The Host/Atomic network is housed in Canada at Peer1 Networks - one of North America's top datacenters - and offers the best in security, stability, and speed. Connected to multiple Tier 1 Internet providers in Canada and the US, our network has peering relationships with a large, increasing number of additional networks. Key features of our 100% Cisco powered internal network include OC-48 connection speeds with GIG-E (muli-peered, in multiple locations), uncapped bandwidth as well as burst bandwidth available on demand and prioritized high performance and redundancy. The Data Center - employing state of the art, fault tolerant software - utilizes Hot Standby Router Protocol (HSRP) and all of this combined ensures that on average we provide 99.9% availability of Host/Atomic services.

Physical Security

To ensure the network is physically secure security officers are present 24 hours a day, 7 days a week in our Network Operations Centre (NOC). Closed Circuit Television (CCTV) and monitored access points are in place and all access is digitally recorded, time-stamped and archived.

Upstream Security

Upstream services are monitored 24x7 for DDoS, port scans and other initial attacks with suspicious actions resulting in instant notification.

Perimeter Security

Sophisticated hardware firewalls provide protection against a variety of attack methods (smurf, spoofing, port scans, d/DDoS, etc.) as well as deflect any payloads back to the suspected attacker. As part of a global network of advanced virus pattern matching, our firewalls have the added ability to block suspicious email attachments independantly without waiting for anti-virus companies to update their latest virus threat list. In addition, our perimeter security systems are integrated with a global organization that collates and collects distributed attacks across many providers, and manages law enforcement and ISP notifications.

Internally, software-based firewalls examine source and destination addresses/ports, router access lists are filtered on inbound carrier feeds and internal devices are firewalling at the SYN level. A wide variety of firewall applications are supported including CheckPoint, ipchains, ipfw, ipfwadm, etc. and we are able to modify response packets with masquerade responses to the remote initiator.

Monitoring

All servers are monitored from 4 geographically diverse locations - Florida, Los Angeles, Australia, the UK - and service outages are reported within 5 minutes. All devices have all services monitored on a protocol-level basis by a professional enterprise-class monitoring system.

Backup/Recovery

Every 4 hours all user content (mail, web, ftp, etc.) and databases are backed and offloaded to standby drive arrays. A complete backup of all devices is performed daily and replicated to a set of dedicated drive arrays in an incremental image backup procedure. All backup devices are encrypted and the drives are removed on a regular schedule for offsite, archival storage. Additionally, all data is encrypted and sent offsite every 4 hours to our Disaster Recovery (DR) facility at an undisclosed location. This facility acts as our standby facility in the event of physical damage (bombings, terrorism, earthquakes, etc.) to our primary facilities and is ready for action at any time.

Anti-Virus Measures

In addition to our sophisticated firewall, our network offers robust virus scanning (in memory and post-file scanning) operations on all devices as well as complementary full email scanning on all mailboxes for all users.

Server Hardware

Our enterprise-class equipment components (drive, power supply, etc.) are redundant and repairs are covered under a contract agreement with a maximal 4 hour onsite response time from Dell. All devices are managed by a private gigabit backbone that is used for command and control functions, in addition for secured backups and recovery of files. The private backbone infrastructure is dedicated purely to this functionality and is 100% separate from the Internet. All networking components are using 1 Gb/s switched infrastructure, with redundant hardware components.