extending your network to microsoft azure using expressroute
TRANSCRIPT
Extending Your Network to Microsoft Azure Using ExpressRoute Ganesh Srinivasan, Microsoft CorporationBrian Lappin, British TelecomRichard Cammish, Coats PlcJon Ormond, Microsoft Corporation
CDP-B333
ExpressRoute Overview
New ExpressRoute Features, sites and providers
PartnerBT IP connect and ExpressRoute
Customer Use CasesCoatsMicrosoft IT and ExpressRoute
Agenda
Cloud on your WANTraffic flows directly from customer WAN to AzureReduces complexityProvides lower latency, higher bandwidth and greater availability
Azure
WAN
Corp HQ
Branch office 1
Branch office 2
Public internet
Customers want Azure on their network
IPsec VPN over InternetEncrypted data traverses Internet to reach AzureLimited bandwidth and higher availability
Azure
WAN
Corp HQ
Branch office 1
Branch Office 2
Public internet
Security
Lower cost
Predictable performance
High throughput
What is ExpressRoute?ExpressRoute
provides a private, dedicated, high-
throughput network connection between
on-premises and Microsoft Azure
Virtual network and ExpressRoute
Connect via an encrypted link over public internet
Peer at an ExpressRoute location, an Exchange Provider facility
Connection from WAN provided by Network Service Provider. Azure becomes another site on the customer’s WAN.
IPsec VPN over internet
Exchange provider
Network service provider
Customer Site
Virtual Network—Compute only
ExpressRoute—Provides customer choice and includes access to
all Azure services
ExpressRoutepartner location
Customer Site 1
Customer Site 2
Customer Site 3
WAN
Publicinternet
Publicinternet
PublicinternetCustomer Site
Microsoft Azure
Microsoft Azure
Microsoft Azure
Access all Azure Services
Connectivity to AzureAzure
Public Services
Azure Compute
ExpressRoute Peering
Site
Connectivity provider
infrastructure
Customer’s network
Customer’s dedicated connection
Traffic to Azure Storage, SQL DB, …Traffic to VNets
Public and Private Peering
Contoso (10.0.0.0/16)
Exchange
AD/DNS
IIS ServersSQL Farm Proxy/Internet edge
Monitoring
ExpressRoute Circuit Microso
ft Azure
Storage SQL Websites
Direct internet trafficCross PremisesInternet bound
Azure service access
Contoso virtual networks/VMs
Azure public services
AD/DNS
Internet
Routing policy is customerchoice
Internet
Microsoft
Azure
Storage SQL WebsitesAzure public services
Virtual NetworksExchange AD/DNS SQL FarmCore Network
Extranet
Firewall
IIS Servers
DDOS, IDPS, Proxies
Firewall
Internet edge
Customer’s premises
ExpressRoute Circuit
Private Peering
Public Peering
Best Practices for Peering
ExpressRoute PartnersExchange Provider Network Service Provider
ExpressRoutepartner location
Publicinternet
Customer site
Microsoft Azure
Customer site 1
Customer site 2
Customer site 3
WANPublic
internet
Microsoft Azure
US• Atlanta• Chicago• Dallas• Los Angeles• New York• Seattle• Silicon Valley, CA• Washington D.C.
EMEA• Amsterdam• London, UK
APAC• Hong Kong• Singapore• Sydney• Tokyo
LocationsExpressRoute Locations
• AT&T• British Telecom• Colt• Equinix• Internet Initiative Japan
(IIJ)• Level3• Orange• SingTel• Tata Communications• Telecity Group• Telstra• Verizon
Partners
Azure datacenters
ExpressRoute Locations (today)
New Locations and coming soon
Increased limitsNew Gateway size for better throughput
Default ExpressRoute GW can push up to 500 Mbps
Performance ExpressRoute GW can push up to 1 Gbps
Route limits increased
Up to 4000 routes for private peering
Up to 4000 routes for public peering
Gateway SKU
ExpressRoute Throughput
S2S Throughput
MaxTunnels
Default 500 Mbps 100 Mbps 10Performance 1000 Mbps 200 Mbps 30
* Subject to traffic conditions and application behavior
Path Diversity for HA and DROne VNet can be linked to many circuits
Each circuit can be through different service providers in different locations
HA + DR = Active-active in 1 location + active-active in 2nd location
Aggregate Throughput determined by VNet Gateway size
North Europe
WestEurope
London Amsterdam
Sharing ExpressRoute ConnectionsShare an ExpressRoute circuit across other subscriptionsCircuit owner must authorize and can revokeOwner gets billed for usage
Microsoft Azure
On-premises Network
Proxy / Interner edgeIIS Servers
AD / DNS
SQL Farm
Exchange
ExpressRoute
SQL DBStorage Websites
Marketing
AD / DNS
Monitoring
Sales
AD / DNS
R&D
AD / DNS
IT
AD / DNS
Operations Logs and NotificationsAudit logs for API calls
Circuit creationGateway creationCircuit link updatesAuthorizations and updates
BGP session statusCreationConfig updates
Coming soonAlerts when approaching limits
Quotas and LimitsNumber of circuits
Up to 10 circuits per subscriptionCovers all Azure regions and connectivity providesLink many VNets per ExpressRoute circuit
Connectivity boundaryLimited to a continent *Connecting to Amsterdam gives access to both Azure regions in EMEAConnecting to Silicon Valley gives access to all Azure regions in the US
AvailabilityCircuit is configured in Active-active configuration in each location99.9 % circuit up time SLA
Bandwidth and burstingUse selected bandwidthBurst up to 2 X selected bandwidth
RoutesIndustry standard BGP4000 routes for private peering 4000 routes for public peering
New capabilitiesHA + DR with diverse paths to VnetsSharing ExpressRoute across subscriptionsHigh Performance GatewaysOperations logs
BT Connect. Networks that think
BT IP Connect and ExpressRoute
Brian LappinHead of Product ManagementIP Connect Global
BT Global Services - Who we are and what we provide? Why BT:
• Over 3,400 customers use BT Connect services with more than 700,000 customer sites connected.
• Our network services are available in 198 countries and territories globally.
• We operate a global MPLS network offering IP VPN in 198, Ethernet VPN in 50 and Dedicated Internet Access in 45 countries and territories.
• Using the global internet, we provide Internet Access in more than 200 and Internet VPN in more than 180 countries and territories.
• We offer applications performance management in more than 90 countries and territories.
• We offer a wide range of access services from Ethernet and TDM through to Satellite and xDSL.
• We have one of the world´s largest broadband satellite networks with 37,000+ customer sites.
• We operate 5.5 million Wi-Fi hotspots in the UK.
June 14/15 highlight:• We launched IP Connect with Microsoft ExpressRoute for
Azure, providing private connectivity to Microsoft’s datacentres in Europe, improving performance and security.
Our propositions:• BT Connect Applications• BT Diamond IP• BT IP Connect Web-VPN• BT Internet Connect• BT IP Connect• BT Ethernet Connect• BT Optical Connect• Access services• BT LAN Connect• BT Advise Connect
Customers tell us “I need…• A network which is aligned to my business
needs• Connectivity wherever my business goes • To improve the flexibility of my network • To ensure my business critical applications
perform and users are happy with the network performance
• To ensure my network can support the influx of smart devices, both corporate and privately owned
• To drive efficiency in my network (UK only)
Why are we here today?Our customers are increasingly moving to the Cloud and are challenging us to provide network options that will support the move and address some of their fundamental issues
Want applications to perform at their best
with end users getting a great
experience
Build on existing network architecture
Want to take advantage of cloud services to power
the business
Need to deploy quickly to realise
benefits fast
Need the same availability as my own datacentres
Align with existing Network security
policies and practice for my on premise
hosting
The flexibility to turn up and turn down, matching costs to business demands
Have a wide range of requirements, so you need a wide range of solutions and price
points
How are we supporting our customer’s move the cloud?
Acceleration and security
BT Connect– Cloud BT Connect –
Cloud datacentres
Internet
“Cloud” Service EnvironmentCustomer
Site
Analytics
Path selection
Security
Acceleration
Monitoring
The BT GS ExpressRoute Service Enhanced Network Availability
delivered over the corporate network and via fully resilient interconnect links to the Azure Service
Consistency of Network Performance over the corporate network, through high capacity network interconnect to Azure
Enhanced Network Security delivered via direct MPLS connectivity from the customer site to the Azure service (not touching the internet) & with additional firewalling options if required
“another port on your network” connectivity to Azure delivered as part of your existing network estate within the existing network, service and commercial model
The BT GS ExpressRoute – delivery of the service
Step 1 Step 2 Step 3 Step 4
Obtain Service Key from Microsoft & Provide to BT
BT ConfigureService on existing infrastructure
BT set up standard network service wrap – reports etc
Customer configure virtual N/W & gateway & link network to circuit
Today’s timescales :days not weeks or months
Tomorrow’s timescales: minutes not days
The BT GS ExpressRoute : the future….
Geographic Expansion
Feature Extension
Enhance the service experience through the introduction of a near real time delivery of service capability for the BT element of ExpressRoute
Service Enhancement
Expand current interconnect from existing European locations (Dublin / Amsterdam) to US (East Coast / West Coast) and Asia (Singapore, Honk Kong and
Tokyo) in the next 3-6 months
Provide value add features to enhance the BT ExpressRoute service including security enhancement through Firewalls and performance enhancement through
Wan Optimisation
We are continuing to expand and improve upon our service….
Coats plc
Richard CammishGlobal CIO
This is Coats…in picturesCoats is the world’s leading industrial thread and textile crafts business
This is Coats…in figuresSize and scale$2bn revenue22000 employees72 factories, 45 dye-houses
Interesting facts1 in 5 garments around the world is held together using Coats’ thread100 million car airbags are made using Coats’ thread every yearCoats produces enough yarn to knit 70 million scarves a yearIn 3½ hours Coats makes enough thread to go to the moon and back400 million pairs of shoes are made every year using Coats’ thread1 million teabags using Coats’ thread are brewed every 10 minutesThomas Edison used Coats’ thread in 1879 to invent the light bulb
We deal with bugs too…Product innovation: Insectiban©
Bed bug: Cimex lectularius / hemipterus
Coats technology landscape7400 email clients and Microsoft Office users3500 SAP users covering 85% Coats sales revenue286 IT staff at 68 locations120 sites connected over BT MPLS backboneIT costs 3.4% of revenue
Coats technical infrastructure strategyTwo statements of direction…“Simplify, standardise, consolidate”“Fast and thorough”
The journey of changeLotus Notes to O365 migration (complete)7400 mail boxes in 5 months, Enterprise Voice rolled out
Single global managed Data Centre (target complete Nov 2014)3 centres to 1: 82 servers, 270 TB data in 8 months
Data centre optimisation, including local operations (2015-16)
Implementation of other tools (helpdesk, network monitoring, proxy standards etc)
The ‘takeaways’ (and why ExpressRoute!)Coats and the IT industry is in transitionBoth are moving at paceCoats is becoming more of a performance materials business, where innovation is a key differentiatorThe IT industry is encouraging a shift from private- to public-cloud infrastructure
ExpressRoute is part of a broader strategic agendaInvestments focused on productivity improvement and cost optimisationA journey of change
ExpressRoute is helping manage the transitionConsistent network performance from our private BT MPLS network to AzureEffective management of security and risk as data moves to public infrastructureEasy to implement (no disruption)Coats retains control, whilst leveraging expertise from BT and Microsoft
© 2014 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries.The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.
ExpressRoute and Microsoft ITJon OrmondDirector of Network ArchitectureMicrosoft IT
165k+ Users on Office 365 Exchange110+
Modern Apps Delivered
300k System Center managed devices
180k+Users
40kMSIT Servers in On-Prem Data Centers
The Microsoft IT Environment
717Site locations (114 countries)
11%LOB apps run in SaaS or PaaS today
1.2m+Devices hit the Microsoft network 270k
SharePoint Sites in the Cloud
1,300+LOB apps managed by IT
4.5m Remote connections/ month
90kMSFT employees on Yammer
80%LOB apps in Azure in 5 years
160kManaged Windows 8.1 Systems
200k+Unique devices connect to wireless/day
Enterprise First & Best Program
95%In the Cloud, WAP and Azure, in 5 years
21,470Wireless Access Points
2,302Routers
22gbSustained Internet Traffic
7,241Ethernet Switches
12,055Total Managed Network Devices
939SAN Switches
288Firewalls
131Load Balancers
>24M ft2Wireless Coverage
519Wireless Controllers
49,152Strands of Dark Fiber (Puget Sound Campus)
600Managed Circuits
9IT Datacenters
Network Infrastructure Services
IaaS
124PaaS AppsIn Azure
5 GbpsSustained Hybrid TrafficTo Azure
4,500Azure VMs
3Azure RegionsUsed withExpressRoute
SaaS
279ExpressRouteCircuits to Azure
Commodity
Apps / Svcs
LegacyApps
NewApps PaaS
Microsoft IT’s Azure Adoption Story
Demo: Bridging Microsoft CorpNet and Azure using ExpressRouteJon Ormond
Useful InformationUseful Contacts
ExpressRoute Sales: [email protected] Telecom: [email protected]
DocumentationAzure ExpressRoute overviewAzure ExpressRoute technical overviewAzure ExpressRoute FAQsAzure ExpressRoute API reference for customersAzure PowerShell cmdlet reference for customers
BlogsAzure Networking Blogs
Case Studies
Connectivity ProvidersAT&TBritish TelecomColtEquinixLevel 3Orange TeleCityTelstraVerizon
Breakout SessionsCDP-B229 Mark Russinovich and Mark Minasi on Cloud Computing CDP-B227 Introduction to Microsoft Azure Networking Technologies and What's New CDP-B333 Extending Your Network to Microsoft Azure Using ExpressRoute CDP-B209 Designing Hybrid Scenarios with Microsoft Azure CDP-B212 Microsoft Azure for Enterprises: What and Why CDP-B226 Introduction to Microsoft Azure Infrastructure-as-a-Service CDP-B356 What's New in Microsoft Azure IaaS and Roadmap CDP-B365 Hybrid Cloud Solutions with Microsoft Azure: For Architects
Hands On LabsCDP-H204 Introduction to Microsoft Azure Virtual MachinesDBI-H308 Exploring Manual and Automatic Database Backup Using Microsoft Azure Storage in Microsoft SQL Server 2014
Contacts for more infoService page: http://azure.microsoft.com/en-us/services/expressroute/Sales contact: [email protected]
Related content
Come visit us in the Microsoft Solutions Experience (MSE)!Look for the Cloud and Datacenter Platform area TechExpo Hall 7
For more informationWindows Server Technical Previewhttp://technet.microsoft.com/library/dn765472.aspx
Windows Server
Microsoft Azure
Microsoft Azurehttp://azure.microsoft.com/en-us/
System Center
System Center Technical Previewhttp://technet.microsoft.com/en-us/library/hh546785.aspx
Azure Pack Azure Packhttp://www.microsoft.com/en-us/server-cloud/products/windows-azure-pack
ResourcesLearning
Microsoft Certification & Training Resourceswww.microsoft.com/learning
TechNetResources for IT Professionals
http://microsoft.com/technet
Sessions on Demandhttp://channel9.msdn.com/Events/TechEd
Developer Network
http://developer.microsoft.com
AzureImplementing Microsoft Azure Infrastructure Solutions
Classroomtraining
Exams
+
(Coming soon)Microsoft Azure Fundamentals
Developing Microsoft Azure Solutions
MOC
10979
Implementing Microsoft Azure Infrastructure Solutions
Onlinetraining
(Coming soon)Architecting Microsoft Azure Solutions
(Coming soon)Architecting Microsoft Azure Solutions
Developing Microsoft Azure Solutions
(Coming soon)Microsoft Azure Fundamentals
http://bit.ly/Azure-Cert
http://bit.ly/Azure-MVA
http://bit.ly/Azure-Train
Get certified for 1/2 the price at TechEd Europe 2014!http://bit.ly/TechEd-CertDeal
2 5 5MOC
20532
MOC
20533
EXAM
532EXAM
533EXAM
534
MVA MVA
Please Complete An Evaluation FormYour input is important!TechEd Schedule Builder CommNet station or PC
TechEd Mobile appPhone or Tablet
QR code
Evaluate this session
© 2014 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries.The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.