Cloud Solution Header
An Enterprise Grade DNS Solution for the Cloud

Cloud Computing is out of its infancy and enterprises have embraced it for its cost-effectiveness and the agility that it brings to IT. Cloud computing helps reduce the server footprint in the data centers and it leverages the services from the cloud providers. Using the cloud model, enterprises can build fast and pay for resources based on usage. Extending the data centers into the cloud reduces operating expenses in the enterprises and it makes a traditional system administrator's activity redundant. The time taken to bring up a compute node with the desired software is performed in a matter of a few minutes in the cloud. The days or weeks in the customer-owned data center with a traditional system administrator building a server from scratch are rendered pointless in comparison. Similarly, provisioning the networks, subnets, DNS records, etc., are simplified by embracing the cloud provider's model. As enterprises extend their data centers into multiple clouds, the demands for resources in the compute, network, and storage spaces exponentially increase. The DNS administrators find it challenging to catch up with the rapid demand and to keep up with the pace. In addition to this, if the data center is extended into multiple Virtual Private Clouds (VPCs) such as a mixture of Amazon's AWS, Google, and Microsoft's Azure, then this mixture becomes challenging when it comes to managing DNS records in each VPC and constantly updating the central DNS database. The traditional IPAMs do not understand these DNS challenges in the cloud. This is where TCPWave bridges the gap and resolves the challenges faced by the enterprises that are embracing cloud technology.

IPAM

TCPWave provides a single pane of glass to manage the DNS records present in multiple cloud service providers. TCPWave offers a seamless integration to update the on-prem DDI infrastructure whenever a compute instance is provisioned in any of the cloud-hosted infrastructures. Each of the cloud service providers gives a "hook" to trigger an event whenever a new compute node is provisioned. For example, when a new EC2 instance is added to Amazon’s AWS, Route 53 gets updated automatically. AWS also provides a CloudWatch monitor that can trigger an AWS Lambda function to execute an API (Application Programming Interface) call. TCPWave leverages AWS Lambda to update the on-prem DDI infrastructure whenever EC2 instances get provisioned or terminated. Also, the TCPWave DDI has a seamless ability to communicate directly with the AWS console and discover all the cloud-hosted VPCs in all the regions. These VPCs are added as subnets on the TCPWave DDI controller. The name resolution within the VPC can have two options. The first option is to forward the top-level domains directly from Route 53 to an on-prem TCPWave DNS appliance. The AWS clients would point directly to the Route 53 resolver using this option. The second option is to provision a TCPWave AWS EC2 DNS remote as a cache-only resolver with selective forwarding configured for the Route53 hosted domains. Using this option the risk of a DNS tunnel is significantly reduced. The TCPWave AWS EC2 DNS remote cannot resolve any public Internet DNS names due to the restrictions placed on it via the TCPWave DDI controller policies. Further, a uniform set of management policies can be enforced across all the cloud-hosted infrastructures when the TCPWave remote appliances are queried by the cloud as well as the on-prem applications of an enterprise.

The TCPWave DDI controller can also perform an API-only based method to manage the cloud service providers such as Route 53, Google Cloud DNS, Azure DNS, Akamai, Neustar, Dyn, and Cloudflare. The easy to use user interface on the TCPWave DDI controller provides the customer with a relatively simple method to add the required credentials. The changes are bi-directional. When a new record is added directly on the cloud-hosted DNS, the TCPWave DDI controller gets updated. When a new record is added to the TCPWave DDI controller the cloud-hosted DNS gets updated automatically. Each change in each cloud-hosted DNS infrastructure is meticulously audited and recorded by the TCPWave DDI controller. Transferring the authoritative data from one provider to another becomes a breeze with the TCPWave DDI's template-based approach for the DNS zone management. This management is performed using encryption and RESTful APIs. A powerful CLI toolset is provided for the DNS administrators to perform simple and complex tasks. Rules are enforced in the TCPWave DDI using templates. Intelligent DNS Data Integrity checking algorithms that are used in the TCPWave DDI maintain stability, consistency, accountability to provide a 100% SLA to the franchise critical enterprise DDI framework.

IPAM

The TCPWave DDI is a feature-rich and future-ready DNS, DHCP, and IP Address Management (DDI) system with built-in intelligent technologies, including encrypted messaging, responsive consumer-grade UX, machine learning, and advanced analytics. It transforms network services with intelligent automation and runs on modern Java. TCPWave enables real-time processing for thousands of DDI changes with a dramatically simplified data model. It can be deployed on-premise, in the public/private cloud, or a hybrid deployment model. The ability to rapidly deploy and provision the TCPWave DNS remotes across various platforms and orchestrators is where customers see a value add that is unsurpassed in the industry.