SecNumCloud-qualified Baremetal Pod
Our SecNumCloud-qualified* Baremetal Pod solution
Dedicated resources in SecNumCloud-qualified environments for your critical services and data. Deploy OVHcloud Bare Metal technology in our SecNumCloud-qualified regions (Gravelines, Roubaix and Strasbourg) and manage your server park directly via OpenStack APIs.
What is Baremetal Pod?
Equipped with an isolated network and at least 8 servers, Baremetal Pod is a dedicated infrastructure solution that ensures security and eliminates the risks of bandwidth and external attacks. Each Pod incorporates leading-edge network hardware and can scale up to 1,500 servers if needed. This architecture is further enhanced by a high-capacity, guaranteed private network.
In terms of software, the Baremetal Pod uses open-source technologies like OpenStack, which allows for both flexible and autonomous hardware resource management. OpenStack APIs simplify server configuration and enable smooth integration with orchestration tools.
A simple and intuitive management interface
What benefits can you expect for your infrastructure needs?
Isolation by design
You can deploy your infrastructure on a minimum of 8 servers within the Pod network, exclusively for your use.
Since you are the sole user of your switches, there is no risk of a neighbour disrupting your bandwidth or trying to attack your device.
OVHcloud’s industrial requirements
The SecNumCloud-qualified solutions are provided in 3 dedicated datacentres, ensuring security and compliance with the ANSSI SecNumCloud framework.
The SecNumCloud-qualified* Baremetal Pod solution provides the highest possible level of security and sovereignty for managing your sensitive data and processes.
Streamlined management
The Pod elements can be flexibly scaled, up or down, to match your specific needs.
Once your server infrastructure has been deployed, you can manage it easily and quickly via OpenStack APIs.
You can also deploy Kubernetes clusters within this environment for your containerisation projects.
Specifications
Hardware:
Within each Pod, you have:
- 2 network switches (+ network capacity)
- 1 Pod management pack (a dedicated graphical interface for managing your servers, and OpenStack API for automating your machines)
In addition to this basic infrastructure, we offer a selection of dedicated servers, with a minimum of 8 servers and a maximum of 500 servers.
Software
The solution is fully powered by open-source technologies – OpenStack, Keycloak and Netbox. It features a standalone, disconnected control plane for managing hardware clusters.
You can use this native configuration interface to individually set up each component (compute/storage/network).
You can also configure your servers using OpenStack API, or Terraform/Infrastructure as Code. We will soon be adding an orchestration layer to manage Compute, Virtual machines & containers, Object Storage S3, AI Inference, DBaaS, vCD, Nutanix, OpenStack Nova products, and much more.
Our servers compatible with Baremetal Pod deployment
This solution enables you to deploy some of the most powerful servers on the market, offering you:
. computing capacity of up to several thousand cores and hundreds of NVIDIA GPU cards within the Pod;
· storage volumes with more than a petabyte of encrypted data-at-rest.
· a private network included with your servers, up to 100 Gbps.
Range | Technical characteristics | Recommended use cases |
---|---|---|
Scale (2nd Gen) | 4th Gen Intel Xeon Gold or AMD EPYC 9004 series processors
|
|
Scale GPU | NVIDIA L4 GPU cards (x2 or x4)
|
|
HGR-HCI (2nd Gen) | Two 5th Gen Intel Xeon Gold Processors or 4th Gen AMD EPYC 9004 Series
|
|
HGR-SDS (2nd Gen) | Two 5th Gen Intel Xeon Gold Processors
|
|
HGR-STOR (2nd Gen) | 5th Gen Intel Xeon Gold processor
|
|
HGR-AI-2 (2nd Gen) | NVIDIA L40s GPU cards (x2 or x4)
|
|
Need more information, or want to place an order?
You can request a free callback from an OVHcloud advisor.
Advanced security standards
Each customer’s cloud infrastructure is physically isolated and protected with secure access, in line with our zero-trust approach. Access control for customer administration tools is enhanced by two-factor authentication, a secure interface, and token validation for sensitive actions. In addition, our services come with built-in data encryption at rest.
Who is it for?
French authorities
The SecNumCloud qualification is a key criterion for French authorities, as it provides assurance of security, compliance and trusted use of cloud services, ensuring the protection of sensitive data.
OIV and OSE
Operators of Vital Importance (Opérateurs d’Importance Vitale – OIV) and Operators of Essential Services (Opérateurs de Services Essentiels – OSE) in France place high importance on SecNumCloud qualification, as it safeguards critical infrastructure and essential services.
Operators who meet stringent security standards through this qualification are better equipped to withstand threats, comply with regulations, and build partner and public trust in the secure handling of sensitive data.
*The qualification approval request for the Baremetal Pod service is currently being processed by the ANSSI.