CloudOps Summit 2012, Frankfurt, 20.9.2012 Track 1 - Transition
by Heike Ritter, Technical Evangelist, Microsoft Deutschland
http://cloudops.de/sprecher/#heikeritter
Find the video of this talk at http://youtu.be/9kS9N3glx9U
3. IT Pro experience
Support for key server applications
Easy storage manageability
High availability features
Advanced networking
Integration with compute PaaS
4.
5. Cloud Service is a management, configuration, security, networking and service model
boundary
INSTANCES
ROLES
9. Full control over machine names
Windows Azure provided DNS
Resolves VMs by name within the same cloud service
Machine names are modeled explicitly and registered in the DNS service
Bring your own DNS server
Use your on-premise DNS servers
Deploy a DNS server in Windows Azure
Use public DNS services
10. UDP Traffic Supported in WA
Load-balanced incoming traffic and allows outbound traffic
Support for All IP-Based Protocols (VM to VM)
Instance-to-instance communication
TCP, UDP and ICMP, dynamic ports
Port Forwarded Endpoints
Direct communication to multiple VMs in the same cloud app
Custom Load Balancer Health Probes
Health check with probe timeouts
HTTP based probing, allowing granular control of health checks
11. Endpoint Cloud App/Hosted Service
Public Port
Local Port
Protocol (TCP/UDP)
Name
16. Cross-premise Connectivity
ENTERPRISE
Data Synchronization
SQL Azure Data Sync
Application-layer
Connectivity & Messaging
Service Bus
Secure Machine-to-Machine
Network Connectivity
Windows Azure Connect
Secure Site-to-Site
Network Connectivity
Windows Azure Virtual Network
17. Your “virtual” branch office/
datacenter in the cloud
Enables customers to extend their Enterprise Networks into Azure
Networking on-ramp for migrating existing apps
and services to Windows Azure
Enables “hybrid” apps that span cloud and their premises
A protected private virtual
network in the cloud
Enables customers to setup secure private IPv4
networks fully contained within Windows Azure
IP address persistence
Inter-service DIP-to-DIP communication
18. APPVNET – Virtual Network (10.3.0.0/16)
VNET Provides Direct
Fabrikam-CloudSvc Corp-OnPrem
Network Access
(192.168.1.0/24)
FrontEndSubnet
(10.3.1.0/24)
IIS Servers
AD
Data A
DNSSubnet 192.168.1.6
(10.3.2.0/24)
(Local AD)
ccess
Fabrikam-CloudDC
BackEndSubnet
(10.3.3.0/24) SQL Mirror
Fabrikam-CloudApps
21. Connect Cloud Apps via VIPs
Easily compose services by connecting public endpoints
Direct Connectivity Using Virtual Networking
For advanced connectivity scenarios such as Active Directory or DCOM
Mixed Mode: VM and PaaS Roles
in the Same Cloud Service
Simple, secure and highly efficient method of using IaaS and PaaS side-by-side
22. Strengths Load Balancer
Cloud
Simplicity Service 1
VIP Swap (stateless roles)
Easy Local Dev/Test SQL Data
Access Traffic
Persistent Service is Through Public
Easily Accessible Endpoint WA Web
(even from other services!) Role
Secure Endpoints
with Firewall
Cloud
Weaknesses Service 2
Higher Latency
Less Secure SQL
Server
Management/
Deployment Overhead Load Balancer
23. Strengths ContosoVNet (10.0.0.0/8)
Cloud
More Secure Service1
Low Latency FrontEndSubnet
(10.0.0.0/16)
Cloud Service Autonomy
VIP Swap (stateless roles)
WA Web Role
Advanced Connectivity Load
Requirements Balancer Direct Access
via VNET
Cloud
Weaknesses SQLSubnet
(10.1.0.0/16)
Service 2
VNET Complexity AD
No Windows Azure provided DNS AD Subnet
(10.2.0.0/16) SQL Mirror
24. APPVNET – Virtual Network (10.3.0.0/16)
VNET Provides Direct
Fabrikam-CloudSvc Network Access Corp-OnPrem
(192.168.1.0/24)
FrontEndSubnet
(10.3.1.0/24) WA Web Roles
AD
Data A
DNSSubnet 192.168.1.6
(10.3.2.0/24)
(Local AD)
ccess
Fabrikam-CloudDC
BackEndSubnet
(10.3.3.0/24) SQL Mirror
Fabrikam-CloudApps
25. APPVNET – Virtual Network (10.3.0.0/16)
VNET Provides Direct Corp-OnPrem
Fabrikam-CloudSvc Network Access (192.168.1.0/24)
FrontEndSubnet
(10.3.1.0/24) WA Web Roles
AD
DNSSubnet
(10.3.2.0/24) 192.168.1.6
Data A
(Local AD)
Fabrikam-CloudDC
ccess
Windows Azure
SQL Database
26. IT Pro experience
Support for key server applications
Easy storage manageability
High availability features
Advanced networking
Integration with compute PaaS