TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
VMworld 2014: How to Build a Hybrid Cloud
1. How to Build a Hybrid Cloud - Steps
to Extend Your Datacenter
HBC1533
Chris Colotti, VMware, Inc
David Hill, VMware, Inc
2. Disclaimer
• This presentation may contain product features that are currently under development.
• This overview of new technology represents no commitment from VMware to deliver these
features in any generally available product.
• Features are subject to change, and must not be included in contracts, purchase orders, or
sales agreements of any kind.
• Technical feasibility and market demand will affect final delivery.
• Pricing and packaging for any new technologies or features discussed or presented have not
been determined.
2
6. Agenda
1 What Makes it a Hybrid Datacenter?
2 Use Cases and Starting Points
3 Understanding the vCloud Air Structure
4 vCloud Air Core Offerings
5 The Five Steps to Extending Your Data Center into vCloud Air
6 Putting it all Together
7 Questions
6CONFIDENTIAL
7. About the Speaker(s)
7
• Chris Colotti
– Principal Technical Marketing Architect, vCloud Air
– VCDX #37, vExpert, VCAP-DCD, VCP
– Blog: ChrisColotti.us
– Twitter: @CColotti
• David Hill
– Senior Technical Marketing Architect – vCloud Air
– VCAP-DCD, VCP, vExpert
– Blog: DavidHill.co
– Twitter @davehill99
CONFIDENTIAL
9. What Defines a Hybrid __________?
• hy·brid
• noun
– The offspring of two plants or animals of
different species or varieties, such as a mule
(a hybrid of a donkey and a horse).
– A thing made by combining two different
elements; a mixture.
• Adjective
– of mixed character; composed of mixed parts.
9
10. What Makes It a Hybrid Data Center?
• Blur the lines between…
– Users and applications
– Applications and infrastructure
– Hardware and resources
– Operations and management
– Support and operations
• Simplify access to resources
• Faster time to market
• More geographic options faster
• Create a global architecture
• Treat it like any other physical location
10
12. 5 Starting Points to Hybrid Cloud
12
Build next
Generation
Applications
Evolve from traditional
applications to next
generation applications
(Spring, Ruby on Rails)
to deliver on any
platform, anywhere
Dev/Test
Take a low-risk first
step and free up
valuable on-premises
data center capacity
by hosting dev/test
workloads in hybrid
cloud
Extend Existing
Applications
Facilitate
pre-production
testing for upgrades
and host new apps,
e.g., Microsoft
Exchange in hybrid
cloud
Modernize
Enterprise
Applications
Build and host
business-critical
applications and virtual
desktops in hybrid
cloud, including new
applications in
traditional 3-tier
architectures (Java)
Disaster
Recovery
Deliver disaster
recovery and extend
the data center for dev/
test, seasonal
workloads, and
additional geo
locations
13. Think Outside the Box - Free Your Mind
• If you built a new Physical Data Center what steps are there?
– Networking
– Infrastructure
– Applications
• Always remember the definition of Hybrid
• Focus on applications not infrastructure
– Get out of the break fix business
– Get into the application business
• Don’t focus on it being “Cloudy”
– Just because it’s “In the cloud” means little
• Forget everything you know about ESXi (to a point)
– Wait, What?! Current administrators need to elevate role
• Most any use case applies if you treat as any other Data Center
13
15. How vCloud Air is Structured
15
Tenant Portal
Dedicated Cloud – Las Vegas
vCloud Director API
Edge
Networking
Edge
Networking
VPC – Virginia
vCloud Director API
Edge
Networking
16. The vCloud Air Tenant Portal
• Single Sign-on to all your clouds
– View the type of cloud
– View by Region
• Same login for any access
– vCloud API
– Disaster Recovery
• Manage additional users
– First user is always the uber-admin
• Manage Data Protection Options
• Access MyVMware
– Order additional resources
– Open support tickets
16
17. vCloud Air IaaS Offering Comparison
Dedicated Cloud
• Dedicated Hosts
– More ISV Licensing options
• Over Commit Built-In
• Ideal for both
– Test and Development
– Production workloads needing reservations
• User controlled per machine settings
• Sub-divide pool of resources
– Create multiple vDC’s
• Multiple Edge Gateway capability
– Get more than 9 Interfaces
Virtual Private Cloud
• Shared Hosts
– Limited ISV Mobility
– Cost Effective
– Shared API endpoint
• Fully reserved resources
– No over commitment of resources
– Eliminates the “Noisy Neighbor”
• Ideal for initial POC and testing
• Single Edge Gateway per vDC
• Used for vCloud Air Disaster Recovery
17
18. Treat the Edge Gateway as an Advanced Core Switch
• Familiar networking design
• 10 total Interfaces per Edge
– 1 Edge per VPC
– Multiple Edges in Dedicated
• Static routes between interfaces
automatically
• 5-tupple firewall rules
– Deny all by default
• Advanced features
– DHCP
– Load Balancing
– Static routing
INTERNET
Private (Corp) Network
DMZ Network
Test/Dev Network
Isolated Network
(Logging)
EDGE
GATEWAY
18
20. The vCloud Air Primary Services to Mix and Match
IaaS
RaaSDaaS
20
21. Infrastructure as a Service (IaaS)
• New applications built on
standard Operating Systems
• Migration of existing
applications
– From P2V to V2C
• Build infrastructure in the
cloud and on premises
– View Security Servers
– SharePoint
– Exchange
– Web Servers
WDC (On Premises)
EDGE
GATEWAY
EDGE
GATEWAY
(192.168.20.0/24
Public-NET)
IPSec VPN
DT01 DT02
(192.168.3.0/24
Desktop-NET)
AD01
.41
AD02
.42
ViewCS
.5
vCloud Air Las Vegas
(IaaS)
ViewSS
.5
ViewSS
.5
(192.168.2.0/24
Public-NET)
view.vmtm.org
(192.168.1.0/24 Corp-NET)
66.45.200.34 69.194.137.139
PCoIP and Blast
21
22. Desktop as a Service on vCloud Air (DaaS)
Windows desktops and apps as a cloud service. Backed by VMware.
Simple cloud desktops at a predictable cost, without sacrificing security and control
VMware Horizon DaaS
Virtual desktop infrastructure, built on
vCloud Air
Corporate
Office
Remote
Office
Corporate
Wi-‐Fi
Mobile
Workers
22
23. Recovery as a Service(RaaS)
vSphere
Replication
Replication to vCloud Air:
• Warm standby capacity on vCloud Air
• Self-service protection, failover and failback
workflows per VM
• 15 min – 24 hr. recovery point objective (RPO)
• Initial data seeding by shipping a disk
– Can be done without Downtime!
• Remote management and monitoring, with
Production-level support
• Flexible subscription options
Data Protection Option for IaaS Machines
• Self Service or full vDC backup
• 365 day retention
23
24. The Five Steps to
Extending Your Data Center
Building Your Hybrid Data Center
24
25. Step 1 – Size Your Resources (vDC)
25
Dedicated Cloud
CPU: 30 GHZ
RAM: 120GB
Storage: 6TB
Define Reservations and Limits
Over Commitment Ratio
What’s your comfort level today?
5:1?
10:1? Maybe 20:1?
CPU: 5GHZ (burst 10GHZ)
RAM: 20GB
Storage: 2TB
100% Memory Reservations
50% vCPU Reservation
Lets think about the math
Virtual Private Cloud
We haven’t forgotten about On Premises its coming
26. Step 2 – Design Your Networks
26
External IP
Private Network
(10.0.0.0/24)
External IP
DC01 DC02 EMAIL vCC
Node
ON-
PREMISES
ROUTING
DEVICE
Dedicated or Virtual Private Cloud
EDGE
GATEWAY
EDGE
GATEWAY
• How many routed networks?
• Create multiple networks for different services
• 9 Interfaces to utilize
• VPN Configuration
• Network Settings considerations
• Firewall Rules
• Firewall rules are always reciprocal
• Impact on my current environment
• Move my templates to the cloud
• Other considerations
• Backup Networks
Internet
69.194.137.231 69.194.137.139
(192.168.20.0/24 Public-NET)
(192.168.10.0/24 Corp-NET)
(192.168.20.0/24 Public-NET)
(192.168.10.0/24 Corp-NET)
27. Step 3 – Establish Network Connectivity
27
External IP
Private Network
(10.0.0.0/24)
External IP
DC01 DC02 EMAIL vCC
Node
Dedicated or Virtual Private Cloud
INTERNET
VPN
Private Line
(192.168.20.0/24 Public-NET)
(192.168.10.0/24 Corp-NET)
ON-
PREMISES
ROUTING
DEVICE
EDGE
GATEWAY
28. Step 4 – Deploy Supporting Infrastructure
28
External IP
Private Network
(10.0.0.0/24)
External IP
DC01 DC02 EMAIL vCC
Node
ON-
PREMISES
ROUTING
DEVICE
Dedicated or Virtual Private Cloud
EDGE
GATEWAY
INTERNET
VPN
(192.168.20.0/24 Public-NET)
(192.168.10.0/24 Corp-NET)
EDGE
GATEWAY
(192.168.20.0/24 Public-NET)
(192.168.10.0/24 Corp-NET)
DNS SMTP
DC03 DC04 APP01 APP02
DNS SMTP
DC03 DC04 APP01 APP02
30. Putting It All Together
Technical Marketing Lab Use Case
30
31. Global Technical Marketing Architecture
Dedicated IaaS
vDC LV
VPC IaaS Sterling
VA vDC
VPC IaaS LV vDC
(DaaS Provider)
VPC RaaS TX vDC
Cloud to Cloud
VPNCloud to Cloud
VPN
Cloud to Cloud
VPN
DaaS Secure
Tunnel
IPSec VPN
IPSec VPN
IPSec VPN
vCloud Air-
DR
Replication
Cloud to Cloud
VPN
Dedicated DaaS
vDC LV
vmtm.org
• One Physical Site
• 3 Virtual Private Clouds
– RaaS in Dallas, TX
– IaaS Sterling, VA
– IaaS Las Vegas, NV
• 2 Dedicated Clouds
– IaaS in Las Vegas, NV
– DaaS in Las Vegas, NV
• IPSec VPN in Use
• DYN.com hosting all external
DNS Zone records
– vmtm.org
31
32. VMware vCloud Air - Virtual Private Cloud OnDemand
Interested in participating in the
vCloud Air OnDemand Beta
Progam?
The Product Team from vCloud Air is now
accepting candidates interested in participating
in the Fall 2014 beta program
32
Visit vmware.com/go/ondemand
to sign up
vmware.com/go/ondemand
33. VMware vCloud Air
5 Starting Points Program
VMworld 2014
33
Star8ng
Point
Session
ID
TOPIC
Dev/Test
HBC2577
Hybrid
Sandboxing
–
Create
the
Ul>mate
On
and
Off
Premises
Test/Dev
Factory
Extend
Exis>ng
Applica>ons
HBC2066
Architect
the
Hybrid
Cloud
for
Exchange
and
Lync
Disaster
Recovery
HBC
1534
Recovery
as
a
Service
(RaaS)
with
vCloud
Hybrid
Service
Modernize
Enterprise
Applica>ons
HBC
2609
Smells
Like
Team
Spirit:
Achieve
Hybrid
Opera>ons
Nirvana
with
vCloud
Hybrid
Service
Create
Next
Genera>on
Applica>ons
HBC
1917
Build
Your
First
Mobile
Applica>on…In
the
Cloud…In
60
minutes
Learn the fundamentals on vCloud Air
by attending any or all of our
5 Starting Point breakout sessions
within the Hybrid Cloud Track
33
Attend any of these breakout sessions and
earn a free vCloud Air “Dilbert” t-shirt.
CONFIDENTIAL
34. Hybrid Cloud Hands On Labs
Check out the Expert Led and Self Paced vCloud Air Hands on Labs
34
HOL: Expert-Led Workshop ELW-HBD-1481 Hybrid Cloud Jumpstart Workshop
HOL: Expert-Led Workshop ELW-HBD-1484 Disaster Recovery to the Cloud Workshop
HOL: Self Paced Lab SPL-HBD-1481 vCloud Hybrid Service - Jump Start for vSphere Admins
HOL: Self Paced Lab SPL-HBD-1482 vCloud Hybrid Service - Networking & Security
HOL: Self Paced Lab SPL-HBD-1483 vCloud Hybrid Service - Manage Your Cloud
Session ID Title Learn the fundamentals on
vCloud Air by attending any
or all of our 5 Starting Point
breakout sessions within the
Hybrid Cloud Track as well
as our Hands on Labs
Try any of these HOLs
and earn a free vCloud Air
“Dilbert” t-shirt.
36. Hybrid Cloud Theater Schedule - VMware Booth (Solutions Exchange)
36
In addition to the breakout
sessions within the Hybrid
Cloud track, check out our
THEATER schedule for the
week from the VMware
booth at the Solutions
Exchange
Sunday 5:00pm - What is this Hybrid Cloud Thing Anyway?
Monday 12:15pm - Getting Started with Hybrid Cloud - 5 Use Cases
Monday 1:30pm - vCloud Air OnDemand
Monday 3:45pm - What is this Hybrid Cloud Thing, Anyway?
Monday 5:30pm - Hybrid Cloud DevOps: How to keep your Devs from Running Wild
Tuesday 12:15pm - Project NEE - Delivering Hands-on Education at Cloud Scale
Tuesday 1:00pm - vCloud Air Network
Tuesday 2:45pm - Disaster Recovery with vCloud Air
Tuesday 4:00pm - Getting Started with Hybrid Cloud - 5 Use Cases
Tuesday 5:30pm - Hybrid Management on vCloud Air
Wednesday 10:15am - vCloud Air OnDemand
Wednesday 12:45pm - The Internet of Things: Virtual Machines, vCloud Air, vCenter Operations and
the Intel IoT Gateway
Wednesday 2:15pm - Disaster Recovery with vCloud Air
Wednesday 3:30pm - Another Day in Paradise....Going Full Hybrid with vCloud Air
Wednesday 4:30pm - RAD in the Hybrid Cloud
CONFIDENTIAL
