VMworld 2013: vCloud Hybrid Service Jump Start Part One of Five: vCloud Hybrid Service: Architecture and Consumption Principles
0 likes325 views
The document outlines the architecture and consumption principles of VMware's vCloud Hybrid Service (VCHS), highlighting its integration with vCloud Director (VCD) and the differences between Virtual Private Clouds (VPCs) and Dedicated Clouds (DCs). It emphasizes the importance of understanding the underlying principles for service consumption while noting that features discussed may change as they are still in development. The agenda includes topics on multi-tenancy, network security, and the operational capabilities of VCHS.
VMworld 2013: vCloud Hybrid Service Jump Start Part One of Five: vCloud Hybrid Service: Architecture and Consumption Principles
- 1. vCloud Hybrid Service Jump Start Part One of Five: vCloud Hybrid Service: Architecture and Consumption Principles Massimo Re Ferre', VMware PHC5070 #PHC5070
- 2. 2 Disclaimer This session may contain product features that are currently under development. This session/overview of the new technology represents no commitment from VMware to deliver these features in any generally available product. Features are subject to change, and must not be included in contracts, purchase orders, or sales agreements of any kind. Technical feasibility and market demand will affect final delivery. Pricing and packaging for any new technologies or features discussed or presented have not been determined. “These features are representative of feature areas under development. Feature commitments are subject to change, and must not be included in contracts, purchase orders, or sales agreements of any kind. Technical feasibility and market demand will affect final delivery.”
- 3. 3 Strategy Overview Diagram Public CloudsPrivate Clouds Hybrid Cloud Seamlessly extend your data center to the public cloud Virtual Workspace Manage access to services, applications and data for any device The New Role for IT: IT as a Service Software-Defined Data Center Virtualize the entire data center Management and Automation Storage and Availability Compute Network and Security We are here
- 4. 4 Important! It is important that you focus on how you can consume vCHS • However, understanding the underpinning principles we used to build it will help you This deck covers the principles of the vCHS service, not its (detailed) features • We are not going to discuss the Service Definition (e.g. “the VPC comes with 3 public IPs” etc.)
- 5. 5 Agenda virtual data center Warm up The role of vCD A Cloud of Clouds Catalogs Multi-siteTenants Network and Security Consumption Interfaces VPC / DC D/R
- 6. 6 Agenda virtual data center Warm up The role of vCD A Cloud of Clouds Catalogs Multi-siteTenants Network and Security Consumption Interfaces VPC / DC D/R
- 7. 7 This Is What You See When You Login Total subscribed capacity Click here
- 8. 8 What’s Inside The Badge Box?
- 9. 9 What’s Inside The Badge Box?
- 10. 10 What’s Inside The Badge Box?
- 11. 11 What’s Inside The Badge Box?
- 12. 12 This Is What You See When You Login virtual data center Ok but… where is this coming from?
- 13. 13 Agenda virtual data center Warm up The role of vCD A Cloud of Clouds Catalogs Multi-siteTenants Network and Security Consumption Interfaces VPC / DC D/R
- 14. 14 vCD Basics vSphere vCloud Director + vCloud Network and Security CPU Capacity Memory Capacity Storage Capacity Layer 2 Networks Network Services Catalog CPU Capacity Memory Capacity Storage Capacity Layer 2 Networks Network Services Catalog …………. Customer A Customer B
- 15. 15 vCD Basics vSphere vCloud Director + vCloud Network and Security CPU Capacity Memory Capacity Storage Capacity Layer 2 Networks Network Services CPU Capacity Memory Capacity Storage Capacity Layer 2 Networks Network Services Catalog …………. Customer A Customer B Quote: “I think of this as vCD providing vDCaaS to vCHS customers” Yes!
- 16. 16 Agenda virtual data center Warm up The role of vCD A Cloud of Clouds Catalogs Multi-siteTenants Network and Security Consumption Interfaces VPC / DC D/R
- 17. 17 Overall vCHS Architecture Principals vCHS != vCD vCHS leverages vCD (though) vCHS implements a “cloud of clouds” model vCHS leverages vCD for “last mile” IaaS service
- 18. 18 Traditional vCloud Director Model Cloud
- 19. 19 Cloud of Clouds Model VMware’s Secret Sauce vCloud Hybrid Service Ad-hoc automation and back-end integrations Not of interest to you as a consumer vCD instance
- 20. 20 Agenda virtual data center Warm up The role of vCD A Cloud of Clouds Catalogs Multi-siteTenants Network and Security Consumption Interfaces VPC / DC D/R
- 21. 21 vCHS Offerings: VPCs and Dedicated Clouds vSphere + vCloud Director + vCNSvSphere + vCloud Director + vCNS vDC vDC VPC VPC You can buy this (1 or more) (SKU = Dedicated Cloud - DC) You can buy this (1 or more) (SKU = Virtual Private Cloud - VPC) This is all yours! You’ll have to share this! vCloud Hybrid Service
- 22. 22 Dedicated and Shared Infrastructure Components Dedicated Cloud Virtual Private Cloud Access Portal Shared Shared pNetwork Infrastructure Shared Shared pStorage Infrastructure Shared Shared pCompute Infrastructure Dedicated Shared Workloads VLANs Dedicated Shared LUNs (Datastores) Dedicated Shared vCenter / DB Dedicated Shared vCD cell / DB Dedicated Shared vShield Manager Dedicated Shared VXLAN vWires Dedicated Dedicated Edge Gateways Dedicated Dedicated Private Catalog Dedicated Dedicated
- 23. 23 VPCs and DCs VPCs are provisioned by VMware when customers buy them • Along with 1 Edge Gateway vDCs are provisioned by customers when customers buy a Dedicated Cloud Both roads lead to the creation of a vCloud Director “virtual data center” vDC and VPC, what’s the difference? • The marketing name we are using to refer to them (vDC Vs. VPC) • Who provisions them • The allocation model (in a vDC you can assign resources granularly to VMs, in a VPC you cannot) • The dedicated / shared infrastructure components underneath • Other (more later)
- 24. 24 Agenda virtual data center Warm up The role of vCD A Cloud of Clouds Catalogs Multi-siteTenants Network and Security Consumption Interfaces VPC / DC D/R
- 25. 25 Typical VPC Consumer Operations 5Ghz / 20GB / 2TB VPC capacity VPC plumbing (VMware’s secret sauce) Internet You are here
- 26. 26 Typical VPC Consumer Operations vCloud Suite on-premise 5Ghz / 20GB / 2TB VPC capacity Internet VPC Self-Service consumption (customer) You are here
- 27. 27 Typical Dedicated Cloud Consumer Operations Dedicated Cloud plumbing (VMware’s secret sauce) Dedicated Cloud 30Ghz / 120GB / 6TB Dedicated Cloud Capacity Internet You are here
- 28. 28 Typical Dedicated Cloud Consumer Operations Dedicated Cloud Self-Service consumption (customer) Dedicated Cloud 30Ghz / 120GB / 6TB Dedicated Cloud Capacity 3Ghz / 5GB / 500GB vDC1 capacity “Sales” 10Ghz / 10GB / 1TB vDC2 capacity “Marketing” 2Ghz / 2GB / 40GB vDC3 capacity “HR” …….. Internet vCloud Suite on-premise You are here
- 29. 29 Agenda virtual data center Warm up The role of vCD A Cloud of Clouds Catalogs Multi-siteTenants Network and Security Consumption Interfaces VPC / DC D/R
- 30. 30 vCHS Tenants (Users and Roles) Tenant
- 31. 31 vCHS Tenants (Users and Roles) Tenant Admin roles User role Can only deploy VMs
- 32. 32 vCHS Tenants (Capacity and Resources) Tenant vDC 1 vDC 2 Dedicated Cloud 1 vDC 3 vDC 4 Dedicated Cloud 2 VPC2 On a shared infrastructure VPC1 On a shared infrastructure
- 33. 33 vCHS Tenants (Mapping of Roles to Resources) VI Admin Network Admin Read-Only Admin End-User Account Admin Subscription Admin Global Role Global Role Global Role Global Role vDC / VPC Role vDC / VPC Role Global Role vDC / VPC Role vDC / VPC Role vDC / VPC Role vDC / VPC Role
- 34. 34 Agenda virtual data center Warm up The role of vCD A Cloud of Clouds Catalogs Multi-siteTenants Network and Security Consumption Interfaces VPC / DC D/R
- 36. 36 The “VMware Catalog” VMware Catalog VPC VPC VPC vDC 1 vDC2 VPC Dedicated Cloud Tenant D Tenant D Tenant A Tenant B Tenant C Populate Catalog Consume Catalog
- 37. 37 VPC The “My Catalog” VPC VPC VPC vDC 1 vDC2 Dedicated Cloud Tenant D Tenant D Tenant A Tenant B Tenant C My CatalogMy CatalogMy Catalog My CatalogMy Catalog Populate Catalog Consume Catalog x x Export / Import via: vCloud Connector Java Applet APIs Right-Click -> Add to Catalog (not possible across virtual data centers) My Catalog on-prem data center
- 38. 38 Catalogs Summary VMware Catalog VPC VPC VPC vDC 1 vDC2 VPC Dedicated Cloud Tenant D Tenant D Tenant A Tenant B Tenant C My CatalogMy CatalogMy Catalog My CatalogMy CatalogMy Catalog Populate Catalog Consume Catalog Export / Import via: vCloud Connector Java Applet APIs on-prem data center
- 39. 39 Agenda virtual data center Warm up The role of vCD A Cloud of Clouds Catalogs Multi-siteTenants Network and Security Consumption Interfaces VPC / DC D/R
- 40. 40 Multi-Datacenter Strategy The back-end (part of the VMware’s Secret Sauce) is architected with • Scale out in mind • Multiple layers of aggregation In VMware’s Secret Sauce Parlance (details are not of interest to you): • Shard • Pod (comprised of multiple Shards) • PMP/SMP (comprised of multiple Pods) • Potentially multiple (loosely coupled) PMPs/SMPs Each “aggregation layer” has a different number of shared elements • The higher you go the lesser you share A single tenant can own resources coming from dispersed back-ends This architecture lends itself very well to implement a multi-datacenter strategy
- 41. 41 Multi-Datacenter Strategy (datacenter 1) (datacenter 2) POD POD POD POD SHARD SHARD SHARDSHARD SHARD SHARD SHARD SHARD vDC or VPC vDC or VPC Tenant vDC or VPC vDC or VPC vDC or VPC
- 42. 42 Multi-Datacenter View SharedDedicated Shared Dedicated vDC vDC VPC VPC VPC VPC VPC vDC vDC Tenant Datacenter 1 Datacenter 2 Dashboard DTC 1 Dashboard DTC 2 VPC vDC vDC VPC vDC vDC
- 43. 43 Agenda virtual data center Warm up The role of vCD A Cloud of Clouds Catalogs Multi-siteTenants Network and Security Consumption Interfaces VPC / DC D/R
- 44. 44 UI Consumption Dedicated Cloud Tenant vDC1 vDC2 VPC This is what happens behind the scenes (example)
- 45. 45 UI Consumption This is how that layout is represented in the UI (easy)
- 46. 46 API Consumption Dedicated Cloud Tenant Watch out! Each vDC / VPC is an API entry point! So how do I connect here? vDC1 vDC2 VPC
- 47. 47 API Consumption https://p1v14-vcd.vchs.vmware.com:443/cloud/org/Massimo/ Enter the vDC / VPC and notice the “vCloud Director URL” link
- 48. 48 API Consumption Dedicated Cloud Tenant Watch out! Each vDC / VPC is an API entry point! https://p1v14-vcd.vchs.vmware.com:443/cloud/org/Massimo/ Note: the VPC would have a different cloud FQDN to connect to vDC1 vDC2 VPC
- 49. 49 API Consumption Considerations From this point on, consuming vCHS = consuming vCD (as an Org Admin) Gotchas: 1. If you have multiple vDCs / VPCs you need to connect to multiple API end-points (as we said) 2. In vCHS we block some API calls (e.g. local user management)
- 50. 50 VMware Products Consuming the vCloud APIs vDC / VPC vCloud Connector Application Director vCloud Automation Center ** vCenter Orchestrator …… ** impacted by gotchas #2 (unofficial workaround available – call your SE) vCloud Hybrid Service
- 51. 51 What vCHS Provides/Manages vs. What You Provide/Manage vDC / VPC Product A Product B (At GA) we won’t provide any of the “as a service” Customers can run them either on-prem or inside their vCHS virtual data centers • But ultimately running is your responsibility
- 52. 52 Agenda virtual data center Warm up The role of vCD A Cloud of Clouds Catalogs Multi-siteTenants Network and Security Consumption Interfaces VPC / DC D/R
- 53. 53 DR to the Cloud (datacenter 1) POD SHARD SHARD vDC or VPC vDC or VPC Tenant vDC or VPC vSphere on-premise Replication / DR
- 54. 54 VMware Vision for DR to the Cloud
- 55. 55 VMware Vision for DR to the Cloud Not to be considered a roadmap item! More like a statement of direction
- 56. 56 VMware Vision for DR to the Cloud Not to be considered a roadmap item! More like a statement of direction
- 57. 57 DR of the Cloud (datacenter 1) POD POD SHARD SHARD SHARD SHARD vDC or VPC vDC or VPC (datacenter 2) Tenant vDC or VPC vDC or VPC Replication / DR
- 58. 58 vCloud Hybrid Service (datacenter 1) (datacenter 2) “Let’s Put It All Together” Slide Tenant vDC1 vDC2 VPC1 VPC2 My Catalog My Catalog My Catalog VMware Catalog https://vchs.vmware.com vCD vCloud Connector Application Director
- 59. 59 VPCs or DCs? What should I buy? Go with a Dedicated Cloud: If you can’t / don’t want to share ESXi hosts with other vCHS customers • Because you have formal / strict compliance requirements • Because you have licensing compliance requirements If you want ultimate control over resources assigned to your VMs • From zero to high overcommitment (it’s your choice) • Performance consistency due to high control and visibility to resource assignment If you need to be able to provision virtual data centers quickly and at any size • Or change resource assignment among those vDCs If you need to have more than one Gateway per virtual data center If you need higher network throughput to the Internet If you want to act as a broker of resources to your BUs • With self-service provisioning of virtual data centers
- 60. 60 VPCs or DCs? What should I buy? Go with a VPC: If price is important If you want a flexible service commitment (minimum 3 months vs. 1 year for a DC) If it’s acceptable to be hosted on a shared vSphere infrastructure If it’s acceptable to submit a new PO to provision a new virtual data center If you don’t need ultimate control over resources assigned to your VMs • We set the overcommitment upfront (no overcommitment on memory, 50% guarantee on CPU) If you are a BU or if you don’t need any sort of delegation structure • Still possible but the provisioning of new virtual data centers is through PO • However difficult / impossible to rebalance resources across VPCs (easy with vDCs in a Dedicated Cloud)
- 61. 61 Other VMware Activities Related to This Session HOL: HOL-HBD-1301 vCloud Hybrid Service - Jump Start for vSphere Admins Group Discussions: PHC1000-GD vCHS Architecture with Massimo Re Ferre
- 62. 62 Confidential Making the Most of VMworld vCloud Hybrid Service Jump Start Program A curriculum designed to make YOU a vCloud Hybrid Service expert! 01 02 03 04 05 vCloud Hybrid Service: Architecture and Consumption Principles Monday 12:30 – 1:30 pm vCloud Hybrid Service: Networking and Security Basics Tuesday, 12:30 – 1:30 pm vCloud Hybrid Service: Advanced Networking and Security Tuesday, 2:00 – 3:00 pm Identifying and Deploying Workloads in vCloud Hybrid Service Wednesday 12:30 – 1:30 pm Deep dive into Hybrid Cloud Management Thursday 10:30am – 11:30am
- 63. 63 Confidential vCloud Hybrid Service Jump Start Program Attend 4 out of 5 Jump Start sessions to receive a prize. Extra Credit available! Turn in Report card at the vCloud Tweet-up. Wednesday, 6:00 – 9:00 pm @ Roe 651 Howard Street - San Francisco, CA
- 65. THANK YOU
- 67. vCloud Hybrid Service Jump Start Part One of Five: vCloud Hybrid Service: Architecture and Consumption Principles Massimo Re Ferre', VMware PHC5070 #PHC5070