NS1’s Cloud-Managed DDI is a hybrid solution where NS1 manages core cloud-based services while various edge service components run on customer-controlled nodes across a distributed network. You can manage all services, components, and nodes within the NS1 Connect platform using NS1’s Fleet and Service Management tools.
A service is a logical grouping of capabilities within the NS1 Connect platform. They include DNS, DHCP, Monitoring, and more. Services are deployed to edge nodes via their service components which are software modules representing specific capabilities related to that service. When deploying a service to a node, you will specify which of that service’s associated components to deploy so that each node is automatically provisioned with only the components needed. This gives you flexibility over what runs where within your network, and allows you to add and remove service components dynamically as needed.
Cloud-Managed DDI incorporates both cloud-managed and edge services. Cloud-managed services are deployed to the NS1 control plane and are hosted, managed, and maintained by NS1. The control plane runs the NS1 REST API, NS1 Connect portal, notification subsystems, and hosts configuration data in the system’s central database. Edge services (e.g., DNS, DHCP, MONITOR) are distributed across a DDI network via their service components which specify which mode or capability of that service should be running on that node. Edge service components and nodes are configured, managed, and maintained by a system operator within your organization.
In the context of NS1 Cloud-Managed DDI, service management refers to the configuration of features and capabilities delivered by their corresponding components. Fleet management, on the other hand, refers to managing nodes and orchestrating the deployment of a specific type of component to each node.
Note
Currently, all service and fleet management-related tasks are performed via NS1 API only.
During the Cloud-managed DDI implementation process, you’ll work closely with an NS1 engineer to prepare, deploy, and configure your system. Below is an overview of the implementation process and an explanation of what to expect at each stage:
-
Prepare for deployment
As you prepare to deploy edge services into your network, you’ll work with an NS1 engineer to better understand the various components and plan your deployment. We’ll provide a reference architecture that adheres to your requirements, enable access to DDI management tools through your current NS1 Connect account, and provide the necessary resources. We recommend that you familiarize yourself with core concepts and system requirements to ensure you are fully prepared for installation. You should prepare the hardware ahead of the deployment with a supported operating system installed which meets or exceeds the minimum specifications. Certain ports may need to be open on your firewalls for edge services to fetch configuration assets from our control plane.
-
Install edge service components on nodes
You or a system operator within your organization will deploy edge service components to their designated nodes.
-
Service & component configuration
Once the service components are installed on the nodes, you will configure the features and capabilities of each service and its associated components.
-
Account setup
Once the system is up and running, you can create users associated with your organization and grant specific permissions depending on their role. You can also organize users into teams and create API keys necessary for programmatic configuration and third-party integrations.
-
DDI resource creation & management
Once the system is up and running, you can begin creating networks and subnets in IPAM, configuring DHCP services, and adding resources, such as zones and views, to DNS on the NS1 Connect platform via the portal or API. With these objects in place, you can move on to advanced configurations such as the NS1 Filter Chain, dynamic DNS, and more.
If you have any questions about the Cloud-Managed DDI implementation process, contact your dedicated NS1 sales representative or engineer.