The Bunker’s Open Source private cloud is designed and built by our in-house Open Source engineers, using a robust cloud core “stack” that is centred around KVM, the widely adopted virtualisation solution for Linux, coupled with CEPH for resilient, scalable and performant software-defined storage. This core is then integrated with OpenNebula to provide lightweight and powerful private cloud capabilities to support a wide range of Linux and Windows workloads.
Utilising OpenNebula’s native cloud integration functionality, customers can choose to scale using Bunker-hosted hardware or to use public cloud infrastructure in a hybrid environment, leveraging platforms in the way that best suits their needs. Wrap this package with the most pro-actively secure operating system in the industry, along with the perimeter firewalls and routing devices, to produce our ultra-secure Open Source private cloud.
Public cloud is not always the right choice; there are many use cases that can be better served by a dedicated environment, from helping to secure sensitive or regulated data through to improving cost-optimisation for many workloads. Working in unison with The Bunker’s professional services and experienced Open Source team, Private Cloud from The Bunker can mitigate the risk of unauthorised data access and keep sensitive, personal and valuable data entirely under UK jurisdiction, without sacrificing the flexibility and speed of cloud deployment processes.
Suitable for both monolithic and cloud-native applications, Open Source Private Cloud from The Bunker can scale from a small proof-of-concept platform to as large an environment as is required. The Bunker will act as a natural and trusted extension of your team, providing you with the essential tools and as much or as little help as is necessary to deploy your applications, keeping your digital operations securely up and running.
Lean on The Bunker’s extensive Open Source experience; our expert team of engineers have on average of 2 decades experience each. At project inception you will be allocated a lead engineer, and the team will work with you to ensure that your design meets your requirements and expectations.
There is no “off the shelf” design at The Bunker because we know that no two clients require the same thing. It is where we excel, where we are different, and there is only one other way to get this level of dedication; by hiring your own technical team. Our Open Source engineers are always available 24 hours a day, 7 days a week, providing the peace of mind that your mission critical cloud infrastructure is always in the safest of hands.
Starting at the perimeter and moving down the stack, OpenBSD firewalls are installed with a default deny policy. The switching layers are physically and/or logically isolated with the number of networks required for secure management, service and storage.
Linux KVM hypervisors are provisioned and secured using asymmetric (public-key) cryptography.
The CEPH storage layer is added and secured using LUKS disk encryption to secure data at rest, and secret cryptographic authentication is used to ensure the integrity of messages in transit.
An OpenNebula frontend is deployed to allow users to provision and manage their virtual resources and provide advanced tools such as an API based lifecycle, auto-scaling, public cloud integration and authentication, further secured with nginx and per user digital certificates and/or identity management.
Comprehensive resource monitoring of the customer private cloud infrastructure is carried out by our 24/7/365 monitored Network Operations Centre and the entire stack is orchestrated by our Opensource engineers using Ansible.
