ws-b327 dynamic, policy-driven network (re)configuration consistent, profile- based deployment of...

MICROSOFT CONFIDENTIAL – INTERNAL ONLY

Software-defined Networking with Windows Server 2012 & System Center 2012 SP1CJ Williams – Principal Program ManagerDhananjay Mahajan – Senior Program ManagerAnanthanarayan Sundaram – Senior Product Marketing Manager

WS-B327


Session Objectives And Takeaways

Session Objective(s): • Understand how Software-defined Networking (SDN) can help

you transform your datacenter• Microsoft’s approach to SDN • Microsoft’s SDN solution

Key Takeaways• Windows Server and System Center deliver end-to-end SDN

solution in-box• Microsoft will continue to inform it’s SDN approach through

learnings from operating large scale cloud services • Microsoft is committed to an open, extensible, standards-based

approach

Transform thedatacenter

Datacenter without boundaries

Cloud innovation everywhere

Dynamic application delivery


Requirements to transform networking

Deliver networking as part of pooled, automated infrastructure

Expand datacenter capacity seamlessly as per business needs

Reduce operational complexity

Ensure multitenant isolation, scale and performance


What is SDN?

An approach where software can dynamically manage the network, allowing it to adapt to changing workload needs by:• Abstracting workloads from the physical

network • Controlling datacenter traffic flow • Enabling integrated policies that span

physical and virtual networks


Windows Server

Windows Azure

High performance storage on industry-standard hardware File and storage services Offloaded data transferStorage spaces

Policy based automation Cluster aware updatesDynamic optimization

Multi-tenant environments with isolationServer coreHyper-V network virtualization Websites and VMs

Application elasticity Service templates

Software-defined networking Hyper-V network virtualizationNetwork QoSCross-premises connectivity

And many others….

Bringing our learnings from operating cloud services


Microsoft’s approach to SDN

• End-to-end solution

• Promote industry innovation in software & hardware

• Open, extensible and standards-based

Our Principles Our Promise

Automation

Flexibility Control


Customer and analyst excitement

“….deploying Windows Server 2012 has the potential to provide solid ROI..the enablement of software defined networking with Network Virtualization..” – Forrester Consulting study, Feb 2013

Windows Server 2012 - An ideal migration path to tomorrow's world of private and public clouds…

I expect to reduce storage costs by 10 times and server costs by 50%.

— Dan Smith, Deputy CIO, Marquette University

We decided to avoid paying VMware $1.75M (U.S.) in licenses and go with Windows Server 2012 and Hyper-V to build a private cloud model for our regional datacenters.— Studio Moderna, Slovenia

“The ability to virtualize network traffic without reengineering our base physical network infrastructure is huge,” Bourassa — Alan Bourassa, CIO, EmpireCLS, on their use of Hyper-V Network Virtualization

I‘ve been a huge advocate for VMware. With Windows Server 2012 and the latest version of Hyper-V, all of that changes. — Justin Apps, Head of Enterprise Architecture, about how they

improved identity and access management with Windows Server 2012

“Windows Server 2012 is built deep in the cloud... You end up with a solution set that has the capability of doing the kinds of compute scenarios that customers will want to do in the next few years...we think it's a great product." — Al Gillen, IDC

The 2012 CRN Tech Innovator and Enterprise App Awards (Windows Server 2012 gets Virtualization and Editor’s choice)


Delivering on SDN with Windows Server & System Center

Dynamic, policy-driven network (re)configuration

Consistent, profile-based deployment of SDN traffic policies through distributed virtual switch

Provision load balancers, site-to-site VPNs & gateways

Integrated control plane to co-relate workload placement and virtual network policy

Dynamic traffic control policies with Network QoS

Traffic monitoring and flow control with switch extensions

Virtual network abstraction with multitenant isolation

BYOIP for tenant onboarding & workload mobility

Secure cross-premises connectivity

Flexibility ControlAutomation


Hyper-V Network Virtualization

Server virtualization• Run multiple virtual servers

on a physical server• Each VM has illusion it is running

as a physical server

Hyper-V Network Virtualization

• Run multiple virtual networks on a physical network

• Each virtual network has illusion it is running as a physical network

Physicalserver

Blue VM Red VM Blue network Red networkVirtualization

Physicalnetwork


Hyper-V Network Virtualization Concepts• Customer’s VM Network

• One or more virtual subnets forming an isolation boundary • A customer may have multiple VM Networks• e.g. Blue R&D and Blue Sales

• Virtual Subnet• Broadcast boundary

Blue Corp Red Corp

Blue Subnet1

Blue Subnet3Blue Subnet2

Blue Subnet5

Blue Subnet4

Red Subnet2

Red Subnet1

Blue R&D Net Blue Sales Net Red HR Net

Multi-Tenant DatacenterCustomer’sVM Network

VirtualSubnet


Virtualization Policy

System Center

Virtualize Customer IP Addresses

Customer Address Space (CA)

Red2

Blue2

10.0.0.5

Red1

Blue1

10.0.0.5 10.0.0.7 10.0.0.7

Blue

10.0.0.5192.168.4.1

1

10.0.0.7192.168.4.2

2Red

10.0.0.5192.168.4.1

1

10.0.0.7192.168.4.2

2

Blue10.0.0.

510.0.0.

7

BlueCorp

RedCorp

Red10.0.0.

510.0.0.

7

Datacenter Network

Host 1 Host 2

Provider Address Space (PA)

192.168.4.22192.168.4.11

Blue

10.0.0.5192.168.4.

11

10.0.0.7192.168.4.

22Red

10.0.0.5192.168.4.

11

10.0.0.7192.168.4.

22

Blue

10.0.0.5192.168.4.

11

10.0.0.7192.168.4.

22Red

10.0.0.5192.168.4.

11

10.0.0.7192.168.4.

22

CA PA


Hyper-V Switch

Handles all traffic between:• Virtual machines • The external network• The host OS


Windows Server 2012 Virtual Switch Features

Tenant Isolation

Traffic Shaping

Security Performance Diagnostics

Port ACL

PVLAN

Trunkmode

BandwidthMinimum

BandwidthCap

DHCPGuard

RouterGuard

IPsec TaskOffload

DynamicVMQ

PortMirroring

EventTracing(ETW)

UnifiedTracing

(UT)

FopAdditional

Capabilities…


Enable traffic control policies per VM or per host

Enable bandwidth policies real-time

Integrate physical switch with virtual switch and manage with single interface

Filter ExtensionForwarding Extension

Capture Extension

Hyper-V Extensible Switch


Hyper-V Extensible Switch benefits

17

Plug-ins can sit in a virtual switch among all traffic, including virtual machine to virtual machine traffic

Core services for extensions

High level of reliability and quality for extensions from the Microsoft Windows platform and Windows logo certification program

Extension management integrated into Windows management through Windows PowerShell cmdlets and WMI scripting

Faster and easier diagnosis of issues with unified tracing and increased availability of services with less downtime

Open platform to

fuel plug-insFree core services

Reliability and quality

Unified management

Easier to support


SCVMM 2012 SP1: Logical Networks

Development Production

Create Logical Networks and assign them to the appropriatenetworking on the hosts

Production

Development

DMZ Prod DMZ ProdDMZ Prod Configure and deploy

Infrastructure

Cloud Abstraction

Delegated Capacity

Standardized Services


SCVMM 2012 SP1: Managing Virtual Switch

…on Host 1

Virtual SwitchExtension1

Extension2

Extension3

…on Host 2


Extension2

Extension3

…on Host 3


Extension2

Extension3

…on Host n


Extension2

Extension3

Physical Network

VMVM

VMVM

VM

VMVM

VMVM

VM

VMVM

VMVM

VM

VMVM

VMVM

VM


SCVMM 2012 SP1: Logical Switch

…on Host 1


Extension2

Extension3

…on Host 2


Extension2

Extension3

…on Host 3


Extension2

Extension3

…on Host n


Extension2

Extension3

Physical Network

VMVM

VMVM

VM

VMVM

VMVM

VM

VMVM

VMVM

VM

VMVM

VMVM

VM

• Single logical entity spanning hosts

• Consistent policy and configuration

Logical Switch


SCVMM 2012 SP1: Managing SDN

• Software Defined Networking (management, configuration, data)• Flexible, dynamic network isolation with Hyper-V

Network Virtualization• Extensible Virtual Switch• Policy knobs on Virtual Switch

• Network Policy/Offloads• SR-IOV• DHCP Guard• IPSec Task Offload• Bandwidth Control• Trunk Mode

VM Network

Logical NW

Virtual Machine

Physical Network

VLA

N 2

5S

ub

net

10

.0.0

.0/2

6

Fab

ric

Vir

tual

Virtual Machine

ExtensionExtensionExtension

VM Network

Logical NW

Demo: Datacenter without boundaries


Microsoft SDN – built with partners in mind

Hyper-V switch to extend SDN policies

Co-existence of multiple Hyper-V switch extensions

Traffic monitoring and flow control with switch extensions

Built on standard protocols – IETF Generic Routing protocol

Standards support in ASICs , Gateways and TOR Switches

Pluggable interfaces, Gateway plug-in

VMM plug-ins

Deliver load balancers, site-to-site VPNs & gateways

Open Standards basedExtensible

Partner Ecosystem

http://www.cisco.com/

http://www.ironnetworks.com/

http://www.f5.com/


Call to action

• Deploy Windows Server 2012 and System Center 2012 SP1 today

• Refer additional Windows Server and System Center resourceshttp://www.microsoft.com/windowsserverhttp://www.microsoft.com/systemcenterhttp://blogs.technet.com/server-cloud

http://www.microsoft.com/systemcenter

http://www.microsoft.com/systemcenter

http://blogs.technet.com/server-cloud


SDN summary

• SDN is a promise of automation, control and flexibility of the network

• Microsoft provides an open, extensible, standards-based SDN solution in Windows Server 2012 and System Center 2012 SP1

• Microsoft will continue to bring innovation and learning from operating large scale cloud services to your datacenters


Evaluation

Complete your session evaluations today and enter to win prizes daily. Provide your feedback at a CommNet kiosk or log on at www.2013mms.com.Upon submission you will receive instant notification if you have won a prize. Prize pickup is at the Information Desk located in Attendee Services in the Mandalay Bay Foyer. Entry details can be found on the MMS website.

We want to hear from you!


Resources

http://channel9.msdn.com/Events

Access MMS Online to view session recordings after the event.


© 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries.The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

ws-b327 dynamic, policy-driven network (re)configuration consistent, profile- based deployment of...

Documents

sdn approach

product names

windows vista

informational purposes

market conditions

endtoend sdn solution

system center

datacentermicrosofts