By Spanco Telesystems and Solutions ltd. 373, Udyog Vihar-II,  Gurgaon Presentation  on  SANJIVINI Project
<ul><li>At the Check post  </li></ul><ul><li>Automated and transparent MPLS providers failover and active-active link load...
Agenda <ul><li>Spanco Profile </li></ul><ul><li>Our understanding </li></ul><ul><ul><li>SOW - JVVNL Sanjivini </li></ul></...
Profile – SPANCO -1/4  <ul><li>Strengths National Presence  </li></ul><ul><ul><li>Customer Relationship Management Solutio...
Profile – SPANCO -2/4  <ul><li>SPANCO </li></ul><ul><li>Spanco is a leading Systems Integrator working in Domestic and Int...
Profile – SPANCO -3/4 <ul><li>Spanco is ranked 397th in the ET-500  </li></ul><ul><li>Accredited with ISO 9001 – 2000 and ...
Profile – SPANCO-4/4 <ul><li>SPANCO –  PPP Success Stories   </li></ul><ul><li>IRCTC – Unified Call Centre ( 5 Lacs Calls ...
Objectives 26/7/2008 SPANCO Telesystems <ul><li>The IT centre will house the IT and security equipments to provide robust ...
Jaipur Vidyut Vitran Nigam Limited : JVVNL
Primary Locations <ul><li>IT Centre; Data Centre </li></ul><ul><li>Circle Office; Approximately 10-15 LAN users  </li></ul...
Functional Requirements <ul><li>WAN Connectivity  –  Circle offices will connects to IT Centre through leased line on 2MB,...
Network Requirements <ul><li>Redundancy  –  Devices at the IT Centre should have redundancy at all the level and should be...
Data Center Design Intranet  Service Provider LB w/SSL FW IPS Storage Application Servers Web / Front-end Servers Aggregat...
CORE ROUTER Corp SP CLOUD N x 2 Mbps Div/Sub-Div Router N x 2 Mbps 2 Mbps 2 Mbps 2 Mbps 2 Mbps 2 Mbps 2 Mbps 2 Mbps N x 2 ...
Data Center Security Intranet  Service Provider LB w/SSL FW IPS Storage Application Servers Web / Front-end Servers Databa...
CORE ROUTER Corp SP CLOUD N x 2 Mbps Div/Sub-Div Router N x 2 Mbps 2 Mbps 2 Mbps 2 Mbps 2 Mbps 2 Mbps 2 Mbps 2 Mbps N x 2 ...
Architecture for Corp/Sub-Div Router WAN  Cloud FW PC w/Host based IDS Switch Fiber (8 - 10 Mbps) Recommended for Corps (2...
Architecture for Sub-office Router w/ FW/VPN WAN  Cloud (256 Kbps) Switch PC w/Host based IDS
DR Requirements <ul><li>Not Clear  </li></ul>
In-Person Experience: Cisco Telepresence Solution
High-Level Design IT Centre Gateways Servers Cluster Router IP WAN Router Circle Office . . . Circle Office
Cisco   TelePresence  for IT Centre <ul><li>Native 1080p cameras  and 65” plasma displays </li></ul><ul><li>Wideband micro...
Cisco   TelePresence  for Circle Office <ul><li>Native 1080p camera  and 65” plasma display </li></ul><ul><li>Wideband mic...
Security Solution
Security Solution <ul><li>Perimeter Security: Will be providing features like Span defense, Virus defense, Policy Enforcem...
IP Surveillance Solution
Video Surveilance  Open, Scalable, Reliable, Secure, Accessible, Useable CCTV Keyboards / Monitors Cisco Switch IP Camera ...
<ul><li>At the Check post  </li></ul><ul><li>Link load balancing between wired and wireless last mile connectivities from ...
Database Server Sub-Control Room -  Sales Check post  Application  NMS Web  Video  SAN  Storage Tape  library Server Farm ...
Check post  Application  NMS Web  Video  Server Farm Firewalls Reporting Antivirus  Staging & Testing  Internet Router (Ci...
<ul><li>At the Check post  </li></ul><ul><li>Link load balancing between wired and wireless last mile connectivities from ...
Upcoming SlideShare
Loading in …5
×

Jvvnl 071108

1,344 views

Published on

Published in: Technology
0 Comments
1 Like
Statistics
Notes
  • Be the first to comment

No Downloads
Views
Total views
1,344
On SlideShare
0
From Embeds
0
Number of Embeds
3
Actions
Shares
0
Downloads
18
Comments
0
Likes
1
Embeds 0
No embeds

No notes for slide

Jvvnl 071108

  1. 1. By Spanco Telesystems and Solutions ltd. 373, Udyog Vihar-II, Gurgaon Presentation on SANJIVINI Project
  2. 2. <ul><li>At the Check post </li></ul><ul><li>Automated and transparent MPLS providers failover and active-active link load </li></ul><ul><li>balancing for achieving maximum services uptimes ensuring 24*7 reachability to the </li></ul><ul><li>Data Center </li></ul><ul><li>At the Data Center DC and DR </li></ul><ul><li>Network based inline solution for protection against </li></ul><ul><li>1] OS and Application protection against known and unknown vulnerabilities </li></ul><ul><li>2] DOS and DDOS protection. </li></ul><ul><li>3] Protection against bots, worms and service denials exploits and attacks </li></ul><ul><li>Application load balancer for </li></ul><ul><li>1] Ensuring maximum uptimes and high availability </li></ul><ul><li>2] Scalable and hardware based robust application load balancer </li></ul><ul><li>3] DC-DR scalable solution to provide site to site resiliency </li></ul><ul><li>Link load balancing solution for </li></ul><ul><li>1] Maintaining multiple paths to reach applications at Data Center </li></ul><ul><li>2] Have multiple link load balancing in active-active </li></ul><ul><li>3] Fault tolerance for any failures in MPLS backbone services </li></ul><ul><li>4] Link load balancing for replication links from DC to DR </li></ul>Solution Requirement
  3. 3. Agenda <ul><li>Spanco Profile </li></ul><ul><li>Our understanding </li></ul><ul><ul><li>SOW - JVVNL Sanjivini </li></ul></ul><ul><ul><li>Assumptions </li></ul></ul><ul><ul><li>Issue of concern </li></ul></ul><ul><ul><li>Objectives </li></ul></ul><ul><li>Proposed Solution </li></ul><ul><li>Risk and Mitigation </li></ul><ul><li>Proposed Implementation Strategy </li></ul>
  4. 4. Profile – SPANCO -1/4 <ul><li>Strengths National Presence </li></ul><ul><ul><li>Customer Relationship Management Solutions </li></ul></ul><ul><ul><li>Call Center Solutions </li></ul></ul><ul><ul><li>Turnkey Application / e-Governence Solutions </li></ul></ul><ul><ul><li>Systems Integration </li></ul></ul><ul><li>Focus </li></ul><ul><ul><li>Government / PSUs </li></ul></ul><ul><ul><li>Non Voice BPO </li></ul></ul><ul><ul><li>Telecom </li></ul></ul><ul><ul><li>NREGA, Power, Banking and Education solution </li></ul></ul>
  5. 5. Profile – SPANCO -2/4 <ul><li>SPANCO </li></ul><ul><li>Spanco is a leading Systems Integrator working in Domestic and International markets </li></ul><ul><li>Spanco is a provider of solutions to the Telecom Sector, PSUs, Corporate, Government and Indian Defense </li></ul><ul><li>Spanco has 8 regional offices and over 60 service support facilities in India </li></ul><ul><li>Spanco is present in USA, UK, GCC and Singapore </li></ul>
  6. 6. Profile – SPANCO -3/4 <ul><li>Spanco is ranked 397th in the ET-500 </li></ul><ul><li>Accredited with ISO 9001 – 2000 and CMMi – 3 certification </li></ul><ul><li>A 3000+ strong team </li></ul><ul><li>3rd fastest Growing Company rated by CNBC, Emerging awards 2006 </li></ul><ul><li>100% Y-O-Y growth for 6 consecutive years </li></ul>
  7. 7. Profile – SPANCO-4/4 <ul><li>SPANCO – PPP Success Stories </li></ul><ul><li>IRCTC – Unified Call Centre ( 5 Lacs Calls per day ) </li></ul><ul><li>e-Seva –Govt of AP </li></ul><ul><ul><li>(over 150 Cr worth of revenue transactions per month) </li></ul></ul><ul><li>SWAN - Maharashtra </li></ul><ul><li>Food & Civil Supplies - Maharashtra </li></ul><ul><li>CSC – Maharashtra </li></ul><ul><li>Mobile Payments - SBI </li></ul>
  8. 8. Objectives 26/7/2008 SPANCO Telesystems <ul><li>The IT centre will house the IT and security equipments to provide robust security to its </li></ul><ul><li>Data </li></ul><ul><li>With connected offices the operations across the offices will follow the workflow of the Discom </li></ul><ul><li>Integration with other IT systems for increased productivity </li></ul><ul><li>The management will be able to have effective monitoring of projects </li></ul><ul><li>The IT centre will provide centralized Operations operations for all IT projects </li></ul>
  9. 9. Jaipur Vidyut Vitran Nigam Limited : JVVNL
  10. 10. Primary Locations <ul><li>IT Centre; Data Centre </li></ul><ul><li>Circle Office; Approximately 10-15 LAN users </li></ul><ul><li>Sub-Division Offices; 5-10 LAN users </li></ul><ul><li>Division; 2-5 LAN users </li></ul><ul><li>Sub-Offices; With minimum 1 LAN User </li></ul>
  11. 11. Functional Requirements <ul><li>WAN Connectivity – Circle offices will connects to IT Centre through leased line on 2MB, recommended 8-10 Mbps, Sub-Division connects to respective Circle office and Sub-Offices connects to Sub-Division </li></ul><ul><li>Front End – All users approximately 1500, distributed across different offices in Rajasthan will access services hosted at IT Centre at Jaipur. Majority of the application are GIS based which requires approximately 200-256 Kbps per user. </li></ul><ul><li>Application – The servers running code with glues the front-end applications to the back-end data and reflects the business processes in how the data is used. Data will be stored locally (SAN) initially and replicated to DR site storage (SAN) on schedule basis (needs to confirm). </li></ul><ul><li>Storage – The actual storage devices in which data is stored </li></ul>
  12. 12. Network Requirements <ul><li>Redundancy – Devices at the IT Centre should have redundancy at all the level and should be highly available. Alternate route to the IT centre from the Circle offices should be achieved by interconnecting circle offices. In case of lease line failure at circle offices, ISDN backup should come up automatically. </li></ul><ul><li>Scalability – Routers should be modular in nature so that different interfaces can be installed as per the requirement. Since servers are centralized, the network must be able to handle the sheer amount of traffic from users to the central location, as well as server-to-server traffic. Additionally, devices must be able to scale to provide connectivity (ISDN/Serial) to multiple locations as and when needed </li></ul><ul><li>QoS – Router should be QoS enabled to cater voice, video, and data for applications spread across different locations </li></ul><ul><li>Security – Devices must be physically secure, and the data and applications must be protected from internal and external threats using inbuilt Firewall and IPS in the Routers at all locations. Routers should be able to support different type of IPSEC setup (Site-to-Site, Remote Access, Tunnel Less) for ease of deployment and manageability. </li></ul><ul><li>Management - The IT staff monitors, configures, and troubleshoots network and server resources centrally </li></ul>
  13. 13. Data Center Design Intranet Service Provider LB w/SSL FW IPS Storage Application Servers Web / Front-end Servers Aggregation Switch with L4-7 Services FW/IPS/Load Balancer Database Servers Internet Remote Offices Zone#1 Zone#2 Zone#3 SAN Switch DMZ Zone / Web / Front-end Servers Load Balancer IPS FW Core Switch
  14. 14. CORE ROUTER Corp SP CLOUD N x 2 Mbps Div/Sub-Div Router N x 2 Mbps 2 Mbps 2 Mbps 2 Mbps 2 Mbps 2 Mbps 2 Mbps 2 Mbps N x 2 Mbps N x 2 Mbps Corp ISP (Multiple 2 Mbps) RAS Internet Router ISDN CLOUD 2 Mbps (PRI) 2 Mbps (PRI) 2 Mbps (PRI) WAN Connectivity Corp Corp Div/Sub-Div Router Recommended 8-10 Mbps / Corp 64/128 Kbps (BRI) Sub-Office 64/128 Kbps (BRI) 256 Kbps 256 Kbps
  15. 15. Data Center Security Intranet Service Provider LB w/SSL FW IPS Storage Application Servers Web / Front-end Servers Database Servers Internet Remote Offices Zone#1 Zone#2 Zone#3 SAN Switch HTTP & SMTP Perimeter Sec IPS FW Core Switch AAA Security Mgmt Soft SIEM Server w/Host based IDS
  16. 16. CORE ROUTER Corp SP CLOUD N x 2 Mbps Div/Sub-Div Router N x 2 Mbps 2 Mbps 2 Mbps 2 Mbps 2 Mbps 2 Mbps 2 Mbps 2 Mbps N x 2 Mbps N x 2 Mbps Corp ISP (Multiple 2 Mbps) RAS Internet Router ISDN CLOUD 2 Mbps (PRI) 2 Mbps (PRI) 2 Mbps (PRI) WAN Security Solution Corp Corp Div/Sub-Div Router Recommended 8-10 Mbps / Corp 256 Kbps 64/128 Kbps (BRI) Sub-Office 64/128 Kbps (BRI) IPSEC VPN IPSEC VPN 256 Kbps
  17. 17. Architecture for Corp/Sub-Div Router WAN Cloud FW PC w/Host based IDS Switch Fiber (8 - 10 Mbps) Recommended for Corps (2-4 Mbps) Recommended for Sub-Div
  18. 18. Architecture for Sub-office Router w/ FW/VPN WAN Cloud (256 Kbps) Switch PC w/Host based IDS
  19. 19. DR Requirements <ul><li>Not Clear </li></ul>
  20. 20. In-Person Experience: Cisco Telepresence Solution
  21. 21. High-Level Design IT Centre Gateways Servers Cluster Router IP WAN Router Circle Office . . . Circle Office
  22. 22. Cisco TelePresence for IT Centre <ul><li>Native 1080p cameras and 65” plasma displays </li></ul><ul><li>Wideband microphones and speakers </li></ul><ul><li>Auto-Collaborate </li></ul><ul><li>Audio Add-In </li></ul>
  23. 23. Cisco TelePresence for Circle Office <ul><li>Native 1080p camera and 65” plasma display </li></ul><ul><li>Wideband microphone and speaker </li></ul><ul><li>Auto Collaborate </li></ul><ul><li>Audio Add-In </li></ul>
  24. 24. Security Solution
  25. 25. Security Solution <ul><li>Perimeter Security: Will be providing features like Span defense, Virus defense, Policy Enforcement, URL filters, Anti-Malware by deploying HTTP and SMTP appliance at IT Centre </li></ul><ul><li>Firewall (FW): Firewall at two different level to provide higher attack protection </li></ul><ul><li>Intrusion Detection and Prevention (IPS): Help to detect, classify, and stop threats, including application abuse through several different methods including signature and behavior </li></ul><ul><li>Virtual Private Networking (VPN): To enable secure network to authorize user by providing connectivity to corporate resource from any IP-enabled location </li></ul><ul><li>Authentication, Authorization and Accounting (AAA): Access Control system </li></ul><ul><li>Security Incident and Event Manager (SIEM): Helps combines network intelligence, context correlation, hotspot identification, and automated mitigation capabilities and for compliance purposes. </li></ul><ul><li>Host based IDS (HIDS): Help Desktop and Server stop unknown attacks, zero day protection, personal firewall, spyware and Adware protection </li></ul>
  26. 26. IP Surveillance Solution
  27. 27. Video Surveilance Open, Scalable, Reliable, Secure, Accessible, Useable CCTV Keyboards / Monitors Cisco Switch IP Camera Cisco IP Gateway Encoders with Virtual Matrix S/W Cisco IP Gateway Decoders Cisco Stream Manager Web-based Monitoring Cisco Services Platforms with Stream Manager Digital Recording Cisco Stream Manager Monitoring S/W for Local & Remote Operations Analog Fixed/ PTZ Any to Any for Any
  28. 28. <ul><li>At the Check post </li></ul><ul><li>Link load balancing between wired and wireless last mile connectivities from two different </li></ul><ul><li>MPLS provider will ensure maximum services uptimes to the data Center with intelligent </li></ul><ul><li>fault tolerance and traffic management </li></ul><ul><li>At the Data Center DC and DR </li></ul><ul><li>The Network Intrusion prevention system will provide defense against OS and </li></ul><ul><li>applications attacks, DOS, DDOS, Worms and exploits that can cause service outrage or </li></ul><ul><li>denials. </li></ul><ul><li>Appliance based Load balancers will ensure highest uptimes by providing scalable and </li></ul><ul><li>efficient applications load balancing amongst various servers for high availability and site </li></ul><ul><li>to site resiliency. </li></ul><ul><li>The solution will provide DC-DR failover functionality and transparent failovers. </li></ul><ul><li>LinkProof for link load balancing between two different MPLS provider will ensure </li></ul><ul><li>maximum services uptimes and reachability from the Check Posts and faster replication </li></ul><ul><li>between DC and DR. </li></ul>Solution Description
  29. 29. Database Server Sub-Control Room - Sales Check post Application NMS Web Video SAN Storage Tape library Server Farm Sub-Control Room - Excise Sub-Control Room - Transport Firewalls Reporting Antivirus Staging & Testing Internet Router (Cisco 2821) Radware - LinkProof Link Load Balancer Internet Radware AppDirector Radware AppDirector Radware AppDirector Radware DefensePro (IPS) Replication Link ISDN MPLS Check post Radware - LinkProof Link Load Balancer Radware - LinkProof Link Load Balancer Radware - LinkProof Link Load Balancer DefensePro (IPS) DefensePro (IPS) DC Site DR Site IT Center Network Architecture
  30. 30. Check post Application NMS Web Video Server Farm Firewalls Reporting Antivirus Staging & Testing Internet Router (Cisco 2821) Radware - LinkProof Link Load Balancer DC Site Radware AppDirector Radware AppDirector Radware AppDirector Radware DefensePro (IPS) Replication Link VSAT MPLS 2 MPLS 1 Check post Radware - LinkProof Link Load Balancer Radware - LinkProof Link Load Balancer Radware - LinkProof Link Load Balancer DefensePro (IPS) DefensePro (IPS) DR Site Database Server SAN Storage Tape library Sub-Control Room - Sales Sub-Control Room - Transport Internet Sub-Control Room - Excise Central Control Room Topology: Data Recovery Passive Site Details
  31. 31. <ul><li>At the Check post </li></ul><ul><li>Link load balancing between wired and wireless last mile connectivities from two different </li></ul><ul><li>MPLS provider will ensure maximum services uptimes to the data Center with intelligent </li></ul><ul><li>fault tolerance and traffic management </li></ul><ul><li>At the Data Center DC and DR </li></ul><ul><li>The Network Intrusion prevention system will provide defense against OS and </li></ul><ul><li>applications attacks, DOS, DDOS, Worms and exploits that can cause service outrage or </li></ul><ul><li>denials. </li></ul><ul><li>Appliance based Load balancers will ensure highest uptimes by providing scalable and </li></ul><ul><li>efficient applications load balancing amongst various servers for high availability and site </li></ul><ul><li>to site resiliency. </li></ul><ul><li>The solution will provide DC-DR failover functionality and transparent failovers. </li></ul><ul><li>LinkProof for link load balancing between two different MPLS provider will ensure </li></ul><ul><li>maximum services uptimes and reachability from the Check Posts and faster replication </li></ul><ul><li>between DC and DR. </li></ul>Solution Description

×