VMWare Cloud on AWS - 25 September - 15:00

VMWare Cloud on AWS - 25 September - 15:00

• 1. VMware Cloud on AWS VMware Cloud on AWS Serdar ARICAN Lead Systems Engineer | Cloud Management sarican@vmware.com
• 2. WE’RE HEADING TO A MULTI-CLOUD WORLD WE’RE HEADING TO A MULTI-CLOUD WORLD
• 3. Slide110 Operational Consistency Existing Skillsets & Tools Control, Manage, Secure Enterprise-class App SLA Compatibility with Apps CLOUD BUILDING CHALLENGES
• 4. INTRODUCING TWO POWERFUL FORCES COMING TOGETHER INTRODUCING TWO POWERFUL FORCES COMING TOGETHER
• 5. Integrated and hybrid approach Integrated and hybrid approach As customers move to the cloud, they are looking for ways to get the best of both worlds without buying new hardware. On-Premises Public Cloud §Scale faster §Reduce costs §Establish global footprint §Pay-as-you-go §Access broader range of services §Use familiar tools and processes §Leverage existing investments §Maintain unique hardware configurations §Have granular control over placement of apps and data
• 6. Enabling Hybrid Cloud and AWS Services ‹#› Confidential │ ©2018 VMware, Inc. Enabling Hybrid Cloud and AWS Services AWS Global Infrastructure AWS Global Infrastructure vRealize Suite, PowerCLI, Ecosystem VPN/ DX 25Gbps Customer Data Center APP VMware Cloud on AWS Management (vCenter Server) Access to all AWS Services Amazon EC2 Amazon S3 Amazon RDS AWS Direct Connect AWS IAM AWS IoT … … … … Compute vSphere Storage vSAN Network NSX vCenter Applications APP APP APP Applications APP APP APP vMotion Compute vSphere Storage vSAN Network NSX vCenter AWS Region vCenter vCenter (Hybrid Linked Mode – Single inventory view)
• 7. Cloud SDDC Cloud SDDC
• 8. Compute Cluster Configuration Compute Cluster Configuration 576 108 8192 1536 TO TO CORES GiB CORES GiB 16 NODE CLUSTER 3 NODE CLUSTER §Three host base cluster configuration §Can be expanded up to 16 hosts §Dual socket CPU host configuration §Intel E5-2686 v4 §18 Cores per socket at 2.3 GHz §Hyper-Threading is disabled by default §512 GiB memory per host
• 9. Cluster Expansion & Contraction: Customer Cluster Expansion & Contraction: Customer Motivation §Flexibly expand and contract cluster within minutes Overview §Customer can specify number of hosts to add or remove to/from their cluster §Hosts are added within minutes §Hosts removed from the cluster are evacuated of VMs and data prior to their removal completing
• 10. Automatic Cluster Configuration Automatic Cluster Configuration vSAN Cluster HOST IS ADDED 1. AUTOMATIC NETWORK CONFIGURATION 2. 3. vSAN Cluster Management Network vMotion Network vSAN Network VXLAN Network vSAN Cluster vSAN DATASTORE CAPACITY INCREASE
• 11. Elastic DRS Elastic DRS Scaling Hosts For On-Demand Requirements
• 12. Elastic DRS Elastic DRS Scaling Hosts For On-Demand Requirements §Enabled at the cluster level §Disabled by default §Automatically scale cluster based on utilization §Monitoring interval every 5 minutes §Scales up when ANY resource crosses pre- defined threshold §Scales down when ALL resources consistently remain below thresholds
• 13. Elastic DRS Elastic DRS Scaling Hosts For On-Demand Requirements §Less eager to remove a host §Can be grow/shrink between 3-16 hosts §Monitors: §Storage §Memory §CPU
• 14. Elastic DRS Elastic DRS Scaling Hosts For On-Demand Requirements §More eager to remove a host §Can be grow/shrink between 3-16 hosts §Monitors: §Storage §Memory §CPU
• 15. Automated Hardware Remediation Automated Hardware Remediation HOST FAILS, OR PROBLEM IDENTIFIED NEW HOST ADDED TO CLUSTER. DATA FROM PROBLEM HOST REBUILT, AND/OR MIGRATED PREVIOUS HOST EVACUATED FROM CLUSTER, FULLY REPLACED BY NEW HOST 1. 2. 3. vSAN Cluster vSAN Cluster vSAN Cluster Roadmap
• 16. Elastic Data Center Overview ‹#› Confidential │ ©2018 VMware, Inc. Elastic Data Center Overview Management Pool §vCenter Server, PSC, NSX Manager §NSX Edge Gateway (MGW) §NSX Logical Switch for management VMs §Firewall and VPN for security Compute Pools §NSX Edge Gateway (CGW) §NSX Logical Switch for workload VMs §Firewall and VPN for security §NAT to connect VMs to the Internet MGW CGW Internet vSAN Cluster Managed by VMware Managed by Customer VC NSX PSC VM VM VM VM VM DLR
• 17. Default Folder Structure Default Folder Structure
• 18. Custom CPU Core Counts ‹#› Confidential │ ©2018 VMware, Inc. •Increased deployment flexibility •Specify just the number of CPU cores you need per host (applied cluster wide) •Reduce costs for running mission-critical applications licensed per-core Custom CPU Core Counts *Preview: Feature released in preview to gather feedback – may not be available to all applicable customers or in all AWS regions. The information in this presentation is for informational purposes only and may not be incorporated into any contract. There is no commitment or obligation that items in ‘Preview’ will become ‘Available’. Regular Cluster “Custom” Cluster … …
• 19. Storage Configuration Storage Configuration
• 20. vSAN Host & Cluster Configuration vSAN Host & Cluster Configuration 128 24 160 30 TO TO NVMe DEVICES TB RAW CAPACITY NVMe DEVICES TB RAW CAPACITY 16 NODE CLUSTER 3 NODE CLUSTER §vSAN All-Flash Array §Usable VM storage capacity depends on Per-VM Storage Policy §MGMT consumed storage equals 0.9% of total vSAN datastore capacity (3 hosts) §NVMe Devices are encrypted §EBS volume acts as boot device
• 21. vSAN Architecture ESXi Host ESXi Host ESXi Host vSAN Architecture ESXi Host (x3) vSAN Disk Group vSAN Disk Group vSAN Node Configuration §2 Disk Groups §2 devices write-caching tier (3.4 TB) §6 devices capacity tier (10.2 TB) Storage Policy Configuration §Health Service is enabled * §RAID 1, 5 and 6 available * §Default Failure Tolerance Method: RAID-5 §vSAN Encryption is disabled * User configurable policy settings
• 22. New high-capacity storage option with Elastic vSAN and R5.metal* ‹#› Confidential │ ©2018 VMware, Inc. New high-capacity storage option with Elastic vSAN and R5.metal* Augment existing SDDCs for storage-dense workloads to cost-effectively scale storage •VMware Cloud on AWS new Amazon EC2 R5.metal instance type with flexible storage •VMware Elastic vSAN delivers enterprise class storage utilizing Amazon Elastic Block Storage (EBS) storage •Storage per host range from 15 to 35 TB in increments of 5 TB •User chooses amount of storage desired and used on all hosts within the cluster •R5.metal clusters can be added to an existing SDDC with at least one existing provisioned cluster vSphere vSAN NSX VMware Cloud on AWS Powered by VMware Cloud Foundation * Preview: Feature released in preview to gather feedback – may not be available to all applicable customers or in all AWS regions . The information in this presentation is for informational purposes only and may not be incorporated into any contract. There is no commitment or obligation that items in ‘Preview’ will become ‘Available’. Amazon EBS Amazon EBS Amazon EBS Amazon EBS Amazon EBS Amazon EC2 R5.metal PREVIEW
• 23. New high-capacity storage option with Elastic vSAN and R5.metal* ‹#› Confidential │ ©2018 VMware, Inc. New high-capacity storage option with Elastic vSAN and R5.metal* Augment existing SDDCs for storage-dense workloads to cost-effectively scale storage R5.metal instances: •2.5 GHz Intel Platinum 8000 series (Skylake-SP) processors. •2 sockets, 48 cores, 96 hyper-threads •768 GiB RAM •25 Gbps network bandwidth 3-node resources: •6 sockets, 144 cores, 288 HT •2.3 TiB RAM •15TB – 105 TB Storage (Raw) 16-node resources: •32 sockets, 768 cores, 1536 HT •12.3 TiB RAM •80TB – 560TB Storage (Raw) vSphere vSAN NSX VMware Cloud on AWS Powered by VMware Cloud Foundation * Preview: Feature released in preview to gather feedback – may not be available to all applicable customers or in all AWS regions . The information in this presentation is for informational purposes only and may not be incorporated into any contract. There is no commitment or obligation that items in ‘Preview’ will become ‘Available’. Amazon EBS Amazon EBS Amazon EBS Amazon EBS Amazon EBS Amazon EC2 R5.metal PREVIEW
• 24. Compliance ready Data-at-Rest Encryption ‹#› Confidential │ ©2018 VMware, Inc. Compliance ready Data-at-Rest Encryption Built-in integration with AWS Key Management System for vSAN encryption Local NVMe drives on i3 Assigned to vSAN AWS KMS •All data at rest on VMware Cloud on AWS is encrypted using vSAN software-based encryption •Integrated AWS Key Management System (KMS) for creation and control of keys EBS volumes on r5
• 25. Cluster Configuration and AWS Availability Zones Cluster Configuration and AWS Availability Zones AWS Global Infrastructure AWS Region vSphere VSAN NSX vSphere Cluster VM VM VM SDDC VM MGMT VMs Availability Zone VM VM VM Availability Zone §Restricted to one AWS Region and AZ §Automatically detects failed hardware §Auto remediation HA allows automatic recovery from HA events §Provision new host and eject failed node without customer intervention
• 26. Stretch Cluster (Multi-AZ Deployment) Stretch Cluster (Multi-AZ Deployment) AWS Global Infrastructure AWS Region Availability Zone VM VM VM Availability Zone vSAN Cluster vSphere Cluster VM VM VM VM SDDC §Multi AZ availability (Active-Active) §vSAN stretched across multiple AZs §Synchronous write replication across AZs §RPO = 0, RTO = HA Restart §Per-VM Storage Policy §First time infrastructure level AZ resilience! No need for refactoring traditional applications
• 27. Cross AZ Traffic ‹#› ©2018 VMware, Inc. Cross AZ Traffic Traffic types Read traffic serviced by AZ that VM resides on Synchronous replication commits writes to both AZ’s Witness traffic dependent on number of objects vSAN Stretched Cluster – replication traffic Stretched Cluster AZ AZ Region AZ Witness Synchronous Writes Read Locality
• 28. Relentless Availability with Stretched Cluster and AWS ‹#› ©2018 VMware, Inc. Relentless Availability with Stretched Cluster and AWS 1.Host fails, or problem identified 2.New host added to cluster 3.Data from problem host rebuilt, and/or migrated 4.Previous host evacuated from cluster, fully replaced by new host Host Failure Stretched Cluster AZ AZ Region AZ Witness
• 29. Relentless Availability with Stretched Cluster and AWS ‹#› ©2018 VMware, Inc. Relentless Availability with Stretched Cluster and AWS 1.Site failure occurs 2.vSphere HA restarts affected VMs AZ Failure Stretched Cluster AZ AZ Region AZ Witness
• 30. Relentless Availability with Stretched Cluster and AWS ‹#› ©2018 VMware, Inc. Relentless Availability with Stretched Cluster and AWS 1.Site failure occurs 2.vSphere HA restarts affected VMs 3.AZ restored; Data resynchronized 4.Locality restored manually* AZ Failure Stretched Cluster AZ AZ Region AZ Witness
• 31. Network Configuration Network Configuration
• 32. Networking in VMware Cloud on AWS Networking in VMware Cloud on AWS §All VM networking in VMware Cloud on AWS is provided by NSX §Provides compatibility with NSX and vSphere products used on-premises §vSphere and NSX have been optimized to work in AWS environment §Delivered using an ‘as a service’ cloud model
• 33. Rich Hybrid Networking and Connectivity Capabilities  Rich Hybrid Networking and Connectivity Capabilities NSX-T Provides: •Firewall = Microsegmentation •LB •VPN •IPFIX •Port Mirroring •And more… Direct Connect VPC Connectivity
• 34. Hybrid Cloud Operations Hybrid Cloud Operations §Single pane of glass for Hybrid Cloud Management §Hybrid Linked Mode provides operational consistency §On-Premises vCenter connects to SDDC vCenters §Cold Migration and vMotion from the UI §Per-VM EVC support for Cross-Cloud vMotion Confidential
• 35. vMotion is here! vMotion is here! Disclaimer: *Preview – feature for a subset of customers to test and provide feedback. Not guaranteed to move to available phase” §vMotion VMs from on-prem to SDDC and back over L2VPN §No need to power off the VM §No need to re-IP address of the VM §Requires 250Mbps of bandwidth per vMotion
• 36. Slide1201 ‹#› Confidential │ ©2018 VMware, Inc. So the key question is this … How can you move your application workloads, their critical data, and the systems that rely on it to the cloud—without incurring unnecessary risks, costs, or downtime?
• 37. Migrate 1000s of VM live with new feature of HCX ‹#› Confidential │ ©2018 VMware, Inc. Migrate 1000s of VM live with new feature of HCX Accelerated Cloud Adoption And Migration With HCX, App Mobility and Hybridity Services •App Mobility between any vSphere versions across on-premises and VMware Cloud on AWS •Best-In-Class migration, VMware Cloud Motion with vSphere Replication with zero downtime •Secure, Bi-Directional, Traffic Engineered, Network Extension with Auto VPN set up Infrastructure Hybridity Internet / Direct Connect/WAN USE CASES •DC Evacuation •DC Consolidation •Hardware Refresh •DC Extension Best-In-Class Cloud Migration With VMware Cloud Motion App Mobility vSphere On-Prem vSphere VMware Cloud on AWS vSphere HCX Infrastructure Abstraction
• 38. VMware Site Recovery – built for VMware Cloud on AWS ‹#› Confidential │ ©2018 VMware, Inc. VMware Site Recovery – built for VMware Cloud on AWS Disaster Recovery to VMware Cloud on AWS VM VM VM VM VM VM VM VM VM VM VM VM VM VM VM VM VM VM vSphere Private Cloud VMware Cloud on AWS SRM - VR 1~~~~~~~~ 2~~~~~~ 3~~~~~~~~ 4~~~~~~~ §Delivered as an add-on service with granular, on-demand pricing §Built on VMware’s proven disaster recovery solutions §Site Recovery Manager §vSphere Replication §Automated DR runbook with application-centric runbooks §Bidirectional protection between cloud and on-prem as well as between AWS availability zones §Integrated deeply with the VMware Cloud on AWS services
• 39. Use Case 1 – VMC as an infrastructure island ‹#› Confidential │ ©2018 VMware, Inc. Can be used temporarily for projects, development sprint, testing No need to invest in long-term CAPEX Once project is completed, workloads can be migrated back on-prem or discarded VMC as an infrastructure Island •No access to on-prem required •Only access to vCenter from Internet is required Deployment Details Benefits Use Case 1 – VMC as an infrastructure island VMware Cloud on AWS Compute Storage Network SDDC with NSX CGW Network A User Network B MGW
• 40. Use Case 2 – VMC as burst capacity ‹#› Confidential │ ©2018 VMware, Inc. Enable customers to expand their infrastructure with no HW/CAPEX investment For customers facing space/power/cooling constraint, they can burst to the Cloud on a permanent/temporary basis. Connectivity •Direct Connect or Internet •NSX L2VPN or HCX if constrained network needs to be stretched Deployment Details Benefits Use Case 2 – VMC as burst capacity VMware Cloud on AWS On-Premises Data Center AWS Direct Connect IPSec VPN Compute Storage Network Compute Storage Network vSphere-based SDDC with NSX CGW Network A Network B MGW Network A Network C Network D NSX L2VPN or HCX L2VPN AD DNS
• 41. Use Case 3 – VMC for geographical expansion ‹#› Confidential │ ©2018 VMware, Inc. No need to commit CAPEX for geographical expansion Infrastructure built and interconnected in hours SDDC-as-a-Service can be deployed in a matter of hours, to penetrate new market No need to stretch network as new applications are built (HCX/L2VPN not required – L3VPN only) Hybrid Linked Mode for unified management Deployment Details Benefits Use Case 3 – VMC for geographical expansion VMware Cloud on AWS On-Premises Data Center AWS Direct Connect IPSec VPN Compute Storage Network Compute Storage Network vSphere-based SDDC with NSX CGW Network A User Network B MGW DNS AD
• 42. Use Case 4 – VMC for DC Evacuation ‹#› Confidential │ ©2018 VMware, Inc. No need to renew lease or commit CAPEX in hardware refresh Enable customers to accelerate their move to the Cloud with no disruption to their applications and to their operating model while leveraging their existing VMware expertise Whole DC is being evacuated •All applications are moved, included common services (AD/DNS) •All platforms (virtualized and physical) are transitioned (and virtualized if necessary). •HCX over Internet or Direct Connect Deployment Details Benefits Use Case 4 – VMC for DC Evacuation Evacuate the whole DC VMware Cloud on AWS On-Premises Data Center AWS Direct Connect HCX Compute Storage Network Compute Storage Network vSphere-based SDDC with NSX Network A Network B Network C FW NAT Router HCX DNS AD
• 43. Use Case 5 – VMC for Application Migration ‹#› Confidential │ ©2018 VMware, Inc. Enable customers to migrate apps such as: - Application requiring high-performance (delivered by vSAN on NVME) - Application cannot be moved to native Cloud due to legacy OS - Application cannot be moved to native Cloud due to hard-coded IP Single App/Tier is being evacuated •Most other services and apps stay on-prem •HCX/L2VPN over Internet or Direct Connect •Only the “Network B” is stretched and only the “purple APP” is migrated across. •Default Gateway for Network B remains on-prem Deployment Details Benefits Use Case 5 – VMC for Application Migration Migrate a single application/tier VMware Cloud on AWS On-Premises Data Center AWS Direct Connect Compute Storage Network Compute Storage Network vSphere-based SDDC with NSX Network A Network B FW NAT Router CGW Network B Network D NSX L2VPN or HCX L2VPN Network C MGW DNS AD
• 44. Use Case 6 – VMC for Secondary DC ‹#› Confidential │ ©2018 VMware, Inc. No need to invest CAPEX in secondary DC for DR purpose – leverage the Cloud instead Using VMC for Test/Dev in non-DR time means customers can make the most of the available resources. Test/Dev workloads can be destroyed during the DR process to prioritize the production recovery. VMC Used for Secondary DC •Used during standard time as a Test/Dev platform and as DR site •When DR process is invoked, placeholder VMs are booted up •If failover requires apps to maintain the same IP addresses, use NSX L2VPN. If not IPSec VPN. Deployment Details Benefits Use Case 6 – VMC for Secondary DC Leverage VMC for DR & Test/Dev VMware Cloud on AWS On-Premises Data Center AWS Direct Connect Compute Storage Network Compute Storage Network vSphere-based SDDC with NSX FW NAT Router NSX L2VPN if network needs stretching, L3VPN otherwise Placeholder Placeholder Placeholder Test/Dev
• 45. Use Case 7 – VMC for Swing Space ‹#› Confidential │ ©2018 VMware, Inc. Enable customers to perform risk-free upgrade from End of Life vSphere 5.5 to supported version of vSphere Temporarily evacuate cluster •Empty on-prem cluster and move workloads to VMC on a temporary basis •Upgrade cluster during maintenance window •Repatriate VMs Connectivity Details •HCX L2VPN over Internet or Direct Connect Deployment Details Benefits Use Case 7 – VMC for Swing Space Evacuate cluster temporarily to upgrade cluster VMware Cloud on AWS On-Premises Data Center AWS Direct Connect HCX Compute Storage Network Compute Storage Network vSphere-based SDDC with NSX HCX L2VPN vSphere Upgrade
• 46. Slide1216
• 47. Slide1135 free VMware Cloud VPC Customer VPC ENI @25Gbps AZ1 AZ2 Customer Data Center Internet vSphere Environment ESXi Compute vSphere Storage vSAN Network NSX vCenter Color coding •Paid by VMware – Charged back to Customer •Paid by Customer to AWS directly AWS region A free free free free AWS region B $0.05/GB AWS Direct Connect $0.02/GB Cross-Region $0.02/GB Cross-AZ $0.01/GB Cross-AZ $0.01/GB free $0.09/GB free S3 in region A S3 Public end-point free free
• 48. Administration Administration
• 49. VMware Cloud on AWS is a service VMware Cloud on AWS is a service Provisioning •Automated account creation and environment provisioning by using the API •Automated interconnection created between VMware and AWS customer accounts Operations •Support provided by VMware directly •AWS infrastructure (for VMware Cloud on AWS) support managed by VMware •Ongoing infrastructure monitoring Maintenance •Ongoing stack maintenance managed directly by VMware •Upgrade implementation and execution The fully configured VMware Cloud software stack will be provisioned, operated, and maintained directly by VMware. Overview
• 50. VMware In-Product Support Experience VMware In-Product Support Experience Intelligent Search: Surfaces popular content based on the user’s location and contextual usage in the product Chat with VMware Support: Quickly address questions or issues with highly skilled VMware Support Engineers and Customer Support Representatives Support Requests (SRs): Create and manage SRs or our Support Engineers can create SRs on their behalf via chat without leaving the product. Ask the Community: Engage and pose questions to actively moderated communities backed by passionate VMware Support Engineers and VMware Experts around the globe. Service Health: Review live status of VMware Cloud Services and receive important service notifications.
• 51. VMware Cloud on AWS Resources VMware Cloud on AWS Resources •Website: VMware Cloud on AWS: https://cloud.vmware.com/vmc-aws/ •Website: VMware Cloud on AWS Outposts: https://cloud.vmware.com/vmc-aws-outposts/ •Give us a shout on Twitter: #VMWonAWS •Follow VMware Cloud on AWS on Twitter: @vmwarecloudaws •Try VMware Cloud on AWS Hands-on Lab: https://www.vmware.com/try-vmware/vmc-aws-hol-labs.html •Latest Blogs: https://cloud.vmware.com/community/ •YouTube: Overview, Customer stories and demos o VMware Cloud on AWS Overview Videos: https://bit.ly/2qjimj5 o VMware Cloud on AWS Demo Videos: https://bit.ly/2zjcWca •TCO tools: ohttps://cloud.vmware.com/vmc-aws-pricing ohttps://vmcsizer.vmware.com/home
• 52. QUESTIONS? QUESTIONS?
• 53. THANK YOU! THANK YOU! Serdar ARICAN Lead Systems Engineer | Cloud Management sarican@vmware.com