Virtual Machines
advertisement
WINDOWS AZURE IAAS Patriek van Dorp Technology Consultant Microsoft Private Cloud to Public Cloud 1 Cloud Models 2 Only Pay For What You Use 3 CLOUD SERVICES (PAAS) 4 What is a Cloud Service? 5 Roles and RoleInstances 6 Packaging and Configuration Service Definition (*.csdef) Service Configuration (*.cscfg) Encrypted(Zipped(Code + *.csdef)) == *.cspkg 7 Everything goes to the Cloud! 8 We trust Microsoft without question! 9 WINDOWS AZURE VIRTUAL MACHINES 10 Infrastructure as a Service If deploying an application requires a developer’s involvement, it’s not IaaS 11 Windows Azure Virtual Machines 12 Things That Don’t Work (yet) OS Component Why not supported? Hyper-V Hyper-V on Hyper-V DHCP Broadcast NLB Broadcast Failover Clustering “Floating” IP Bitlocker (on OS disk) TPM Chip 13 Demo GETTING STARTED WITH VIRTUAL MACHINES 14 Images Available in Preview Windows Server 2008 R2 Windows Server 2008 R2 with • SQL Server 2012 Evaluation Windows Server 2012 RTM OpenSUSE 12.1 CentOS 6.2 Ubuntu 12.04 SUSE Linux Enterprise Server SP2 15 Persistent Disks and High Durability 16 Persistent Disks and High Durability 17 Provisioning a Platform Image 18 Persistent Disk Management Capability OS Disk Data Disk Host Cache Default ReadWrite None Max Capacity 127 GB 1 TB Imaging Capable Yes No Hot Update Cache Setting Requires Reboot Change Cache Without Reboot, Add/Remove without Reboot. 19 Disks and Images Base OS image for new Virtual Machines Sys-Prepped/Generalized/Read Only Created by uploading or by capture Writable Disks for Virtual Machines Created during VM creation or during upload of existing VHDs. 20 VIRTUAL MACHINES AND CLOUD SERVICES 21 Cloud Services, Roles and Instances 22 Virtual Machines 23 Cloud Services with Virtual Machines Multiple Virtual Machines can be hosted within the same cloud service 24 VIRTUAL MACHINE NETWORKING 25 Virtual Machine Names and DNS Resolves VMs by name within the same cloud service Machine names are modeled explicitly and registered in the DNS service Use your on-premises DNS servers Deploy a DNS server in Windows Azure Use public DNS services 26 Protocols and Endpoints Load-balanced incoming traffic and allows outbound traffic Instance-to-instance communication TCP, UDP and ICMP, dynamic ports Direct communication to multiple VMs in the same cloud app Health check with probe timeouts HTTP based probing, allowing granular control of health checks 27 Port Forwarding Input Endpoints 28 Load Balanced Sets 29 Demo LOAD BALANCED SETS 30 VIRTUAL MACHINE AVAILABILITY 31 Service Level Agreement 4.38 hours of downtime per year 8.75 hours of downtime per year Compute Hardware failure (disk, cpu, memory) Datacenter failures - Network failure, power failure Hardware upgrades, Software maintenance – Host OS Updates Planned downtime – 6 day notice, 6 hour window, 25 minute downtime VM crashes caused by 3rd party software, Guest OS Updates 32 Fault and Update Domains Represent groups of resources anticipated to fail together (i.e. Same rack, same server) Represents groups of resources that will be updated together Host OS updates honour service update domains Specified in service definition Default of 5 (up to 20) 33 Fault and Update Domains 34 Virtual Machines Availability Sets 35 WINDOWS AZURE VIRTUAL NETWORKS 36 Windows Azure Connectivity Options 37 Windows Azure Virtual Networks Enables customers to extend their Enterprise Networks into Windows Azure Networking on-ramp for migrating existing apps and services to Windows Azure Enables customers to run “hybrid” apps that span cloud and their premises Enables customers to setup secure private IPv4 networks fully contained within Windows Azure IP address persistence Inter-service DIP-to-DIP communication 38 Virtual Network Features Bring your own IPv4 addresses Control over placement of Windows Azure Roles within the network Stable IPv4 addresses for VMs Automated provisioning & management Support existing on-premises VPN devices Enables customers to use their on-premise DNS servers for name resolution Enables VMs running in Windows Azure to be joined to corporate domains running on-premise (use your on-premise Active Directory) 39 Demo GETTING STARTED WITH VIRTUAL NETWORKS 40 Supported VPN Device List IKE v1 AES 128, 256 SHA1, SHA2 41 SCENARIOS 42 Virtual Network Scenarios Enterprise app in Windows Azure requiring connectivity to onpremise resources Manage identity and access control with on-premise resources (on-premises Active Directory) Remote monitoring and trouble-shooting of resources running in Windows Azure Cloud deployments requiring persistent IP addresses and direct connectivity across services 43 Connecting Applications and VMs Simplicity Tenant Autonomy VIP Swap (cloud services) Easy Local Dev/Test Higher Latency Less Secure Management/Deployment Overhead 44 Connecting Cloud Services with VNET More Secure Low Latency Cloud App Autonomy VIP Swap (stateless roles) Advanced Connectivity Requirements VNET Complexity No Windows Azure provided DNS 45 Mixing PaaS and IaaS in the Same Cloud Service Windows Azure provided DNS Low latency connectivity Single deployment, update and management unit No VIP Swap (coming in the future) 46 Summary With PaaS (Web/Worker Roles) you loose some control and you need to fit the mold of the Cloud vendor With IaaS you have full control over your platform and you can run (almost) any software you like Use the existing IT Pro skills present in your organization to extend your corporate network to the Cloud Create subnets to control the applications that can access resources onpremises Mix and Match PaaS and IaaS to create the most desirable architectures fast and save 47 patriek.van.dorp@sogeti.nl @pvandorp http://onwindowsazure.com http://windowsazure.com QUESTIONS 48 Local touch - Global reach 49
