ws-b327 dynamic, policy-driven network (re)configuration consistent, profile- based deployment of...
TRANSCRIPT
MICROSOFT CONFIDENTIAL – INTERNAL ONLY
Software-defined Networking with Windows Server 2012 & System Center 2012 SP1CJ Williams – Principal Program ManagerDhananjay Mahajan – Senior Program ManagerAnanthanarayan Sundaram – Senior Product Marketing Manager
WS-B327
MICROSOFT CONFIDENTIAL – INTERNAL ONLY
Session Objectives And Takeaways
Session Objective(s): • Understand how Software-defined Networking (SDN) can help
you transform your datacenter• Microsoft’s approach to SDN • Microsoft’s SDN solution
Key Takeaways• Windows Server and System Center deliver end-to-end SDN
solution in-box• Microsoft will continue to inform it’s SDN approach through
learnings from operating large scale cloud services • Microsoft is committed to an open, extensible, standards-based
approach
Transform thedatacenter
Datacenter without boundaries
Cloud innovation everywhere
Dynamic application delivery
MICROSOFT CONFIDENTIAL – INTERNAL ONLY
Requirements to transform networking
Deliver networking as part of pooled, automated infrastructure
Expand datacenter capacity seamlessly as per business needs
Reduce operational complexity
Ensure multitenant isolation, scale and performance
MICROSOFT CONFIDENTIAL – INTERNAL ONLY
What is SDN?
An approach where software can dynamically manage the network, allowing it to adapt to changing workload needs by:• Abstracting workloads from the physical
network • Controlling datacenter traffic flow • Enabling integrated policies that span
physical and virtual networks
MICROSOFT CONFIDENTIAL – INTERNAL ONLY
Windows Server
Windows Azure
High performance storage on industry-standard hardware File and storage services Offloaded data transferStorage spaces
Policy based automation Cluster aware updatesDynamic optimization
Multi-tenant environments with isolationServer coreHyper-V network virtualization Websites and VMs
Application elasticity Service templates
Software-defined networking Hyper-V network virtualizationNetwork QoSCross-premises connectivity
And many others….
Bringing our learnings from operating cloud services
MICROSOFT CONFIDENTIAL – INTERNAL ONLY
Microsoft’s approach to SDN
• End-to-end solution
• Promote industry innovation in software & hardware
• Open, extensible and standards-based
Our Principles Our Promise
Automation
Flexibility Control
MICROSOFT CONFIDENTIAL – INTERNAL ONLY
Customer and analyst excitement
“….deploying Windows Server 2012 has the potential to provide solid ROI..the enablement of software defined networking with Network Virtualization..” – Forrester Consulting study, Feb 2013
Windows Server 2012 - An ideal migration path to tomorrow's world of private and public clouds…
I expect to reduce storage costs by 10 times and server costs by 50%.
— Dan Smith, Deputy CIO, Marquette University
We decided to avoid paying VMware $1.75M (U.S.) in licenses and go with Windows Server 2012 and Hyper-V to build a private cloud model for our regional datacenters.— Studio Moderna, Slovenia
“The ability to virtualize network traffic without reengineering our base physical network infrastructure is huge,” Bourassa — Alan Bourassa, CIO, EmpireCLS, on their use of Hyper-V Network Virtualization
I‘ve been a huge advocate for VMware. With Windows Server 2012 and the latest version of Hyper-V, all of that changes. — Justin Apps, Head of Enterprise Architecture, about how they
improved identity and access management with Windows Server 2012
“Windows Server 2012 is built deep in the cloud... You end up with a solution set that has the capability of doing the kinds of compute scenarios that customers will want to do in the next few years...we think it's a great product." — Al Gillen, IDC
The 2012 CRN Tech Innovator and Enterprise App Awards (Windows Server 2012 gets Virtualization and Editor’s choice)
MICROSOFT CONFIDENTIAL – INTERNAL ONLY
Delivering on SDN with Windows Server & System Center
Dynamic, policy-driven network (re)configuration
Consistent, profile-based deployment of SDN traffic policies through distributed virtual switch
Provision load balancers, site-to-site VPNs & gateways
Integrated control plane to co-relate workload placement and virtual network policy
Dynamic traffic control policies with Network QoS
Traffic monitoring and flow control with switch extensions
Virtual network abstraction with multitenant isolation
BYOIP for tenant onboarding & workload mobility
Secure cross-premises connectivity
Flexibility ControlAutomation
MICROSOFT CONFIDENTIAL – INTERNAL ONLY
Hyper-V Network Virtualization
Server virtualization• Run multiple virtual servers
on a physical server• Each VM has illusion it is running
as a physical server
Hyper-V Network Virtualization
• Run multiple virtual networks on a physical network
• Each virtual network has illusion it is running as a physical network
Physicalserver
Blue VM Red VM Blue network Red networkVirtualization
Physicalnetwork
MICROSOFT CONFIDENTIAL – INTERNAL ONLY
Hyper-V Network Virtualization Concepts• Customer’s VM Network
• One or more virtual subnets forming an isolation boundary • A customer may have multiple VM Networks• e.g. Blue R&D and Blue Sales
• Virtual Subnet• Broadcast boundary
Blue Corp Red Corp
Blue Subnet1
Blue Subnet3Blue Subnet2
Blue Subnet5
Blue Subnet4
Red Subnet2
Red Subnet1
Blue R&D Net Blue Sales Net Red HR Net
Multi-Tenant DatacenterCustomer’sVM Network
VirtualSubnet
MICROSOFT CONFIDENTIAL – INTERNAL ONLY
Virtualization Policy
System Center
Virtualize Customer IP Addresses
Customer Address Space (CA)
Red2
Blue2
10.0.0.5
Red1
Blue1
10.0.0.5 10.0.0.7 10.0.0.7
Blue
10.0.0.5192.168.4.1
1
10.0.0.7192.168.4.2
2Red
10.0.0.5192.168.4.1
1
10.0.0.7192.168.4.2
2
Blue10.0.0.
510.0.0.
7
BlueCorp
RedCorp
Red10.0.0.
510.0.0.
7
Datacenter Network
Host 1 Host 2
Provider Address Space (PA)
192.168.4.22192.168.4.11
Blue
10.0.0.5192.168.4.
11
10.0.0.7192.168.4.
22Red
10.0.0.5192.168.4.
11
10.0.0.7192.168.4.
22
Blue
10.0.0.5192.168.4.
11
10.0.0.7192.168.4.
22Red
10.0.0.5192.168.4.
11
10.0.0.7192.168.4.
22
CA PA
MICROSOFT CONFIDENTIAL – INTERNAL ONLY
Hyper-V Switch
Handles all traffic between:• Virtual machines • The external network• The host OS
MICROSOFT CONFIDENTIAL – INTERNAL ONLY
Windows Server 2012 Virtual Switch Features
Tenant Isolation
Traffic Shaping
Security Performance Diagnostics
Port ACL
PVLAN
Trunkmode
BandwidthMinimum
BandwidthCap
DHCPGuard
RouterGuard
IPsec TaskOffload
DynamicVMQ
PortMirroring
EventTracing(ETW)
UnifiedTracing
(UT)
FopAdditional
Capabilities…
MICROSOFT CONFIDENTIAL – INTERNAL ONLY
Enable traffic control policies per VM or per host
Enable bandwidth policies real-time
Integrate physical switch with virtual switch and manage with single interface
Filter ExtensionForwarding Extension
Capture Extension
Hyper-V Extensible Switch
MICROSOFT CONFIDENTIAL – INTERNAL ONLY
Hyper-V Extensible Switch benefits
17
Plug-ins can sit in a virtual switch among all traffic, including virtual machine to virtual machine traffic
Core services for extensions
High level of reliability and quality for extensions from the Microsoft Windows platform and Windows logo certification program
Extension management integrated into Windows management through Windows PowerShell cmdlets and WMI scripting
Faster and easier diagnosis of issues with unified tracing and increased availability of services with less downtime
Open platform to
fuel plug-insFree core services
Reliability and quality
Unified management
Easier to support
MICROSOFT CONFIDENTIAL – INTERNAL ONLY
SCVMM 2012 SP1: Logical Networks
Development Production
Create Logical Networks and assign them to the appropriatenetworking on the hosts
Production
Development
DMZ Prod DMZ ProdDMZ Prod Configure and deploy
Infrastructure
Cloud Abstraction
Delegated Capacity
Standardized Services
MICROSOFT CONFIDENTIAL – INTERNAL ONLY
SCVMM 2012 SP1: Managing Virtual Switch
…on Host 1
Virtual SwitchExtension1
Extension2
Extension3
…on Host 2
Virtual SwitchExtension1
Extension2
Extension3
…on Host 3
Virtual SwitchExtension1
Extension2
Extension3
…on Host n
Virtual SwitchExtension1
Extension2
Extension3
Physical Network
VMVM
VMVM
VM
VMVM
VMVM
VM
VMVM
VMVM
VM
VMVM
VMVM
VM
MICROSOFT CONFIDENTIAL – INTERNAL ONLY
SCVMM 2012 SP1: Logical Switch
…on Host 1
Virtual SwitchExtension1
Extension2
Extension3
…on Host 2
Virtual SwitchExtension1
Extension2
Extension3
…on Host 3
Virtual SwitchExtension1
Extension2
Extension3
…on Host n
Virtual SwitchExtension1
Extension2
Extension3
Physical Network
VMVM
VMVM
VM
VMVM
VMVM
VM
VMVM
VMVM
VM
VMVM
VMVM
VM
• Single logical entity spanning hosts
• Consistent policy and configuration
Logical Switch
MICROSOFT CONFIDENTIAL – INTERNAL ONLY
SCVMM 2012 SP1: Managing SDN
• Software Defined Networking (management, configuration, data)• Flexible, dynamic network isolation with Hyper-V
Network Virtualization• Extensible Virtual Switch• Policy knobs on Virtual Switch
• Network Policy/Offloads• SR-IOV• DHCP Guard• IPSec Task Offload• Bandwidth Control• Trunk Mode
VM Network
Logical NW
Virtual Machine
Physical Network
VLA
N 2
5S
ub
net
10
.0.0
.0/2
6
Fab
ric
Vir
tual
Virtual Machine
ExtensionExtensionExtension
VM Network
Logical NW
Demo: Datacenter without boundaries
MICROSOFT CONFIDENTIAL – INTERNAL ONLY
Microsoft SDN – built with partners in mind
Hyper-V switch to extend SDN policies
Co-existence of multiple Hyper-V switch extensions
Traffic monitoring and flow control with switch extensions
Built on standard protocols – IETF Generic Routing protocol
Standards support in ASICs , Gateways and TOR Switches
Pluggable interfaces, Gateway plug-in
VMM plug-ins
Deliver load balancers, site-to-site VPNs & gateways
Open Standards basedExtensible
MICROSOFT CONFIDENTIAL – INTERNAL ONLY
Call to action
• Deploy Windows Server 2012 and System Center 2012 SP1 today
• Refer additional Windows Server and System Center resourceshttp://www.microsoft.com/windowsserverhttp://www.microsoft.com/systemcenterhttp://blogs.technet.com/server-cloud
MICROSOFT CONFIDENTIAL – INTERNAL ONLY
SDN summary
• SDN is a promise of automation, control and flexibility of the network
• Microsoft provides an open, extensible, standards-based SDN solution in Windows Server 2012 and System Center 2012 SP1
• Microsoft will continue to bring innovation and learning from operating large scale cloud services to your datacenters
MICROSOFT CONFIDENTIAL – INTERNAL ONLY
Evaluation
Complete your session evaluations today and enter to win prizes daily. Provide your feedback at a CommNet kiosk or log on at www.2013mms.com.Upon submission you will receive instant notification if you have won a prize. Prize pickup is at the Information Desk located in Attendee Services in the Mandalay Bay Foyer. Entry details can be found on the MMS website.
We want to hear from you!
MICROSOFT CONFIDENTIAL – INTERNAL ONLY
Resources
http://channel9.msdn.com/Events
Access MMS Online to view session recordings after the event.
MICROSOFT CONFIDENTIAL – INTERNAL ONLY
© 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries.The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.