vmworld 2014: how to build a hybrid cloud
TRANSCRIPT
How to Build a Hybrid Cloud - Steps to Extend Your Datacenter
HBC1533
Chris Colotti, VMware, Inc David Hill, VMware, Inc
Disclaimer • This presentation may contain product features that are currently under development. • This overview of new technology represents no commitment from VMware to deliver these
features in any generally available product. • Features are subject to change, and must not be included in contracts, purchase orders, or
sales agreements of any kind.
• Technical feasibility and market demand will affect final delivery. • Pricing and packaging for any new technologies or features discussed or presented have not
been determined.
2
Agenda
1 What Makes it a Hybrid Datacenter?
2 Use Cases and Starting Points
3 Understanding the vCloud Air Structure
4 vCloud Air Core Offerings
5 The Five Steps to Extending Your Data Center into vCloud Air
6 Putting it all Together
7 Questions
6 CONFIDENTIAL
About the Speaker(s)
7
• Chris Colotti – Principal Technical Marketing Architect, vCloud Air – VCDX #37, vExpert, VCAP-DCD, VCP – Blog: ChrisColotti.us – Twitter: @CColotti
• David Hill – Senior Technical Marketing Architect – vCloud Air – VCAP-DCD, VCP, vExpert – Blog: DavidHill.co – Twitter @davehill99
CONFIDENTIAL
What Defines a Hybrid __________? • hy·brid • noun
– The offspring of two plants or animals of different species or varieties, such as a mule (a hybrid of a donkey and a horse).
– A thing made by combining two different elements; a mixture.
• Adjective – of mixed character; composed of mixed parts.
9
What Makes It a Hybrid Data Center? • Blur the lines between…
– Users and applications – Applications and infrastructure – Hardware and resources – Operations and management – Support and operations
• Simplify access to resources
• Faster time to market
• More geographic options faster • Create a global architecture
• Treat it like any other physical location
10
5 Starting Points to Hybrid Cloud
12
Build next Generation
Applications
Evolve from traditional applications to next
generation applications (Spring, Ruby on Rails)
to deliver on any platform, anywhere
Dev/Test
Take a low-risk first step and free up
valuable on-premises data center capacity by hosting dev/test workloads in hybrid
cloud
Extend Existing Applications
Facilitate
pre-production testing for upgrades and host new apps,
e.g., Microsoft Exchange in hybrid
cloud
Modernize Enterprise
Applications
Build and host business-critical
applications and virtual desktops in hybrid
cloud, including new applications in traditional 3-tier
architectures (Java)
Disaster Recovery
Deliver disaster
recovery and extend the data center for dev/
test, seasonal workloads, and additional geo
locations
Think Outside the Box - Free Your Mind • If you built a new Physical Data Center what steps are there?
– Networking – Infrastructure – Applications
• Always remember the definition of Hybrid
• Focus on applications not infrastructure – Get out of the break fix business – Get into the application business
• Don’t focus on it being “Cloudy” – Just because it’s “In the cloud” means little
• Forget everything you know about ESXi (to a point) – Wait, What?! Current administrators need to elevate role
• Most any use case applies if you treat as any other Data Center 13
How vCloud Air is Structured
15
Tenant Portal Dedicated Cloud – Las Vegas
vCloud Director API
Edge Networking
Edge Networking
VPC – Virginia vCloud Director API
Edge Networking
The vCloud Air Tenant Portal
• Single Sign-on to all your clouds – View the type of cloud – View by Region
• Same login for any access – vCloud API – Disaster Recovery
• Manage additional users – First user is always the uber-admin
• Manage Data Protection Options • Access MyVMware
– Order additional resources – Open support tickets
16
vCloud Air IaaS Offering Comparison
Dedicated Cloud
• Dedicated Hosts – More ISV Licensing options
• Over Commit Built-In • Ideal for both
– Test and Development – Production workloads needing reservations
• User controlled per machine settings • Sub-divide pool of resources
– Create multiple vDC’s
• Multiple Edge Gateway capability – Get more than 9 Interfaces
Virtual Private Cloud
• Shared Hosts – Limited ISV Mobility – Cost Effective – Shared API endpoint
• Fully reserved resources – No over commitment of resources – Eliminates the “Noisy Neighbor”
• Ideal for initial POC and testing
• Single Edge Gateway per vDC • Used for vCloud Air Disaster Recovery
17
Treat the Edge Gateway as an Advanced Core Switch • Familiar networking design • 10 total Interfaces per Edge
– 1 Edge per VPC – Multiple Edges in Dedicated
• Static routes between interfaces automatically
• 5-tupple firewall rules – Deny all by default
• Advanced features – DHCP – Load Balancing – Static routing
INTERNET
Private (Corp) Network
DMZ Network
Test/Dev Network
Isolated Network (Logging)
EDGE GATEWAY
18
Infrastructure as a Service (IaaS)
• New applications built on standard Operating Systems
• Migration of existing applications – From P2V to V2C
• Build infrastructure in the cloud and on premises – View Security Servers – SharePoint – Exchange – Web Servers
WDC (On Premises)
EDGE GATEWAY
EDGE GATEWAY
(192.168.20.0/24 Public-NET)
IPSec VPN
DT01 DT02
(192.168.3.0/24 Desktop-NET)
AD01 .41
AD02 .42
ViewCS .5
vCloud Air Las Vegas (IaaS)
ViewSS .5
ViewSS .5
(192.168.2.0/24 Public-NET)
view.vmtm.org
(192.168.1.0/24 Corp-NET)
66.45.200.34 69.194.137.139 PCoIP and Blast
21
Desktop as a Service on vCloud Air (DaaS)
Windows desktops and apps as a cloud service. Backed by VMware. Simple cloud desktops at a predictable cost, without sacrificing security and control
VMware Horizon DaaS Virtual desktop infrastructure, built on
vCloud Air
Corporate Office Remote Office
Corporate Wi-‐Fi
Mobile Workers
22
Recovery as a Service(RaaS)
vSphere Replication
Replication to vCloud Air: • Warm standby capacity on vCloud Air
• Self-service protection, failover and failback workflows per VM
• 15 min – 24 hr. recovery point objective (RPO)
• Initial data seeding by shipping a disk – Can be done without Downtime!
• Remote management and monitoring, with Production-level support
• Flexible subscription options
Data Protection Option for IaaS Machines • Self Service or full vDC backup • 365 day retention
23
Step 1 – Size Your Resources (vDC)
25
Dedicated Cloud
CPU: 30 GHZ RAM: 120GB Storage: 6TB
Define Reservations and Limits Over Commitment Ratio
What’s your comfort level today? 5:1?
10:1? Maybe 20:1?
CPU: 5GHZ (burst 10GHZ) RAM: 20GB
Storage: 2TB
100% Memory Reservations 50% vCPU Reservation
Lets think about the math Virtual Private Cloud
We haven’t forgotten about On Premises its coming
Step 2 – Design Your Networks
26
External IP
Private Network (10.0.0.0/24)
External IP
DC01 DC02 EMAIL vCC Node
ON-PREMISES ROUTING DEVICE
Dedicated or Virtual Private Cloud
EDGE GATEWAY
EDGE GATEWAY
• How many routed networks? • Create multiple networks for different services • 9 Interfaces to utilize
• VPN Configuration • Network Settings considerations
• Firewall Rules • Firewall rules are always reciprocal
• Impact on my current environment • Move my templates to the cloud
• Other considerations • Backup Networks
Internet
69.194.137.231 69.194.137.139
(192.168.20.0/24 Public-NET)
(192.168.10.0/24 Corp-NET)
(192.168.20.0/24 Public-NET)
(192.168.10.0/24 Corp-NET)
Step 3 – Establish Network Connectivity
27
External IP
Private Network (10.0.0.0/24)
External IP
DC01 DC02 EMAIL vCC Node
Dedicated or Virtual Private Cloud
INTERNET
VPN
Private Line
(192.168.20.0/24 Public-NET)
(192.168.10.0/24 Corp-NET)
ON-PREMISES ROUTING DEVICE
EDGE GATEWAY
Step 4 – Deploy Supporting Infrastructure
28
External IP
Private Network (10.0.0.0/24)
External IP
DC01 DC02 EMAIL vCC Node
ON-PREMISES ROUTING DEVICE
Dedicated or Virtual Private Cloud
EDGE GATEWAY
INTERNET
VPN
(192.168.20.0/24 Public-NET)
(192.168.10.0/24 Corp-NET)
EDGE GATEWAY
(192.168.20.0/24 Public-NET)
(192.168.10.0/24 Corp-NET)
DNS SMTP
DC03 DC04 APP01 APP02
DNS SMTP
DC03 DC04 APP01 APP02
Global Technical Marketing Architecture
Dedicated IaaS vDC LV
VPC IaaS Sterling VA vDC
VPC IaaS LV vDC (DaaS Provider)
VPC RaaS TX vDC
Cloud to Cloud VPN Cloud to Cloud
VPN
Cloud to Cloud VPN
DaaS Secure Tunnel
IPSec VPN
IPSec VPN
IPSec VPN
vCloud Air-DR
Replication
Cloud to Cloud VPN
Dedicated DaaS vDC LV
vmtm.org
• One Physical Site • 3 Virtual Private Clouds
– RaaS in Dallas, TX – IaaS Sterling, VA – IaaS Las Vegas, NV
• 2 Dedicated Clouds – IaaS in Las Vegas, NV – DaaS in Las Vegas, NV
• IPSec VPN in Use • DYN.com hosting all external
DNS Zone records – vmtm.org
31
VMware vCloud Air - Virtual Private Cloud OnDemand
Interested in participating in the vCloud Air OnDemand Beta Progam? The Product Team from vCloud Air is now accepting candidates interested in participating in the Fall 2014 beta program
32
Visit vmware.com/go/ondemand to sign up
vmware.com/go/ondemand
VMware vCloud Air 5 Starting Points Program
VMworld 2014
33
Star8ng Point Session ID TOPIC
Dev/Test HBC2577 Hybrid Sandboxing – Create the Ul>mate On and Off Premises Test/Dev Factory
Extend Exis>ng Applica>ons HBC2066 Architect the Hybrid Cloud for
Exchange and Lync
Disaster Recovery HBC 1534 Recovery as a Service (RaaS) with vCloud Hybrid Service
Modernize Enterprise Applica>ons
HBC 2609 Smells Like Team Spirit: Achieve Hybrid Opera>ons Nirvana with vCloud Hybrid Service
Create Next Genera>on Applica>ons
HBC 1917 Build Your First Mobile Applica>on…In the Cloud…In 60 minutes
Learn the fundamentals on vCloud Air by attending any or all of our 5 Starting Point breakout sessions within the Hybrid Cloud Track
33
Attend any of these breakout sessions and earn a free vCloud Air “Dilbert” t-shirt.
CONFIDENTIAL
Hybrid Cloud Hands On Labs
Check out the Expert Led and Self Paced vCloud Air Hands on Labs
34
HOL: Expert-Led Workshop ELW-HBD-1481 Hybrid Cloud Jumpstart Workshop
HOL: Expert-Led Workshop ELW-HBD-1484 Disaster Recovery to the Cloud Workshop
HOL: Self Paced Lab SPL-HBD-1481 vCloud Hybrid Service - Jump Start for vSphere Admins
HOL: Self Paced Lab SPL-HBD-1482 vCloud Hybrid Service - Networking & Security
HOL: Self Paced Lab SPL-HBD-1483 vCloud Hybrid Service - Manage Your Cloud
Session ID Title Learn the fundamentals on vCloud Air by attending any or all of our 5 Starting Point breakout sessions within the Hybrid Cloud Track as well as our Hands on Labs
Try any of these HOLs and earn a free vCloud Air “Dilbert” t-shirt.
Hybrid Cloud Theater Schedule - VMware Booth (Solutions Exchange)
36
In addition to the breakout sessions within the Hybrid Cloud track, check out our THEATER schedule for the week from the VMware booth at the Solutions Exchange
Sunday 5:00pm - What is this Hybrid Cloud Thing Anyway? Monday 12:15pm - Getting Started with Hybrid Cloud - 5 Use Cases Monday 1:30pm - vCloud Air OnDemand Monday 3:45pm - What is this Hybrid Cloud Thing, Anyway? Monday 5:30pm - Hybrid Cloud DevOps: How to keep your Devs from Running Wild Tuesday 12:15pm - Project NEE - Delivering Hands-on Education at Cloud Scale Tuesday 1:00pm - vCloud Air Network Tuesday 2:45pm - Disaster Recovery with vCloud Air Tuesday 4:00pm - Getting Started with Hybrid Cloud - 5 Use Cases Tuesday 5:30pm - Hybrid Management on vCloud Air Wednesday 10:15am - vCloud Air OnDemand Wednesday 12:45pm - The Internet of Things: Virtual Machines, vCloud Air, vCenter Operations and the Intel IoT Gateway Wednesday 2:15pm - Disaster Recovery with vCloud Air Wednesday 3:30pm - Another Day in Paradise....Going Full Hybrid with vCloud Air Wednesday 4:30pm - RAD in the Hybrid Cloud
CONFIDENTIAL
Fill out a survey Every completed survey is entered into a
drawing for a $25 VMware company store gift certificate