Cisco Meraki Datacenter Design

Cisco Meraki's service is collocated in tier-1, SAS70 type II certified datacenters. These datacenters feature state of the art physical and cyber security and highly reliable designs. All Cisco Meraki services are replicated across multiple independent datacenters, so that customer-facing services fail over rapidly in the event of a catastrophic datacenter failure.

Availability Monitoring

• 99.99% uptime service level agreement (that's under one hour per year)
• 24x7 automated failure detection - all servers are tested every five minutes from multiple locations
• Rapid escalation procedures across multiple operations teams
• Independent outage alert system with 3x redundancy

Redundancy

• Five geographically dispersed datacenters
• Every customer's data (network configuration and usage metrics) replicated across three independent datacenters
• Real-time replication of data between datacenters (within 60 seconds)
• Nightly archival backups

Disaster Recovery

• Rapid failover to hot spare in event of hardware failure or natural disaster
• Out of band architecture preserves end-user network functionality, even if connectivity to Cisco Meraki's cloud services is interrupted
• Failover procedures drilled weekly

Cloud Services Security

• 24x7 automated intrusion detection
• Protected via IP and port-based firewalls
• Remote access restricted by IP address and verified by public key (RSA)
• Systems are not accessible via password access
• Administrators automatically alerted on configuration changes

Out-of-Band Architecture

• Only network configuration and usage statistics are stored in the cloud
• End user data does not traverse through the datacenter
• All sensitive data (e.g. passwords) stored in encrypted format

Physical Security

• A high security card key system and biometric readers are utilized to control facility access
• All entries, exits, and cabinets are monitored by video surveillance
• Security guards monitor all traffic into and out of the datacenters 24x7, ensuring that entry processes are followed

Disaster Preparedness

• Datacenters feature sophisticated sprinkler systems with interlocks to prevent accidental water discharge
• Diesel generators provide backup power in the event of power loss
• UPS systems condition power and ensure orderly shutdown in the event of a full power outage
• Each datacenter has service from at least two top-tier carriers
• Seismic bracing is provided for the raised floor, cabinets, and support systems
• In the event of a catastrophic datacenter failure, services fail over to another geographically separate datacenter

Environmental Controls

• Over-provisioned HVAC systems provide cooling and humidity control
• Flooring systems are dedicated for air distribution

Regular Penetration Testing

• All Cisco Meraki datacenters undergo daily penetration testing by an independent third party

Datacenter Certification

• Cisco Meraki datacenters are SAS70 type II certified