My WebLink
|
Help
|
About
|
Sign Out
Home
Browse
Search
Item 26 - Agreement with Allied Network Solutions, Inc. for Adobe Software and Subscription
Clerk
>
Agenda Packets / Staff Reports
>
City Council (2004 - Present)
>
2025
>
01/21/2025
>
Item 26 - Agreement with Allied Network Solutions, Inc. for Adobe Software and Subscription
Metadata
Thumbnails
Annotations
Entry Properties
Last modified
1/27/2025 5:03:20 PM
Creation date
1/21/2025 2:16:24 PM
Metadata
Fields
Template:
City Clerk
Doc Type
Agenda Packet
Agency
Information Technology
Item #
26
Date
1/21/2025
Jump to thumbnail
< previous set
next set >
There are no annotations on this page.
Document management portal powered by Laserfiche WebLink 9 © 1998-2015
Laserfiche.
All rights reserved.
/
762
PDF
Print
Pages to print
Enter page numbers and/or page ranges separated by commas. For example, 1,3,5-12.
After downloading, print the document using a PDF reader (e.g. Adobe Reader).
View images
View plain text
SOLICITATION # CH16012 <br />Internet <br />Front End <br />Perimeter <br />■ <br />-)6trear . <br />Q Intrusion Detection <br />0 Firewall <br />Figure 1. xStream Enterprise Architecture <br />Client A Client B <br />Network Network <br />Landing <br />Zone <br />a `m <br />— <br />C +' <br />E C6 <br />"� °' <br />Q <br />co <br />l9 dt <br />Core <br />k: <br />Firewall <br />Context <br />CL <br />Client �' <br />B Specific <br />Rule Set <br />A le <br />Plafform <br />Portal \_ <br />Iiij <br />Separate LUNS <br />16 j* <br />State of Utah end users would access the hosted SAP environments via a MPLS connection <br />(Provided by State of Utah). Additionally a VPN connection has been sized at 100Mbps however <br />this can be decreased or increased depending on the exact requirements. <br />State of Utah end users accessing our enterprise platform would first hit the landing zone in a <br />dedicated virtual local area network (VLAN) and dedicated virtual route forwarding (VRF). The next <br />hop into the enterprise platform is a dedicated firewall (FW) context on a Cisco Firewall services <br />module. After traversing the core, traffic hits another dedicated VRF and drops into the platform <br />network and compute (CPU and Memory essentially a blade server) layer. All traffic is VLAN <br />separated. At each compute host, a hypervisor based firewall and intrusion protection system (IPS) <br />provides a dedicated client rule set to further ensure network security. All traffic transitioning from <br />one zone to another are monitored by Intrusion Detection and Intrusion Prevention systems. <br />Traffic coming in via the internet hits the front-end perimeter with load balancing modules and multi - <br />context Cisco firewalls. All traffic then passes through intrusion detection system and intrusion <br />protection systems. As in the enterprise compute layer, every host in our demilitarized zone (DMZ) <br />has a hypervisor-based firewall and IPS with dedicated client rule sets. Again, all traffic is VLAN <br />separated as well. <br />Traffic that needs to traverse from DMZ to the enterprise runs through another dedicated FW <br />context and IDS/IPS. <br />All of the State of Utah environments and data will be hosted in Virtustream's data centers within the <br />continental United States. <br />Standard Services used in Virtustream's management environment and in all client environments <br />including the following: <br />carahsoft 91 carahsoft <br />
The URL can be used to link to this page
Your browser does not support the video tag.