The Architecture of the H3C government cloud platform include three horizontal layers and two vertical layers. The solution is comprised of the support layer, the data service layer, and the business application layer. Under the guarantee of the government cloud management system and security system, through various user terminals, the solution provides the unified support of information for the government and provides the efficient external services to the public.
Support layer: Delivers services for virtual hardware resources. Virtualizes and pools the infrastructure resources (compute, storage, network, security, etc.), to achieve the dynamic resource allocation, redistribution, and recycling. The resource pools are mainly divided into compute resource pools, storage resource pools, and network resource pools, and provide services mainly based on these resources. For example, the virtual machines, storage spaces, virtual networks, virtualized firewalls, and virtualized load balance, can all be assigned through cloud platforms, and the application system operating environment can be provided for application system, database management system etc.
Data service layer: Delivers a comprehensive platform that can manage the application development, testing and running environment from the traditional to container (cloud native) application. Developers can quickly develop, test and deploy applications based on the platform. Delivers a software development and test environment for business systems, and integrate all functions of business system into a centralized SOA platform. With these services, the application service components can be effectively reused, orchestrated and organized on demand.
Business application layer: Delivers the software service. The typical mode is that the customer uses the software on the Internet through a standard WEB browser. So the customer only need to rent the software on demand, and directly apply it, rather than purchase and install on individual computers. A typical online software service is email system service. Only with the simple setting of domain name, the user can quickly make its own email system available.
The cloud security system covers the support layer, the data service layer, the business application layer, and provide comprehensive security protection, including anti-DDoS attacks, vulnerability scanning, host defense, website defense, tenant isolation, authentication and auditing, and data security. Also the cloud security system meet the deployment requirements of the level 3, the national classified protection.
The cloud maintenance management system provides a unified management and efficient modes, improves the efficiency of problem processing, reduces the time of problem being solved, and can quickly and automatically notify the manager when problems occur, provides analytic tools. Moreover, the maintenance system provides the functions of health analysis, which can monitor and analyze the resource usage status of the data center in real time, assess health and risk, and assist customers in active maintenance. Furthermore, the system provides the reports of the daily maintenance activities, and the customers could take quick action after the problems are found.
The construction of the government cloud platform is a comprehensive system project. The government cloud should follow the principle of long-term planning and step-by-step implementation. First, build a support layer, gradually improve the data service layer, and finally realize the overall delivery of the business application layer.