The iboss Cloud Platform design allows the cloud to extend seamlessly into an optional private cloud point of presence
In some cases customers have data center capacity and would like to extend the iboss Cloud Platform into a private cloud. When this occurs, the customer creates a private cloud Point Of Presence (POP) and iboss Cloud Platform extends naturally into the private cloud adding one more POP to its global data center footprint. The private cloud only services the particular customer and is dedicated capacity for that customer. Everything needed to create a private cloud POP is provided by iboss. The containerized architecture of the Platform makes this seamless as iboss provides containerized gateway capacity that runs within the customer’s data center. Because the private cloud is just an extension of the global iboss cloud, any policies or controls configured within the Platform will automatically extend into the private cloud POP. The private cloud becomes part of the iboss cloud extending it to private points of presence. This provides the consistency in security and user experience necessary when extending the cloud into your headquarters or corporate data centers. All private cloud capacity is provided by iboss which reduces costs and simplifies deployment. Extending into a private cloud is completely optional but is available when needed.
Extend iboss cloud to a private cloud Point of Presence
In some occasions, customers may be running a required low-touch data center. In these cases, the data center is rich in connectivity and typically has large Internet connections. In situations like this, it may make sense to extend iboss cloud into a private cloud Point of Presence to scan and protect data directly within the private cloud data center vs. forwarding traffic to another cloud data center for protection.
The iboss cloud has the ability to optionally extend the cloud natively into a private cloud data center to form a private Point of Presence. The containerized cloud gateway capacity is data center grade, horizontally scaling and delivered in a node blade chassis. This private cloud extension of the iboss cloud is completely optional but can be taken advantage of if required by the organization. This eliminates the need for extra hops to additional data centers when traffic traverses the already highly connected data center.
Eliminate network re-architecture at HQ by extending iboss cloud via
containerized on-prem cloud gateways
In many situations, the current network topology is configured at HQ so that there is no default route to the Internet for on-prem users. What this means is that users at HQ must traverse local web gateway proxies in order to access the Internet. Without traversing the current on-prem web gateway proxy appliances, users have no direct access to the Internet. This becomes a challenge when moving to cloud-based gateway solutions as removing the on-prem web gateway appliances results in the inability for users to access the Internet.
The iboss Cloud Platform has the unique ability to natively extend the iboss cloud into your HQ via on-prem containerized cloud gateway capacity to form a private cloud. The private cloud capacity extends the iboss cloud and can be used as drop in replacements for legacy web gateway appliances. This will bridge users by providing them a route out the Internet and can be used by network administrators to provide a bridge until the network can be reconfigured to eliminate this requirement.
In addition, since the iboss cloud is built from dedicated containerized cloud gateways, each having unique and company dedicated IP Addresses, the concept of no-route-out to the Internet can be extended to the cloud by forcing user traffic through iboss cloud gateway IPs in order to access the Internet. The net effect is the same as on-prem web gateway appliances, but the need for appliances is completely eliminated.
Kerberos and NTLM authentication support
The on-prem containerized cloud gateways support 100% of the proxy features traditional on-prem web gateway appliances support, including SOCKS proxy and authentication schemes such as Kerberos and NTLM. This means they can literally replace legacy web gateway appliances and instantaneously get an organization into the iboss cloud. This includes instant coverage for mobile users and remote offices without the need to back-haul data which immediately eliminates unnecessary data back-haul increasing speed and reducing costs.