best practice deployment of f5 - na.eventscloud.com
TRANSCRIPT
![Page 1: Best Practice Deployment of F5 - na.eventscloud.com](https://reader035.vdocument.in/reader035/viewer/2022071613/6157d79ace5a9d02d46fb4ff/html5/thumbnails/1.jpg)
![Page 2: Best Practice Deployment of F5 - na.eventscloud.com](https://reader035.vdocument.in/reader035/viewer/2022071613/6157d79ace5a9d02d46fb4ff/html5/thumbnails/2.jpg)
Best Practice Deployment of F5 App Services in Private CloudsHenry Tam, Senior Product Marketing Manager John Gruber, Sr. PM Solutions Architect
![Page 3: Best Practice Deployment of F5 - na.eventscloud.com](https://reader035.vdocument.in/reader035/viewer/2022071613/6157d79ace5a9d02d46fb4ff/html5/thumbnails/3.jpg)
© 2016 F5 Networks
The trend of data center, private cloud
OpenStack
F5 Solution
Customer Use Cases
Questions
Agenda
3
12345
![Page 4: Best Practice Deployment of F5 - na.eventscloud.com](https://reader035.vdocument.in/reader035/viewer/2022071613/6157d79ace5a9d02d46fb4ff/html5/thumbnails/4.jpg)
© 2016 F5 Networks
“What CIOs are ultimately looking for is the ability to solve business problems faster than their competitors, while reducing risk, adhering to regulatory requirements, and
increasing efficiency.”
-Fintan Ryan, RedMonk Analyst
4
![Page 5: Best Practice Deployment of F5 - na.eventscloud.com](https://reader035.vdocument.in/reader035/viewer/2022071613/6157d79ace5a9d02d46fb4ff/html5/thumbnails/5.jpg)
Private Cloud Trends
![Page 6: Best Practice Deployment of F5 - na.eventscloud.com](https://reader035.vdocument.in/reader035/viewer/2022071613/6157d79ace5a9d02d46fb4ff/html5/thumbnails/6.jpg)
Innovation and low risk are competing priorities
2013 2014 2015
17%15%12%
17%14%
11%
23%21%
22%
20%21%25%
22%30%31%
Increase RevenueLower CostsImprove Product or Service QualitySpeed Time to MarketLower Risk
Your Priorities: Innovate without Risk
Sample sizes: 2013 had 1,540 respondents; 2014 had 2,041; and 2015 had 1,736Source: 451 Group Commissioned by Microsoft
![Page 7: Best Practice Deployment of F5 - na.eventscloud.com](https://reader035.vdocument.in/reader035/viewer/2022071613/6157d79ace5a9d02d46fb4ff/html5/thumbnails/7.jpg)
© 2016 F5 Networks 7
IDENTIFIED PRIVATE CLOUD AS
STRATEGICALLY IMPORTANT
43%IDENTIFIED PUBLIC
CLOUD AS STRATEGICALLY
IMPORTANT
34%
F5 CUSTOMERS SURVEYED
3,002PLAN A MIX OF PUBLIC AND PRIVATE CLOUD INFRASTRUCTURES
81%PLAN TO MIGRATE UP TO HALF THEIR APPS
TO THE CLOUD
66%
67% of F5 Customers Employ a Cloud-First Strategy
![Page 8: Best Practice Deployment of F5 - na.eventscloud.com](https://reader035.vdocument.in/reader035/viewer/2022071613/6157d79ace5a9d02d46fb4ff/html5/thumbnails/8.jpg)
© 2016 F5 Networks 8
IDENTIFIED PRIVATE CLOUD AS
STRATEGICALLY IMPORTANT
43%IDENTIFIED PUBLIC
CLOUD AS STRATEGICALLY
IMPORTANT
34%
F5 CUSTOMERS SURVEYED
3,002PLAN A MIX OF PUBLIC AND PRIVATE CLOUD INFRASTRUCTURES
81%PLAN TO MIGRATE UP TO HALF THEIR APPS
TO THE CLOUD
66%
67% of F5 Customers Employ a Cloud-First Strategy
![Page 9: Best Practice Deployment of F5 - na.eventscloud.com](https://reader035.vdocument.in/reader035/viewer/2022071613/6157d79ace5a9d02d46fb4ff/html5/thumbnails/9.jpg)
What is a Private Cloud?
COMPUTE NETWORKING STORAGE
SHARED INFRASTRUCTURE
![Page 10: Best Practice Deployment of F5 - na.eventscloud.com](https://reader035.vdocument.in/reader035/viewer/2022071613/6157d79ace5a9d02d46fb4ff/html5/thumbnails/10.jpg)
What is a Private Cloud?
GUI API DASHBOARD
COMPUTE NETWORKING STORAGE
SHARED INFRASTRUCTURE
![Page 11: Best Practice Deployment of F5 - na.eventscloud.com](https://reader035.vdocument.in/reader035/viewer/2022071613/6157d79ace5a9d02d46fb4ff/html5/thumbnails/11.jpg)
What is a Private Cloud?
GUI API DASHBOARD
SERVICE CATALOG
STORAGE APPLICATIONS APP DELIVERY
SERVERS TEMPLATES
NETWORKS
COMPUTE NETWORKING STORAGE
SHARED INFRASTRUCTURE
![Page 12: Best Practice Deployment of F5 - na.eventscloud.com](https://reader035.vdocument.in/reader035/viewer/2022071613/6157d79ace5a9d02d46fb4ff/html5/thumbnails/12.jpg)
What is a Private Cloud?
GUI API DASHBOARD
SERVICE CATALOG
AUTOMATION METERING
STORAGE APPLICATIONS APP DELIVERY
SERVERS TEMPLATES
NETWORKS
COMPUTE NETWORKING STORAGE
SHARED INFRASTRUCTURE
![Page 13: Best Practice Deployment of F5 - na.eventscloud.com](https://reader035.vdocument.in/reader035/viewer/2022071613/6157d79ace5a9d02d46fb4ff/html5/thumbnails/13.jpg)
© 2016 F5 Networks
What is a Private Cloud?
13
Any complete private or public cloud offering also needs a service catalog, self-service, automated delivery, and service metering to fulfill business expectations.
![Page 14: Best Practice Deployment of F5 - na.eventscloud.com](https://reader035.vdocument.in/reader035/viewer/2022071613/6157d79ace5a9d02d46fb4ff/html5/thumbnails/14.jpg)
Cloud Technology Stack Choices
VMware vRealize Suite
OpenStack
Microsoft Azure Stack
Cisco ACI Nuage VMware NSX
Juniper Contrail
Cloud Stack
3rd Party SDN
![Page 15: Best Practice Deployment of F5 - na.eventscloud.com](https://reader035.vdocument.in/reader035/viewer/2022071613/6157d79ace5a9d02d46fb4ff/html5/thumbnails/15.jpg)
Cloud Technology Stack Choices
VMware vRealize Suite
OpenStack
Microsoft Azure Stack
Cisco ACI Nuage VMware NSX
Juniper Contrail
Cloud Stack
3rd Party SDN
![Page 16: Best Practice Deployment of F5 - na.eventscloud.com](https://reader035.vdocument.in/reader035/viewer/2022071613/6157d79ace5a9d02d46fb4ff/html5/thumbnails/16.jpg)
Private Cloud and OpenStack Architectures
![Page 17: Best Practice Deployment of F5 - na.eventscloud.com](https://reader035.vdocument.in/reader035/viewer/2022071613/6157d79ace5a9d02d46fb4ff/html5/thumbnails/17.jpg)
© 2016 F5 Networks
OpenStack Overview
17
What is OpenStack? • Open source cloud platform based
on community-defined standards • Manages compute, storage, and
network resources • Expose standard APIs for tenants
• Python API and REST methods
Meets Requirements • Well-defined tenant model and
service catalog • Programmable, scalable infrastructure • Orchestration via Heat
Deployment and Scalability (Heat)
Metering (Ceilometer)
Compute (Nova)
Identity (Keystone)
Images (Glance) Object Store (Swift)
Storage (Cinder)Network (Neutron)
LBaaS VPNaaS FWaaS
DNSDHCPL2/L3
Man
agem
ent C
onso
le (H
oriz
on)
![Page 18: Best Practice Deployment of F5 - na.eventscloud.com](https://reader035.vdocument.in/reader035/viewer/2022071613/6157d79ace5a9d02d46fb4ff/html5/thumbnails/18.jpg)
© 2016 F5 Networks
LBaaS and Heat
18
Deployment and Scalability (Heat)
Metering (Ceilometer)
Compute (Nova)
Identity (Keystone)
Images (Glance) Object Store (Swift)
Storage (Cinder)
LBaaS VPNaaS FWaaS
DNSDHCPL2/L3
Man
agem
ent C
onso
le (H
oriz
on)
Network (Neutron)
• F5 Integrates with both Heat and LBaaS to deliver services
• Using Virtual Editions or High Capacity hardware
• Use either or both
![Page 19: Best Practice Deployment of F5 - na.eventscloud.com](https://reader035.vdocument.in/reader035/viewer/2022071613/6157d79ace5a9d02d46fb4ff/html5/thumbnails/19.jpg)
© 2016 F5 Networks
F5 LBaaS Implementation
19
• LBaaS V1 and V2 available
• Access using CLI, API or GUI (Horizon)
• Supports Standalone, HA-Pairs and N+1 Clustering
• Software Virtual Editions AND Hardware
• Hardware supports VLAN, VXLAN, and GRE Tunneling
![Page 20: Best Practice Deployment of F5 - na.eventscloud.com](https://reader035.vdocument.in/reader035/viewer/2022071613/6157d79ace5a9d02d46fb4ff/html5/thumbnails/20.jpg)
© 2016 F5 Networks
Load Balancing
20
LBaaS
TCP, HTTP, HTTPS
Basic Health Monitors
Simple Distribution
![Page 21: Best Practice Deployment of F5 - na.eventscloud.com](https://reader035.vdocument.in/reader035/viewer/2022071613/6157d79ace5a9d02d46fb4ff/html5/thumbnails/21.jpg)
© 2016 F5 Networks
Load Balancing
21
Application DeliveryHeat LBaaS
TCP, HTTP, HTTPS, HTTP/2, FTP, FIX, DIAMETER, RTSP, PCoIP…
Application Security
Traffic Optimization
App Health Monitors
Advanced Distribution
TCP, HTTP, HTTPS
Basic Health Monitors
Simple Distribution
![Page 22: Best Practice Deployment of F5 - na.eventscloud.com](https://reader035.vdocument.in/reader035/viewer/2022071613/6157d79ace5a9d02d46fb4ff/html5/thumbnails/22.jpg)
© 2016 F5 Networks
F5 Heat Implementation
22
• Declarative text files that describe a cloud application
• Extendable to non-OpenStack resources via plugins
• Integration with software CM tools (Puppet, Chef, Ansible, Salt)
• BIG-IP hardware, Virtual Editions
• In the provider space, or as a dedicated VE in the tenant
![Page 23: Best Practice Deployment of F5 - na.eventscloud.com](https://reader035.vdocument.in/reader035/viewer/2022071613/6157d79ace5a9d02d46fb4ff/html5/thumbnails/23.jpg)
© 2016 F5 Networks
Overlay Networks
Multi-Tenant or Dedicated
23
Multi-Tenant BIG-IP platform • SW (VE), HW, vCMP, VIPRION • VLAN, VXLAN, NVGRE • Partitions and route domains for tenant segmentation • Agent configures route tables, tunnels, self-IPs, etc.
Dedicated BIG-IP VEs per tenant • Dedicated for performance, security, availability • Attached only to tenant overlay • Driver implements Neutron services in tenant BIG-IP VE • Tenant has direct access to BIG-IP VE
Tenant A Tenant B Tenant C Tenant A Tenant B Tenant C
![Page 24: Best Practice Deployment of F5 - na.eventscloud.com](https://reader035.vdocument.in/reader035/viewer/2022071613/6157d79ace5a9d02d46fb4ff/html5/thumbnails/24.jpg)
© 2016 F5 Networks
Heat Templates and iApp Templates
24
• Define the BIG-IP • Or launch a new one • Call/define a template • Supply parameters
• Defines services • BIG-IP configuration • Reusable • Reentrant
Heat Template
iApp Template
• Network Firewall • SSL Decryption • Application Firewall • TCP Optimization • Acceleration • Application Monitoring • Content Switching • Load Balancing
BIG-IP
Simple deployment Repeatable Template Rich Configuration
![Page 25: Best Practice Deployment of F5 - na.eventscloud.com](https://reader035.vdocument.in/reader035/viewer/2022071613/6157d79ace5a9d02d46fb4ff/html5/thumbnails/25.jpg)
© 2016 F5 Networks
Solutions for Every Need
25
Multi-Layer Security and Delivery Services
LBaaS + Heat
Security App Delivery
Heat Load Balancer
LBaaS
L4-7 Basic Load BalancingL4-7 Advanced App Delivery
App Security + Firewall
Traffic Optimization
HTTP/2 Gateway
L4-7 Basic Load Balancing
L4-7 Advanced App Delivery
App Security + Firewall
Traffic Optimization
HTTP/2 Gateway
![Page 26: Best Practice Deployment of F5 - na.eventscloud.com](https://reader035.vdocument.in/reader035/viewer/2022071613/6157d79ace5a9d02d46fb4ff/html5/thumbnails/26.jpg)
DEMO
![Page 27: Best Practice Deployment of F5 - na.eventscloud.com](https://reader035.vdocument.in/reader035/viewer/2022071613/6157d79ace5a9d02d46fb4ff/html5/thumbnails/27.jpg)
© 2016 F5 Networks
Get it on GitHub
27
• Open source
• Documented
• Other F5 open source projects
• Ansible, Puppet, Chef
• Cloud Formation Templates
• Python
• More
![Page 28: Best Practice Deployment of F5 - na.eventscloud.com](https://reader035.vdocument.in/reader035/viewer/2022071613/6157d79ace5a9d02d46fb4ff/html5/thumbnails/28.jpg)
• 24x7 multi-lingual technical support
• Deep technical expertise • ISO 9001:2008 • Search ‘GitHub’ on F5
Support site
Enterprise Support for F5 in OpenStack
SEATTLE,
SPOKANELOWELL
LONDON
SINGAPORE
TOKYO
BEIJING
SHANGHAITEL AVIV
AUCKLAND
![Page 29: Best Practice Deployment of F5 - na.eventscloud.com](https://reader035.vdocument.in/reader035/viewer/2022071613/6157d79ace5a9d02d46fb4ff/html5/thumbnails/29.jpg)
© 2016 F5 Networks
• Member of OpenStack foundation • Open source LBaaS plug-in and
Heat templates • Certification with popular distributions • GitHub—plugins, Heat template library,
technical documentation
OpenStack-Community Collaboration
29
StackForge
Certified Drivers
OpenStack Consortium
![Page 30: Best Practice Deployment of F5 - na.eventscloud.com](https://reader035.vdocument.in/reader035/viewer/2022071613/6157d79ace5a9d02d46fb4ff/html5/thumbnails/30.jpg)
• Certified version RHAT OSP v6.0 April 2015 • Certification with OSP v7.0 in process
OpenStack Ecosystem Certified Integrations
• Certification and Runbook Approved by Mirantis on 1/5/2016
• Certified version HPE Helion Enterprise (HOS v2 / LBaaS v1)
• Certification of HPE Helion Carrier Grade in process
• Validation Completed on 4/24 • Documentation to be posted shortly
![Page 31: Best Practice Deployment of F5 - na.eventscloud.com](https://reader035.vdocument.in/reader035/viewer/2022071613/6157d79ace5a9d02d46fb4ff/html5/thumbnails/31.jpg)
Customer Use Cases.
![Page 32: Best Practice Deployment of F5 - na.eventscloud.com](https://reader035.vdocument.in/reader035/viewer/2022071613/6157d79ace5a9d02d46fb4ff/html5/thumbnails/32.jpg)
© 2016 F5 Networks
Large Transportation CustomerTheir Challenge: • Create an private cloud offering enterprise class application
environments deployed with public cloud agility
The Solution: • OpenStack private cloud - agility, scale and control • F5 Application services with LBaaS and Heat templates
32
![Page 33: Best Practice Deployment of F5 - na.eventscloud.com](https://reader035.vdocument.in/reader035/viewer/2022071613/6157d79ace5a9d02d46fb4ff/html5/thumbnails/33.jpg)
© 2016 F5 Networks
F5 OpenStack Architecture
33
F5 Hardware
Provider Tier
BIG-IQ LM
Tenant Tier
Pool 1 Pool n
App1 App2 App3
VE
Tenant 1
VE VE
App1 App2 App3
VE
Tenant n
VE VE
Scale
Hea
t iA
pps
2
3
Orchestration and Management • Heat orchestration system with a self-service
catalog that allows users to select, provision, and deploy the needed app services
• Heat templates to deliver advanced F5 app and security services
Provider Tier • F5 L2–L4 Services
• Router Services (NAT/SNAT) • Firewall • DDoS
• F5 L4–L7 Services • GSLB, DNS • SSL Offload
• F5 License Manager • Pools of Virtual edition licenses
Tenant Tier • App delivery, management, protection services
• Proxy, L7 optimization • WAF
Heat
Orchestration Management
Horizon
VIP Members
LBaaSInstance
Mon
F5 LBaaSDriver
1
Pool
1
2
3
![Page 34: Best Practice Deployment of F5 - na.eventscloud.com](https://reader035.vdocument.in/reader035/viewer/2022071613/6157d79ace5a9d02d46fb4ff/html5/thumbnails/34.jpg)
© 2016 F5 Networks
Managed Service Provider Their Challenge: • Offer a one-stop managed services solution for their large enterprise customers which includes development, test, deploy and management of apps
• Current customers are using advanced LB & WAF features
The Solution: • OpenStack private cloud • Heat templates and multi-tenant F5 Hardware, network
overlay
34
![Page 35: Best Practice Deployment of F5 - na.eventscloud.com](https://reader035.vdocument.in/reader035/viewer/2022071613/6157d79ace5a9d02d46fb4ff/html5/thumbnails/35.jpg)
© 2016 F5 Networks
F5 OpenStack Architecture
35
F5 Hardware
Provider Tier
Tenant Tier
App1 App2 App3
VS
Tenant 1
VS VS
App1 App2 App3
VS
Tenant n
VS VS
2
3
Orchestration and Management • Heat orchestration system with a self-service
catalog that allows users to select, provision, and deploy the needed app services
• Heat templates to deliver advanced F5 app and security services
Provider Tier • F5 Multi-tenant hardware
• Traffic separated by overlay (VXLAN) • Route domains and admin partitions to separate
config and IP space • F5 L4–L7 Services
• Advanced App delivery • SSL Offload • Web Application Firewall
Tenant Tier • Deliver Application services
• Virtual server insertion in tenant space • No F5 Virtual machine or admin access
Heat
Orchestration Management
HorizonTemplate1Library
Template
Template
Template
1
2
3
Tenant1
Multi-tenant services
Tenant n
Hea
t iA
pps
![Page 36: Best Practice Deployment of F5 - na.eventscloud.com](https://reader035.vdocument.in/reader035/viewer/2022071613/6157d79ace5a9d02d46fb4ff/html5/thumbnails/36.jpg)
© 2016 F5 Networks
F5 and OpenStackF5 has the right set of hardware/software for your tenancy model
• Deploy in the tenant project or provider space • Same interface, same functionality • Continue to utilize your F5 hardware
F5 Heat templates enables full integration with OpenStack • Prepares stock VE images for OpenStack • Deploys BIG-IP VEs onto OpenStack • Can upgrade and cluster any set of BIG-IP products • Follow Github.com/f5networks
F5 will continue to offer other networking and security capabilities • Future Heat templates • Additional Neutron plugins • Building a wider ecosystem
36
![Page 37: Best Practice Deployment of F5 - na.eventscloud.com](https://reader035.vdocument.in/reader035/viewer/2022071613/6157d79ace5a9d02d46fb4ff/html5/thumbnails/37.jpg)
© 2016 F5 Networks 37
Resources• On F5.com:
• Cloud Computing page on F5.com
• How to Add F5 Application Delivery Services to OpenStack whitepaper
• OpenStack Partnerships
• Additional:
• F5 Heat Templates on GitHub
![Page 38: Best Practice Deployment of F5 - na.eventscloud.com](https://reader035.vdocument.in/reader035/viewer/2022071613/6157d79ace5a9d02d46fb4ff/html5/thumbnails/38.jpg)
Q&A.
![Page 39: Best Practice Deployment of F5 - na.eventscloud.com](https://reader035.vdocument.in/reader035/viewer/2022071613/6157d79ace5a9d02d46fb4ff/html5/thumbnails/39.jpg)
• Add class to your personal schedule.
• Survey will pop up in Mobile App. • Answer the multiple choice. • Submit your question to complete. • Receive 5 points!
Give Feedback – Get Points!
![Page 40: Best Practice Deployment of F5 - na.eventscloud.com](https://reader035.vdocument.in/reader035/viewer/2022071613/6157d79ace5a9d02d46fb4ff/html5/thumbnails/40.jpg)