Chapter 5 - Cloud Concepts And network services Flashcards
SaaS
Software as a Service
Is a software distribution model
Third party provider used to host applications over the internet like
ERP - Enterprise Resource Planning
CRM - Customer Management Software
Databases
Everything’s available as a service like required infrastructure
You subscribe to application and pay for what you use.
Pay as you go
SaaS Advantages
Rapid deployment
Easy if administration
High availability
Redundancy provided by provider
SaaS Disadvantages
Security concerns as information is stored off site
Compliance issues
Location issues as not onsite
Performance, as recourses are shared to other users.
PaaS
Platform as a service
Used to developer and deliver apps
Delivers software tools and development environments to users as a service
You don’t need to invest in infrastructure as your subscription provides it
Can create multiple VMs for testing and implementation
PasS Advantages
Easy to test different deployments
Dynamically allocate features
Improved support
Minimal management
PaaS disadvantages
Lack of control
Shared platform
Data security concerns about data privacy and retention as centres could be in other conutire
IaaS
Infrastructure as a Service
Provides items like VMs OS Networking devices Security
Is the lowest level of service
You can creat VMs to represent networking devices
Keeping hardware current is provider responsibility but management of software versions and updates is client responsibility
Is a subscription service
IaaS Advantages
Cost saving on infrastructure
Quickly scale up or down depending on needs
High availability
IaaS Disadvantages
Maintenance might not be included
Security might not be adequate
Legal considerations depending where data is stored
Private Cloud
Uses proprietary infrastructure dedicated to a single organisation
Ideal for dynamic or unpredictable computing needs
You don’t need to provide me infrastructure for branch offices as they can connect to the available corporate infrastructure
Organisation manages and implements everything
Private Cloud Advantages
High security as everything remains under organisations control
Performance improvement with data transfer using dedicated lines and connections
Customised hardware management
Private cloud disadvantages
High cost
Ongoing maintenance
Community Cloud
Collaborative option where infrastructure is shared between several organisations
Public cloud
Provides by a service provider (internet)
Service is made public to anyone wanting to use it
Public cloud advantages
Infrastructure cost savings
Shared computing resources
Public cloud disadvantages
Limited control over privacy and security
Limited flexibility as the platform is provider dependant
Hybrid cloud
Combination of Private and Public
Helps maximise efficiency and performance
Hybrid cloud advantages
Scalable
Cost effective
Good flexibility
Hybrid cloud disadvantages
Infrastructure dependant
Possible compatibility issues
Security breach possible when using public cloud component
VPN
Virtual private network
Simple option for connecting to a cloud provider
VPN application or native VPN usually provides
Provider might charge for transmission of data.
Direct connection
More practical
Provider can use CP located facilities to offer direct and private connections
Data creatures will offer cords connection to the public cloud with costs infrastructure use age and port
Most provide unlimited data which lowers the per GB cost
Subscription oriented
IaaS risk factors
Legal trans border issues depending one data centre location
Failure of infrastructure and how isolated you are from them
Back up and security measures are dependant in what the data centre uses
Physical data centre security
Data disposal
PaaS risk factors
Application mapping theft and disclosure
Service architecture vulnerability
Application disposal of original files or back ups as you love from testing to production
SaaS risk factors
Data ownerships as it’s not physically under your control
Data disposal
Software system development life cycle
Identity and access management
Browser vulnerability
Public cloud data pooling
Infrastructure shared by multiple tenants
No common concern with security
Public cloud collateral damage
Attack on one remnant could impact other tenants
How isolated are you if a service fails?
Private cloud application compatibility issues
Older apps
Custom software
Private cloud investment
Skills needed
Training
Recruitment
Infrastructure maintenance
Hybrid cloud inter dependency
Mix of two of more cloud types require static identity control
Strong credentials
Risks are
Unavailable
Loss
Theft
IPAN
IP Address Management
Provides IPv4 and 6 infrastructure management of DNS and DHCP severs
Allows management from a central location
Is an integrated management of IP space with customisable inventory of address space.
Usage alerts and notifications and thresholds for servers
What is IPAM
Is a multi server management environment used to
Discover DNS/DHCP servers across active directory forests
Config support of DHCP severs and scopes
Updates for common settings across DHCP server
Monitor DHCP scope and DNS
manual addition or removal of managed servers
IPAM network audit
A quietly event log for DHCP configuration changes using a single console
Can see who is doing what to any changes.
Create queries to track Users, Devices, IP Addresses at specific times
Can export audits to create reports
Help resolve configuration problems
IPAM roll based control
Customise types of operations and access permissions of specific IPAM objects
Had standard groups for
Local IPAM security group
Build in IPAM role based access group
Custom IPAM role based group
It’s defines group permissions and which users should belong to each group
IPAM VASM
IPAM virtual Andreas Space
Enables the same fun around as VIP as address space management (ASM) for physical IP address space
Implemented for server clusters and load balancing
