




OPTIMIZED DATA CENTER
Well Managed
Infrastructure & Applications
Owning
App
Resource
silo #1
App
Resource
silo #2
Mainframe Windows
X
Managing Platforms
Unix
The Evolution
Linux
App
Resource
silo #3
Identity
Application
Data
OS
Virtualization
HW
Storage
Network
CLOUD
Service Oriented
Consuming
compute
Silo-ed
Architectures
Managing Services
App 1
On Premises
Legacy
Silo-ed
Expansion
Expanding Legacy
Platforms
Expansion
Expansion
Expansion
Expansion Expansion
App 1
App 2
App 3
Silo-ed Architectures
To Modernizing
Workloads
storage
network
Leveraged
Infrastructure
Service
Oriented
App 2
App 3
Leveraged
Infrastructure
Services
On Premises
Off Premises
Private Cloud IaaS – SaaS - PaaS
Efficiency
Host / Collocate
Legacy Application
Cost Reduction
Re - platform
Legacy / Silo Application
New
Requirements
Re - write
New Functionality
Scalability
Burst out
Additional Functionality
Innovate
Expand
Cloud Native Application
Cloud Capability
Cloud Service
So what is Hybrid …
NETWORKING, COMPUTE, STORAGE, APP SERVICES,
AUTOMATION, DISASTER RECOVERY, DEV, TEST, UAT, etc.
… as a SERVICE
NETWORKING & AUTOMATION SERVICES
Virtual
network
Availability
Set
Azure load
balancer
COMPUTE SERVICES
Autoscale
Traffic
Manager
Automation
CDN
DATA SERVICES
On Premises Private Cloud
Health Monitoring
APPLICATIONS &
SERVICES
Active Exchange File Server JEE App
Directory
LOB App
VIRTUALIZATION
COMPUTE,
STORAGE &
NETWORKING
Automation
Commercial
App
SQL
.NET App
My SQL Oracle
SAN
Server Group #2
Storage
Spaces/SMB
Azure
Mobile
Services
TFS or
VS Online +
GIT
Azure
Web
Site
web
roles
worker
roles
storage
blob
storage
table
storage
queue
VHD
VHD data
disk
Gallery
OS images
StorSimple
Virtual
Appliance
Backup
Service
Azure Site
Recovery
SQL
Database
SQL
Data
Sync
MySQL
database
Site-to-Site VPN
Point-to-Site VPN
StorSimple
Cloud Integrated Storage
Express Route
Server Group #1
Virtual
Machines
System Center
Provisioning
Monitoring
APP SERVICES
Azure
AD
Access
Control
Multi-Factor
Auth
BizTalk
Services
Azure
Cache
Media
Services
Automation & Self Service
DEVICES &
FACILITIES
Application Insight
Physical Infrastructure
(Servers/Storage/Networking
IT Service Management
Service
Bus
Notification
Hub
Scheduler
HDInsight
(Hadoop)
* Not meant to be a comprehensive list of all services, for a complete list please visit azure.microsoft.com
Hyper-scale
Enterprise
Grade
Hybrid
Internet Connectivity
•
•
•
•
Consumers
Access over public IP
DNS resolution
Connect from anywhere
Secure point-to-site
connectivity
•
•
•
•
Developers
POC Efforts
Small scale deployments
Connect from anywhere
Secure site-to-site
VPN connectivity
ExpressRoute private
connectivity
• SMB, Enterprises
• Connect to Azure compute
•
•
•
•
SMB & Enterprises
Mission critical workloads
Backup/DR, media, HPC
Connect to all Azure services
WAN
WAN
WAN
ExpressRoute provides a private,
dedicated, high-throughput network
connection to Microsoft
Customer’s
network
Partner
Edge
Customer’s
connection
Traffic to Office 365 Services
Traffic to public IP addresses in Azure
Traffic to Virtual Networks
Microsoft
Edge
Atlanta
Chicago
Chicago (Gov Cloud)
Dallas
LA
NY
Seattle
Silicon Valley
Washington DC
Washington DC (Gov Cloud)*
Amsterdam
Dublin*
London
Sao Paulo
Chennai*
Hong Kong
Mumbai*
Melbourne*
Osaka*
Singapore
Sydney
Tokyo
Microsoft
Microsoft
Public
internet
Customer site 3
Customer site 2
Customer site
Exchange
Customer site 1
Public
internet
Storage, backup,
and recovery
Dev/test lab
BI/big data
Media
Hybrid apps
Productivity apps
Storage, backup,
and recovery
Dev/test lab
BI/big data
Media
Hybrid apps
Productivity apps
Microsoft Azure
Disaster
Recovery
Datacenter
DevTest
Azure Site Recovery
Cloud
Bursting
Application
Analytics
Migration
Backup
Long-term Retention
Azure Backup
•
•
•
•
vCente
r
VMM
vCente
r
VMM
vCenter
ESX/
Physical
Hyper-V
On-premises
ESX/
Physical
Hyper-V
Hyper-V
On-premises
VMM
vCenter
VMM
Hoster Site
ESX/
Physical
vSpher
e
ESX/
Physical
VMM
ESX/
Physical
vSphere
VMM
ESX/
Physical
Hyper-V
•
Hyper-V
Branch Office
•
•
Hyper-V •
Hoster Site
Branch Office
StorSimple
Primary Storage
Archival Storage
Primary Storage
Customer Data Center
Disk-based Backup
Applications in Physical or Virtual Servers
StorSimple
Archival Storage
Windows File
Server
Linux File
Server
Remote Replication
VMware Server
Tape backup and DR
iSCSI
Disk-based
Backup
StorSimple Hybrid Storage Array
StorSimple
Remote Replication
Internet
Azure Data Center
iSCSI
Tape backup and DR
StorSimple Virtual
Appliance
Azure-based
Applications
StorSimple Manager
Enterprise SAN storage
Inline de-dupe,
compression &
automatic tiering
Automated offsite data
protection using cloud
snapshots
Highly efficient, location
independent disaster
recovery
Data mobility for
enterprise data
Consolidated storage
and data management
• Compliance
• Storage performance (IOPs etc.)
• If Azure doesn’t offer desired storage type (e.g. for
SQL clustering etc.)
• Available in ExpressRoute Exchange provider locations
only (not Network Service Provider flavor)
Customer
cage
• Price/Performance different from Azure storage
• SI might need to be engaged
Exchange
provider facility
Storage, backup,
and recovery
Dev/test lab
BI/big data
Media
Hybrid apps
Productivity apps
ExpressRoute
Enable Availability on Demand for SANbased Hyper-V workloads
Protect Tier 1 Hyper-V workloads to Azure,
and benefit from the performance
characteristics achieved by placing NetApp
storage in an Equinix datacenter
Azure ExpressRoute connectivity to
improve throughput between storage and
Azure compute.
ASR’s Replication to Azure functionality is
used to replicate the OS drives of the HyperV workload
ASR’s Array-Based Replication functionality is
used to mirror data between on-premises
and NetApp Private Storage
Storage, backup,
and recovery
Dev/test lab
BI/big data
Media
Hybrid apps
Productivity apps
Collect and load big data
Interactive


Relational
Data
Streaming
data

10
01
Azure
blob
Server log
files

HDInsight


Automated
Storage, backup,
and recovery
Dev/test lab
BI/big data
Media
Hybrid apps
Productivity apps
Related Sessions
Azure
RemoteApp
•
Elastic runtime
Domain
Joined
Subject to IT policy via
GP, System Center, or
other enterprise
management tools
Fundamentals of Microsoft Azure RemoteApp Management
and Administration
RDP
User
•
On-premises network
Corporate Apps
Persistent user
data
(50GB per user)
Corporate apps
Custom template image
Maintained via Azure Portal
Azure VPN
Will My App Work on Microsoft Azure RemoteApp
Authentication
Identity options
Azure Active
Directory
DirSync
Windows Server
Active Directory
Microsoft Cloud
WAN
ExpressRoute
Q3 CY 2015







Public
internet
Public
internet
Microsoft
Cloud
Microsoft
Cloud
Microsoft
Cloud
Internet
Internet-based connectivity
ExpressRoute — Provides customer choice and includes access to
all Microsoft Cloud services
Internet
Internet edge
Microsoft Peering
Azure Extranet / Public Peering
Extranet
Azure Private Peering
Core Network
!=
Azure service access
Internet bound
Cross Premises
Direct internet traffic
Internet
Azure public services
ExpressRoute
Circuit
Azure Virtual Network
Internet
Cross-premises connectivity
ExpressRoute
• Reach any Microsoft region from any continent with ExpressRoute premium addon
• Traffic carried over the Microsoft core network
• You choose the optimal path – traffic through NSP or through the Microsoft core
network
Some applications benefit from WAN optimizers
Rich application layer telemetry
ExpressRoute

Voice, video, data transfers need to be treated differently

Voice and video sensitive to latency and jitter

Classify traffic and tag with appropriate DSCP value

Separate queue each traffic class
Voice
Video and Interactive
Best Effort
Global
ISO/IEC 27001
United
States
Regional
FedRAMP
SOC 1
HIPAA
(Healthcare)
European Union
Model Clause
SOC 2
FIPS 140-2
United Kingdom
G-Cloud
PCI DSS L1 version 3
Life Sciences GxP
China
Multi Layer Protection
Scheme
Cloud Security Alliance
Cloud Security Matrix
Family Educational Rights
and Privacy Act
China
CCCPPF
Singapore
Multi-Tier Cloud
Security
ISO /
IEC 27018
Criminal Justice
Information System
Australian Signals
Directorate I-RAP
Assessment
Datacenter extension reference architecture diagram
Finding all the information to learn how to extend your on-premises datacenter infrastructure to Azure can be time-consuming.
Includes cross Azure subscription and virtual network connections, as well
as connecting them to an on-premises network.
Mouse hovers expose
detailed information about
each object.
Mouse clicks on most objects open detailed design or implementation articles about them.
Save time by downloading and using the interactive diagram today from
http://aka.ms/derad.
Watch the 45 minute walkthrough video at http://aka.ms/derad-video.
200k+
Unique devices
connect to
wireless/day
180k+
1,300+
Site locations
(114 countries)
160k
Users on
Office 365
Exchange
Managed
Windows 8.1
Systems
80%
11%
270k
95%
300k
90k
LOB apps in
Azure in 5 years
Users
717
165k+
1.2m+
4.5m
Remote
connections/
month
37k
MSIT Servers in
On-Prem Data
Centers
In the Cloud,
WAP and Azure,
in 5 years
LOB apps run
in SaaS or PaaS
today
System Center
managed
devices
SharePoint
Sites in the
Cloud
MSFT
employees on
Yammer
12,055
Total Managed
Network
Devices
519
10
600
49,152
22gb
Sustained
Internet Traffic
Legacy
Apps
3
Azure Regions
Used with
ExpressRoute
3.5Gbs
Sustained
Hybrid Traffic
To Azure
New
Apps
PaaS
Supported Azure Regions
with our Provider Edge (PE)
routners
MSIT Data Center with
Layer 3 connection to our
PE routers
Layer 3 Links
Layer 3 Network




































http://myignite.microsoft.com