ADV1600BU Horizon Cloud on IBM SoftLayer: Deployment … · Architecture Deep Dive VMworld 2017 ......
of 30
/30
Embed Size (px)
Transcript of ADV1600BU Horizon Cloud on IBM SoftLayer: Deployment … · Architecture Deep Dive VMworld 2017 ......
ADV1600BU
#VMworld #ADV1600BU
Horizon Cloud on IBM SoftLayer: Deployment Architecture Deep Dive
VMworld 2017 Content: Not fo
r publication or distri
bution
• This presentation may contain product features that are currently under development.
• This overview of new technology represents no commitment from VMware to deliver these features in any generally available product.
• Features are subject to change, and must not be included in contracts, purchase orders, or sales agreements of any kind.
• Technical feasibility and market demand will affect final delivery.
• Pricing and packaging for any new technologies or features discussed or presented have not been determined.
Disclaimer
CONFIDENTIAL 2
VMworld 2017 Content: Not fo
r publication or distri
bution
Jon Cook, Simon Le Comte
ADV1600BU
#VMworld #ADV1600BU
Horizon Cloud on IBM SoftLayer: Deployment Architecture Deep Dive
VMworld 2017 Content: Not fo
r publication or distri
bution
Agenda
1 Digital Workspace and HorizonAir
2 HorizonAir SoftLayer Physical Architecture
3 HorizonAir Logical POD Architecture
4 HorizonAir Tenant VPC
5 Building a Global Service using SDDC
6 Operating a Global Service
7 Questions
#ADV1600BU CONFIDENTIAL 4
VMworld 2017 Content: Not fo
r publication or distri
bution
ConsumerSimple
EnterpriseSecure
Digital Workspace
55
VMworld 2017 Content: Not fo
r publication or distri
bution
Digital Workspace ExperienceHorizon Cloud can easily be paired with Workspace ONE
6
Any Device
Securely access
digital workspaces
From Anywhere
Any Time
CONFIDENTIAL
VMworld 2017 Content: Not fo
r publication or distri
bution
• CAPEX Model
• Greater flexibility in desktop options
• Scalable to customer requirements
• Feature rich management
• Hybrid OPEX/CAPEX model
• Management infrastructure in the cloud
• On-premises virtual desktops & apps on
hyper-converged infrastructure
• Minimal internal expertise required and
easily scalable
#ADV1600BU CONFIDENTIAL 7
• OPEX model of utility based pricing
• Scalability on demand
• Minimal internal expertise required
• Remote locations where building data
center capacity is impossible
G
Horizon Cloud with Hosted
Infrastructure
On Premises
(Horizon 7)
Horizon Cloud with On-premises
Infrastructure
LOADBALANCERS
CONNECTIONBROKERS
ACTIVEDIRECTORY
MANAGEMENTSERVERS
CO
MP
UT
E S
ER
VE
RS
RU
NN
ING
VIR
TU
AL
DE
SK
TO
PS
CUSTOMER IT ENVIRONMENT
SANSTORAGE
CLOUD PROVIDER
ACTIVEDIRECTORY
ACCESS POINTS
VIRTUAL DESKTOPS & APPS
ON HYPER-CONVERGED INFRASTRUCTURE
CONTROL PLANE
CLOUD PROVIDER
MOBILEUSERS
REMOTEUSERS
ACTIVEDIRECTORY
USER APPDATA
CORP USER DEVICES
SECURE VPN
SE
CU
RE
VP
N
CUSTOMER IT ENVIRONMENT
Horizon Deployment Options
VMworld 2017 Content: Not fo
r publication or distri
bution
Introducing Horizon Cloud
#ADV1600BU CONFIDENTIAL 8
The most comprehensive cloud-hosted VDI service
Hyper-converged
Infrastructure Appliances
Public Cloud Hosted
Infrastructure
Choose where your desktops reside. On premises with HCIA or in the public cloud hosted by VMware.
The broadest range of desktop and app configurations from a single cloud servicePersistent
Desktops
Floating
Desktops
Hosted
Applications
PCOIPBlast
Extreme
Deliver a seamless user experience with your choice of protocol
Access your virtual desktops
and apps from smartphones,
tablets, PCs, Macs,
Chromebooks, thin and zero
clients, and even HTML5-
enabled browsers
VMworld 2017 Content: Not fo
r publication or distri
bution
#ADV1600BU CONFIDENTIAL 9
Management, Devices, Apps, OS
• Desktop management
• Access devices (end-point)
• Applications
• Image creation, deployment and maintenance
• Operating system licenses
Provided by:
End Customer OR Solution Provider
Software• DaaS platform software
• Server/data store
• DaaS platform SW
patching & administration
• Support and maintenance
Hardware• Servers
• Storage (RAID protected)
• Networking infrastructure
• Hardware Administration
• Support and maintenance
Facilities• Data center
• Racks
• Power and cooling
• Security
Support• 7 x 24 x 365 L2+ support for desktop admin
• DaaS platform — certified support personnel
• Integrated incident, service request and
escalation management system
Provided by:
Management Responsibility
9
VMworld 2017 Content: Not fo
r publication or distri
bution
Physical LayerVMware SDDC on SoftLayer Bluemix
VMworld 2017 Content: Not fo
r publication or distri
bution
Build on Multiple Compute
Services on One Platform
• Bare Metal Servers – Optimize compute
performance with scale
• Virtual Servers – Elasticity in various private and
public options
• High Processing Computing – Full control and
deep compute
• All services interconnected on one network
topology
Optimal I/O, Scalable Storage
• Minimize latency to disk, maximize I/O performance with
SATA, SSD and NVMe direct attached storage options
• S3 Object Storage for unstructured data
Maximized Bandwidth
• Segregate public and private networks
• Low latency between nodes,
• High capacity with 10Gbps connectivity options
#ADV1600BU CONFIDENTIAL 11
Content courtesy of IBM Bluemix
Soflayer BluemixHigh Performance Infrastructure
VMworld 2017 Content: Not fo
r publication or distri
bution
#ADV1600BU CONFIDENTIAL 12
Content courtesy of IBM Bluemix
Soflayer Bluemix DatacenterA deeper look
VMworld 2017 Content: Not fo
r publication or distri
bution
HorizonAir Logical POD ArchitectureBreaking the physical boundaries
VMworld 2017 Content: Not fo
r publication or distri
bution
Horizon Cloud Logical Service Architecture
Service POD(s)
In DataCenter
Tenant A Tenant B
TenantAppliance
TenantAppliance200 Virtual
Desktops400 VirtualDesktops
VPN/MPLS
Tenant BInfrastructure: DNS,
DHCP, AD
Network Services:DNS, DHCP, AD
Access PointAppliance
Access PointAppliance
Tenant A uVXLAN Networks Tenant B uVXLAN Networks
NSX EdgeGateways
NSX EdgeGateways
Service POD Backbone gVXLAN
Management Cluster
NetworkServices:DNS, AD
ServiceProviderAppliance
ResourceManagerAppliance
Service Provider gVXLAN
VMware Horizon CloudService Provider
DedicatedDesktop
Hosts
DedicatedStorage
DedicatedDesktop
Hosts
DedicatedStorage
Infrastructure VLANs (Resource API access)
#ADV1600BU CONFIDENTIAL 14
VMworld 2017 Content: Not fo
r publication or distri
bution
#ADV1600BU CONFIDENTIAL 15
Service Provider
Cluster
Tenant A ClusterTenant Specific
Appliances
NSX Edge/
DLRService Provider
Management
Management
vCenters
Tenant Public VLANs
Core vCenterServices 1 vCenterDesktopvCenter
DesktopvCenter
Network
Controllers
Operational
Edges
Tenant A ClusterTenant C Cluster
Management gVXLAN Networks
Network Cluster A
Storage
Controllers
Storage
Management
Tenant Management
Cluster A
Tenant Specific
Appliances
Tenant Management
Cluster B
NSX Edge/
DLR
Network Cluster A
Tenant B Cluster
Tenant private uVXLAN Networks
SoftLayer POD 1 VLANs
Tenant public uVXLAN Networks
SoftLayer POD 2 VLANs
SoftLayer POD 1SoftLayer POD 2Infra Public VLANs
SD Storage
Cluster(s)
Operations
ClusterDC Core
Management
Cluster
Security,
Monitoring,
Deployment and
Access
Infrastructure
Network
Controllers
Horizon HCS on SoftLayer Architecture
VMworld 2017 Content: Not fo
r publication or distri
bution
#ADV1600BU CONFIDENTIAL 16
Service Provider
Cluster
Tenant A ClusterTenant Specific
Appliances
NSX Edge/
DLRService Provider
Management
Management
vCenters
Tenant Public VLANs
Core vCenterServices 1 vCenterDesktopvCenter
DesktopvCenter
Network
Controllers
Operational
Edges
Tenant A ClusterTenant C Cluster
Management gVXLAN Networks
Network Cluster A
Storage
Controllers
Storage
Management
Tenant Management
Cluster A
Tenant Specific
Appliances
Tenant Management
Cluster B
NSX Edge/
DLR
Network Cluster A
Tenant B Cluster
Tenant private uVXLAN Networks
SoftLayer POD 1 VLANs
Tenant public uVXLAN Networks
SoftLayer POD 2 VLANs
SoftLayer POD 1SoftLayer POD 2Infra Public VLANs
SD Storage
Cluster(s)
Operations
ClusterDC Core
Management
Cluster
Security,
Monitoring,
Deployment and
Access
Infrastructure
Network
Controllers
East West
North
South
North
South
Network Traffic FlowHorizon HCS on SoftLayer Architecture
VMworld 2017 Content: Not fo
r publication or distri
bution
Dedicated to tenant
Physical and Network Isolation
Multi-tiered Storage
• VSAN for fast local desktop storage
• NFS
• Storage Encryption
• Performance Guarantees
• Add-on Storage
#ADV1600BU CONFIDENTIAL 17
Tenant Public VLANs
Services 1 vCenterDesktopvCenter
Tenant A Cluster
Storage
Controllers
Storage
Management
Tenant B Cluster
SoftLayer POD 1 Storage VLAN
Storage Management gVXLAN
SoftLayer POD 1
SD Storage
Cluster(s)
Desktop
Storage
AppStack
Storage
UWV
Storage
Utility/Add-on
Storage
VSAN
Storage
VSAN
Storage
NFS
NFS
NFS
NFS
Storage Architecture
VMworld 2017 Content: Not fo
r publication or distri
bution
HorizonAir Tenant VPCMulti-tenancy from the ground up
VMworld 2017 Content: Not fo
r publication or distri
bution
Customer Data Centre
FILEPRINT
DNSDHCP
DomainController
Horizon Cloud Tenancy
EDGE GATEWAY
INTERNET
Dedicated Connection/VPN
VDI VDI VDI
SalesTA 1 TA 2
HZA Desktop Managers
Services 01 Service 02
Infrastructure Services
AP 1
AP 2
AP
1
AP
2
Inte
rna
l Acce
ss
Desktop ZoneServices Zone
Security Zone
PCoIPBLAST
PCoIP - BLAST
PCoIP - BLAST
PCoIP - BLASTHTTPS
Internal Traffic
Internet Traffic - optional
Load B
ala
ncer
VIP
S
443/8443/4172
LDAP - SASL
443/8
443/4
172
443/8
443/4
172
#ADV1600BU CONFIDENTIAL
INTERNET
VDI VDI VDI
Engineering
VDI VDI VDI
Finance
Trusted Device VIA Corp WAN
Backhaul
Tenant VPC
19
VMworld 2017 Content: Not fo
r publication or distri
bution
Direct Connect Architecture
#ADV1600BU CONFIDENTIAL 20
• Provides scalable dedicated connectivity to/from on-premise
• Hosted in adjacent infrastructure to SL
– Arista switching gear in managed rack
• Networking handled with VXLAN
– Needed to work over SL L3 Network
– Arista and NSX Controllers are paired in Service POD
• Exchanges VXLAN routing information
– Tenant traffic isolated dedicated VXLAN(s)
• Integrating with Providers, ECX
– Target fully automatable, with self-service
VMworld 2017 Content: Not fo
r publication or distri
bution
Building a Global Service Using SDDCSoftlayer backbone meet NSX
VMworld 2017 Content: Not fo
r publication or distri
bution
#ADV1600BU CONFIDENTIAL 22
HCS DC
HCS Hub DC
HCS on SoftLayer Footprint
VMworld 2017 Content: Not fo
r publication or distri
bution
SoftLayer Backbone network
#ADV1600BU CONFIDENTIAL 23
VMworld 2017 Content: Not fo
r publication or distri
bution
Cross POD Routing
#ADV1600BU CONFIDENTIAL24
• Leverages NSX x-VC networking
• Core routing on SoftLayer BB
• All DCs are linked via uVXLAN
– Bridge from Core to Service PODs using Physical VLAN
• Routing protocols
– OSPF for intra-DC routing
– eBGP for x-DC routing
Service
POD->Core
VLAN
VM on172 Net
Service Provider
Cluster
Tenant Specific
Appliances
NSX
Edge/
DLR Service Provider
Management
Services 1 vCenter
Network
Controllers
Network Cluster A
Storage
Controllers
Storage
Management
Tenant Management
Cluster A
Tenant Specific
Appliances
Tenant Management
Cluster B
NSX
Edge/
DLR
Network Cluster A
SD Storage
Cluster(s)
eBGP
OSPF Area 0
OSPF A
rea 0Service Provider
Cluster
Tenant Specific
Appliances
NSX Edge/
DLR Service Provider
Management
Services 1 vCenter
Network
Controller
s
Network Cluster A
Storage
Controllers
Storage
Management
Tenant Management
Cluster A
Tenant Specific
Appliances
Tenant Management
Cluster B
NSX Edge/
DLR
Network Cluster A
SD Storage
Cluster(s)
Management
vCenters
Core vCenter
Operational
Edges
Operations
Cluster DC Core Management
Cluster
Security, Monitoring, Deployment and
Access Infrastructure
NetworkControllers
Management
vCenters
Core vCenter
Operational
Edges
Operations
Cluster DC Core Management
Cluster
Security, Monitoring, Deployment and
Access Infrastructure
NetworkControllers
Service Provider
Cluster
Tenant Specific
Appliances
NSX
Edge/
DLR Service Provider
Management
Services 1 vCenter
Network
Controllers
Network Cluster A
Storage
Controllers
Storage
Management
Tenant Management
Cluster A
Tenant Specific
Appliances
Tenant Management
Cluster B
NSX
Edge/
DLR
Network Cluster A
SD Storage
Cluster(s)
Service Provider
Cluster
Tenant Specific
Appliances
NSX Edge/
DLR Service Provider
Management
Services 1 vCenter
Network
Controller
s
Network Cluster A
Storage
Controllers
Storage
Management
Tenant Management
Cluster A
Tenant Specific
Appliances
Tenant Management
Cluster B
NSX Edge/
DLR
Network Cluster A
SD Storage
Cluster(s)
OSPF Area 0O
SPF Are
a 0
Service
POD->Core
VLAN
VMworld 2017 Content: Not fo
r publication or distri
bution
Operating a Global ServiceMonitoring at scale using vROPs/LogInsight
VMworld 2017 Content: Not fo
r publication or distri
bution
#ADV1600BU CONFIDENTIAL 26
LogInsight
Infra-Forwarder Cluster
(3-node)
LogInsight
Analytics Cluster
Operations DC 0
Services DC 0 POD 1Services DC 0 POD 0
LogInsight
Forwarder Cluster
(3-node)
Management VLAN
Operations VXLAN
DaaS VXLAN DaaS VXLAN
LogInsight
Analytics Cluster
Operations HUB DC 1
x-DC VXLAN
Nagios
vROps
Analytics Cluster
vROps
Remote Collector
vROps
Remote Collector
Tenant Appliances Management AppliancesManagement AppliancesTenant Appliances
Nagios, LogInsight, and vROPs
VMworld 2017 Content: Not fo
r publication or distri
bution
#ADV1600BU CONFIDENTIAL 27
LogInsight
Infra-Forwarder Cluster
(3-node)
LogInsight
Analytics Cluster
Operations DC 0
Services DC 0 POD 1Services DC 0 POD 0
LogInsight
Forwarder Cluster
(3-node)
Management VLAN
Operations VXLAN
DaaS VXLAN DaaS VXLAN
LogInsight
Analytics Cluster
Operations HUB DC 1
x-DC VXLAN
Nagios
vROps
Analytics Cluster
vROps
Remote Collector
vROps
Remote Collector
Tenant Appliances Management AppliancesManagement AppliancesTenant Appliances
Nagios, LogInsight, and vROPs
VMworld 2017 Content: Not fo
r publication or distri
bution
Automated on-boarding demo
VMworld 2017 Content: Not fo
r publication or distri
bution
VMworld 2017 Content: Not fo
r publication or distri
bution
VMworld 2017 Content: Not fo
r publication or distri
bution
![Devenir Revendeur Softlayer [#CloudAccelerate 13/06/2014 @ IBM CC Paris]](https://static.fdocuments.in/doc/165x107/546ea195b4af9fb9268b471f/devenir-revendeur-softlayer-cloudaccelerate-13062014-ibm-cc-paris.jpg?t=1685325771)
