Operating Environment Software Instruction Manual
Configuring an environment for cloud provisioning
In addition to provisioning with on-premise resources, Matrix OE infrastructure orchestration supports
provisioning virtual servers to the following public cloud providers: HP Cloud Services, Savvis, and
Amazon EC2.
Public cloud bursting is a feature of Matrix infrastructure orchestration that enables enterprises to
seamlessly provision public and private infrastructure resources. Combined with powerful private
cloud management capabilities, the ability to “burst” beyond the private cloud environment and
to leverage infrastructure resources offered by external cloud service providers creates a virtually
unlimited pool of hybrid cloud resources for Matrix infrastructure orchestration users to draw upon
for cloud service delivery.
Before you can create a template containing a virtual server that can be provisioned at a cloud
service provider, you must configure your environment for cloud provisioning. For detailed
configuration steps for provisioning to HP Cloud Services and Amazon EC2, see the Cloud bursting
with HP CloudSystem Matrix infrastructure orchestration and HP Cloud Services or Amazon EC2
white paper. For detailed configuration steps for provisioning to Savvis, see the Cloud bursting
with HP CloudSystem Matrix infrastructure orchestration and Savvis white paper. Both white papers
are available at http://www.hp.com/go/matrixoe.
NOTE: To provision public cloud instances, obtain a Matrix OE Public Cloud Managed Instance
license. This license allows you to manage one public cloud instance hosted at an HP-supported
public cloud service provider for a term of one year from the date of registration. Multiple licenses
can be used together under a concurrent use model. (For example, if you purchase 10 licenses,
you can manage up to 10 public cloud instances at any one time.) Public cloud managed instance
licenses are not tied to a particular service provider. You can use the same license to manage an
instance at one service provider today and at another tomorrow, as long as the license is not used
for both instances at the same time.
For details on licensing, contact your HP sales representative.
Configuring a firewall (security group)
Configuring a firewall for server groups deployed to a cloud service provider allows you to permit
or restrict inbound network traffic based on a set of rules. A firewall is also known as a security
group.
NOTE: All server groups deployed to a cloud service provider have a firewall that blocks all
inbound traffic by default.
To allow inbound traffic, create a rule on the Firewall tab in infrastructure orchestration designer
that describes that traffic. The Firewall tab is enabled only for virtual server group templates that
have checked Require in Cloud, which deploys the server group to a cloud provider such as HP
Cloud Services and Amazon EC2. (The Require in Cloud checkbox is visible only after your
environment is configured for cloud provisioning. See the Cloud bursting with HP CloudSystem
Matrix infrastructure orchestration and HP Cloud Services or Amazon EC2 white paper at http://
www.hp.com/go/matrixoe for more information.)
Only firewall rules that affect incoming network traffic can be defined and modified.
For example, to allow SSH connections to a server, select the TCP protocol, specify a Start Port
and an End Port of 22 and IP Sources of 0.0.0.0/0 and click Add.
Configuring an environment for cloud provisioning 47