complete vmware sddc introduction · complete vmware sddc introduction karel rudišar, systems...

© 2014 VMware Inc. All rights reserved.

Complete Vmware SDDC Introduction

Karel Rudišar, Systems Engineer, Vmware Inc.

Traditional Apps

Cloud-NativeApps

Build-Your-Own Converged Infrastructure Hyper-Converged Infrastructure

Any Device

Any Application

One Cloud

APP APP APP APP APP APP

Vmware SDDC - One Integrated Architecture

Virtualized Compute, Storage, Networking

Software-Defined Data Center

Common Management and Networking

Unified Hybrid Cloud

PublicPrivateManaged

vCloud AirYour Private Cloud

vCloud Air Network

Business MobilityApps, Devices, Content

2

AcceleratedInnovation

Dramatically accelerate the speed of IT to bring innovations to business

CapEx

Reduction

OpEx

Reduction

Streamlined and

Automated Data

Center Operations

Mobility for Workforce and

Customers

Redefine customer intimacy and workforce productivity in

a mobile-centric world

Improved Security and Control

Enable better control andincrease customer trust

3

NEW MODEL OF IT

KEY IMPACT METRIC

Data Center

Virtualization and Hybrid

Cloud Extensibility

Improved

Security to Effort

Ratio

Security Controls

Native to Infrastructure

Improved

Uptime

High Availability

and Resilient

Infrastructure

IT Service Delivery

Time

in Minutes

App and

Infrastructure

Delivery Automation

IT OUTCOMES

Secure, Faster

Delivery of Mobile

Apps

Business

Mobility

Proactive Datacenter Management and Monitoring

4

Intelligent Operations for Software-Defined Datacenter

51 vRealize Suite components2 Included with vRealize Suite and ships with NSX

vRealize Operations1

Compute Storage Hybrid Cloud

Network

& Security

vRealize

Network

Insight

vRealize Log Insight2

Physical/ Virtual/ Cloud Environment

Application

vRealize Business for Cloud1

Streamlined and Automated Data Center OperationsBefore Customer Experience

Right-sized VMsOverprovisioned VMs Undersized VMsIdle VMs

6

Unnecessary CapExfrom Over-purchasing

Hardware

Overprovisioning of VMs and Resources

Data Overload & Alert Storms

Long Mean Time to Issue Resolution

Lack of Infrastructure and

Application Visibility

Predictive Analytics

Problem Detection from

multiple symptoms drives

recommendation and

proactive action

Health Risk Efficiency

Dynamic Thresholds

How is VMware Self-learning Analytics Different?

7

Super Metrics

Dynamic Thresholds adapt

to workload changes and

eliminate alert storms and

false positives

Immediate

IssuesFuture

Issues

Optimization

Opportunities

Super Metrics combine

hundreds of KPIs into

health, risk and efficiency

scores

1 2 3

Health Alert – “Performance” Troubleshooting

8

Performance alert contributing to

degraded health. Let’s click to

see details …

© 2014 VMware Inc. All rights reserved. | CONFIDENTIAL9

Powerful and Scalable Log Management

10

Solve problems faster,

from days to hours

VMware

vRealize®

Log Insight™

Find problems you

didn’t know you had

Get actionable

insight into what

logs mean

Integrate log data with

performance analytics

vRealize Log Insight Overview

Intelligent Operations

•Enterprise scale

•Predictive analytics/machine learning for faster

problem resolution

Built for the Software-Defined Data Center

•Base version now included with VMware vCenter®

• Insight into VMware products including VMware

NSX®, VMware vRealize Automation™, and

VMware Horizon® View™

•Attractive pricing model for customers of all sizes –

not based on log volume

Unified Management

• Integration with VMware vRealize Operations™

Management Suite inventory integration, 2-way alert

visualization

Extensible

• Over 40 VMware and third-party content packs

available with full version of Log Insight

The Best Real-Time Big Data Log

Management for SDDC

Operatingsystem

vSphere

Systemstatistics

Applications

Security

Other IT

All Kinds of Logs

Log Insight 2.0

Analyze

Discover

Search

Visualize

IT Operations

Security

Compliance

40B events 10 event types

…by machine learning

OverviewAppApp

11

Logs as Last Mile to Root Cause Analysis

13

SCSI Errors

NFS Errors

Migration Failures

Host Disconnects

Dropped Packets

Failed Tasks

Slow Host Syncs

Slow DB Queries

Datacenter Automation

14

App and Infrastructure Delivery AutomationBefore Customer Experience

Capacity

Integration Validation

Provisioning

15© 2014 VMware Inc. All rights reserved. |

CONFIDENTIAL

App and Infrastructure Delivery AutomationRapid Application Delivery with Policy-Based Infrastructure Automation

Request Approve Provision Manage

Serviceblueprints

CostsAre Tracked

16© 2014 VMware Inc. All rights reserved. |

CONFIDENTIAL

All Costs Tracked

VMware Single Solution –Abstraction and Personalization

17

Agility by automating delivery of personalized services

Resource Pools

VMs with Network

Applications

Abstraction to

Model Once and Deploy Anywhere

Production

Test

DevelopmentPrivate Cloud

Public Cloud

Infrastructure

Policies

Application

Policies

Machine

Policies

Policies to personalize services

• Right-size

• Placement

• And so on

Out-of-box NSX Support for Blueprint Authoring & Deployment

Automated connectivity to existing or on-demand networks

Micro-segmentation for application stack

Automated security policy enforcement thru NSX security policies, groups and tags

On-demand dedicated NSX load balancer

18

Service Catalog

INTERNAL OR VMWARE AUTHORIZED USE ONLY

CONFIDENTIAL

19

Service Catalog

INTERNAL OR VMWARE AUTHORIZED USE ONLY

CONFIDENTIAL

20

Intelligent Operations for Software-Defined Datacenter

211 vRealize Suite components2 Included with vRealize Suite and ships with NSX

vRealize Operations1

Compute Storage Hybrid Cloud

Network

& Security

vRealize

Network

Insight

vRealize Log Insight2

Physical/ Virtual/ Cloud Environment

Application

vRealize Business for Cloud1

Challenges with Traditional Network Operations Tools

Traditional

network

management

tools are

inadequate for

modern virtual

networks like

NSX

22

Silo’ed, Complex Tools & People Skill Set Gap

New, Dynamic Environment

Operational visibility, control, and compliance

are challenging

Limited Visibility

vRealize Network Insight + vRealize Log Insight Help Customers

8

Simplified, Converged, Intelligent Operations for n/w across physical and virtual

Optimize Network

Performance with

3600 Visibility &

Analytics

Ensure Best

Practices, Health

and Availability of

NSX Deployment

Plan Micro-

segmentation

Deployment and

Ensure Compliance

Virtual, Physical and Cloud

24

NSX Assessment Tool

• Analyze Customer Data Center Traffic (East-West, V-to-V, V-to-P, ..)

• Generate Risk Assessment and NSX Benefits Report

• Use “True” Traffic % from Customer Environment in NSX ROI Calculator

• Demo Speed and Ease of Micro-Segmentation Sample of SG and FW Rules

– Virtual Appliance Model

– Installs in Minutes, Get Results in Hours

– Requires Connection to vCenters and Hosts Only

– Analyzes IPFIX Data Continuously to Generate Traffic Profile and Reports for a 1-3 day period

Microsegmentation and Security

25

East-West Traffic Analysis(Available in Assessment Tool as well as Full Product)

26

• East-West Traffic Flow Analysis

• Breakdown of Data Center Traffic by East-West, VM-to-VM, VM-to-Physical, Switched, Routed, etc.

• Get Detailed Flow stats behind each number

Security Policy Automation – Micro-Segmentation

27

• Discover vCenter and NSX constructs (folders, clusters, vlans, security tags)

• Automated Security Groupings Based on vCenter and NSX Constructs, Workload Characteristics, Ports, Common Services

• Recommended Security Policies / Firewall Rules (Zero-Trust Model)

• See Network Traffic Per Host, Per VM

• Export as CSV

Security Operations, Audit and Compliance

28

• Real Time Visibility into Security Group Memberships & Effective Firewall Rules for a VM, between VMs and between VM and Physical

• Datacenter Time Machine - Track Changes for Troubleshooting or Audit

• Compliance Engine with a Simple Google-like Search Interface to Write Policies and Set Alerts

• Instant Alerting Upon Policy Violation and Non Compliance

Data Paths Across Overlay And Underlay

29

NSX Firewall

PANW Virtual

FW

PANW Physical

Firewall

Physical Network

Switch, Router

VXLAN

VLAN

Converged

Infrastructure

(Ex: UCS)

Connectivity Graphs

• VM to VM, VM to Physical, VM to Internet

• Hop-by-Hop Path across Overlay (LDRs, Edge Gateways) and Underlay (Physical VDCs & VRFs). See V-To-P Boundary

• Correlated Problems And Performance Metrics Across Virtual and Physical

• See Effective Firewall Rules and Security Policies across NSX and PANW in Service-Chained Environment

Marketplace for Extensibility

Confidential31

• Log Insight content packs for leading data center networking products

• Scalable to millions of log records

• Interactive analytics for quickly searching and reviewing log activities

• Customer configurable external events for all high severity security and operations activities

VMware Integrated OpenStack (VIO)

32

Existing vSphere environment

VMware Integrated OpenStack

Complete, Production Grade OpenStack Distribution (distro)

Fully Validated Architecture

vRealizeOperations

vRealizeBusiness

Log Insight

OpenStack-aware Cloud Management

vRealizeAutomation

Single Support Contact

…industry leading data center

technologies

An open and vendor-neutral API ecosystem

that gives developers an experience like AWS…

Vmware Validated Design 2.0 for SDDC

33

CONFIDENTIAL

Vmware Validated Design for SDDC 2.0 - IT Automation CloudFoundation - Single Region - Dual Region

New Cloud-Native Apps

Software-Defined Compute Software-Defined NetworkSoftware-Defined Storage

Operations

Cloud Management and Automation

Analytics01110110

0111011001100100

Physical Hardware

Data Protection Data Replication Site Protection

vRealize Businessfor Cloud

vRealize AutomationvSphere

vCenter Server

NSX for vSphere vRealize Log Insightand Content Packs

vRealize Operationsand Management Packs

Virtual SAN

Vmware Validated Design 2.0 - Integrated Software Bill of Materials

35

Vmware Cloud Foundation

36

What are the main drivers in moving to the cloud?

37

Source: “Making Private and Hybrid Cloud Work,” Thomas Bittman. Gartner Data Center, Infrastructure and Operations Management Conference, December 2015.

66%

12%

10%

7%

5%

Agility/

Speed

Improve Quality

of Service

Business

Alignment

Defend IT

Reduce Costs

Demand for technologies that simplify infrastructure is high

38

Datacenter

Trends

Hyper-Converged

Infrastructure

NetworkVirtualization

InfrastructureAs-a-Service

Public Clouds

ContainerizedApps

But bringing them together can be hard…

• Deploying point solutions

• Time consuming and complex operations

• Vendor lock-in

• Cost

• Public cloud silos

You should not have to do these

undifferentiating tasks

Provision cloud infrastructure like you provision VMs

39

Server Virtualization Integrated SDDC Platform

Easy to consume platform that delivers the entire SDDC

VMware vSphere VMware Cloud Foundation

Automated lifecycle management and operations through VMware SDDC Manager

40

ConfigurationDeployment

Patching &Upgrades

SDDC Manager

Automates Day 0 to Day 2 operations

VMware SDDC Manager

ESX vCenter

NSX Virtual SAN

VM

Vmware SDDC Deployment Options

41

VXRAIL 4-NODE APPLIANCE

NODE 1 NODE 2 NODE 3 NODE 4

76 TB RAW FLASH

112 CPU CORES

2 RACK UNITS

- DEDUPE & COMPRESSION

- ERASURE CODING

FLASH OPTIMIZED

Up to 200VMs

3,200VMs

1,600VMs

800VMs

400VMs

START SMALL –SCALE ON DEMAND

Software-Defined Data Center (SDDC): The Foundation of the New Model of IT

46

AnyApplication

OneCloud

AnyDevice

Build-Your-OwnConverged

InfrastructureHyper-Converged

Infrastructure

Software-Defined Data Center

Cloud Management

Compute Network Storage

Extensibility

Traditional Applications

Modern, Cloud Applications

Business Mobility: Applications | Devices | Content

Hybrid CloudPRIVATE

YourData Center

PUBLIC

vCloud Air

MANAGED

vCloud AirNetwork

47© 2014 VMware Inc. All rights reserved. | CONFIDENTIAL

Thank you

48