Post on 27-Jun-2015
description
vCloud Hybrid Service Jump Start Part One of Five:
vCloud Hybrid Service: Architecture and
Consumption Principles
Massimo Re Ferre', VMware
PHC5070
#PHC5070
2
Disclaimer
This session may contain product features that are
currently under development.
This session/overview of the new technology represents
no commitment from VMware to deliver these features in
any generally available product.
Features are subject to change, and must not be included in
contracts, purchase orders, or sales agreements of any kind.
Technical feasibility and market demand will affect final delivery.
Pricing and packaging for any new technologies or features
discussed or presented have not been determined.
“These features are representative of feature areas under development. Feature commitments are subject to change, and must not be included in contracts, purchase orders, or sales agreements of any kind. Technical
feasibility and market demand will affect final delivery.”
3
Strategy Overview Diagram
Public Clouds Private Clouds
Hybrid Cloud Seamlessly extend your data center to the public cloud
Virtual Workspace Manage access to services, applications and data for any device
The New Role for IT: IT as a Service
Software-Defined Data Center Virtualize the entire data center
Management and Automation
Storage and Availability Compute Network and Security
We are here
4
Important!
It is important that you focus on how you can consume vCHS
• However, understanding the underpinning principles we used to
build it will help you
This deck covers the principles of the vCHS service,
not its (detailed) features
• We are not going to discuss the Service Definition (e.g. “the VPC comes
with 3 public IPs” etc.)
5
Agenda
virtual data center
Warm up
The role of vCD
A Cloud of Clouds
Catalogs
Multi-site Tenants
Network and Security Consumption Interfaces
VPC / DC D/R
6
Agenda
virtual data center
Warm up
The role of vCD
A Cloud of Clouds
Catalogs
Multi-site Tenants
Network and Security Consumption Interfaces
VPC / DC D/R
7
This Is What You See When You Login
Total subscribed capacity
Click here
8
What’s Inside The Badge Box?
9
What’s Inside The Badge Box?
10
What’s Inside The Badge Box?
11
What’s Inside The Badge Box?
12
This Is What You See When You Login
virtual data center
Ok but… where is this coming from?
13
Agenda
virtual data center
Warm up
The role of vCD
A Cloud of Clouds
Catalogs
Multi-site Tenants
Network and Security Consumption Interfaces
VPC / DC D/R
14
vCD Basics
vSphere
vCloud Director +
vCloud Network and Security
CPU Capacity
Memory Capacity
Storage Capacity
Layer 2 Networks
Network Services
Catalog
CPU Capacity
Memory Capacity
Storage Capacity
Layer 2 Networks
Network Services
Catalog
………….
Customer A Customer B
15
vCD Basics
vSphere
vCloud Director +
vCloud Network and Security
CPU Capacity
Memory Capacity
Storage Capacity
Layer 2 Networks
Network Services
CPU Capacity
Memory Capacity
Storage Capacity
Layer 2 Networks
Network Services
Catalog
………….
Customer A Customer B
Quote: “I think of this as vCD providing vDCaaS to vCHS customers” Yes!
16
Agenda
virtual data center
Warm up
The role of vCD
A Cloud of Clouds
Catalogs
Multi-site Tenants
Network and Security Consumption Interfaces
VPC / DC D/R
17
Overall vCHS Architecture Principals
vCHS != vCD
vCHS leverages vCD (though)
vCHS implements a “cloud of clouds” model
vCHS leverages vCD for “last mile” IaaS service
18
Traditional vCloud Director Model
Cloud
19
Cloud of Clouds Model
VMware’s
Secret Sauce
vCloud Hybrid Service
Ad-hoc automation
and back-end
integrations
Not of interest to you
as a consumer
vCD
instance
20
Agenda
virtual data center
Warm up
The role of vCD
A Cloud of Clouds
Catalogs
Multi-site Tenants
Network and Security Consumption Interfaces
VPC / DC D/R
21
vCHS Offerings: VPCs and Dedicated Clouds
vSphere + vCloud Director + vCNS vSphere + vCloud Director + vCNS
vDC vDC VPC VPC
You can buy this (1 or more)
(SKU = Dedicated Cloud - DC)
You can buy this (1 or more)
(SKU = Virtual Private Cloud - VPC)
This is all yours! You’ll have to share this!
vCloud Hybrid Service
22
Dedicated and Shared Infrastructure Components
Dedicated Cloud Virtual Private Cloud
Access Portal Shared Shared
pNetwork Infrastructure Shared Shared
pStorage Infrastructure Shared Shared
pCompute Infrastructure Dedicated Shared
Workloads VLANs Dedicated Shared
LUNs (Datastores) Dedicated Shared
vCenter / DB Dedicated Shared
vCD cell / DB Dedicated Shared
vShield Manager Dedicated Shared
VXLAN vWires Dedicated Dedicated
Edge Gateways Dedicated Dedicated
Private Catalog Dedicated Dedicated
23
VPCs and DCs
VPCs are provisioned by VMware when customers buy them
• Along with 1 Edge Gateway
vDCs are provisioned by customers when customers buy a Dedicated Cloud
Both roads lead to the creation of a vCloud Director “virtual data center”
vDC and VPC, what’s the difference?
• The marketing name we are using to refer to them (vDC Vs. VPC)
• Who provisions them
• The allocation model (in a vDC you can assign resources granularly to VMs, in a VPC you cannot)
• The dedicated / shared infrastructure components underneath
• Other (more later)
24
Agenda
virtual data center
Warm up
The role of vCD
A Cloud of Clouds
Catalogs
Multi-site Tenants
Network and Security Consumption Interfaces
VPC / DC D/R
25
Typical VPC Consumer Operations
5Ghz / 20GB /
2TB
VPC capacity
VPC plumbing (VMware’s secret sauce)
Internet
You are here
26
Typical VPC Consumer Operations
vCloud Suite
on-premise
5Ghz / 20GB /
2TB
VPC capacity
Internet
VPC Self-Service consumption (customer)
You are here
27
Typical Dedicated Cloud Consumer Operations
Dedicated Cloud plumbing (VMware’s secret sauce)
Dedicated Cloud 30Ghz / 120GB / 6TB
Dedicated Cloud Capacity
Internet
You are here
28
Typical Dedicated Cloud Consumer Operations
Dedicated Cloud Self-Service consumption (customer)
Dedicated Cloud 30Ghz / 120GB / 6TB
Dedicated Cloud Capacity
3Ghz / 5GB / 500GB
vDC1 capacity
“Sales”
10Ghz / 10GB / 1TB
vDC2 capacity
“Marketing”
2Ghz / 2GB / 40GB
vDC3 capacity
“HR”
……..
Internet
vCloud Suite
on-premise
You are here
29
Agenda
virtual data center
Warm up
The role of vCD
A Cloud of Clouds
Catalogs
Multi-site Tenants
Network and Security Consumption Interfaces
VPC / DC D/R
30
vCHS Tenants (Users and Roles)
Tenant
31
vCHS Tenants (Users and Roles)
Tenant
Admin roles
User role
Can only deploy VMs
32
vCHS Tenants (Capacity and Resources)
Tenant
vDC 1 vDC 2
Dedicated Cloud 1
vDC 3 vDC 4
Dedicated Cloud 2
VPC2
On a shared
infrastructure
VPC1
On a shared
infrastructure
33
vCHS Tenants (Mapping of Roles to Resources)
VI Admin
Network Admin
Read-Only Admin
End-User
Account Admin
Subscription Admin
Global Role
Global Role
Global Role
Global Role
vDC / VPC Role
vDC / VPC Role
Global Role
vDC / VPC Role
vDC / VPC Role
vDC / VPC Role
vDC / VPC Role
34
Agenda
virtual data center
Warm up
The role of vCD
A Cloud of Clouds
Catalogs
Multi-site Tenants
Network and Security Consumption Interfaces
VPC / DC D/R
35
Deploy from Catalog
36
The “VMware Catalog”
VMware
Catalog
VPC VPC VPC
vDC 1 vDC2 VPC
Dedicated Cloud Tenant D
Tenant D
Tenant A Tenant B Tenant C
Populate Catalog
Consume Catalog
37
VPC
The “My Catalog”
VPC VPC VPC
vDC 1 vDC2
Dedicated Cloud Tenant D
Tenant D
Tenant A Tenant B Tenant C
My Catalog My Catalog My Catalog
My Catalog My Catalog
Populate Catalog
Consume Catalog
x x
Export / Import via:
vCloud Connector
Java Applet
APIs
Right-Click -> Add to Catalog
(not possible across virtual data centers)
My Catalog on-prem
data center
38
Catalogs Summary
VMware
Catalog
VPC VPC VPC
vDC 1 vDC2 VPC
Dedicated Cloud Tenant D
Tenant D
Tenant A Tenant B Tenant C
My Catalog My Catalog My Catalog
My Catalog My Catalog My Catalog
Populate Catalog
Consume Catalog
Export / Import via:
vCloud Connector
Java Applet
APIs
on-prem
data center
39
Agenda
virtual data center
Warm up
The role of vCD
A Cloud of Clouds
Catalogs
Multi-site Tenants
Network and Security Consumption Interfaces
VPC / DC D/R
40
Multi-Datacenter Strategy
The back-end (part of the VMware’s Secret Sauce) is architected with
• Scale out in mind
• Multiple layers of aggregation
In VMware’s Secret Sauce Parlance (details are not of interest to you):
• Shard
• Pod (comprised of multiple Shards)
• PMP/SMP (comprised of multiple Pods)
• Potentially multiple (loosely coupled) PMPs/SMPs
Each “aggregation layer” has a different number of shared elements
• The higher you go the lesser you share
A single tenant can own resources coming from dispersed back-ends
This architecture lends itself very well to implement a multi-datacenter strategy
41
Multi-Datacenter Strategy
(datacenter 1)
(datacenter 2)
POD
POD
POD
POD
SHARD SHARD
SHARD SHARD SHARD SHARD
SHARD SHARD
vDC or
VPC
vDC or
VPC
Tenant
vDC or
VPC
vDC or
VPC
vDC or
VPC
42
Multi-Datacenter View
Shared Dedicated Shared Dedicated
vDC vDC VPC VPC VPC VPC VPC vDC vDC
Tenant
Datacenter 1 Datacenter 2
Dashboard DTC 1
Dashboard DTC 2
VPC vDC vDC
VPC vDC vDC
43
Agenda
virtual data center
Warm up
The role of vCD
A Cloud of Clouds
Catalogs
Multi-site Tenants
Network and Security Consumption Interfaces
VPC / DC D/R
44
UI Consumption
Dedicated Cloud
Tenant
vDC1 vDC2 VPC
This is what happens behind the scenes (example)
45
UI Consumption
This is how that layout is represented in the UI (easy)
46
API Consumption
Dedicated Cloud
Tenant
Watch out! Each vDC / VPC is an API entry point!
So how do I connect here?
vDC1 vDC2 VPC
47
API Consumption
https://p1v14-vcd.vchs.vmware.com:443/cloud/org/Massimo/
Enter the vDC / VPC and notice the “vCloud Director URL” link
48
API Consumption
Dedicated Cloud
Tenant
Watch out! Each vDC / VPC is an API entry point!
https://p1v14-vcd.vchs.vmware.com:443/cloud/org/Massimo/
Note: the VPC would have a different cloud FQDN to connect to
vDC1 vDC2 VPC
49
API Consumption Considerations
From this point on, consuming vCHS = consuming vCD (as an Org Admin)
Gotchas:
1. If you have multiple vDCs / VPCs you need to connect to multiple API end-points (as we said)
2. In vCHS we block some API calls (e.g. local user management)
50
VMware Products Consuming the vCloud APIs
vDC / VPC
vCloud
Connector
Application
Director
vCloud
Automation
Center **
vCenter
Orchestrator ……
** impacted by gotchas #2 (unofficial workaround available – call your SE)
vCloud Hybrid Service
51
What vCHS Provides/Manages vs. What You Provide/Manage
vDC / VPC
Product A
Product B
(At GA) we won’t provide any of the “as a service”
Customers can run them either on-prem or inside their vCHS virtual data centers
• But ultimately running is your responsibility
52
Agenda
virtual data center
Warm up
The role of vCD
A Cloud of Clouds
Catalogs
Multi-site Tenants
Network and Security Consumption Interfaces
VPC / DC D/R
53
DR to the Cloud
(datacenter 1)
POD
SHARD SHARD
vDC or
VPC
vDC or
VPC Tenant
vDC or
VPC
vSphere
on-premise
Replication / DR
54
VMware Vision for DR to the Cloud
55
VMware Vision for DR to the Cloud
Not to be considered a roadmap item!
More like a statement of direction
56
VMware Vision for DR to the Cloud
Not to be considered a roadmap item!
More like a statement of direction
57
DR of the Cloud
(datacenter 1)
POD POD
SHARD SHARD SHARD SHARD
vDC or
VPC
vDC or
VPC
(datacenter 2)
Tenant
vDC or
VPC
vDC or
VPC Replication / DR
58
vCloud Hybrid Service
(datacenter 1)
(datacenter 2)
“Let’s Put It All Together” Slide
Tenant
vDC1 vDC2 VPC1
VPC2
My
Catalog My
Catalog
My
Catalog
VMware
Catalog
https://vchs.vmware.com
vCD
vCloud
Connector
Application
Director
59
VPCs or DCs? What should I buy?
Go with a Dedicated Cloud:
If you can’t / don’t want to share ESXi hosts with other vCHS customers
• Because you have formal / strict compliance requirements
• Because you have licensing compliance requirements
If you want ultimate control over resources assigned to your VMs
• From zero to high overcommitment (it’s your choice)
• Performance consistency due to high control and visibility to resource assignment
If you need to be able to provision virtual data centers quickly and at any size
• Or change resource assignment among those vDCs
If you need to have more than one Gateway per virtual data center
If you need higher network throughput to the Internet
If you want to act as a broker of resources to your BUs
• With self-service provisioning of virtual data centers
60
VPCs or DCs? What should I buy?
Go with a VPC:
If price is important
If you want a flexible service commitment (minimum 3 months vs. 1 year for a DC)
If it’s acceptable to be hosted on a shared vSphere infrastructure
If it’s acceptable to submit a new PO to provision a new virtual data center
If you don’t need ultimate control over resources assigned to your VMs
• We set the overcommitment upfront (no overcommitment on memory, 50% guarantee on CPU)
If you are a BU or if you don’t need any sort of delegation structure
• Still possible but the provisioning of new virtual data centers is through PO
• However difficult / impossible to rebalance resources across VPCs
(easy with vDCs in a Dedicated Cloud)
61
Other VMware Activities Related to This Session
HOL:
HOL-HBD-1301
vCloud Hybrid Service - Jump Start for vSphere Admins
Group Discussions:
PHC1000-GD
vCHS Architecture with Massimo Re Ferre
PHC5070
62 Confidential
Making the Most of VMworld
vCloud Hybrid Service Jump Start Program A curriculum designed to make YOU a vCloud Hybrid Service expert!
01
02
03
04
05
vCloud Hybrid Service: Architecture and Consumption Principles
Monday 12:30 – 1:30 pm
vCloud Hybrid Service: Networking and Security Basics
Tuesday, 12:30 – 1:30 pm
vCloud Hybrid Service: Advanced Networking and Security
Tuesday, 2:00 – 3:00 pm
Identifying and Deploying Workloads in vCloud Hybrid Service
Wednesday 12:30 – 1:30 pm
Deep dive into Hybrid Cloud Management
Thursday 10:30am – 11:30am
63 Confidential
vCloud Hybrid Service Jump Start Program
Attend 4 out of 5 Jump Start
sessions to receive a prize.
Extra Credit available!
Turn in Report card at the vCloud
Tweet-up.
Wednesday, 6:00 – 9:00 pm @ Roe 651 Howard Street - San Francisco, CA
64
Questions? @mreferre !
THANK YOU
vCloud Hybrid Service Jump Start Part One of Five:
vCloud Hybrid Service: Architecture and
Consumption Principles
Massimo Re Ferre', VMware
PHC5070
#PHC5070