800+ IT
News
als RSS Feed abonnieren๐ Koch CTO teams up to get cloud networking right
๐ก Newskategorie: IT Security Nachrichten
๐ Quelle: cio.com
Integrating a new network after an acquisition can be a sizable headache for any CIO. But for Koch Industries, a $115 billion global conglomerate that has acquired five companies in two years, including Infor for $13 billion in 2020, connecting those acquisitionsโ networks to its own sprawling network has been a challenge of another magnitude.
Traditionally, to integrate its acquisitions, Koch would flatten the acquired companyโs core network, says Matt Hoag, CTO of business solutions at Koch. While this approach makes connecting the network easier, it is a slow, arduous endeavor that gets more complex as more companies are acquired, he says.
Moreover, Koch itself is in the middle of a digital transformation that adds cloud networking to the mix, further complicating the challenge. Cloud networking comprises three layers: first from on-premises data centers to the cloud, then within a cloud that has multiple accounts or virtual private clouds, and finally, between individual clouds in a multicloud environment. Itโs more complicated than standard networking, Hoag says.
โCloud deployments typically come in the form of multiple accounts, including multiple LAN segments that need to be connected.ย This encompasses not only VMs but also many other services offered by the cloud provider,โ he says.
The major tasks involved range from deploying core IP routing, to enabling connections among virtual workloads within a multitenant cloud, to connecting multiple clouds, to ensuring remote users can connect to the companyโs cloud estate. Itโs the kind of challenge few, if any, enterprises can take on without a partner today, analysts contend.
Laying the foundation
Koch Industries began its migration to Amazon Web Services in 2015, when it also started on the first layer of its cloud networking strategy.
Matt Hoag, CTO of business solutions, Koch Industries
Koch Industries
Leased lines and direct connects would remain in the data center as part of this strategy, but Hoag did not want to route users through the data center to access data on the cloud. Instead, Kochโs engineering team set about virtualizing the physical transports to build the SD-LAN and firewall within the cloud rather than in the data center.
The company invested a hefty amount of time โ roughly 18 months โ and engineering resources just to bring on-premises networking to the cloud. โIt was more of a challenge than I thought it was going to be in the early days,โ Hoag says.
For the second two layers of Kochโs cloud network infrastructure, Hoag partnered up with a specialist.
IDC analyst Brad Casemore notes that there are several multicloud networking suppliers, including Aviatrix, Alkira, F5 Networks, and Prosimo, as well as established datacenter SDN suppliers such as VMware, Cisco, and Juniper. Co-location providers that offer interconnection-oriented architectures โ such as Equinix, Digital Realty, and CoreSite โ partner with many of these suppliers.
Hoag brought in Alkira to help tackle the challenge.
When building out one portion of a transport construct, the CTO recalls an โahaโ moment that he had one afternoon in a conference room in Reno, Nev., with Alkira: Using a third-party platform to handle the abstraction of networking into a software service would vastly reduce the complexity for his own IT team.
Alkiraโs network segmentation and resource sharing approach would enable Koch to unify its on-premises and multicloud networks with a few clicks of the mouse, Hoag says. So his team set about migrating the first layer of cloud networking it built from scratch to work within Alkiraโs platform.
โPrior to Alkira, anytime we acquired a new company, it would take 12 to 24 months to integrate their network due to the massive complexity,โ Hoag says. โNow, we can set policy and have the entire network abide within 24 hours.โ
Modernizing the network
Hybrid and multicloud networking, such as Kochโs, represents the next level of cloud maturity, says IDCโs Casemore, who adds that itโs a category in which most enterprises are woefully behind.
โWhile compute and storage infrastructure have largely aligned with cloud principles and the needs of multicloud environments,โ Casemore says, โthe network has not kept pace. โ
For Casemore, network modernization is indispensable to multicloud success: โEnterprises often are not fully cognizant of their networksโ multicloud deficiencies and limitations until they experience them firsthand. By then, the networkโs inability to accommodate new requirements has often compromised the realization of an organizationโs digital business strategy,โ he says.
Here, Hoag says, partnering can be beneficial, as third-party specialists such as Alkira have a deep understanding of cloud providersโ obscure but significant technical differences. Working with a partner can also vastly reduce maintenance and troubleshooting, Hoag says, adding that to date Koch is enjoying similar data transfer speeds in all three layers of its cloud networking architecture.
Kochโs partnership with Alkira has also enabled the CTO to build up his teamโs cloud networking skills.
โThere is a talent war going on,โ Hoag says. โThis helps us move our team up the talent chain so they can focus on working with applications teams in the company and produce much better business outcomes.โ
Enterprise Management Associates analyst Shamus McGillicuddy agrees that most enterprise CIOs will need to tap a specialist to achieve seamless cloud networking โ one of the final phases of their digital infrastructure.
โBuilding a network across multiple cloud providers and one or more private data centers is too complex because network and security teams have to use different tools depending on which cloud or data center theyโre working with,โ McGillicuddy says. โThis solution is an overlay that removes this complexity.โ
By abstracting the various networking and security features different cloud providers offer, enterprises โcan manage everything from one place, with one set of design parameters, one set of network and security policies, and one console for operational monitoring and management,โ he says.
One day, setting up cloud networking may be as easy as using a credit card to set up a cloud instance, Hoag says. But not now. โWhen you start to have the kind of user needs to potentially have connectivity between different clouds, thatโs more difficult,โ the CTO says.