ENGINE Networks Blog

Engine Network has deployed the new 1 Gbps Fiber Ring to the Equinix Zurich 1 in Switzerland. With this new link Engine Networks will be capable to connect the Equinix ZH1 datacenter to its European Backbone and interconnect all its datacenters with L2 transport, IP-Transit and Colocation services.

Another big step ahead that help us to increase network reliabilty and add new possibility to our customers.

Tweet This Post

ENGINE Networks will be present at CEBIT in Hannover from 2nd of March 2010 to 6th of March 2010. You can find us in our stand B19.

New services, a clear display concept and a concerted campaign of visitor recruitment are designed to build on CeBIT’s strong position as the most important event of the year in the ICT business calendar.

CeBIT 2010 is going to be a highlight, so make sure you’re in on the action, presenting your products and solutions at the world’s No.1 digital marketplace!

Tweet This Post

“The cloud” is still in its youth, maybe adolescence, so its easy to point fingers and scream when an outage occurs.  Just recently, Amazon Web Services had an outage in its Northern Virginia data center due to the failure of a power supply in an “availability zone” as well as a second failure of a component in the redundant system.  Outages happen, so it shouldn’t have been as big of a shock as it was made out to be.

However, when companies are beginning to outsource data center operations, they have high expectations, which is why zero failure is a good standard for providers to aim at in the clouds.  The fact is, all internal systems fail too, but there is no one to point the finger at.  When real people and real technology is involved, outages will occur.  I strongly feel that the cloud, outages or not, will have higher up-time and availability than most, if not all, internal systems.  High-profile clients, sensitive data and the fear of hundreds of clients yelling and screaming is enough motivation for any infrastructure as a service provider to architect a bullet-proof cloud.

At Engine Networks, we like happy clients, that’s why we promise 99.99% up-time and push every day to make our cloud bigger, better and stronger.

Tweet This Post

Engine Networks NOC is working on a brand new fiber Gibabit upstream link. This link will add 1 Gbps of IP-Transit bandhwidth to the Engine Network Backbone.

Tweet This Post

Symantec released its 2010 State of the Data Center study this week. The study conducted by Applied Research found that midsize enterprises of 2,000 to 9,999 employees are more likely to adopt technologies such as cloud computing, deduplication, replication, storage virtualization and continuous data protection than either small or large enterprise size businesses.

The study with 1,780 respondents showed that midsize enterprises also place a higher importance on staffing and training and are more likely to make changes to their data centers and add new applications.

Respondents listed their data center initiatives in order: security (83%), backup and recovery (79%), continuous data protection (76%), server virtualization and storage resource management. These initiatives were followed by data archiving, energy savings, server consolidation, replication of backup data and storage virtualization.

As for disaster recovery, 80% had confidence in their plan. One-third said they have a plan that is undocumented or needs work. Forty-one percent said that cloud computing was not covered in their existing disaster recovery plan, over one-fourth of the respondents said that remote office operations were not included and 23% said that they had ignored virtual servers in their disaster recovery plan. One-third of the respondents have not re-evaluated their disaster recovery plan in the last 12 months. Not a good record as far as disaster recovery goes.

The median for the respondents was six data centers. Over half of the respondents said that reducing costs was their primary objective for 2010, followed by improving responsiveness and improving service levels.

There’s a lot of important information in the rest of the report. Stay tuned for the next article to find out.

Tweet This Post

Have you ever been working on an important document for hours on end, and when you are close to completion, lose everything because you forgot to save it periodically, or worse, the computer you were using crashed? This scenario has happened to all of us at one point or another. The same scenario can be scaled up to servers and entire businesses. It is a fact of our industry that a catastrophic failure of a component, security update, or other possible issue could arise, taking down the system(s) you depend upon. Many start-ups and small to medium sized businesses underestimate the value of being prepared for disaster by having backups, load balancing, or redundancy within their sites and systems. Some feel that this scenario could not happen to them, or that the costs involved in being prepared outweigh the risk.

There are some simple precautions as a responsible business or technical person you can do to help prevent or mitigate the severity of such scenarios, such as building a Disaster Recovery Strategy. Your particular strategy may vary from others, but the overall preparedness for building a DR plan is usually the same. For the purposes of this article, we will focus on a single server plan, but this can be easily scaled up to multi-server configurations and complex designs:

Software
Have you identified all software your business requires to function should a failure occur? What software is installed on your machine? Do you have copies of this software to reinstall, along with any license keys if it was not supplied by your provider?

Open Files and Databases
Are you running any databases, or have applications that keep open files on the system that are needed in the event of failure? Are you dumping the database(s) into an importable format and backing it up regularly?

User Data
Are you making copies of the data uploaded by your users or developers? Do you have backups of your website content? What about the user accounts and passwords used by your users?

Security Updates
Is your system up to date with the latest security updates for your Operating System? Is your OS outdated and has no updates available? More system failures occur from hacker intrusion versus hardware failure.

Back-ups
Do you subscribe to or use a back-up service? Even if you are, are you prepared for the length of time involved on bringing your system back online after failure?

Redundancy
Your system is only as strong as its weakest component. RAID, while it is good for protecting data in the event of a drive failure does not protect you against hackers or accidental file deletion. Even if you have a completely redundant load balanced cluster, you could be susceptible to hacker intrusion and loss of data should you not keep up to date on security updates.

Firewall
Do you use a firewall on your system? If so, what ports are open to the outside world? Are the services on those ports kept up to date? Do you analyze the log files for those services and look for attempts at break-ins? Firewalls are good for protecting systems against hackers, but the firewall is only part of your security. Remember that the services you allow people to connect to could be vulnerable to break in, and therefore should be watched closely.
This article is not meant to scare you, but is intended for you to understand that there are several risks to businesses that can and should be prepared for. The better you are prepared and understand the risks on the Internet, the more profitable and successful you will be with your business.

If you are concerned about your ability to recover from a disaster, please feel free to contact your sales person and discuss how they can help you with your system. Or, if you have questions about your existing systems or protection against disaster, please contact our technical support personnel, and they will be happy to assist you.

Tweet This Post

At its most basic, a firewall is a hardware and/or software device that resides on a network. Its function is to block certain types of unwanted traffic, while allowing legitimate traffic to pass through to a server or group of servers. A firewall by itself is not an all-in-one solution to Internet security problems. However it is a necessary foundation from which to build a secure solution.

Just as Internet use by businesses has escalated sharply in recent years, so too has the occurrence of network security breaches. Today’s organizations understand the importance of securing external communications to prevent network attacks and ensure privacy. Nowadays it is not a matter of asking why a firewall is needed, but how best to implement, manage and support one.

Why use a Firewall?
Imagine for a moment that you are the owner of a new store in town. You’ve invested a small fortune in equipment, furnishings, supplies, etc. You’ve set up shop and it’s time to go home for the evening and you mistakenly leave the front door unlocked on the way out.  The next day you come in and find the place vandalized, items stolen and the equipment has been tampered with.

This scenario plays itself out more often than you would think. However, instead of a store it’s an online business.  Instead of equipment and supplies it’s account information and company documents.  And instead of an unlocked door, it’s an unsecured server.  However the end result is the same – you become the victim of a crime.

A firewall can help secure your server against unauthorized access by ‘locking’ it down.

How a Firewall Protects
A firewall acts as a secure barrier between your server and the Internet.  It monitors all traffic to and from your server, and decides whether or not this is normal activity or a malicious attempt to access your server: It will then filter the traffic accordingly.

A firewall can be used to lock down ports that have no need to be externally accessible. For example, if a well known service operates on port 1234, and a malicious user decides to scan your IP addresses for that service, a firewall can make that port unresponsive to the scan making it seem as if the service was not running on the server at all.

Access Control Lists (ACLs) are used on the firewall to permit or deny access to resources based on source and destination information.

Advanced firewalls use stateful packet inspection to keep track of the state of packets going through it over a period of time.  With SPI the firewall is able to distinguish which packets are legitimate for the type of connection it is using. Packets that match a known connection state will be allowed, while others will be rejected. Using stateful packet inspection, a firewall can stop port scans, spoofing and synflood attacks as well as other types of malicious activity.

VPN (Virtual Private Network)
A VPN is a private network configured within a public networking infrastructure (e.g. the Internet). This will allow you to access a remote server as if it were on your own network. Secure VPN solutions such as the ones offered by Engine Networks provide an added layer of security by encrypting the communications within a VPN Tunnel.  Both client-to-site and site-to-site VPN methods are supported by Engine Networks.

Software vs. Hardware Firewalls
Hardware firewalls (such as the Juniper or Cisco firewalls) provide a strong degree of protection from most forms of attack coming from the outside to the internal network. Hardware firewalls can protect computers on a local area network and they can be implemented without much configuration difficulty. Hardware firewalls contain their own OS, and operate independently of the server/servers they were designed to protect. Traffic coming into the server is processed by the firewall before it ever reaches the target server.

Hardware-based

• OS dedicated to firewall functionality – Single function appliance
• Traffic is processed at the firewall appliance
• Administered by Engine Networks

Software firewalls such as Windows Firewall or IPTables on Linux-based operating systems are installed on individual computers and they need sufficient configuration to be effective. Software firewalls reside on the systems they were designed to protect. As a result it is also shares the same system resources as well. Traffic is processed when it gets to the server. Should a server with a firewall become compromised, it would not be too difficult to have the firewall disabled.

Software-based

• OS resources are shared by the app and firewall
• Traffic is processed at the server where the firewall is installed
• Not administered by Engine Networks

The Engine NEtworks Difference
Security is a difficult job that involves constant care. Computer systems or other networked devices are vulnerable by virtue of their ability to connect and communicate with other systems.  A firewall reduces some of the risk by reducing the number of devices that can communicate with a protected host.

Installing a firewall device is only part of the job. After installation, rulesets must be defined and adjusted for new applications, emergency steps must be taken when new compromising techniques are made known, hardware must be maintained and replaced.  The skills required are significant.

A firewall is only as good as its rulesets and the administrators who implement and maintain them. In the wrong hands a firewall could be rendered useless.  Good technical staff has the knowledge and experience to ensure that the firewall is configured according to your custom needs. The right support team will work together with you to set up a custom rule set to allow you to do your business safely and securely.

Tweet This Post

As a result of software-upgrades in our European backbone infrastructure,
services at the according locations could be temporarely unavailable. The
upgrades will start on the 30.11.2009 at 00:01 and willbe completed at 06:00.

This maintenance concerns all Colocation, IP-transit, VMware Cloud Hosting,
Dedicated Hosting, MPLS, SDH links and VLAN-customers at the specific
locations.

Below you can find a detailed timetable for the outages at the specific
locations:

00:01 – 00:30 GV1: Equinix, Geneva Confederation Center
00:30 – 01:00 ZH1: ICT Center ZH, Zürich Josefstrasse
01:00 – 01:30 MI1: Interoute, Caldera
03:00 – 06:00 Tests / Delays
All times are CET time zone.
Of course we’ll try to keep the outages as short as possible.

Should we encounter any problems during the maintenance, we will
postpone the remaining upgrades to a later date, which of course will be
announced before. Please be also aware, that the timetable may vary a
bit in case of unpredictable delays.

Tweet This Post

Managed Hosting
Managed Hosting is a form of web hosting where a client chooses to lease an entire server housed in an off-site data center that is dedicated to their uses only, and not sharing it with anyone else as in a shared hosting environment. Managed Hosting gives the client complete control over the server and provides them with maximum usage of the hardware, processor speed and bandwidth capacity. Choices range from a basic server to a high performance, premium server depending on the client’s online needs. A client can also choose their preferred operating system, Windows or Linux, as well as optional managed services like security patches, upgrades, backups, and firewalls. Basic system administration is included with Managed Hosting. For more information, click here.

Dedicated Hosting
Dedicated Hosting is a form of web hosting where a client chooses to lease an entire server housed in an off-site data center that is dedicated to their uses only, and not sharing it with anyone else as in a shared hosting environment. In contrast to Managed Hosting, the client must have technical know-how, and perform all system administration and management activities on the server from their remote desktop. This lets the client choose a server with more powerful hardware for much less cost. As with Managed Hosting, the client has complete control over the server and can choose their preferred operating system, Windows or Linux. For more information, click here.

Co-location
Co-location is a form of web hosting where a client leases a cabinet in an off-site, highly secured data center to house their own server hardware. The shared data center infrastructure, along with its redundant power, large bandwidth capacity, and direct connection to the Internet allows the client to get cost-savings on greater safety, scalability, business continuity, and minimal network latency. In Co-location, the server hardware is entirely owned and operated by the client and does not receive any system administration from the provider. For more information, click here.

Tweet This Post

Charles Babcock recently wrote an article entitled, “Hybrid Clouds Floating to Enterprise Forefront” which ran in InformationWeek.  He attended the Cloud Computing Conference & Expo, where speakers raised the prospect of private clouds working with public clouds, creating hybrid clouds.

The hybrid cloud is not a term we’ve never seen or heard before.  However, it seems in his article that there aren’t many providers out there actually doing the hybrid cloud approach with their clients.  But Engine Networks is. For over two years Engine Networks has offered a private cloud solution in conjunction with our public cloud hosting solution.  Our clients’ ability to have their own internal cloud which has the capability to spill over and utilize our public cloud when necessary has proved itself very valuable.  So yes, Mr. Babcock and the Expo speakers, the hybrid cloud computing approach is going to continue to gain traction.

For those companies who are fearful of “losing control” in the cloud, the private cloud approach is extremely beneficial because those companies are able to gain access to the benefits of cloud computing while still controlling their own infrastructure in house.  So not only is the private cloud a good starting point, but with the right cloud technology (like Engine Networks’s), it doesn’t have to be the end of their cloud strategy.

Learn more about Engine Networks’s private cloud solution or contact a sales rep.

Read the original InformationWeek article.

Tweet This Post