the journey to cloud computing

7/30/2019 The Journey to Cloud Computing

1/29

2011 VMware Inc. All rights reserved

The journey to cloud computingJan Tiri, CISSP - Systems Engineer, VMware Inc.


2/29

2

2010 Milestone: Virtualization is Now De Facto Model

We are past a virtual tipping point!

0

2,500,000

5,000,000

7,500,000

10,000,000

12,500,000

15,000,000

17,500,000

VM Cross Over

2005 2006 2007 2008 2009 2010 2011 2012 2013

Source:

IDC

Physical ServersVirtual machines


3/29

3

The Rise of a New Era in IT

Mainframe

PC / Client-Server

Web

Cloud

Cloud Computing will transformthe delivery of IT services


4/29

4

Virtualization & Cloud Management: VMware Approach

Application Management Encapsulate applications into containers with vApps

Assure application portability & performance Establish service contracts with infrastructure

End-User Computing Management Provision & deploy desktops rapidly

Manage workstation images simply

Deliver virtualized applications to desktop

End User Computing

Cloud Applications

VMware Management Solutions

IT BusinessManagement

Govern cloud

provisioning

processes Track cloud

software license

usage

Standardize

cloud partitions

VMware Cloud Director

vSphere

Infrastructure & Operations Management

Create a zero-touch, compliant infrastructure Build automation into platform

Deliver self-service through policy-driven control

Public/Private/Hybrid CloudVirtualized Infrastructure


5/29

5

vAPP

vApp the virtual application

APP

Business apps consist of multiple

VMs and form a vAPP vAPPs are treated as the

management container


6/29

6

The application portability is the key

=VM OVFVM+INFO

Virtual

Machine

Description of VM

properties

OVF Virtual

Machine

The Open Virtualization Format (OVF)is an industries standard, to ensure

cross platform VM portability


7/29

7

OS

Exchange

Operating System

Virtualization

OS

SAP ERP

Operating System

Virtualization

OS

File/Print

Operating System

Virtualization

OS

Oracle CRM

Operating System

Virtualization

Virtual Infrastructure

InterconnectPool

CPU

Pool

MemoryPool

Storage

Pool

Traditional View VirtualInfrastructure

Abstraction + Pooling = Reduced Complexity


8/29

8

Abstraction + Pooling = Reduced Complexity

Oracle CRM

Operating System

SAP ERP

Operating System

File/Print

Operating System

Exchange

Operating System Virtual Infrastructure

InterconnectPool

CPUPool

MemoryPool

Storage

Pool

Data Protection

Security

Failure Protection

Site Evacuation


9/29

9

Changing the way services are added

Operating System

Virtualization

Application

Owners IT Department

Core AppAvailability

Data

ProtectionCore App


10/29

10

HyperVisorHyperVisor

Dynamic Computing

Vmotion

Greater Availability

HA (High Availability)X

Availability services


11/29

11

virtual data center

Vmotion stateful (live)

migration of VMs

DRS automated migration(load balancing)

+ intelligent auto-placement ofnew VMs

Storage Vmotion statefulmigration of vms storage - i/o,maintenance, new storage



12/29

12

virtual data center

Fault Tolerance

HA still available for lower tierapps

Identify VMs you want for faulttolerance and start the service

A shadow VM is created and

takes over if host failureoccurs

X



13/29

13

virtual data center virtual data center

StorageReplication

X



14/29

14

Data Protection Services

VMware ESX / ESXi

Backup / Restore

functionalityNo Backup Agents in OS


15/29

15


Operating System

Virtualization

Application

Owners IT DepartmentAvailability

Data

Protection

Security

Core App


16/29

16

Traditional vs vShield

OS

APP

DATA

OS

APP

DATA

OS

APP

DATA

Host based Security

Network based Security

VMware vSphere + vShield

SECURITY SECURITY SECURITY

Introspect Processor, Memory, Network, File Access


17/29

17

Leveraging Virtualization for Better-than-Physical Security

Issues

AV storms can cause 100%

saturation in shared compute (CPU)and SAN/NAS (storage I/O)

environments

Traditional agents are resource

intensive - not optimized for high

utilization, efficient clouds

Up to 6 GB on VMware View desktops

Opportunities

Leverage hypervisor to offload AV

functions from agents into a

dedicated security VM Deploy security in a more agile,

service-driven manner to both private

and public cloud environments

VMware vSphere

Introspection

SVM

OSHardened

AV

VM

APP

OSKernel

BIOS

VM

APP

OSKernel

BIOS

VM

APP

OSKernel

BIOS


18/29

18

Efficient resource consumption

Scan server approach means

no agent footprint

less memory and management

overhead

Lower CPU and IO load


19/29

19

VMware vShield App

Application Protection for Network Based

Threats Hypervisor-level firewall

Inbound, outbound connectioncontrol applied at vNIC level

Elastic security groups - stretch

as virtual machines migrate to newhosts

Robust flow monitoring

Policy Management

Simple and business-relevantpolicies

Managed through UI or RESTAPIs

Logging and auditing based onindustry standard syslog format


20/29

20

Automated Cloud VDC Perimeter Security with vShield Edge

APP

DB

DMZ

INTERNET

vShield Edge

Production

VDC

APPDMZ

Development

VDC

vSphere vSphere vSphere vSphere

Virtual Distributed Switch

vShield Edge

DB


21/29

21

vShield Portfolio overview

DMZ Application 1 Application 2

Securing the Private Cloud End to End: from the Edge to the Endpoint

Edge

vShield Edge

Secure the edge of

the virtual datacenter

Security Zone

vShield App andZones

Create segmentation between

enclaves or silos of workloads

Endpoint = VM

vShield Endpoint

Offload anti-virus processing

Endpoint = VM

vShield Manager

Centralized Management


22/29

22


Operating System

Virtualization

Application

Owners IT DepartmentAvailability

Data

Protection

Security

Core App

Flexible Size


23/29

23

Flexible Resources

Hot Add

CPU

Memory

Disk

Networking

VMware ESXi & ESX


24/29

24

Flexible and Controlled Resources

Memory ControlCPU Control

Storage IO Control

Resource Pools

Network IO Control


25/29

25

The Hybrid Cloud

Public CloudService Provider

Private Cloud

VMware =Enterprise Hybrid Cloud


26/29

26

Cross cloud management makes hybrid cloud real

Visualize resources across hybridclouds inside the vSphere Client

See VMs, vApps and templates acrossvSphere and private and public vClouds

Delivered as a vSphere Client Plugin

Copy & operate on resources

across clouds Copy resources between vSphere and

vClouds

Perform power operations on workloads

Access console of vApps running in

vClouds

Deliver enterprise level security

Data managed by onsite server

Security scope set by vSphere Client

vCloud Connector

Connect, visualize and operateon multiple clouds


27/29

27

VMware Solutions for IT as a Service

vCloud PoweredPublic Clouds

IndependentPublic Clouds

Application Access

SaaSApplications

Other SaaS

ProvidersView Thin App Zimbra

End-User Computing

Application Portability

Spring vFabric vFabric Hyperic

vmForce

Oher PaaS

Partners

Google AppEngine

Other cloudinfrastructure

providers

Cloud Application Platform

Secure Private Cloud

VMware vSphere: Foundation for Cloud Computing

vCenter vShield vCloud Director

vCloudDatacenter

vCloud Express

Application Mobility

Cloud Infrastructure and Management

vCloud Director


28/29


29/29

29

vSphere 4.1 Editions SMB

= New feature with 4.1 release

= Existing feature moving down edition

= Edition specific feature= Carry-over feature

ESSENTIALS

4-way vSMP

VC Agent

3 Hosts/ 6 Procs6 physical cores

Update Manager

VCB / vStorage APIs

ESSENTIALSPLUS

High Availability

4-way vSMP

VC Agent

3 Hosts / 6 Procs6 physical cores

Update Manager

Data Recovery

VCB / vStorage APIs

Thin Provisioning Thin Provisioning

VMotion

HYPERVISOR

vSphere Client

Converter

Single Server ESXi

the journey to cloud computing

Documents