Se ha denunciado esta presentación.
Utilizamos tu perfil de LinkedIn y tus datos de actividad para personalizar los anuncios y mostrarte publicidad más relevante. Puedes cambiar tus preferencias de publicidad en cualquier momento.

VMware Cloud on AWS - 100819.pdf

1.550 visualizaciones

Publicado el

Learn more about the basics of hybrid cloud with VMware Cloud on AWS. Links in slides: http://cloud.vmware.com/govcloud/roadmap
https://cloud.vmware.com/vmc-aws/roadmap

  • Sé el primero en comentar

  • Sé el primero en recomendar esto

VMware Cloud on AWS - 100819.pdf

  1. 1. Confidential │ ©2018 VMware, Inc. VMware CloudTM on AWS Overview Shane Hiett Staff Solutions Engineer
  2. 2. 2Confidential │ ©2018 VMware, Inc. Modern business applications require flexibility Public Cloud Private Cloud Compute Edge ….enabled by a hybrid cloud that delivers consistent infrastructure and operations
  3. 3. 3Confidential │ ©2018 VMware, Inc. Key requirements and challenges of a hybrid cloud Public Cloud Private Cloud Compute Edge Operational Inconsistencies Different Skillsets & Tools Disparate Management Tools & Security Controls Inconsistent Application SLAs Incompatible Machine Formats Challenges and Complexity
  4. 4. 4Confidential │ ©2018 VMware, Inc. Jointly engineered solution delivers the best of VMware and AWS for customers
  5. 5. 5Confidential │ ©2018 VMware, Inc. VMware Cloud on AWS Rich VMware SDDC delivered as a cloud service on AWS Consistency and familiarity of VMware technologies Easy workload portability and hybrid capabilities Direct access to the power of native AWS services Existing and new apps with Containers and VMs
  6. 6. 6Confidential │ ©2018 VMware, Inc. Making the Hybrid Cloud a Reality Extend Cloud Foundation into the public cloud and consume as a service PRIVATE CLOUD PUBLIC CLOUD Delivered as-a-servicePrivately Managed and Operated vSphere vSAN NSX VMware CloudTM on AWS Powered by VMware Cloud Foundation
  7. 7. 7Confidential │ ©2018 VMware, Inc. VMware Cloud on AWS Service Overview VMware CloudTM on AWS Powered by VMware Cloud Foundation AWS Global InfrastructureData Center vSphere vSAN NSX Private Cloud Amazon Web Services vRealize Suite, ISV ecosystem vCentervCenter • VMware SDDC running on AWS bare metal • Sold, operated and supported by VMware & its partners • Support for containers & VMs • On-demand capacity & flexible consumption • Full operational consistency with on-premises SDDC • Seamless workload portability and hybrid operations • Global AWS footprint, reach, availability • Direct access to native AWS services Service Highlights vSphere Powered by VMware
  8. 8. 8Confidential │ ©2018 VMware, Inc. Use Cases Data Center Extension Disaster Recovery Cloud Migrations Next Generation Applications
  9. 9. 9Confidential │ ©2018 VMware, Inc. 9Confidential │ ©2018 VMware, Inc. On-demand / hourly model 1 or 3-year reserved model Buy add-on services VMware SPP or HPP Credits Purchase Orders Credit Card Leverage existing investments with VMware Purchase VMware Cloud on AWS at a lower rate No trade-in of on-premises licenses required Flexible consumption models Consumption-based Billing Various Payment Methods Hybrid Loyalty Program
  10. 10. 10Confidential │ ©2018 VMware, Inc. VMware Cloud on AWS is a VMware Service Service is delivered, operated, sold and supported by VMware vSphere vSAN NSX VMware CloudTM on AWS Powered by VMware Cloud Foundation
  11. 11. Simultaneously Expanding to Multiple Global AWS Regions March 2019 Q2 2019 Q3 2019 Q4 2019 1H2020 (est.) Asia Pacific (Singapore) *South America (Sao Paulo)* Europe (Sweden) Bahrain China (Mainland) *Canada (Central)* *Asia Pacific (Seoul)* China (Hong Kong) Gov Cloud US East Cape Town Europe (Paris) **Asia Pacific (Osaka-Local)** Milan *Asia Pacific (Mumbai)* REGIONAL AVAILABILITY 3 2 33 33 3 2 3 3 3 3 2 3 3 2 3 3 2 2 * Stretched cluster not supported (2 AZs) ** Disaster Recovery site only, gated entry # # # Available Regions and # of Availability Zones (AZs) US West (Oregon) US East (N. Virginia) Europe (London) Europe (Frankfurt) Asia Pacific (Sydney) Europe (Ireland) *US West (N. California)* US East (Ohio) Asia Pacific (Tokyo) Gov Cloud US West # #
  12. 12. 12Confidential │ ©2018 VMware, Inc. Restrictive Access Model § No root ESXi access § No VIB installations § No VDS configuration access § No direct management VM access vSAN Cluster Managed by VMware Managed by Customer VC NSX PSC VM VM VMVM Customer VMware VM
  13. 13. 13Confidential │ ©2018 VMware, Inc. Elastic DRS Integration CLUSTER OPERATING WITHIN TARGET THRESHOLDS vSAN Cluster CPU Memory Storage THRESHOLD EXCEEDED PROVISION ADDITIONAL HOSTCLUSTER RETURNS TO TARGET THRESHOLD In Development: Feature in active development and testing. This does not imply a specific timeline, since feature development times vary.
  14. 14. 14Confidential │ ©2018 VMware, Inc. Automated Cluster Remediation HOST FAILS, OR PROBLEM IDENTIFIED PREVIOUS HOST EVACUATED FROM CLUSTER, FULLY REPLACED BY NEW HOST NEW HOST ADDED TO CLUSTER. DATA FROM PROBLEM HOST REBUILT, AND/OR MIGRATED vSAN Cluster
  15. 15. 15Confidential │ ©2018 VMware, Inc. Preview: Compute Policy Define policies to implement VM placement constraints VM-Host Affinity • Provides ability to associate VMs to a specific host group within a VMware Cloud on AWS SDDC cluster VM-VM Anti-Affinity • Allows a group of virtual machines to be spread across multiple hosts • Prevents simultaneous failure of those virtual machines in the event of host failure Disable DRS vMotion • provides ability to prevent vMotion triggered by DRS load-balancing, except during host maintenance mode • Ideal for vMotion-sensitive workloads such as large transactional databases and real-time transaction processing applications VM VM VM VM VM VM VM VM VM VMX *Preview: Feature released in preview to gather feedback – may not be available to all applicable customers or in all AWS regions. The information in this presentation is for informational purposes only and may not be incorporated into any contract. There is no commitment or obligation that items in ‘Preview’ will become ‘Available’. TECH PREVIEW
  16. 16. 16Confidential │ ©2018 VMware, Inc. Stretched Clusters for VMware Cloud on AWS Allows developers to focus on business capabilities while infrastructure takes care of application availability AWS Availability Zone A AWS Availability Zone B … … vSphere HA/DRS span across AZ NSX logical networks Stretched Clusters … … vSAN stretched cluster VMware Cloud on AWS SDDC AWS Region • Building on intrinsic vSphere HA as well as automated host failure remediation • Zero RPO high availability across AZs • Built-in infrastructure layer – no necessity to architect in the application • Stretched cluster with common logical networks with vSphere HA/DRS enabled • Synchronous replication between AZs for mission-critical applications • If one AZ goes down, it is simply treated as a vSphere HA event and VM is restarted in the other AZ
  17. 17. 17Confidential │ ©2018 VMware, Inc. Elastic Data Center Network Overview Management Pool § vCenter Server, PSC, NSX Manager § NSX Edge Gateway (MGW) § NSX Logical Switch for management VMs § Firewall and VPN for security Compute Pools § NSX Edge Gateway (CGW) § NSX Logical Switch for workload VMs § Firewall and VPN for security § NAT to connect VMs to the Internet MGW CGW vSAN Cluster Managed by VMware Managed by Customer VC NSX PSC VM VM VMVM VM INTERNET
  18. 18. 18Confidential │ ©2018 VMware, Inc. Connecting Clouds Options to connect to VMware Cloud on AWS 18 VMware CloudTM on AWS Powered by VMware Cloud Foundation vSphere vSAN NSX AWS Direct Connect • Private connection (secure tenancy) • Fast connection (1GbE or 10GbE) IPSEC VPN to Existing Network Architecture L2 VPN – Full NSX Deployed On-Premises Stand Alone NSX Edge
  19. 19. 19Confidential │ ©2018 VMware, Inc. Simple Migration to the Cloud § Exciting new capability to vMotion VMs from on-premises to SDDC and back over L2VPN § No need to power off the VM § No need to re-IP address of the VM § Requires 250Mbps of bandwidth per vMotion
  20. 20. 20Confidential │ ©2018 VMware, Inc. Interconnectivity with Direct Connect: For customers with traffic-heavy workloads NSX integrates with AWS Direct Connect for End-to-End Private Networking • High BW and low latency connectivity for all traffic types • NSX logical & management networks advertised over Direct Connect • IPSec VPN for encrypted traffic but not required • Accelerates migration to cloud and enables multi-tier hybrid applications Compute Storage NetworkvSphere-based data center Compute Storage NSX VMware Cloud on AWSOn-Premises Data Center AWS Direct Connect Network A Network BNetwork A Network B Network SDDC with NSX
  21. 21. 21Confidential │ ©2018 VMware, Inc. Interconnectivity with NSX Edge IPsec VPN End-to-end connectivity via NSX • Simplified VPN deployment through BGP routing support • Dual-homed tunnels across unique endpoints enables inter-site resiliency • Accelerated throughput and performance for IPsec tunnel traffic using DPDK technologyCompute Storage NetworkvSphere-based data center Compute Storage Network NSX VMware Cloud on AWSOn-Premises Data Center Network A Network B NSX Network A Network B SDDC with NSX NSX VPN
  22. 22. 22Confidential │ ©2018 VMware, Inc. Micro-Segmentation in the Public Cloud NSX Security, now in VMware Cloud on AWS • NSX provides common hybrid- spanning control plane • Granular control for East-West traffic between application workloads running in VMware Cloud on AWS • Simplified policies based on the application (e.g. VM names, user- defined tags) • Policies follow workloads wherever they are moved within VMware Cloud on AWS SDDC • Helps secure applications and build compliant environments vSphere vSAN NSX Network A Network B APP 1 APP 2
  23. 23. 23Confidential │ ©2018 VMware, Inc. Increase flexibility with vCenter Cloud Gateway Single logical view and hybrid management of both on-premises & VMware Cloud on AWS resources from an on-premises appliance Hybrid management from on-premises: Manage VMware Cloud on AWS as extension of on-premises data center Configure vCenter Hybrid Linked Mode from on-premises to link on-premises to VMware Cloud on AWS vCenter server instances Does not require AD to be explicitly added as an Identity Source to the cloud vCenter *Preview: Feature released in preview to gather feedback – may not be available to all applicable customers or in all AWS regions . The information in this presentation is for informational purposes only and may not be incorporated into any contract. There is no commitment or obligation that items in ‘Preview’ will become ‘Available’. Hybrid management from on-premises: Manage VMware Cloud on AWS as extension of on-premises data center Configure vCenter Hybrid Linked Mode from on-premises to link on-premises to VMware Cloud on AWS vCenter server instances Does not require AD to be explicitly added as an Identity Source to the cloud vCenter AWS Global InfrastructureCustomer data Center vSphere vSAN NSX Operational management AWS services vRealize Suite, ISV ecosystem vCentervCenter VMware CloudTM on AWS Powered by VMware Cloud Foundation TECH PREVIEW
  24. 24. 24Confidential │ ©2018 VMware, Inc. New high-capacity storage option with Elastic vSAN and R5.metal New diskless host instance R5.metal VMware vSAN integrated with Amazon Elastic Block Storage (EBS) Higher capacity per host for better VM consolidation – raw capacity ranging from 15TiB to 35TiB Faster remediation of host failures Can be the first cluster provisioned in a VMware Cloud on AWS SDDC Lowers cost for Disaster Recovery use case Tech Pre- view Available VMware Cloud on AWS SDDC Elastic vSAN Amazon EC2 R5.metal Amazon EC2 R5.metal Amazon EC2 R5.metal EBS EBS EBS EBS EBS EBS EBS EBS EBS EBS EBS EBS EBS EBS EBS EBS EBS EBS EBS EBS EBS EBS EBS EBS EBS EBS EBS … Management VMs Customer workload VMs For storage-dense environments to cost-effectively scale storage Status moving from Preview to Available
  25. 25. 25Confidential │ ©2018 VMware, Inc. • All data at rest on VMware Cloud on AWS is encrypted using vSAN software-based encryption • AWS KMS integration enables secure and centralized management of keys • Makes it easier for customers to meet their security, compliance and regulatory requirements New encryption capabilities for improved risk management Built-in integration with AWS Key Management System (KMS) for vSAN encryption Local SSD devices vSANvSAN EBS Volume AWS KMS
  26. 26. 26Confidential │ ©2018 VMware, Inc. • Increased deployment flexibility • Specify just the number of CPU cores you need per host (applied cluster wide) • Reduce costs for running mission-critical applications licensed per-core Preview: Custom CPU Core Counts Regular Cluster “Custom” Cluster … … TECH PREVIEW *Preview: Feature released in preview to gather feedback – may not be available to all applicable customers or in all AWS regions. The information in this presentation is for informational purposes only and may not be incorporated into any contract. There is no commitment or obligation that items in ‘Preview’ will become ‘Available’.
  27. 27. 27Confidential │ ©2018 VMware, Inc. VMware Hybrid Cloud Extension Service Overview Infrastructure Hybridity App Mobility vSphere 5.0+ On-Premises vSphere Internet / Direct Connect / WAN Infrastructure Abstraction Modern Enterprise Datacenter vSphere Partners: IBM, OVH vSphere • App Mobility between any vSphere versions across on-premises and VMware Cloud on AWS • Best-In-Class migration, VMware Cloud Motion with vSphere Replication with zero downtime • Secure, Bi-Directional, Traffic Engineered, Network Extension with Auto VPN set up USE CASES • DC Evacuation • DC Consolidation • Hardware Refresh • DC Extension
  28. 28. 28Confidential │ ©2018 VMware, Inc. 28Confidential │ ©2018 VMware, Inc. Increasing scale 2x to 1000VMs protected per VMware Cloud on AWS SDDC VMware Site Recovery for VMware Cloud on AWS Protecting business operations with fast, large-scale Disaster Recovery as a Service Replace existing DR site/solution for on-prem apps Complement existing DR site/solution for on-prem apps Establish new DR for on-prem apps (no DR solution today) DR for VMware Cloud on AWS to other regions or back to on-prem
  29. 29. 29Confidential │ ©2018 VMware, Inc. VMware Horizon 7 for VMware Cloud on AWS Use Cases Enabled by Horizon 7 on VMware Cloud on AWS Data Center expansion App locality Disaster recovery and business continuity for on- premises deployment Temporary desktop and app capacity Quick POC of on- premises Horizon
  30. 30. 30 VMware Network Insight integration with VMware Cloud on AWS Accelerate application security and networking with VMware Network Insight Plan, deploy and troubleshoot application migration & security Troubleshoot connectivity across hybrid cloud environment Obtain comprehensive visibility and analytics • Plan application migration by discovering services & mapping dependencies • Plan micro-segmentation by mapping application flows • Get firewall rule recommendations • Troubleshoot flows blocked by firewalls • Troubleshoot VM to VM path from on-premises SDDC to VMware Cloud on AWS • Shows networking overlay with NSX as well as underlay switches, routers & firewalls • Quickly identify networking or security related issues blocking communication. • Search application flows, security groups, VMs, firewall rules etc. within VMware Cloud on AWS • Get advanced analytics to identify and proactively mitigate issues (e.g., top talkers, outlier detection)
  31. 31. 31©2018 VMware, Inc. Introducing VMware Cloud on AWS Outposts • VMware Cloud on AWS infrastructure delivered as-a- service on-premises • AWS will deliver compute and storage racks with quick SLA for procurement • Fully-managed VMware SDDC including compute, storage and networking • Deployed, operated, and supported by VMware or one of its partners • Will eliminate customer burden of managing on-premises infrastructure lifecycle • Pay-as-you-go and OpEx cost model for elastic hyper- scale architecture NEW Customer Data Center VMs Containers AWS Bare Metal On-Premises Intrinsic Security & Lifecycle Automation Powered by VMware Cloud Foundation Integrated with AWS Services NetworkCompute Storage Automation & Operations STRATEGY AND VISION The information in this presentation is for informational purposes only and may not be incorporated into any contract. There is no commitment or obligation by VMware that items in this presentation will become available
  32. 32. 32Confidential │ ©2018 VMware, Inc. The VMware Cloud on AWS GovCloud (US) Roadmap http://cloud.vmware.com/govcloud/roadmap The VMware Cloud on AWS GovCloud (US) roadmap includes feature availability in both GovCloud and the commercial instances.
  33. 33. 33Confidential │ ©2018 VMware, Inc. VMware Cloud on AWS Roadmap Let’s review the live roadmap https://cloud.vmware.com/vmc-aws/roadmap
  34. 34. Confidential │ ©2018 VMware, Inc. Thank You

×