net1305bu introduction to vmware nsx for automation: or … · 2019-06-27 · it automation...

Scott GoodmanProduct Marketing Manager - Networking & Security, VMware

Brad SkeelSr. Manager - Enterprise Cloud Ops & Engineering, Deluxe

NET1305BU

#VMworld #NET1305BU

Introduction to VMware NSX for Automation:Moving faster in the digital business age

VMworld 2017 Content: Not fo

r publication or distri

bution

• This presentation may contain product features that are currently under development.

• This overview of new technology represents no commitment from VMware to deliver these features in any generally available product.

• Features are subject to change, and must not be included in contracts, purchase orders, or sales agreements of any kind.

• Technical feasibility and market demand will affect final delivery.

• Pricing and packaging for any new technologies or features discussed or presented have not been determined.

Disclaimer

#NET1305BU CONFIDENTIAL 2



bution

Better utilization of IT resources for more strategic projects

Increased security and compliance

Improved service with faster time to market

“Configuration and change

management of networking gear

remains primarily a labor-intensive,

manual process... These suboptimal

network practices result in

downtime, reduce security, degrade

application performance, and waste

human and capital resources.”

Andrew Lerner

Research Director

Gartner

Business demands



bution

So What’s Getting in the Way?

4

Inconsistent tooling Manual processes Complex physical infrastructure

#NET1305BU CONFIDENTIAL



bution

Q: How can I deliver faster, higher quality networking and security services to my business?

A: Virtualization, standardization, and automation.VMworld 2017 Content: Not fo


bution

Compute Storage

The Data Center Networking Challenge

There has been a lot of virtualization in the data center.

Networking

Except for one area…




bution

Compute Storage Networking

The Data Center Networking Challenge

The lack of networking virtualization is holding back your ability to:

Keep up with the pace of business

Secure your data centers

Control cost




bution

Network, storage, compute

Virtualization layer

Hypervisor Hypervisor

vSwitch vSwitch

NSX value proposition



bution

Hypervisor

vSwitch

In-hypervisor (on-prem)

as a Service (cloud)

Hardware/Cloud independent

Network and security services


SwitchingRouting FirewallingLoadbalancing




bution

Hypervisor

vSwitch

Network, storage, compute

Virtualization layer

“Network platform”

Virtual networks






bution

Network Virtualization Solves These ProblemsAbstracting networking and security from the underling infrastructure

IoTCloudData center Remote office




bution

The Solution: Network Virtualization and Automation

12

Virtualized infrastructure and security controls

Automated, standardized processes

Consistent virtualization tools

VMVM

VMVM

APP

Complex physical infrastructureManual processesInconsistent tooling




bution

Automation Use Cases

IT Automation Developer Cloud Multi-Tenant Infrastructure




bution

IT AutomationTraditional infrastructure provisioning

User requests new app

Request generates a ticket

Ticketing extends across multiple roles

NetOps

SecOps Admin

CloudOps

Manual work streams

Final delivery can take several

weeks

Change restarts entire process

1

2

3

Day two change

4 5

6

7




bution

IT AutomationEliminating time and complexity with automation

NETWORKING

SECURITY

Accelerate workload deployment

Avoid risk from human errors

Compliance and auditability

Benefits

Cloud management

platform

IT vRealize Automation

Blueprint

vRealize




bution






bution

Developer CloudToday: Infrastructure limitations bring delays and risks

Rogue developer

PUBLIC

Not connected

Not secured

Good citizen developer

Costly

Time intensive

1

2

Challenges

Slow time-to-deliver

High costs

Complexity

Uneven security and compliance




bution

Developer CloudConsistent, SaaS-based delivery approach using standard APIs

Developer Infrastructure

templates

Benefits

Agile development

Continuous deployment

Infrastructure as code

Consistent security

NETWORKING

SECURITY

API

OpenStack

APIs

Heat Terraform




bution

Developer CloudConsistent, SaaS-based delivery approach using infrastructure as code

DevOps Configuration

templatesNSX API

Benefits

Consistent configuration

Ease of replication

Faster deployments

Use of existing toolsets

Ansible

Chef

Puppet

Configuration

management tools

NETWORKING

SECURITY




bution






bution

Challenges

Multi-Tenant Infrastructure

21

Traditional managed services cloud models limit scalability

IT Organization or

Service Provider

Dedicated tenant

cloud environments

Multiple cloud instances

TENANT A

TENANT B

TENANT C

Costly to scale

Inefficient resource utilization

Complex to upgrade, secure




bution

Multi-Tenant Infrastructure

22

Realizing new service opportunities

IT Organization

or Service

Provider

Virtual Machines

Network virtualization

Security services

Service Catalog

Provider

Service provider model

Tenants

TENANT A

TENANT A

TENANT A

Single-cloud instance

Opportunities

Cost efficiencies

Security for provider and

consumer

“Zero Touch” service model




bution

© Deluxe Enterprise Operations, LLC. Proprietary and Confidential.

• HQ in Shoreview, MN

• Largest Check Printer in US

• 6,000 employees across the US

• 4.5 million small business customers

• Largest provider of marketing and other services to small business

• 100th Anniversary in 2015!

• $1.9 billion in annual revenue, market cap $2.95 billion

Intro to Deluxe




bution


• Began in early 2013 w/Azure adoption (Hint: it didn’t go well…)

• Private cloud discussions started in May 2014

• Private cloud launched in Jan 2015 w/ migrations starting thereafter

• Infrastructure can’t lead the cloud transformation…

• A drive to modernize a legacy cash cow.

• New acquisitions are cloud ready.

• Cloud native development beginning w/ bi-modal strategy

The Deluxe Cloud Journey



bution


• Software defined networking was discussed early

• Multiple solutions were evaluated… NSX won

• NSX is core to our ability to drive cloud flexibility

• Security is in the DNA of the Deluxe cloud strategy

• NSX gives us the ability to seamlessly bridge clouds securely

• NSX and virtual Palo Alto firewalls make up the whole solution

• Automating NSX drives the fast delivery of secure workloads

NSX at Deluxe




bution


• Based on vRealize Automation/Orchestrator

• Phase 1 started with simple VM build

• Service Now hosts service catalog

• Phase 2 layered in additional services

• Phase 3 introduced NSX automation

Automation at Deluxe




bution


• Starts with the workload order

• Questions in our catalog items drive the NSX VM configuration

• NSX tags are applied at build time

• Leveraged Power NSX for VM deployments and migrating workloads

• Automated V2V workload migrations w/ NSX tags

Automating NSX




bution


• Request NSX load balancers via service catalog

• Add/edit NSX tags post deployment

• Creation of virtual switches

• Creation of isolated test networks

• Deployment of entire development stack

• Deployment of new ESX hosts

Future Opportunities with NSX & vRA/vRO




bution

• Accelerated, self-

serve deployments

• Compliance and

auditability

IT Automation

AutomationMoving faster in the digital business age

• API-driven development

and deployment

• Cost efficiencies

• Infrastructure treated as

code and templated

• “Zero Touch” service

model

Developer Cloud Multi-Tenant Infrastructure

• IT staff can focus on

strategic projects

• End-to-end automation

across DevOps lifecycle

• Security applied to

provider and tenant




bution



bution

net1305bu introduction to vmware nsx for automation: or … · 2019-06-27 · it automation...

Documents