Bluesoft, a software development company that is part of the BiQ Group, delivers web applications built on the Kentico platform. These solutions are used by organisations such as E.ON, Sazka, Škoda Auto, Bank Austria, and dozens of others across the EU.
In addition to design, UX, and back-end development, Bluesoft also handles integration with other systems and manages the full operation of websites running in Azure and on servers hosted at MasterDC. To support higher performance and security, we designed a modern platform for Bluesoft and its clients that simplifies infrastructure management while improving the quality of the services provided.
Bluesoft previously relied on dedicated servers maintained by their internal team. As some software was nearing end of support and more powerful hardware was needed as well, Bluesoft used this opportunity to make broader architectural changes. The goal was to reduce the internal effort required to manage the server infrastructure, strengthen security, and centralise access management.
“We wanted to outsource the management of the operating system, virtualisation, monitoring, and firewall so we could focus solely on our applications. At the same time, we decided to move our test environment from on-premises infrastructure to MasterDC. We also needed to implement unified authentication for all systems in MasterDC and in Azure, where part of our infrastructure runs,” explains Milan Šůstek, CTO of BiQ Bluesoft.
“We appreciate the flexibility of the MasterDC team, their willingness to help solve problems, and their focus on solutions that deliver long-term improvements.”
Milan Šůstek
CTO, BiQ Bluesoft
The platform is built on Microsoft Hyper-V and Windows Server technologies. It supports IIS (Internet Information Services) web servers and Microsoft SQL Server databases. The architecture was designed to reliably handle both current operations and the future growth of Bluesoft’s services.
The entire environment is enclosed within an internal network and separated from the public internet by a pfSense firewall, which also acts as a VPN server and gateway. An Nginx proxy provides a secure entry point for applications. It filters traffic, protects against attacks, and balances the load across the infrastructure.
User and service authentication is centrally managed via Microsoft Entra ID and Entra Domain Services, replacing traditional domain controllers. The solution also provides DDoS protection, monitors system availability and performance, and manages infrastructure, security, and backups, all handled by MasterDC.
A virtualisation platform strengthening the security of server infrastructure
and the quality of Bluesoft’s services.
Bluesoft already had a clear vision of their cybersecurity requirements. During consultations, we identified the technologies that best matched those needs. We configured the firewall, built the internal network, set up a VPN server and tunnel, and deployed a load balancer with an integrated application firewall and proxy through which all internet traffic passes.
After configuring and thoroughly testing the new environment, we carried out a phased migration of the infrastructure and applications, with a strong focus on service continuity. “MasterDC minimised the involvement of our clients. In the past, we experienced migrations where customers had to intervene multiple times, which wasn’t comfortable. In situations like this, it’s worth checking the vendor’s approach in advance,” recommends Milan Šůstek of Bluesoft.
Microsoft Entra ID now unifies identity and access management across Bluesoft’s environment, expanding its existing deployment. Users and services authenticate uniformly, and permissions are managed from a single, centralised point. This makes access control clearer, daily administration easier, and reduces the risk of unauthorised access.
We provide operational support for Bluesoft’s dedicated development server and their virtualisation platform running web projects. As part of the Managed Enterprise service, our team manages the virtualisation platform, integrates it with Microsoft Entra ID, and oversees network infrastructure, security, monitoring, and backups using Veeam Enterprise. This setup ensures quick recovery of virtual machines or the entire infrastructure when needed.
“MasterDC approached both the migration and the ongoing operation of the server solution responsibly. Instead of simply applying quick fixes, they focus on identifying the root cause of problems and introducing changes that lead to long-term improvements and optimisation,” says Šůstek when evaluating the collaboration.
For Bluesoft, security and high server availability are top priorities. The new infrastructure design directly addresses these requirements. It strengthens security, improves stability, and is built on technologies that support future scalability. As a result, Bluesoft can provide higher-quality hosting services to their customers.
Outsourcing server management has allowed Bluesoft’s team to focus on development. “Managed services provide greater reliability because MasterDC assumes responsibility for the infrastructure. The well-defined division of responsibilities at the virtual machine level has proven effective, and the flexibility of the MasterDC team, along with their willingness to help solve problems, plays a major role in this,” concludes Milan Šůstek, Bluesoft CTO.
Connect with our team today to discuss your needs and schedule a meeting.
