Security Group
DC Data
and App
SCOM
Web
FTP
FortigateVi
rtual
Firewall
Security
Group
Security
Group
Elastic IP
(VPN Traffic)
53
(Public) (Private)
Components
• EC2, EBS
• S3
• Route 53
• CloudWatch
• IAM
• Fortigate Firewall
System
Architecture
Overview
52. AWS Value Proposition
• Flexible architecture
• Scalable resources
• Adaptable to changing requirements
53. AWS Value Proposition
• Flexible architecture
• Scalable resources
• Adaptable to changing requirements
• Transparent and scalable costs
54. AWS Value Proposition
• Flexible architecture
• Scalable resources
• Adaptable to changing requirements
• Transparent and scalable costs
• Greatly increases data security and access control
55. AWS Value Proposition
• Flexible architecture
• Scalable resources
• Adaptable to changing requirements
• Transparent and scalable costs
• Greatly increases data security and access control
• Provided the ability to manage credentials across multiple base
camps
56. AWS Value Proposition
• Flexible architecture
• Scalable resources
• Adaptable to changing requirements
• Transparent and scalable costs
• Greatly increases data security and access control
• Provided the ability to manage credentials across multiple base
camps
• Maintain a permanent, external facing corporate web presence
57. AWS Value Proposition
• Flexible architecture
• Scalable resources
• Adaptable to changing requirements
• Transparent and scalable costs
• Greatly increases data security and access control
• Provided the ability to manage credentials across multiple base
camps
• Maintain a permanent, external facing corporate web presence
• Provide secure and assured data archiving of company IP for the
base camps
59. Lessons Learnt
• Any cloud solution still needs careful end to end design and planning
60. Lessons Learnt
• Any cloud solution still needs careful end to end design and planning
• The importance of the right partner with the right skills cannot be
overstressed
61. Lessons Learnt
• Any cloud solution still needs careful end to end design and planning
• The importance of the right partner with the right skills cannot be
overstressed
• 3rd party virtual firewall appliance most effective way to meet GAMA
needs
62. Lessons Learnt
• Any cloud solution still needs careful end to end design and planning
• The importance of the right partner with the right skills cannot be
overstressed
• 3rd party virtual firewall appliance most effective way to meet GAMA
needs
• Some vendors still developing their understanding of AWS
environment
63. Lessons Learnt
• Any cloud solution still needs careful end to end design and planning
• The importance of the right partner with the right skills cannot be
overstressed
• 3rd party virtual firewall appliance most effective way to meet GAMA
needs
• Some vendors still developing their understanding of AWS
environment
• Leverage technical sanity checks and suggestions from AWS
64. Lessons Learnt
• Any cloud solution still needs careful end to end design and planning
• The importance of the right partner with the right skills cannot be
overstressed
• 3rd party virtual firewall appliance most effective way to meet GAMA
needs
• Some vendors still developing their understanding of AWS
environment
• Leverage technical sanity checks and suggestions from AWS
• On-going Managed Services to operationally maintain any
environment and monitor costs etc. important
65. For more information please see us at our stand.
Ph. (09) 639 0600 or (04) 802 1400
Email: etg.innovate@eagle.co.nz
Web: www.eagle.co.nz