Hewlett Packard - Vaulting and Pitting
Hewlett Packard has for many years held a leading position in the development of Unix based systems, they have many prestigious customers who put security and ease of use at the head of their requirements.
One of HP's most prestigious banking customers required a means to simplify and yet strengthen their computing environment. Although mainly based on HP systems, there were also a number of other makes of Unix system including Sun, IBM and Linux based systems. There were a number of conflicting needs mainly revolving around controlling development systems, securing live servers, providing user access to test environments and providing proper administration access to servers.
Layer3 systems designed a means by which a system could be automatically configured into a physical and virtual network environment that would provide the correct degree of required security and flexibility. The design provided a Vault and Pit approach that could be used to carefully trade off security and accessibility and yet was easy to operate and maintain. The "vault" environment provided a secure network area into which only carefully authorised users or systems could gain access. Live high security systems would operate from these environments. The "pit" environment is designed for developers and development systems, securing their access such that they could only access resources outside of the pit for which they had authorised access. This was further enhanced by designing templates for access controls between vaults and pits, this allowed administration users to be placed inside a "pit" which had some "vault" like features thus protecting them from attack whilst allowing them controlled access to specific systems.
• Increases defence in depth whilst simplifying operation and setup.
• Reduces costs by easing administration and automating network security.
• Implemented using standard switches and routers.
• Simple front end developed to run either as command line, web interface or XML config file.
Carrier Networks needed a means by which they could easily manage and plan the delivery of over a million brochures a year. This system would need to give as much notice of sizes of delivery per route as possible.
All depots would need a system, each system would need to be very robust, easily supported and simple to use. Due to the remote locations of some depots dial up modems would be the only method available to provide network communications. Finally Carrier Networks wanted a low cost completely managed solution with no upfront investment costs.
Layer3 designed a system that could take a delivery note feed from the main distribution warehouse and split this per region then order by postcode into routes. We designed a Java based front end that was almost fully automatic for day to day work. The system ran on Linux for stability and we provided a 24x7 help and support facility. We produced summary reports to enable each carrier to track work carried out and invoice summaries for the company as a whole. A dedicated and secure website was built to provide the back end operation that could handle input from the main warehouse in a number of optional formats to match whichever system they were using to generate delivery notes.
• Performance allowed earlier planning of routes and driver utilisation saving £180,000 per year.
• Zero start up cost to the user, flat rate per delivered pack charge
• Immediate swap out support for hardware failures
• Spare systems can be moved to any location, no customisation required
• No software licence costs, Red Hat Linux and Open Source software used throughout
• Efficient system giving 2 days notice of shipping movements, allowing just in time planning and sizing of deliveries