delivering hybrid cloud solutions on microsoft azure
DESCRIPTION
Delivering Hybrid Cloud Solutions with KEMP LoadMaster and Microsoft Azure - by - Joshua Lee, KEMP Technologies Layer 7 Application Delivery in the Microsoft Azure CloudTRANSCRIPT
Delivering Hybrid Cloud Solutions with KEMP LoadMaster and Microsoft AzureLayer 7 Application Delivery in the Microsoft Azure Cloud
New York: 631-345-5292 • Limerick: +353-61-260-101 • Hannover: +49-511-367393-0 • Singapore: +65-62222429
Why expand your IT platform to Hybrid Cloud?
What benefits does the Microsoft Azure platform provide?
How to achieve high availability with the KEMP Virtual LoadMaster for Azure?
What are the key features and benefits of the KEMP Virtual Loadmaster?
Agenda
From IDC, July 2013The Cloud Opportunity: Global Momentum Takes Hold Public IT cloud services spending will reach $98 billion in 2016, with a compound annual growth rate (CAGR 2011- 2016) five (5) times the growth of the IT industry overall.
Early-stage companies (less than five years in business) are the most eager buyers of cloud, concerned with start-up capital costs and less likely to build and staff a conventional datacenter, and plan to increase their spend on public cloud by 24% over the next few years.
Source: IDC Worldwide and Regional Public IT Cloud Services 2012–2016 Forecast (IDC #236552)
Mobility Apps
Big data Cloud
Industry trends driving IT pressures
How do I help my business make faster decisions?
How can I ensure my infrastructure will scale to meet demand?
Can I enable employees to work from anywhere?
How can I evolve my business apps to meet new needs?
5
Why NOW is the Right Time for Cloud
t
Reso
urce
sInactivity
Period
t
t
t
On and OffOn & off workloads Over provisioned capacity is wasted Time to market can be cumbersome
Unpredictable DemandUnexpected/unplanned peak in demand Sudden spike impacts performance Can’t over provision for extreme cases Re
sour
ces
Growing FastSuccessful services needs to grow/scale Keeping up w/ growth is big IT challenge Cannot provision hardware fast enoughRe
sour
ces
Predictable BurstingServices with micro seasonality trends Peaks due to periodic increased demandIT complexity and wasted capacityRe
sour
ces
On-Demand Dev/Test/Lab environments“Cold” VMs for Disaster RecoveryBatch Job Workloads
Off-site BackupsCloud-Integrated StoragePilot > Production Application Rollouts
Replicated VMs for Disaster RecoveryInternet Web SitesB2C and B2B Applications
LOB ApplicationsSeasonal Applications ( Retail, etc )High-Performance Computing ( HPC )
Scenarios That Benefit From Cloud
flexible developmentunified managementcommon identityintegrated virtualizationcomplete data platform
Customer
ServiceProviderMicrosoft
ConsistentPlatform
ONE
Microsoft Azure Windows Server Microsoft SQL ServerMicrosoft System Center Windows Intune
Microsoft Has One Consistent Platform on and off the Cloud
Microsoft Azure and other cloud platforms
Hyper-V and Other Hypervisors
“Bare-metal”LMOS (ISO)
Purpose-builtAppliances
• Give you “power of choice” with full range of deployment options• Simplifies scale-out of deployed applications • Satisfies prerequisite of L7 Load Balancing required for many apps• Supports intelligent site traffic distribution for hybrid deployments
across Azure and private cloud• Provides visibility into encrypted traffic flows for the application of
rules via SSL termination • Makes the delivery of multi-tenant web services possible via
content switching and SNI• Full investment protection plan
Benefits of KEMP LoadMaster
Optimized to run natively inside of the Microsoft Azure Cloud, Virtual LoadMaster™ (VLM) for Azure delivers full Layer 7 load balancing and application delivery services for Azure-hosted workloads. This helps customers to seamlessly move their private cloud Enterprise applications into a hybrid deployment using Microsoft Azure and scale their app delivery services as needs increase.
Virtual LoadMaster for Azure Introduction
Commercially available since June 2013
Full feature L7 load balancing and content switching natively in the Azure cloud
Intrusion Prevention Services
Single Sign-On / Pre-Authentication
Service Aware Health Checking
Resource Based Traffic Distribution
Support for a broad range of Microsoft and custom workloads
Included Global Server Load Balancing (GSLB) for Hybrid deployment
SSL termination with SNI Support
KEMP Technologies Confidential
Highlighted Features of of VLM-Azure
SharePoint ADFS Proxy ADFS Farm RDS
SharePointADFS Proxy
ADFS FarmRDS
OptionalSite-to-Site VPN
On Premise Data Center
• Enables O365 deployments w/ADFS HA in Azure
• Supports Azure-only or hybrid deployments
• Supports DRaaS when VPN is used
• Provides HA for workloads now supported in Azure such as SharePoint and RDS
• Web Applications w/L7 proxy needs
• SNI and single IP use for multiple workloads in multi-tenant deployments
Common Use Cases with Virtual LoadMaster in Azure
Azure Storage
Data
On Premise Private Cloud
Applications
Azure VPN
VLM-Azure for Application Microsoft to Azure IaaS
Directory Replication
Problem• Limited datacenter capacity• Slow response to changing business and capacity needs• Requirement for on premise cost reduction• Need for minimal development efforts to transition apps
Solution• Azure provides a way to transition Tier 2/3 apps to cloud-hosted
VMs freeing on premise resources• Internal/External client access remains unchanged• KEMP’s VLM delivers unified experience in public/private cloud• VLM’s full Layer 7 load balancing, content switching and reverse
proxy services minimizes required application augmentation
Virtual NetworkSubnet
Organization Network
Azure VPN Connection
Internet
VLM-Azure for SharePoint on Microsoft Azure IaaS
Problem• High startup costs• Need for comprehensive DR strategy• Deployment time to market
Solution• Azure’s flexible pricing drives down TCA• Azure allows for automated provisioning• Azure allows for simplified DR options• VLM-Azure makes Intranet load balancing possible for clients on the private network
VLM-Azure for ADFS on Microsoft Azure IaaS
Microsoft Apps
Custom Apps
3rd Party Apps
Windows AzureActive Directory
On Premise Active Directory Infrastructure
ADFS
Problem• Costly disaster recovery• Potential single points of failure• Need for multi-factor authentication and SSO
Solution• Azure-hosted ADFS provides resiliency for corporate data center• KEMP’s VLM GSLB capabilities allows for automatic request re-
routing in the event of failures• Windows Azure allows customers to safely and securely extend
their corporate AD authentication environment
ADFS
Virtual LoadMaster for Azure
Application VM Application VM Application VM Application VMApplication VM
Virtual Network
Cloud Service Endpoint Public IP
Cloud Service for Application VMs (optional)
Cloud Only Deployment
Cloud Service for Virtual LoadMaster VM
Client request received by LoadMaster
LoadMaster checks to see if client session exists
LoadMaster applies content rules, provides L7 services (IPS, SSL overlay, content switching, etc.)
LoadMaster distributes traffic based on scheduling method and health/status of VMs
Virtual LoadMaster for Azure
Application VM Application VMApplication VM
Virtual Network
Cloud Service Endpoint Public IP
Cloud Service for Virtual LoadMaster VM
Cloud Service for Application VMs (optional) Application VM Application VM
LoadMaster
Enterprise Network
Hybrid Deployment
Virtual LoadMaster for Azure 1
Application VM Application VM Application VM Application VMApplication VM
Virtual Network
Cloud Service Endpoint Public IP
Cloud Service for Virtual LoadMaster VM
Cloud Service for Application VMs (optional)
Client requests name resolution to access the service or application
DNS entry for Service or application endpoint (URL i.e. cloud.kempdemo.com) is delegated to LoadMaster GEO
LoadMaster uses GEO functionality to determine the health status of each participating LoadMaster and Virtual Service
Client receives response with service IP to connect to
Client application connects to resolved IP address
VLM forwards the request to the application servers according to the configured load balancing mechanism and server’s health state
Virtual LoadMaster for Azure 2
Cloud Service Endpoint Public IP
VLM 1 becomes unavailable! Future Connections Redirected to alternative LoadMaster
HA Deployment with GEO
Cloud Service for Virtual LoadMaster VM
Azure Load Balancer KEMP VLM for Azure
Application-Aware L7 load balancing No Yes
High Availability Yes using Traffic Manager Yes using GEO
Hybrid Traffic Distribution No Yes using GEO
Scheduling methods Round Robin Only L4 / L7
Server persistence No L4 / L7 (Cookie and more)
SSL Termination/Offload No Yes
VM Resource Availability Awareness No Yes
Basic Tier VM Load Balancing No Yes
Standard Tier VM Load Balancing Yes Yes
Azure LB Only vs. Azure LB + VLM for Azure
RESOURCESVirtual LoadMaster For Azure Datasheet
http://kemptechnologies.com/files/downloads/documentation/Datasheets/LM-Azure.pdf
Virtual LoadMaster for Azure HA Guide
http://kemptechnologies.com/files/downloads/documentation/7.0/Feature_Description/Feature_Description_HA_for_Azure.pdf
Virtual LoadMaster for Azure Beginners Guide
http://kemptechnologies.com/files/downloads/documentation/7.0/Feature_Description/Feature_Description-LoadMaster_for_Azure.pdf
How to Assign Static IP Addresses to Azure Virtual Machines
http://www.bhargavs.com/index.php/2014/03/13/how-to-assign-static-ip-to-azure-vm/
Consider your strategy in leveraging the Cloud to solve your IT needs
Leverage KEMP Loadmaster to satisfy your needs to get your ready for your Cloud adoption now or in future
Learn about KEMP Loadmaster solution using the resources provided
Call To Action
Questions?
Appendix
Cloud ServiceA resource container possessing a URL attribute for addressing VMs in the service
Availability SetA group of VMs in different fault domains to ensure redundancy
Affinity GroupProvides higher degree of proximity within datacenters
Basic Azure TerminologyPlatform as a Service (PaaS)Services platform for applications with low infrastructure maintenance. Lowers administration and provides easily scalable environment for websites and services. No need to worry about patching, backing up, HA, etc.
Infrastructure as a Service (IaaS)VMs on demand created from available images and requiring same administration as on premise virtual infrastructure. Gives greater flexibility.
RegionMicrosoft Azure DatacenterNorth America Europe AsiaNorth Central US North Europe East AsiaSouth Central US West Europe South East AsiaEast US JapanWest US