presentation id cisco and/or its affiliates. all rights ... · intercloud fabric session id 18pt...

Intercloud Fabric Session ID 18PT

Michael Petersen, CCIE #39836 Systems Engineer, Cisco Danmark


Agenda

Why Hybrid Cloud? What are the Challenges?

Intercloud and Cisco Intercloud Fabric

Solution and Architecture Overview

Cisco ONE

Summary, Q&A


Why Hybrid Cloud?

DC/Private Clouds

Provider Clouds Striking the Perfect Balance

Fixed workloads Elastic workloads Choice to build / rent across providers

Workload portability Consistent security

Economics Speed

Scale

Data Sovereignty

Control

Hybrid

Security


Reality of Hybrid Cloud and Key Challenges

•  Require App Re-configuration

•  Apps break due to Infrastructure Dependencies

Siloed Applications

•  Inconsistent Cloud Architectures

•  Different Networking and Security Models

•  Different Management Tools

Operational Complexity

•  No Visibility or Control •  Limited Workload

Protection •  Unsecure Connection

Loss of Security


So what´s the goal of Intercloud Fabric?

Unify workload management Any workload

Any VM Any Cloud

Move network and security policies

with your workloads across

all clouds

Consume service offerings from a

huge global partner ecosystem

Tap into global data while meeting local data sovereignty

requirements


What is Intercloud?

HCS

Microsoft Suite aaS

DRaaS

PaaS

IaaS Intercloud

Enterprise Private Clouds

Public Clouds

Partner Clouds Cloud Services and

Applications Intercloud Fabric

APIs

Portal

APIs

APIs

Meraki

Security

Analytics

vDesktop aaS

WebEx

HANA aaS

IOE aaS

Collaboration and Video

Big Data and Analytics Native Cloud

Applications Enterprise Workloads


Cisco Intercloud Fabric: Solution Overview

8

DC/Private Cloud

End User and IT Admin Portals

Secure Fabric Extender Network,

Compute, and Storage

vSphere

Hyper-V*

KVM*

Xen*

Intercloud Fabric for Business

EC2 APIs

Azure APIs

Intercloud Fabric for Providers

Provider Clouds

Intercloud Ecosystem

Intercloud Fabric for Providers

Cisco Powered Services and Cloud

Providers

* Available in subsequent releases


Cisco Intercloud Fabric Architectural Details

9

Intercloud Fabric Secure Extender (Secure Network Extension)

DC/Private Cloud

Provider Cloud

Intercloud Switch

Intercloud Fabric Provider Platform

VM Manager Intercloud Fabric

for Providers

Intercloud Fabric Services

Intercloud Extender

Intercloud Fabric Director

End User and IT Admin Portal Workload and Fabric Management IT Admins End Users

VM VM

VM VM Intercloud Fabric

for Business


VM Portability: Migration Across Hybrid Cloud

10

Intercloud Fabric Services

VM is powered up on public cloud and management continues through Intercloud Fabric Director 4

Intercloud Fabric Secure Extender

DC/Private Cloud

Provider Cloud

Intercloud Switch

Intercloud Fabric Provider Platform

Cloud Providers

Intercloud Extender

IT Admins End Users

VM

VM VM

Image is converted to public cloud format (e.g., AMI) and migrated to public cloud

3

End user triggers VM migration to cloud 1 VM is shut down and Intercloud Fabric driver added 2

VM Manager Intercloud

Fabric Director



ICF VM Image Conversion

11

Install Driver and Normalize to Raw

Convert Normalized Image to Provider Format

Provider Image

Storage

Image

Install Driver and Keys

Import Source Image

ISO RAW

VMDK OVA VM

Manager

Convert Raw Image to Provider Format

Converted Raw

Image

RAW

Upload VM Image to Datastore

Private Cloud

Public Cloud

Converted Image

AMI VDH

VMDK OVA

Uninstall Driver and Normalize to Private Format

Convert Cloud Image to RAW Format

Remove Driver and

Keys

Download Source Image

ISO RAW

VMDK OVA VM

Manager Convert Image to

RAW Format

Converted Raw

Image

RAW

Download VM Image

from Datastore

Downloaded Image

AMI VDH

VMDK OVA

Provider Image

Storage

Image


Core Services: Network Extension

12


Intercloud Secure Extender


DC/Private Cloud

Provider Cloud

Enterprise Virtual Switch

Application

VM

Provider Network Switch

Enterprise VM access port

Tunnel Port

Trunk Port

Enterprise Ports

Outer MAC/ IP/UDP Tunnel L2X

Application

VM IC Driver

Data

Data

Data

1

2 3 Intercloud

Switch Intercloud Extender

Outer MAC/ IP/UDP Tunnel L2X Data


Customer IT Scenarios for Hybrid cloud – Use Cases

13

IT Facilitated Use of Public Clouds •  Secure use of public clouds •  Control costs with consolidation •  Public clouds as extension

of enterprise IT

Shadow IT Control

Secure Enterprise Dev/Test Environment in Public Cloud •  Access to Enterprise

Tools and Data •  Bring Back Workload

for Production

Dev/Test

Burst or Extend Apps in Public Cloud •  Managed peaks with no

changes to application •  Keep data local while

extending web or app

Capacity Augmentation

IT


Secure Application Development and Test Fast deployment of DEV – Fail fast

14

Problem •  Developers using

public cloud natively without enterprise security

•  Developers cannot use or test against enterprise services and databases

ICF Shell

Usergroup1 Portal

Usergroup2 Portal

1. Developers accessing public cloud through Enterprise portal

2. Extend multiple networks from Private DC to cloud with enterprise security policies

3. Workload mobility from Private to Public and back

Enterprise Portal

Enterprise DC

Public Cloud

Business Outcomes •  DC still compliant with

workloads in AWS •  Reduce cost for IT -

leverage public cloud for temp workloads

AD DNS


Diminish Shadow IT Over Time

15

Enterprise DC

Import existing cloud workloads into ICF Shell (Beta)

Problem •  Enterprise security

and compliance at risk when public clouds accessed directly

Business Outcomes •  Meet Enterprise

compliance policy mandates across private / public cloud resources

ICF Shell

Usergroup1 Portal

Usergroup2 Portal

Public Cloud

Enterprise Portal Enterprise Portal

Usergroup3 Portal


Core Services: Routing Across Hybrid Cloud using Intercloud Fabric Router (CSR)

16



Enterprise VPN Access to Public cloud VMs Direct access to public

cloud VMs through NAT

Intercloud Fabric Secure Extender

DC/Private Cloud

Provider Cloud

Intercloud Extender

VM VM

VM VM

VLAN App

19.2.168.x.x Default Gateway for VLAN A &B

VLAN Web

VM VM

VM VM

Provider Gateway

10.x..x.x

54.x..x.x

VLAN A Intercloud

Fabric CSR

Inter-VLAN communication through ICF Routing

VLAN B

192.168.x.x

Remote/ Branch Office ISR

VPN VPN

Mobile Worker

Mobile Worker

Intercloud Switch


What Is Cisco ONE Software?

A La Carte, Separately Priced Items

Current Model

Licensing Tied to Hardware

Perpetual for the Lifetime of the Box

Software Suites Offered as a Solution

Software License Portability Access to Ongoing Innovation

Perpetual, Subscription, & ELA Options

Cisco ONE


Cisco Intercloud Fabric Customer Benefits

18

Compliance Policy-based

deployment/governance in cloud

Choice Freedom to place workloads across

heterogeneous Clouds

Consistency Security/Networking as an extension of

Private Cloud

Control Unified workload

management across clouds

DC/Private Cloud Provider Cloud

CISCO INTERCLOUD

FABRIC


Don’t forget to activate your Cisco Live Virtual account for access to all session material, communities, and on-demand and live activities throughout the year. Activate your account at the Cisco booth in the World of Solutions or visit www.ciscolive.com.

Complete Your Online Session Evaluation

§ Give us your feedback and you could win fabulous prizes. Winners announced daily.

§ Receive 20 Passport points for each session evaluation you complete.

§ Complete your session evaluation online now (open a browser through our wireless network to access our portal) or visit one of the Internet stations throughout the Convention Center.

Note: This slide is now a Layout choice

20

presentation id cisco and/or its affiliates. all rights ... · intercloud fabric session id 18pt...

Documents