AMAZON WEB SERVICES (AWS)

 

faster scalable hosting.

defi SOLUTIONS on AWS delivers efficiency and speed through the most scalable networks and services. We empower your teams to deliver. Want to know more, ask questions here.

 
 
The cut-over to production is planned to take place on June 17, 2018 starting at 12 midnight CDT.
No configuration changes can be made from Thursday, June 14 from 11:59 PM CDT through (noon) Monday, June 18, 12 PM CDT
Data copy started on Thursday, June 07 for the bulk of the data. We will continue to copy deltas until the system goes offline.
The defi ANALYTICS platform will be offline during the transition period and for up to four hours post-migration.
For status updates, go to: https://status.defisolutions.com
The QA migration involved copying production (configuration data) to a new QA, which had some complexities since credentials and configuration varied from old QA to production sites. These complexities will not exist with the production migration because this is a production-to-production move.
  1. If you currently Whitelist outbound traffic from defi (e.g., SFTP push, outbound data source, etc.) you need to modify your firewalls or security devices to accept traffic from our new outbound IP addresses.
  2. Communicate with your internal team members, data providers, and your customers (if applicable) about possible system downtime. For example: Notify your application sources that processing will be interrupted during the transition period and holding or pausing activity during the cutover may be required.
  3. defi will work with our partners (i.e. Dealertrack, RouteOne, vendor integrations, etc.).  
Please attend the March 1 Webinar. Contact Patty Jefferson at pjefferson@defisolutions.com if you have not received an invitation and wish to participate.
Outbound IP Addresses:

If you or your partners whitelist inbound traffic from defi, these are the IP addresses that will need to be added to your firewalls or applications . The ports that the traffic would communicate over will depend on your configuration and could be HTTPS, SFTP or custom ports.

AWS QA

Currently these IP addresses are in use for our QA environment and should be in your firewall or application configuration today if you whitelist defi traffic.

34.200.95.26
34.204.210.235
34.234.109.169
54.156.173.115
54.156.196.51
54.156.192.108
173.64.225.3

 

AWS Prod

Before the move of defi systems to AWS these IP addresses need to be added to your firewalls or application if you whitelist defi traffic.

34.234.134.172
52.55.231.180
54.156.165.92
54.156.194.201

FNTS Prod

These IP addresses are in use for our current FNTS Prod environment and should be already in your firewall or application configuration if you whitelist our traffic. We will be retiring these IP addresses after the move of the production environment to AWS.

(In CIDR notation)

66.180.12.208/28
12.109.82.224/28

Azure QA

These IP addresses are for our legacy Azure QA environment. If you no longer utilize our legacy QA environment (https://client.oldqa.defisolutions.com) you can safely remove these IP address from your firewalls or application configuration. We will be retiring these IP addresses at a later date.

104.40.92.223
40.118.251.125

SFTP IP Addresses:

These are the IP addresses our SFTP servers utilize for inbound traffic to defi. If you or your partners whitelist outbound traffic and need to connect to our SFTP server, add these IP addresses to your firewalls or applications. Our SFTP server is hosted on port 22.

AWS QA

This IP address is in use today for our QA environment and should be in your firewall or application configuration if you whitelist outbound traffic and need to connect to our SFTP server.

54.156.166.40

AWS Prod

This IP address needs to be added to your firewalls or application if you whitelist outbound traffic and you need to connect to our SFTP server.

52.20.180.106

FNTS Prod

This IP address is in use today for the defi Prod environment and should already be in your firewall or application configuration if you whitelist outbound traffic and need to connect to our SFTP server. We will be retiring this IP address after our AWS production migration.

66.180.12.218

Azure QA

This IP address is for our legacy Azure QA environment. If you no longer utilize our legacy QA environment SFTP server (client.oldqa.defisolutions.com:22) you can safely remove this IP address from your firewalls or application configuration. We will be retiring this IP address at a later date.

104.40.92.223

All production configuration and application data will be transferred. The database will contain all data immediately after the transfer.
Data will be migrated via a third-party data synchronization tool. The tool validates and tests data integrity as copying occurs. Once the tool has completed, defi will conduct additional testing and validation.
Data will be secured in the same manner that it is today. defi actively maintains SOC 2 compliance and is committed to continuing certification efforts on the new platform.

Vulnerability scans are run against the platform on an ongoing basis.

Most of the policies and procedures will remain the same after the migration to AWS. The backup policy and disaster recovery policy will be updated to reflect the infrastructure changes. These polices will be available for review 30 days prior to the move to AWS. AWS is SOC 2 type 2 and PCI-DSS certified.
The transition will take place overnight. We are currently estimating approximately eight hours.

Our status page will be updated in real-time as the transition is in progress. An open bridge-line will be set up for clients to ask questions of the defi team about progress.

defi will coordinate with RouteOneDealertrackCUDL, and DDS to hold application traffic during the downtime. Other inbound application traffic will be coordinated individually. 
The site will be unavailable during the downtime such that configuration changes will not be permitted during transition.
Only LOS services and some back-end services for defi ANALYTICS will be moved at this time.
Servers will be in the East; other regions will be considered later.
Your old QA Environment will be retired and no longer available as of April 6, 2018.

Take action before April 6 if configurations need to be migrated from your old QA to your new QA.

AWS FAQS

 
 

want to know more? ask here.

 
(Visited 370 times, 1 visits today)