webinar “behind the scenes verizon it leverages secure cloud interconnect (sci) to migrate...
TRANSCRIPT
Confidential and proprietary materials for authorized Verizon personnel and outside agencies only. Use, disclosure or
distribution of this material is not permitted to any unauthorized persons or third parties except by written agreement.
WEBINAR - 2017 June 22 Danny Johnson
Director, Product Marketing, Verizon
Cory Zuerker
Manager SCI, Product Management, Verizon
Matt Lehwess
Principal Solution Architect, Amazon Web Services
AWSCloud
Otto Fontana
Director, Network Services, Verizon IT
VZ Enterprise
Behind the scenes:Verizon IT leverages Secure Cloud Interconnect (SCI) to migrate applications to Cloud providers.
Confidential and proprietary materials for authorized Verizon personnel and outside agencies only. Use, disclosure or
distribution of this material is not permitted to any unauthorized persons or third parties except by written agreement.
Proprietary statement
This document and any attached materials are the sole property of Verizon and are
not to be used by you other than to evaluate Verizon’s service.
© 2017 Verizon. All Rights Reserved. The Verizon name and logos and all other
names, logos, and slogans identifying Verizon’s products and services are
trademarks and service marks or registered trademarks and service marks of Verizon
Trademark Services LLC or its affiliates in the United States and/or other countries.
Microsoft and Office 365 are either registered trademarks or trademarks of Microsoft
Corporation in the United States and/or other countries. All other trademarks and
service marks are the property of their respective owners.
2
Confidential and proprietary materials for authorized Verizon personnel and outside agencies only. Use, disclosure or
distribution of this material is not permitted to any unauthorized persons or third parties except by written agreement.
Please advance to the next slide where you can watch the video. The total slide deck is
available for your reference after the video. Thank you.
3
Confidential and proprietary materials for authorized Verizon personnel and outside agencies only. Use, disclosure or
distribution of this material is not permitted to any unauthorized persons or third parties except by written agreement. 4
The Changing Application Landscape
Confidential and proprietary materials for authorized Verizon personnel and outside agencies only. Use, disclosure or
distribution of this material is not permitted to any unauthorized persons or third parties except by written agreement. 5
Network Demands are Evolving
1.Gartner, “Market Trends: Application Service Providers Must Innovate to Deliver More Value Rapidly in a Digital World”, February 28, 2017, Susan Tan | Allie Young | Patrick J. Sullivan, ID: G00318827
2.Gartner, “Market Trends: Application Service Providers Must Innovate to Deliver More Value Rapidly in a Digital World”, February 28, 2017, Susan Tan | Allie Young | Patrick J. Sullivan, ID: G00318827
Through 2020, 50% of IT Services
market growth will be directly
attributable to digital technologies.1
Application services must address two
distinct business realities that clients
prioritize:
•achieve cost savings from
optimized IT environments,
including renovating the core
systems;
•"exploit the new" with IT
innovation.2
$6.53M 56% 70%
https://www.csid.com/resources/stats/data-
breaches/
Increase in theft of hard
intellectual property
http://www.pwc.com/gx/en/issues/cyber-
security/information-security-survey.html
Of consumers indicated
they’d avoid businesses
following a security breach
https://www.csid.com/resources/stats/data-
breaches/
Average cost of a
data breach
Your Data and IP Are Your Most Valuable Assets
AWS Foundation Services
Compute Storage Database Networking
AWS Global Infrastructure
Regions
Availability Zones
Edge Locations
Identity &
Access Control
Network
Security
Customer applications & contentYou get to
define your
controls ON
the Cloud
AWS takes
care of the
security OF
the Cloud
YouInventory
& Config
Data
Encryption
AWS and you share responsibility for security
AWS Global Infrastructure
16 Regions – 42 Availability Zones – 74 Edge Locations
Region & Number of Availability
Zones
AWS GovCloud (2) EU
Ireland (3)
US West Frankfurt (2)
Oregon (3) London (2)
Northern California (3)
Asia Pacific
US East Singapore (2)
N. Virginia (5), Ohio (3) Sydney (2), Tokyo (3),
Seoul (2), Mumbai (2)
Canada
Central (2) China
Beijing (2)
South America
São Paulo (3)
Announced Regions
Paris, Ningxia, Stockholm
Amazon Web Services
Core Services Compute Storage Database Networking
Infrastructure RegionsAvailability Zones Edge Locations
Platform
ServicesAnalytics IoT Deployment Mobile
Virtual
Desktops
Collaboration
& SharingApp Delivery E-Mail
Access
ControlAuditing Monitoring EncryptionSecurity
Applications
A
P
I
&
S
D
K
s
Instance A
10.1.1.11/24Instance B
10.1.2.11/24
Managed
NAT GatewayAWS Lambda
inside VPC
AWS Networking
Let’s get distracted by new
things:
Virtual Private Endpoints for S3
Gives you the ability to connect
privately to S3
AWS Lambda inside a VPC
Access Lambda without having to go
through a VGW
NAT Gateway
Use NAT Gateway within a VPC for
manage NAT to The Internet
Availability Zone A Availability Zone B
Instance C
10.1.3.33/24
Public SubnetPublic Subnet
Private Subnet Private Subnet
Instance D
10.1.4.44/24
VPC CIDR 10.1.0.0/16
Confidential and proprietary materials for authorized Verizon personnel and outside agencies only. Use, disclosure or
distribution of this material is not permitted to any unauthorized persons or third parties except by written agreement. 11
How do you interconnect your private DCs to a public cloud?
Confidential and proprietary materials for authorized Verizon personnel and outside agencies only. Use, disclosure or
distribution of this material is not permitted to any unauthorized persons or third parties except by written agreement. 10
What are the network connectivity options?
Net to Net VPN
Direct Connect (DX)
Confidential and proprietary materials for authorized Verizon personnel and outside agencies only. Use, disclosure or
distribution of this material is not permitted to any unauthorized persons or third parties except by written agreement. 13
Net to Net VPN
Data Center
Data Center
Internet
Prod
Test
Dev
• Trivial configuration required
• Inconsistent Latency
• Unpredictable Results
• No QOS
• Low Bandwidth options
• Difficult to troubleshoot
Confidential and proprietary materials for authorized Verizon personnel and outside agencies only. Use, disclosure or
distribution of this material is not permitted to any unauthorized persons or third parties except by written agreement. 12
Direct Connect – Verizon Secure Cloud Interconnect (SCI)
Lessons learned
• Provisioned in 3 days or less
• Secure private path
• Predictable latency
• QOS
• 1G / 10G options
• Connect multiple cloud providers
Verizon PIP
MPLS
Confidential and proprietary materials for authorized Verizon personnel and outside agencies only. Use, disclosure or
distribution of this material is not permitted to any unauthorized persons or third parties except by written agreement. 13
Lessons Learned – Summary
Strengths — Verizon & Amazon Web Services
• Converge to single SCI with central
management and visibility.
• AWS depth of functionality with stability and
saleability of its platform.
• Agile change requests that aligns with business
needs.
SCI deployments
• Can provision Direct Connect SCI in less
than 3 days.
• Secure private path with predictable latency.
• Connects to multiple cloud providers.
• The ability to “spin up” applications rapidly
into the marketplace and install and operate
securely, QOS and 1G / 10G options.