Upload File

on-premises your datacenter hybrid datacenter scenarios capacity demand remote site layered...

  • Home
  • Documents
  • On-premises Your datacenter Hybrid Datacenter scenarios Capacity Demand Remote Site Layered Solutions Strategic migration Disaster Recovery
24
Extending your datacenter with Azure Site to Site VPN Aleksandar Đorđević [email protected] Technical Evangelist Microsoft

Upload: june-greer

Post on 05-Jan-2016

215 views

Category:

Documents


1 download

Report

Tags:

TRANSCRIPT

Page 1: On-premises Your datacenter Hybrid Datacenter scenarios Capacity Demand Remote Site Layered Solutions Strategic migration Disaster Recovery

Extending your datacenter with Azure Site to Site VPNAleksandar Đorđević[email protected] Technical EvangelistMicrosoft

Page 2: On-premises Your datacenter Hybrid Datacenter scenarios Capacity Demand Remote Site Layered Solutions Strategic migration Disaster Recovery

Objectives, agenda and key takeawaysObjectives:• Show and demo Microsoft Azure Network – Site to Site VPN

Agenda:• Common examples for extending on premise Datacenter to Azure with Site to Site VPN

Key takeaways:• “Hey, it is easy to setup Azure Site to Site VPN”

Page 3: On-premises Your datacenter Hybrid Datacenter scenarios Capacity Demand Remote Site Layered Solutions Strategic migration Disaster Recovery

On-premises

Your datacenter

Hardware VPN or Windows RRAS

Windows Azure

Virtual NetworkVPN

Gateway

<subnet 1>

<subnet 2>

<subnet 3>

DNS Server

VPN Gateway

Site-to-SiteVPN

S2S Virtual Network

Hybrid Datacenter scenarios• Capacity Demand• Remote Site• Layered Solutions• Strategic migration• Disaster Recovery

Page 4: On-premises Your datacenter Hybrid Datacenter scenarios Capacity Demand Remote Site Layered Solutions Strategic migration Disaster Recovery

Demo

Page 5: On-premises Your datacenter Hybrid Datacenter scenarios Capacity Demand Remote Site Layered Solutions Strategic migration Disaster Recovery

Environment outlook for Demo

On-premise Datacenter

Infrastructure at Azure

Cloud Service

Infrastructure at Belgrade

Active Directory

itp-dc01172.16.10.10 Site to Site VPN

Win2012RRASPub IP109.122.104.251

Azure Active/Passive GW/VPNtechdayzzz.cloudapp.net

172.16.10.0/24itpro-ceemc.rs

10.10.10.0/24

New VM with few features

Page 6: On-premises Your datacenter Hybrid Datacenter scenarios Capacity Demand Remote Site Layered Solutions Strategic migration Disaster Recovery

Hybrid Datacenter scenarios

Page 7: On-premises Your datacenter Hybrid Datacenter scenarios Capacity Demand Remote Site Layered Solutions Strategic migration Disaster Recovery

Hybrid scenario: Capacity demand

On-premise Datacenter

Site-to-Site VPN

Page 8: On-premises Your datacenter Hybrid Datacenter scenarios Capacity Demand Remote Site Layered Solutions Strategic migration Disaster Recovery

Hybrid scenario: Capacity demand

On-premise Datacenter

Site-to-Site VPN

Page 9: On-premises Your datacenter Hybrid Datacenter scenarios Capacity Demand Remote Site Layered Solutions Strategic migration Disaster Recovery

Hybrid scenario: Remote Sites

On-premise Datacenter

Europe

Asia

N. America

Central Datacenter

users

Page 10: On-premises Your datacenter Hybrid Datacenter scenarios Capacity Demand Remote Site Layered Solutions Strategic migration Disaster Recovery

Hybrid scenario: Layered Solutions

On-premise Datacenter

Web Shop application

Web Frontend

SQL Backend

Billing and CRM

ERP & CRM

SQL Backend Site-to-Site VPN

Page 11: On-premises Your datacenter Hybrid Datacenter scenarios Capacity Demand Remote Site Layered Solutions Strategic migration Disaster Recovery

Hybrid scenario: Strategic migration

On-premise Datacenter

Site-to-Site VPN

Page 12: On-premises Your datacenter Hybrid Datacenter scenarios Capacity Demand Remote Site Layered Solutions Strategic migration Disaster Recovery

Hybrid scenario: Disaster Recovery

On-premise Datacenter

Site-to-Site VPN

Page 13: On-premises Your datacenter Hybrid Datacenter scenarios Capacity Demand Remote Site Layered Solutions Strategic migration Disaster Recovery

Good to consider when planning Azure S2S VPN

Page 14: On-premises Your datacenter Hybrid Datacenter scenarios Capacity Demand Remote Site Layered Solutions Strategic migration Disaster Recovery

• IKE v1, IKE v2

• AES 128, 256

• SHA1, SHA2

Generic VPN devices must support

• Windows Server

• Routing and Remote Access Service (RRAS)

New: Software based VPN gateway

Options for On-Premises VPN Gateways

Page 15: On-premises Your datacenter Hybrid Datacenter scenarios Capacity Demand Remote Site Layered Solutions Strategic migration Disaster Recovery

Requirements for VPN gatewaysProperty Static Routing VPN gateway Dynamic Routing VPN gateway

Site-to-Site connectivity (S2S) Policy-based VPN configuration Route-based VPN configuration

Point-to-Site connectivity (P2S) Not supported Supported (Can coexist with site-to-site connectivity)

Authentication method Pre-shared key

• Pre-shared key for site-to-site connectivity

• Certificates for point-to-site connectivity

Maximum Number of Site-to-Site (S2S) connections 1 10

Maximum Number of Point-to-Site (P2S) connections Not supported 128

Active Routing Support (BGP) Not supported Not supported

 

http://azure.microsoft.com/en-us/documentation/services/virtual-network/

http://azure.microsoft.com/en-us/documentation/services/virtual-network/
Page 16: On-premises Your datacenter Hybrid Datacenter scenarios Capacity Demand Remote Site Layered Solutions Strategic migration Disaster Recovery

DNS ScenariosWindows Azure DNS Scenarios Use your own DNS Scenarios

A. Client-server applications using VMs B. Hybrid connectivity with on-premise (DNS on-premise)

C. SharePoint with custom DNS (VM)

VM

SQL Reporting Service

VM

SQL Analysis Service

VM

SQL Service

On-Premises Machine

Active Directory

Active Directory

SQL ServiceDomain joined to On-

Premises Network

On-Premises Machine

Business Components &

Entities

On-Premises Machine

UI Process Components

Web Tier

Active Directory

Internet

VM Role

SharePoint FrontEnd

VM Role

SharePoint FrontEnd

VM Role

Search and Indes

SQL Service

VM Role

DC DNS

VM Role

VM Role

SQL

VM Role

SQL

Local DNS

SQ

L Mirro

ring

LB

Open User Access

(Website)

DNS – you need to plan it…

Page 17: On-premises Your datacenter Hybrid Datacenter scenarios Capacity Demand Remote Site Layered Solutions Strategic migration Disaster Recovery

Few tips...regarding Hybrid Datacenter• Azure is fast changing platform, and new features are

constantly being added

• Extending toward Azure is much faster than building your new traditional datacenter

• Azure has predefined HA capabilities that can be easily utilized

Network Load Balancing

Scale up/down

Etc.

• Plan your DNS resolution strategy

Page 18: On-premises Your datacenter Hybrid Datacenter scenarios Capacity Demand Remote Site Layered Solutions Strategic migration Disaster Recovery

Quick recap…

Page 19: On-premises Your datacenter Hybrid Datacenter scenarios Capacity Demand Remote Site Layered Solutions Strategic migration Disaster Recovery

Extending your infrastructure

On-premises

Subnets in Windows Azure

GatewayVPN Device

Setup virtual private networks in the cloud

Manage as extensions of on-premises datacenters

Logical isolation with network configuration options

Create subnets, private IP addresses

Bring your own DNS

Windows Azure Virtual Network – S2S VPN

Page 20: On-premises Your datacenter Hybrid Datacenter scenarios Capacity Demand Remote Site Layered Solutions Strategic migration Disaster Recovery

Extend

your data

center!

It’s easy, step in to the world of hybrid…

Page 21: On-premises Your datacenter Hybrid Datacenter scenarios Capacity Demand Remote Site Layered Solutions Strategic migration Disaster Recovery

Resources

TechNet Evaluation CenterDownload Microsoft software trials today.technet.microsoft.com/evalcenter

Microsoft Virtual Academy Learn, know apply http://www.microsoftvirtualacademy.com/

Microsoft Azure: Site-to-Site VPNhttp://www.microsoftvirtualacademy.com/training-courses/microsoft-azure-site-to-site-vpn

21

Check it out

http://www.microsoftvirtualacademy.com/
http://www.microsoftvirtualacademy.com/
http://www.microsoftvirtualacademy.com/training-courses/microsoft-azure-site-to-site-vpn
http://www.microsoftvirtualacademy.com/training-courses/microsoft-azure-site-to-site-vpn
http://www.microsoftvirtualacademy.com/training-courses/microsoft-azure-site-to-site-vpn
Page 22: On-premises Your datacenter Hybrid Datacenter scenarios Capacity Demand Remote Site Layered Solutions Strategic migration Disaster Recovery

Thank you!Q&A time

Page 23: On-premises Your datacenter Hybrid Datacenter scenarios Capacity Demand Remote Site Layered Solutions Strategic migration Disaster Recovery
Page 24: On-premises Your datacenter Hybrid Datacenter scenarios Capacity Demand Remote Site Layered Solutions Strategic migration Disaster Recovery

Cloud OS - download.microsoft.com · Extend the value of existing license investments for application server software: on-premises or in the cloud Service Provider Value Lower datacenter

Datacenter Management and Virtualizationdownload.microsoft.com/documents/uk/enterprise/57... · Datacenter Management and Virtualization ... Datacenter infrastructure and applications

Datacenter Dynamics2010

Et Datacenter

FlexPod Datacenter with Oracle Real Application Clusters ... · 5 FlexPod Datacenter with Oracle Real Application Clusters 12c ... both on-premises and cloud-based Oracle IT ... and

Datacenter ccm

CUSTOMER DATACENTER MICROSOFT AZURE SERVICE PROVIDER CONSISTENT PLATFORM On-premises Windows Server 2012 R2 Systems Center 2012 R2 SQL Server 2014 BizTalk

DATACENTER APRESENTAÇÃO

Datacenter SalaCofre

Datacenter Networks

Datacenter guide

DATACENTER MANAGEMENT Goodbye ADFS, Hello Modern ... · More options than ever before! Password Hash Sync Pros: Cloud based authentication with same password as on-premises. Quickest

Solution datacenter

Azur e On-Premises Datacenter Operational cost model

Datacenter Virtualization

2020 Datacenter Leasing by City2020 Datacenter Leasing by

Confisio Datacenter

Primary Datacenter Secondary Datacenter - Koloffon Eureka · Primary Datacenter vCloud Connector vCenter Server ... Software-defined Datacenter Compute Cluster 01 ... 192.168.1.100

SAPO Datacenter

DataCenter 2020

Datacenter Transformation

Software Defined Datacenter Reference Architecture Linz/11 Th. Vater Microsoft.pdf · Stack/Object Storage. Converged solution On-premises disaggregated solution Scale components

DataCenter 2012

ABANDONED PREMISES (see VACANT PREMISES

Microsoftdownload.microsoft.com/download/A/8/1/A8128F79-ADD5-460D...2005/11/15  · Microsoft 3 BIG REASONS to extend your datacenter with the cloud Your on-premises infrastructure

Datacenter overview

Datacenter Migration to the AWS Cloud Brochure Khand Font … · different from managing your on-premises datacenter. • Optimizing both cost and performance is key • Apps Associates

BOUW EEN “COOL” DATACENTER CONSTRUIRE UN DATACENTER … · BOUW EEN “COOL” DATACENTER CONSTRUIRE UN DATACENTER “COOL” Ing. Johan Verplaetsen CEO Menerga EFP 25 jan 2012

Sercompe Datacenter

Google Datacenter

Modern Application Architecture with Docker Containers-as ... · Docker Datacenter An on-premises or VPC deployable CaaS platform that integrates into your existing systems and tools

Datacenter Virtualisation …

The New Datacenter Network · Adapting the Datacenter Network to New Demands Everything IT does in the datacenter is to support applications whether the applications are on-premises,

Charla datacenter

Steelhead DX for Datacenter-to-Datacenter optimization