Coolhousing operates its own datacentre with three server rooms in the centre of Prague, on premises of Stimbuilding at Vinohradská třída, directly at the location of the NIX.cz exchange.
The datacentre is located high above the flood area and datacentre space is allocated exclusively to Coolhousing.
Datacentre air conditioning
Our server rooms are cooled via a system of cold and hot aisles by several independent air condition units in the N+1 configuration. The functionality of each of them is continuously monitored by an automated monitoring system.
At the same time, independent temperature sensors that monitor input and output air temperature are placed at each air conditioning unit.
Power supplies are fully backed up. Short-term interruptions in the supply are covered by a cascade of modules of the central UPS 70NET 40/33 and EATON 93PM-50, all in N+1 configuration. The UPS unit not only provides the power, but it also protects the entire network from "spikes" that can appear within the network.
Prolonged power outages are covered by two independent diesel generators. The power supply system is strictly divided into two parts, the IT part (servers) operated with Cummins C330 D5 Moto-Generator and a non-IT section (air conditioning, lights) operated always by SDMO 200 Moto-Generator.
EPS (electronic fire-prevention system)
All our server rooms are equipped with a modern laser fire-prevention detection system VESDA VLF250 that is tested for functionality of sensors, sirens, etc. in regular intervals. As one of a few datacentre operators, we do not leave anything to chance and, therefore, for the case of fire, we have optical temperature sensors placed under false flooring even outside of the data hall.
An operator who carries out monitoring in the 24/7 regime is physically present in a datacentre the whole-year round, including holidays. It cannot happen that authorized parties would not be able to access their equipment or that you would not be able to reach the datacentre by phone. Unauthorized persons are not able to enter a server room, handle equipment, or submit requests for work on equipment.
Security of the datacentre and its adjacent areas is continuously monitored by a security agency's camera system. Datacentre premises are monitored by our own camera systems and operators from the monitoring centre. The camera system is operated under a valid registration issued by the Personal Data Protection Office under registration number 00033872.
The Coolhousing datacentre network can be called a multivendor solution – a combination of Juniper and Cisco brand technologies. The datacentre infrastructure combines the best features from the “Spine & Leaf” and “STP” topologies. The “Spine & Leaf” topology is characterised by high speed, predictability, scalability, and efficient communication. All the network routes that are used by the Coolhousing datacentre topology are configured in an active state using the Equal-Cost Multipathing (ECMP) method. This configuration allows using all the connections at the same time, while the network remains stable and loop-free. Thanks to such adjustment, the datacentre infrastructure is fully redundant and operated in a high-availability (HA) mode. In addition, the presence of the Spanning Tree Protocol (STP), which is also part of the datacentre network, makes it possible to immediately reroute the traffic over another route in the event of a major failure or breakdown of multiple active elements of the network.
Three optical paths independent of one another lead in two different directions from the Coolhousing datacentre on Vinohradská Street. Connectivity to the datacentre is provided by passive elements, through three geographically separated points (T-Mobile THP, DC Nagano, CEColo), thanks to which we can offer our customers complete geographical redundancy of connectivity.
The Coolhousing datacentre has separate links available not only into the NIX.cz neutral peering node, FENIX secure network, but also into the Slovak nodes NIX.sk and SIX. Last but not least, it has transit connectivity available, ensured by the providers UPC Business and Core Backbone with full BGP tables, support for communities and blackholing. Of course, the providers of transit connectivity are divided in such a way that their services are available to all the datacentre routers and, at the time same, full redundancy is ensured.
More information about our network infrastructure find at https://www.coolhousing.net/en/network-structure.
In January 2015, Coolhousing won the statute of a "trusted provider" when it joined the Secure Network Project, together with other major players FENIX.
The FENIX Project originated at the Czech peering node NIX.CZ in 2013 as a response to intensive DoS attacks which targeted major Czech media, banks and mobile operators in March of that year. The aim of the project is to ensure availability of Internet services in case of a DoS attack, from at least the most important service and content providers that are participating in this activity. With Coolhousing, you too can join the Czech internet elite.
Anti-DDoS, Protection Against Threat
On the input to the Datacenter the Radware DefensePro device is connected to protect the technology against network attacks. This device greatly increases the availability of all services by filtering attacks. Behavioural analysis of the data flow, performed in real time, enables a real protection of the customers even against attacks that cannot be detected by other systems.
The Anti-DoS / DDoS protection service uses premium components Radware DefensePro, membership in the secure FENIX Network Project, and the long-term experience of the administrators from Coolhousing. Anti-DDoS/scrubbing centre is operated at the level of connectivity providers. In this way, data traffic is cleaned as early as at suppliers, and the Coolhousing datacentre is capable of countering attacks in the order of hundreds of GB.
More information about protection against network attacks find here.