oracle cloud infrastructure · 2020-04-22 · statements in this presentation relating to...
TRANSCRIPT
2020/4/22
Oracle Cloud Infrastructure
2 Copyright © 2020 Oracle and/or its affiliates.
The following is intended to outline our general product direction. It is intended for information purposes only, and may not be incorporated into any contract. It is not a commitment to deliver any material, code, or functionality, and should not be relied upon in making purchasing decisions. The development, release, timing, and pricing of any features or functionality described for Oracle’s products may change and remains at the sole discretion of Oracle Corporation.
Statements in this presentation relating to Oracle’s future plans, expectations, beliefs, intentions and prospects are “forward-looking statements” and are subject to material risks and uncertainties. A detailed discussion of these factors and other risks that affect our business is contained in Oracle’s Securities and Exchange Commission (SEC) filings, including our most recent reports on Form 10-K and Form 10-Q under the heading “Risk Factors.” These filings are available on the SEC’s website or on Oracle’s website at http://www.oracle.com/investor. All information in this presentation is current as of September 2019 and Oracle undertakes no duty to update any statement in light of new information or future events.
Safe harbor statement
3 Copyright © 2020 Oracle and/or its affiliates.
Oracle Cloud Infrastructure
NVMe, Block, File, Object, Archive
IOPS
,
Bare metal/VM, CPUs/GPUs
64CPU , 8 GPUs, 768 GB RAM, 51 TB local NVMe SSD, 5M IOPS,AMD and Intel processors
Autonomous DatabaseTransactions, Data Warehouse
Fast provisioning. Automatic tuning, patching, securing. 99.995% availability.
VCN, LBaaS, FastConnect, VPN
, ,
Containers and Kubernetes
CNCF
Kubernetes
DNS, WAF, DDoS, Email
DNS, , DDoS
Cloud at CustomerExadata
Exadata
Storage appliance, Data Transfer
SW NAS ,
(HDD or Appliance)
IAM, Audit, KMS, CASB
: /
Compartments, Tagging
:
Bare metal, VMs, Exadata
TPS , RAC/Active Data Guard
Cloud NativeEvents, Functions, Streaming
Cloud Native
4 Copyright © 2020 Oracle and/or its affiliates.
https://www.oracle.com/cloud/data-regions.html#apac
5 Copyright © 2020 Oracle and/or its affiliates.
Oracle Cloud Infrastructure 各サービスのご紹介
•
• Cloud Native
• PaaS
•
• Edge
Agenda
6 Copyright © 2020 Oracle and/or its affiliates.
• VM API
1 GPU
VM
•- 1 24
-
•- (CPU
)
-
Standard
•-
Dense I/O
•NVMe SSD
- I/O
GPU
• GPU- AI
HPC
Bare Metal
Compute
Virtual
Machine
HPC
• HPC-
Compute
7 Copyright © 2020 Oracle and/or its affiliates.
OCI
NVMe
Block
Storage
Object
Storage
File
Storage
(NFS)
Storage
Analytics HPC
WebDocker
8 Copyright © 2020 Oracle and/or its affiliates.
Dense I/O NVMe SSD
•- 51.2 TB
• IOPS 0.01 0.1 ms
- IOPS Performance SLA
• LVM RAID
- BM.DenseIO1.36(28.8TB Raw) RAID10 12.8TB
•
100 IOPS: NVMe
Shape NVMeLocal Disk
(TB)
Minimum Supported
IOPS
VM.DenseIO2.8 6.4 TB 250k
VM.DenseIO2.16 12.8 TB 400k
VM.DenseIO2.24 25.6 TB 800k
BM.DenseIO2.52 51.2 TB 3.0MM
Storage
9 Copyright © 2020 Oracle and/or its affiliates.
NVMe SSD
• 1 50 GB – 32 TB (1GB )
• 1 32 ( 1PB)
• iSCSI
• Performance SLA iSCSI
•
:
Block Volume
Lower Cost Balanced Higher Performance
IOIO DB
IOPS 2 IOPS/GB ( 3000 IOPS/volume)
60 IOPS/GB ( 25,000 IOPS/volume)
75 IOPS/GB( 35,000/volume)
240 KB/s/GB( 480 MB/s/volume)
480 KB/s/GB( 480 MB/s/volume)
600 KB/s/GB( 480 MB/s/volume)
Performance SLA
No Yes Yes
¥3.06/GB-month ¥5.10/GB-month ¥7.14/GB-month
Storage
10 Copyright © 2020 Oracle and/or its affiliates.
• 8
• (¥36 /GB/month)
• NFS v3 POSIX
•
• API/CLI
• SSD ( 1-2 ms) 150 MB/s per TB
:
File Storage
NFS
Storage
11 Copyright © 2020 Oracle and/or its affiliates.
Object Storage• API
- REST API Amazon S3 compatible API SDKCLI GUI HDFS Connector
• /
• 1TB ¥3,060/
Archive Storage•
- / ( , , )
-
• 1TB ¥312/
:
Web
Object Storage
etc..
CloudBerryGUI
Storage
12 Copyright © 2020 Oracle and/or its affiliates.
USB 2.0/3.0 external HDDs, SATA II/III 2.5“/3.5” internal HDDs 1 100TB
•
OCI /
Phoenix, Ashburn, London, Frankfurt
DHL/FedEx/UPS
1 2 ( )
Oracle Cloud –
Oracle Cloud
Storage
13 Copyright © 2020 Oracle and/or its affiliates.
(SDN)
SDN
• IP(ACL)
•
•
• Layer 3 Overlay Network
: (VCN)
Virtual Cloud Network : 10.0.0.0/16
AD-1
REGION : Phoenix
AD-2
AD-3
A10.0.1.0/24
B10.0.2.0/24
C10.0.3.0/24
Virtual Cloud
Network
Network
Route Table
Security
Lists
C10.0.4.0
/24
14 Copyright © 2020 Oracle and/or its affiliates.
1
• Public / Private Load balancer
• AD
• AD
•
•
• TCP, HTTP/1.0, HTTP/1.1
SSL
:
Load
Balancer
Metric OCPU/ho
ur
OCI - 100 Mbps Load Balancer Load Balancer Hour ¥2.556
OCI - 400 Mbps Load Balancer Load Balancer Hour ¥10.20
OCI - 8000 Mbps Load Balancer Load Balancer Hour ¥204.00
AD-1 AD-2
Network
15 Copyright © 2020 Oracle and/or its affiliates.
Internet Gateway• VCN
Dynamic Routing Gateway(DRG)• VCN
• VPN FastConnect
VCN
•
• IPSec VPN
• FastConnect
OCIOracle Cloud Infrastructure
Oracle Cloud Infrastructur
e
Internet
VPN
FastConnect
+ SSL
Customer
Data
Center
VCN a
Internet
Gateway
Dynamic
Routing
Gateway
Network
172.16.0.0/16
VCN a
16 Copyright © 2020 Oracle and/or its affiliates.
VPNOCI VCN
• OCI VPN
• IKEv1, v2
CPE• Yamaha NEC Furukawa Cisco Check
Point FortiGate Libereswan JuniperPalo Alto WatchGuard
VCN: IPSec VPN
Dynamic
Routing
Gateway
(DRG)
IPSec VPN
Destination Route Target
0.0.0.0/0 DRG
Default
Route Table
OCI DATA CENTER REGION
Customer
Premises
Equipment
(CPE)
Network
17 Copyright © 2020 Oracle and/or its affiliates.
• IP-VPNOCI
• Availability SLA
• Private Peering Public Peering
: FastConnect
172.16.0.0/16
VCN a
Dynamic
Routing
Gateway
OCI DATA CENTER REGION
10.0.0.0/16
Fast Connect Location
Metro Area
Oracle
Edge
Provider’s
Edges
Provider’s
network
Customer
Edge
Private
Peering
Public
Peering
• OCI Tokyo(2020 1 )
• CTC
• Equinix Cloud Exchange Fabric
• KDDI
• Megaport
• NRI
• NTT Communications
• NTT Data
• NTT East
• SINET
• Tokai Communications
Network
18 Copyright © 2020 Oracle and/or its affiliates.
Oracle Cloud Infrastructure 各サービスのご紹介
•
• Cloud Native
• PaaS
•
• Edge
Agenda
19
Oracle Cloud Native Services
Monitoring EventsStreaming
Observability + Messaging
API GatewayContainer Engine for
Kubernetes
Resource Manager
Cloud Infrastructure
RegistryFunctions
Notifications
Application Development + Operations
Logging (Coming Soon)
OCIOracle Functions
Cloud Native
20
/
Developer Cloud Service CI/CD
OCI Service Broker Oracle Cloud
Kubernetes (Master Node )
Oracle Cloud Infrastructure(Compute/Block Volume/Network/Load Balancer)
KubernetesOracle Container Engine for Kubernetes (OKE)
Oracle Cloud Service
• OCI Registry (OCIR)
Database System
LoadBalancer
Virtual Machine
OKE
Object Storage
OCI Registry
Service Broker
Events
Streaming
OKE
Cloud Native
21
Docker Kubernetes
Docker v2
OKE
Oracle Cloud Infrastructure(Storage/Network)
Oracle Cloud Infrastructure Registry (OCIR)
Oracle Cloud Service
• Oracle Container Engine for Kubernetes (OKE)
Virtual Machine
OCI Registry
OCIR
Oracle Container Engine for Kubernetes (OKE)
Cloud Native
22
(FaaS)
Fn Project Docker
Docker
200 1 $0.0000002
400,000 GB GB- $0.00001417
- ) 128MB 128/1024 x 1 x $0.00001417
Oracle Functions ( )
Oracle Cloud Service
• Events ( )
• API Gateway (※Coming Soon)
Events
IoT, Web, MobileOracle Cloud
API Gateway StreamingMobile,Web
App
IoT
Oracle Cloud
Infrastructure
… …Oracle Cloud
Infrastructure
Oracle
Functions
Oracle
Functions
Cloud Native
23
CNCF CloudEvents
• CloudEvents
Events Oracle Functions
Events ( )
Oracle Cloud Service
• Oracle Functions ( )
• Streaming ( )
• Notification ( )
Functions
Streaming
Events
Events
Notifications
Oracle Cloud
Infrastructure
…
※ (2020 1 )Analytics Cloud, API Gateway, Block Volume, Compute, Database, Data Transfer, File Storage, Functions, Health Checks, IAM, Integration, Networking, Notifications, Object Storage, OS Management, Resource Manager
Cloud Native
24
OCI
OCI/VNIC/
/
5 100 $0.0025
5 100 $0.0015
OCIMonitoring ( )
Oracle Cloud Service
• Notifications( )OCI
Oracle Cloud
Infrastructure
METRICS ALARMS
Notifications
CPU: 80CPU: 90
CPU: 40CPU: 50
Customer Applications,
Services, Resources
Oracle Cloud
Infrastructure
Console
Customer
Monitoring Tool
Monitoring
Monitoring
Cloud Native
25
Web/Mobile IoT
Streaming
Pub/Sub
Streaming API SDK
• Kafka API
( / )1GB $0.025
1GB $0.0002
Streaming ( )
Oracle Cloud Service
• Events ( )
• Oracle Functions ( )
• API Gateway (※Coming Soon)
Streaming
API
Gateway
Oracle
Functions
Events IoT Mobile/Web
Activities
Object
Storage
Database
System
App
Streaming
Kafka Client
(Producer/Consumer)
Cloud Native
26
Infrastructure as Code
Terraform
Terraform
•
Identity and Access Management (IAM)
Resource ManagerOCI
Resource Manager ( )
Oracle Cloud Service
• Oracle Cloud Infrastructure
Oracle Cloud
Infrastructure
…
Resource
Manager
Resource
Manager
.tfs
Zip
Zip
Customer
plan
apply
destroy
ResourceManager
Plan( )apply( )
destroy( )
Cloud Native
API Gateway
27
REST API
REST API
• CORS /
• OAuth2.0 API
IAM Oracle Functions API
1,000,000 API
Pay as You Go: $3
Monthly Flex: $2
API Gateway (API )
Oracle Cloud Service
• Oracle Functions
• OKE
API Gateway
Internet
(Public/Private)
Integration
Tools
Oracle Cloud
Infrastructure
Other Public
API Services
Load
Balancer
OKE
(API Service
as Backend)
Oracle
Functions
Custom
Authentication
Cloud Native
28 Copyright © 2020 Oracle and/or its affiliates.
Oracle Cloud Infrastructure 各サービスのご紹介
•
• Cloud Native
• PaaS
•
• Edge
Agenda
29 Copyright © 2020 Oracle and/or its affiliates.
OCI
• Autonomous Data Warehouse Cloud (ADW)
• Autonomous Transaction Processing (ATP)-
• OCI Database System (DBaaS)
- BareMetal, VM, Exadata
• RAC Exadata Cloud Oracle Cloud
PaaS
•
- Content and Experience, Analytics, Integration, etc…
• OCI-Classic PaaS OCI
Oracle Database PaaS OCIOCI PaaS
Oracle Cloud Infrastructure
Co
mp
ute
Au
ton
om
ou
s Da
ta
Wa
reh
ou
se
OC
I Da
tab
ase
(DB
aa
S)
An
aly
tics CS
Inte
gra
tion
CS
Dig
ital A
ssistan
t
PaaS
…
Co
nte
nt a
nd
Ex
pe
rien
ce
Au
ton
om
ou
s T
ran
sactio
n P
roce
ssing
30 Copyright © 2020 Oracle and/or its affiliates.
Autonomous Data Warehouse Cloud
DB
- DBA
Exadata
AWS Redshift
CPU
PaaS
31
Developer Cloud Service
Blockchain Cloud Service
NoSQL Database Cloud
Digital Assistant
Identity Cloud Service
Oracle Management Cloud
Visual Builder Cloud Service
Java Cloud Service
Oracle SOA Cloud Service
Mobile Hub Cloud
Database Cloud Service(VM, BM, Exadata)
Autonomous Data Warehouse Cloud
Autonomous Transaction Processing
Data Safe
Analytics Cloud
Integration Cloud
Content and Experience Cloud
Digital Assistant
Oracle Cloud Infrastructure PaaS
PaaS
Copyright © 2020 Oracle and/or its affiliates.
32 Copyright © 2020 Oracle and/or its affiliates.
Oracle Cloud Infrastructure 各サービスのご紹介
•
• Cloud Native
• PaaS
•
• Edge
Agenda
33 Copyright © 2020 Oracle and/or its affiliates.
OCI
• IAM
•
• OCI
•
Oracle Cloud Infrastructure – Identity and Access Management
ID & Access
Management
Tenancy
CompartmentA CompartmentB
Groups
GroupX
Users
User1User2
Policies
PolicyA: allow group GroupX to manage all-resources in compartment CompartmentA
PolicyB: allow group GroupY to manage all-resources in compartment CompartmentB
PolicyA
PolicyB
Object StorageBuckets
VCN Compute Instances
BlockVolumes
LoadBalancers
Security
34 Copyright © 2020 Oracle and/or its affiliates.
• Compartment
• Compartment
• Compartment
-A
-B
-A
-B
or
Tenant
Compartment A Compartment B
Users Groups Policy
Policy Policy
Compartment( )
-A -B
Compartments
Security
35 Copyright © 2020 Oracle and/or its affiliates.
IdP (Identity Provider) (SAML 2.0)
• Microsoft Active Directory, Oracle Identity Cloud Service (IDCS)
OCI IAM - IDCS ID
• IDCS IP IDCS
Oracle Cloud Infrastructure - IAM
IDCS
OCI IAM OCI
OCI/
IDCS /
ID & Access
Management
Security
36 Copyright © 2020 Oracle and/or its affiliates.
• CLI SDK API
•
• 90 365
API
OCIOracle Cloud Infrastructure –
Auditing
Security
37 Copyright © 2020 Oracle and/or its affiliates.
OCI
•
• OCI
• BYOI
FIPS 140-2 Security Level 3 HSM
2
• Virtual Private Vault-
• Virtual Vault- Vault
Oracle Cloud Infrastructure – Vault
Vault
Security
Block
Volume
Object
Storage
Vault
Key A
Key B
Vault Key, SecretKey
File Storage
Secret A
38 Copyright © 2020 Oracle and/or its affiliates.
OCI
2019 11 OCI (NRT)
FISC
NISC
3 3
Security
2019 11 OCI
ISO/IEC 27001, 27017, 27018
SOC1, 2,3
PCI-DSS
HIPAA
FedRAMP
39 Copyright © 2020 Oracle and/or its affiliates.
Oracle Cloud Infrastructure 各サービスのご紹介
•
• Cloud Native
• PaaS
•
• Edge
Agenda
40 Copyright © 2020 Oracle and/or its affiliates.
Core and Edge Create a Complete Cloud
Users [Customers, Partners,
Employees, Things] IT[DevOps, Administrators,
Architects]
Expectation[High quality experience]
Identity
Compute Block Storage
Database Networking
Object Storage
Edge
Name Resolution
DistributedContent
Traffic Steering
Internet
MonitoringAvailability
PerformanceSecurityControl
EdgeNetworking
EdgeSecurity
Core+
End-to-End SLA No Single Point of
Failure
Common Console Across
Functionality
EmailDelivery
Edge
41 Copyright © 2020 Oracle and/or its affiliates.
DNS
• OCI OCI-C CDN
OCI
• (Universal Credit)
•
Dyn.com
DNS Traffic Management• DNS
• Load Balancer, Failover, Geolocation Steering, ASN Steering, IP Prefix Steering
OCI DNSOCI DNS
DNS
Cloud1
Datacenter1
DNS
ユーザー
IP Group A
IP Group B
IP Group C
Cloud2
CDNISPIP Group D
DNS参照
Edge
42 Copyright © 2020 Oracle and/or its affiliates.
•
10 Dyn Email Delivery OCI
• SMTP SMTP
• RESTful Send API
OCI
• App Generated• Marketing Automation• Content and Creative
Email Application
• Reporting• Speed• Delivery Assurance
OCI Email Delivery
via SMTP orRESTful API( )
Recipient
Delivery toMailbox Providers
Internet
Email Delivery
Edge
43 Copyright © 2020 Oracle and/or its affiliates.
WAF
• 250 OWASP
• Threat Intelligence
• Bot
• DNS
• 7 DDoS
•API
24 365
• IT
OCI Web Application Firewall(WAF)
DNS
WAF
(xxx.waas.oci.or
aclecloud.net)
Webサーバ(オリジン)
DC /Cloud
Edge PoP
✔
✖
1. DNSwww.example.com
2. www.example.comWAF
xxx.waas.oci.oraclecloud.net()
3. xxx.waas.oci.oraclecloud.net( )
WAF 4.
Welcomed Users / Good Bots
Bad Actors / Bad Bots
WAF
Edge
44 Copyright © 2020 Oracle and/or its affiliates.
Traffic Management DNS Alarm
OCI UI
OCI
YourServer@ OCI
• 23 Vantage Point AWS, Azure, GCP
– North and South America
– Europe
– Asia & Australia
• HTTP , HTTPS , Ping(TCP , ICMP)
• Optional HTTP Header value check
Healthcheck
Edge