The Path to Hybrid Cloud
Amanda Blevins
VMware, Senior Systems Engineer
ablevins@vmware.com
Confidential
© 2009 VMware Inc. All rights reserved
Agenda
Motivation for the Private or Hybrid Cloud
VMware vCloud Family Introduction
Use Cases and Customer Success Stories
Key Products and Offerings in 2011
Next Steps
2
Confidential
Enterprise Challenges With Public Clouds
Enterprise challenges
• Deliver more business value,
faster
• Spend less on “plumbing”
• Maintain secure, compliant
environment
• Evolve legacy applications
Public infrastructure clouds
• On-demand commodity servers
• Cost effective
• Incompatible with my existing stuff
• Insecure and hard to audit
• Difficult to manage
3
Confidential
Delivering IT Services - Today
Process A
Process B
Process C
App Stack A
App Stack B
App Stack C
DB2
Traditional Management
• Dedicated, STATIC, complex silos
• Oversize hardware to handle peak loads, hence, significantly underutilized.
• Too many tools means change is risky, slow, and manual. DR?
• BUT, Ownership/cost is clear
• Fixed-cost IT model
• Troubleshooting, tuning, QoS per Application/stack
4
Confidential
IT must respond to custom requests and LOBs face queues
 Approval processes and queues
 Custom requests strain IT
 Hardware acquisition
 Infrastructure deployment
 Manual planning and provisioning
 Difficult capacity management
Users
I have 100 new
employees
starting on
Monday
May I have three
different application/
email/ access rights
please?
Infrastructure
Admin
5
Confidential
A fundamental shift in delivering IT Services - Tomorrow
vApp
vApp
vApp
vApp
Apps
Service
catalog
Resource Pools
vSphere
vSphere
vSphere
vSphere
Compute
factory
Cloud Management
• Converged Datacenter - Higher utilization of shared physical resources
• Variable, consumption-based cost model
• Standardized “menu” of Service Offerings
• Preconfigured VM templates, LAMP/Dev stacks, etc
• Simplification
• Fewer tools. Easier to manage infrastructure leads to increased automation
• Additional layers of abstraction – QoS, troubleshooting, tuning challenges
6
Confidential
Granting self-service access reduces dependency on IT
 Self-Service Portal
 Standardization with central
catalog of templates and media
End User or IT
Representative
 No overprovisioning with
feeling of infinite resources
VMware vCloud Director
VMware vSphere
Cloud Admin
&
7
Confidential
Third Party
Cloud Provider
Enterprise Hybrid Cloud Requirements – Best of Both Worlds
Agility with Reliable Performance
• On-demand provisioning of virtual servers
• Fast scale up at reasonable cost
• Predictable, consistent SLAs
Security
• Secure & auditable cloud infrastructure
• Secure apps and user access
Application Portability
• Compatible with existing workloads
• Globally consistent service across providers
8
Confidential
VMware vCloud securely drives agility and efficiency
 Increase business agility by
Consuming Infrastructure as a Service
empowering users to self-deploy
services with the click of a button
Optimize
only
 Maintain
security andnot
control
over
multi-tenant environments with user
how IT is delivered
and
managed,
but
 Reduce costs by efficiently
delivering
resources
to internal
also
how
it is
organizations as available and secure
virtual datacenters
consumed
controls and VMware vShield
 Leverage existing investments and
open standards to ensure
interoperability and application and
performance portability between clouds
9
Confidential
Producing Infrastructure as a Service
Agenda
Motivation for the Private or Hybrid Cloud
VMware vCloud Family Introduction
Use Cases and Customer Success Stories
Key Products and Offerings in 2011
Next Steps
10
Confidential
Virtualization & Cloud Management: VMware Approach
End-User Computing Management
Management
End User Computing
• Secure
Cloud
• Manageable
Application
Platform
• Provision & deploy desktops rapidly
Security
End User
Computing
• Manage
workstation images simply
• Deliver virtualized applications to desktop
Compliance
IT Business
Management
• Orchestrate
Application Management
cloud processes
• Encapsulate applications into containers with vApps
Management
• Assure application portability & performance
Platform
•Cloud
Establish Application
service contracts with
infrastructure
• Open
- simple &
Security lightweight
• Manage private
Compliance
cloud requests
• Meter and
allocate costs
Infrastructure & Operations Management
Cloud
Infrastructure
and Management
• Create a zero-touch, compliant infrastructure
Management
Cloud •Infrastructure
Build automation into platform
Security
• Deliver self-service through policy-driven control
and Management
Compliance
VMware Management Solutions
11
Confidential
Internal Product and Solutions for IT as a Service Map
vCloud Powered
Public Clouds
Secure Private Cloud
Independent
Public Clouds
End-User Computing
View
Thin App
Zimbra
SaaS
Applications
Other SaaS
Providers
vmForce
Google App
Engine
Oher PaaS
Partners
Other cloud
infrastructure
providers
Application Access
Cloud Application Platform
Spring
vFabric
vFabric Hyperic
Application Portability
Cloud Infrastructure and Management
vCenter
vCloud
vCloud
Products
vShield
Application Mobility
vSphere-as-a-Service
VMware vSphere:
Foundation for Cloud Computing
12
Confidential
vCloud
Datacenter
vCloud
Solutions
vCloud
Express
Enterprise Hybrid Cloud Computing – Your Cloud
Apps
Apps
VMware vCloud Powered Services
 VMware compatible cloud service
 Common management
Private Cloud
VMware =
vCloud Powered
Service Provider
EnterpriseSecurity
Hybrid Cloud
Cloud Infrastructure
Cloud Infrastructure
Management
Cloud Computing Moves from a
Technology Discussion to a Business Decision
13
Confidential
Within IaaS, VMware Offers a Robust Set of Product and Solutions
Enterprise Hybrid Cloud
Private Cloud
Public Cloud
Co-Branded vCloud Services
Service Consumption
vCloud Request Manager
vCenter Chargeback
vCloud Datacenter
Portability
Security & performance
for enterprises
Service Delivery
vCloud Director
Cross-Cloud Standards
Security and Compliance
vCloud API
Open Virtualization Format
vCloud Express
Rapid, credit card payment
for developers
vShield Security Family
vCenter Configuration Manager
Cross-Cloud Management
vCloud Connector
Broad array of
VMware-compatible clouds
for any business need
Resource Management
vSphere
vCenter Management Family
14
vCloud Powered
Confidential
Agenda
Motivation for the Private or Hybrid Cloud
VMware vCloud Family Introduction
Use Cases and Customer Success Stories
Key Products and Offerings in 2011
Next Steps
15
Confidential
Enterprise Hybrid Cloud Use Cases
Each
Implemented
by VMware
Customers
Lab
Management
for Test and
Development
Elasticity and
Pathway to
the Hybrid
Cloud
Your
Cloud
Multi-Tenancy
and
Datacenter
Consolidation
16
Extending
Infrastructure
to the
Business
Offering
Infrastructure
to Customers
Confidential
Companies Typically Approach the Cloud One Step at a Time
Public Cloud
Experimentation
Public Cloud Adoption
and Commitment
Hybrid Cloud
Mature Private
Cloud
Early Private
Cloud
Cloud
Ready
Cloud
Interested
17
Confidential
In the cloud, IT becomes a service provider to the business
 IT becomes a service
provider, enabling true
business agility
 Users are given an
alternative to the public
clouds, eliminating the
need for unauthorized
deployments
 Achieve the benefits of
cloud computing without
sacrificing security or
control
18
Self-Service
Service
Catalog
Resource
Pools
Confidential
Agenda
Motivation for the Private or Hybrid Cloud
VMware vCloud Family Introduction
Use Cases and Customer Success Stories
Key Products and Offerings in 2011
 VMware vCloud Director Overview
Next Steps
19
Confidential
vCloud Director builds on vSphere to transform IT
 Builds on vSphere and scales up to
Organization 1
Organization m
10,000 VMs and 25 vCenter Servers
Users
 Creates virtual datacenters, by pooling
resources into new units of consumption
 Securely enables the cloud with
VMware vCloud Director
User Portals
Catalogs
Virtual Datacenter 1 (Gold)
vShield, LDAP authentication, and RBAC
Security
Virtual Datacenter n (Silver)
VMware
vShield
 Provides self-service portals and
standardized infrastructure catalogs
 Isolates users into organizations with
VMware
vCenter Server
VMware
vCenter Server
VMware
vCenter Server
VMware vSphere
VMware vSphere
VMware vSphere
unique catalogs, policies, and LDAP
vCloud API
Secure Private Cloud
IT
 vCloud API enables inter-cloud portability,
programmatic control, and integrations
Programmatic
Control and
Integrations
20
Confidential
Public Clouds
Users given direct, on-demand access to infrastructure services
 Three ways to connect
• Direct access through web-based
user portals
• Integrate into IT workflows and
request processes
• Programmatic access through
vCloud API
 Delegated controls
• Basic VM operations, including
provisioning and deprovisioning
• Move vApp to new VDC
• Customize the guest OS
• Adjust resource guarantees
 Yet, IT never loses control
21
Confidential
Users deploy standard services from central catalogs
 Direct access to catalogs
through self-service portal
Linux Templates
Windows Templates
 Catalogs contain templates,
Basic Media
Catalog
Weblogic vApps
Oracle vApps
Premium
Media Catalog
vApps, and Media
 Catalogs can be customized by
organization
• Users can be given permission to
create organization-wide catalogs
• Organizations can be given
permission to create datacenterwide catalogs
22
Confidential
Users have an isolated infrastructure sandbox
 Organization Virtual Datacenters
are isolated resource pools
dedicated to an organization
Infrastructure Service Catalog
Finance Organization
Organization Virtual Datacenter 1
Organization Virtual Datacenter 2
 Logical abstraction between
application and underlying
hardware
 Access without risk of exceeding
capacity, bothering “neighbors,”
or creating security issues
 Can be offered at a predefined
SLA with corresponding costs
23
Confidential
R&D Organization
Organization Virtual Datacenter 1
Organization Virtual Datacenter 3
To make this possible, cloud requires new resource abstractions
VMware vCloud Director
Organization: Marketing
Users & Policies
Organization: Finance
Organization VDCs
Catalogs
Users & Policies
Organization VDCs
(Gold)
(Silver)
(Bronze)
Provider Virtual Datacenters
VMware vCenter Server
Resource Pools
Datastores
VMware vSphere
Secure Private Cloud
24
Confidential
Port Groups
Catalogs
Automating routine tasks further reduces costs
 Infrastructure Automation
• Built-in VMware vCloud Director
• Rapid Provisioning
• Network Configuration
VM Request
 Business Level Automation
• Leveraging the APIs and…
• VMware vCenter Orchestrator
• VMware vCloud Request Manager
• Third party orchestration and service
management software
• Automate routine tasks
• Build ITIL workflows
• Script complex operations
25
Policy
Confidential
Integrates with your existing management software
 The vCloud API is the
cornerstone for delivering a
rich ecosystem with best-ofbreed ISV’s and Service
providers
 Existing customer investments
in automation tools and
workflows can easily be
integrated into vCD via the
vCloud API
3rd Party Mgmt Solution
VMware vCloud Director
VMware vSphere
26
Confidential
Agenda
Motivation for the Private or Hybrid Cloud
VMware vCloud Family Introduction
Use Cases and Customer Success Stories
Key Products and Offerings in 2011
 VMware vShield Security Products
Next Steps
27
Confidential
2010 – Introducing vShield Security
Securing the Private Cloud End to End: from the Edge to the Endpoint
vShield App 1.0 and
Zones
vShield Edge 1.0
Security Zone
Endpoint = VM
Application protection from
network based threats
Enables offloaded anti-virus
Edge
Secure the edge of
the virtual datacenter
vShield Endpoint 1.0
Virtual Datacenter 2
Virtual Datacenter 1
DMZ
PCI
compliant
HIPAA
compliant
VMware
vShield
VMware vShield Manager
28
Confidential
Web
View
VMware
vShield
Integrated vShield features simplify security and compliance
 vShield for vCloud Director is a
virtual appliance providing
essential perimeter network and
security services including:
• Port-level stateful firewall
• Network Address Translation
• DHCP services
vShield
DHCP Services
 Enables fast, secure and
automated provisioning of
multitenant Org VDCs in private
and public clouds
29
firewall
Confidential
Agenda
Motivation for the Private or Hybrid Cloud
VMware vCloud Family Introduction
Use Cases and Customer Success Stories
Key Products and Offerings in 2011
 VMware vCenter Chargeback Overview
Next Steps
30
Confidential
Leases, quotas, and a PAYG model ensures responsibility
 vCloud Director controls
• Leases: Set maximum time period
VMs can exist; IT can select renewal
policies
• Quotas: Maximum number of VMs per
user within in organization
 vCenter Chargeback works with
VMware vCloud Director to provide
cost visibility
• Costing hierarchies are automatically
created based on vCloud Director
• vCloud Director resources like broadband
network traffic, public IP addresses, DHCP,
NAT can be metered and billed
VMware vSphere
31
Confidential
Agenda
Motivation for the Private or Hybrid Cloud
VMware vCloud Family Introduction
Use Cases and Customer Success Stories
Key Products and Offerings in 2011
 VMware vCloud Request Manager Overview
Next Steps
32
Confidential
What is vCloud Request Manager?
Enhanced Governance and Control of
vCloud Director based Private Clouds.
1. Provisioning with Approvals
• Add sophisticated workflow driven approvals
processes to provisioning requests.
2. Software License Tracking
• Automatically track software license usage in the cloud.
3. Policy Based Cloud Partitioning
• Simplify the creation of “Organizations” and enforce
standardization through “Blueprints”.
33
Confidential
How Does vCloud Request Manager Work?
Cloud
Consumer
Approver(s)
Cloud
Administrator
Element
Management
34
Confidential
Agenda
Motivation for the Private or Hybrid Cloud
VMware vCloud Family Introduction
Use Cases and Customer Success Stories
Key Products and Offerings in 2011
 VMware vCloud Public Cloud Solutions
Next Steps
35
Confidential
Leverage a VMware Service Provider to Fully Realize Hybrid Cloud
 Get the full benefits of Enterprise
Hybrid cloud by leveraging the
resources of a VMware based
Service Provider
vCloud Powered
VMware compatible cloud service
• Service runs on vSphere and vCloud Director
• Delivers increased agility, reduced costs, IT
control, application portability.
 If your LOBs are looking to use a
vCloud Datacenter
commodity public cloud, steer them
to a vCloud Powered cloud service
Enterprise IT focused cloud service
• Globally consistent, VMware certified,
to meet enterprise security and
performance requirements
 Two service badges indicate what
technology is inside
vCloud Express
 Two co-branded services jointly
Software developer-focused cloud service
• Credit card billed pay-for-use
architected with VMware for different
users and use cases
VMware Virtualized
For VM hosting
• Service runs on VMware vSphere
36
Confidential
VMware vCloud Service Providers
VMware based hybrid clouds
delivered by leading service providers
37
Confidential
VMware vCloud Connector provides a single console to view and manage
both internal and external cloud infrastructure
38
Confidential
The cloud computing journey requires a holistic approach...
People
Staff trained in virtualization
and cloud computing
39
Technology
Process
Service-based architecture
with “cost arbitrage”
Project management methodology
and SDLC to leverage virtualization
and cloud technology
Confidential
Next Steps…
I Have Just Finished Server Consolidation:
1. Start proactively managing capacity
2. Automate and simplify DR plans
3. Deploy policy-based compliance & configuration
I Am Virtualizing Tier 1 Apps:
1. Map application dependencies for migration
2. Automate software provisioning
3. Build application-centric DR plans
I Would Like to Manage a Cloud:
1. Create a service portal & catalog
2. Automate service requests & workflows
3. Account, monitor and chargeback costs
40
Confidential
Other VMware Tools to manage your cloud workloads...
Motivation for the Private or Hybrid Cloud




VMware vCloud Family Introduction
Use Cases and Customer Success Stories
Key Products and Offerings in 2011
Next Steps
• vCenter Operations
• vCenter Configuration Manager
• CapacityIQ
41
Confidential
VMware vCenter Operations Editions
vCenter Operations Enterprise
+ Full Configuration & Compliance
Management
vCenter Operations Advanced
vCenter Operations Standard
+ Capacity
Planning
+ Other VMware & 3rd Party Integrations
(View, management, servers, storage)
Performance
Real-time
Capacity
Configuration
Change
vSphere
VMware Cloud / vCenter
42
Non-VMware (incl. physical) environments
Confidential
Understanding the vCenter Operations Editions
Function
Scope
vCenter Operations Standard
Edition
43
vCenter Operations Enterprise
- Standalone
Data Sources
vCenter x 1
• Any 3rd party monitoring tools’
time series data
• Change events
• Multiple vCenter Servers
Objects
vCenter Objects (i.e.)
• Data Centers
• Clusters
• ESX Hosts
• Datastores
• VMs x 500
Unlimited Scope (i.e.)
• Applications
• Network Infrastructure
• Storage
• Hosts (ESX, Win, Linux, etc)
• VMs
Users
Infrastructure (e.g. VI Admins)
Operations, Infrastructure,
Application Teams, Business
Owners, CxOs
Dynamic Thresholds
Yes
Yes
Performance Root Cause
Yes
Yes
Proactive Alerting
No
Yes
Customizable Dashboards
No
Yes
Notifications
No
Yes
Confidential
Performance dashboard based on self-learning analytics
Visualize environment
performance in three
unique dimensions
Simple, actionable
scores that indicate
overall performance
Highlights resources that
are deviating from
“normal” behaviour
44
Confidential
Dynamic Performance Dashboards – Health Scores
 One Source of Truth Across the
“How is our world doing?”
Enterprise
 Health - Objective measure of
performance based on
underlying level of abnormal
behavior
 Analytics provide a Health
score for any resource or
grouping
• A single Server, Device, Resource
• Entire Tier or Silo
• Entire Application or Service
• Entire Datacenter
• Any Arbitrary Group of Resources
45
Confidential
vCenter Configuration Manager Overview
• Achieve continuous
compliance to regulations,
best practices, and
security guidelines
• Avoid configuration drift
across virtual and physical
servers, workstations, and
desktops.
• Harden environment to
diminish security threats
and breaches, eliminate
costly audit violations
46
Confidential
vCM - Understanding Pervasive Change
Type: Unplanned, Uncontrolled
• User Changes
Standard
Actual
• Unapproved Admin Change
Build
Build
• Exploits
Shadow
IT
Origin:•End
Users,
Developers, Suppliers
Type: Planned, Controlled
New
• Updates and fixes
Build
• Infrastructure changes
•Origin:
Component
patches
LOB, Operations
47
Confidential
vCenter Configuration Manager (VCM) - Solution Overview
DISCOVERY
& CHANGE
ANALYZE
COMPLIANCE
Discover hundreds of Physical, Virtual, OS and
Application parameters to build a repository and of
Configuration Information for thousands of OS
instances and progressively track point in time
configuration change, including file integrity
monitoring`.
Quickly analyze on every instance against known
patches and compliance factors to understand your
risk position.
Enterprise System Reporting on the optimization and
security posture of all systems within the enterprise.
REPORT
Asset classification allows the analysis and reporting
to quickly understand where the most value can be
achieved in the shortest amount of time – Decision
Support.
PLAN
REMEDIATE
SCM has the ability to “Right-Click Fix” or auto
remediate non-compliance or mis-configurations.
VERIFY
Verify the remediation and optimization schedules
are producing positive outcomes for the
organization.
48
UNIX
WINDOWS Confidential
LINUX
Capacity IQ - Capacity Modeling
 Impact analysis of capacity changes
 Based on
• What-If modeling scenarios: simulated set
of changes in capacity demand or supply
• Historical resource trends
 Virtualization-awareness
???
• Recognizes VMware HAand DRS-enabled clusters,
and factors those into the
predictions
Cluster 1
Cluster 2
Cluster 3
VMware Infrastructure
What if I add more VMs?
Is there enough capacity?
49
Confidential
vCenter CapacityIQ 1.5 – Key New Features
 Storage Analytics
• Disk space and disk I/O trending
• New dashboards and views for storage analysis and trending
 Resource Optimization
• Storage aware workload modeling and “what if” scenarios to forecast future
capacity needs
• Outlier detection and filtering capabilities for improved analytics in very
complex and dynamic environments (e.g. batch workloads)
• Identify stressed and underutilized hosts and clusters
 Scheduled Reports
• Report scheduling with email capabilities for automated delivery of capacity
utilization and optimization reports
50
Confidential
How VMware simplifies Capacity Management
 What are my historical utilization trends?
 What resources have been requested vs. needed?
Analyze
 How many more VMs will fit in my current VI?
 How can we use my resources more efficiently?
 What VMs should be right-sized?
Optimize
 Can I reclaim over-provisioned or unused capacity?
 When will I run out of capacity?
 What if I add, remove, reconfigure capacity?
Forecast
 Can I defer infrastructure investments?
Deliver the right capacity at the right time!
51
Confidential
Capacity Optimization
 Identify and Reclaim Inefficient, Unused Capacity
• Right-size or decommission unused or inefficient VMs
• Use the capacity modeling to predict the savings
• Eliminate waste and reduce costs in your organization
52
Confidential
Idle and Powered-Off VMs
Idle Capacity
• Idle VMs:
VM has consistently low resource utilization over a long
period of time
• Powered-Off VMs:
VM has been powered off over a long period of time
53
Confidential
Zzz...
Oversized and Undersized VMs
VM Sizing Opportunities
Capacity
Oversized VMs:
Demand
VM has been allocated more capacity than it needs
Undersized VMs:
VM needs more capacity than it has been allocated
54
Confidential
Stressed and Underused Hosts and Clusters
Hosts and Clusters Sizing Opportunities
Stressed Hosts and Clusters:
Need more capacity than it has been allocated
Capacity
Demand
Underused Hosts and Clusters:
VM has been allocated more capacity than it needs
55
Confidential
How VMware simplifies Capacity Management
 What are my historical utilization trends?
 What resources have been requested vs. needed?
Analyze
 How many more VMs will fit in my current VI?
 How can we use my resources more efficiently?
 What VMs should be right-sized?
Optimize
 Can I reclaim over-provisioned or unused capacity?
 When will I run out of capacity?
 What if I add, remove, reconfigure capacity?
Forecast
 Can I defer infrastructure investments?
Deliver the right capacity at the right time!
56
Confidential
Disk Space Aware What-If Modeling
 Perform “What-If” Impact Analysis to Model Effect
of Capacity Changes
• Hosts/Datastores
• Virtual Machines
• Hosts
• Virtual Machines
57
Confidential
Capacity Modeling – Adding VMs
Specify configuration to model your capacity changes
VM count, CPU,memory and storage configuration
Average CPU,memory, disk utilization for VMs
Provides small, medium and large reference configurations based on
current environment
58
Confidential
Capacity Modeling – Adding VMs
Specify configuration based on existing VM Profiles
Provides a list of existing VMs with current capacity usage
Select reference VM profile and provide VM count
Provides small and large host configurations for reference
59
Confidential
Capacity Modeling – Removing VMs
Specify configuration based on existing VM Profiles
Provides a list of existing VMs with current capacity usage
Select VMs to be removed
Provides small and large host configurations for reference
60
Confidential
Capacity Modeling – Adding Hosts
Specify configuration to model your capacity changes
Host count, CPU and memory configuration
Provides small, medium and large reference configurations based on
current environment
61
Confidential
Capacity Modeling – Changing Hosts
Model hardware refresh cycles or host configuration change
Host count, CPU and memory configuration
Provides small, medium and large reference configurations based on
current environment
62
Confidential
Capacity Modeling – Removing Hosts
Specify configuration based on existing Hosts
Provides a list of existing Hosts with current capacity usage
Select Hosts to be removed
Provides small and large host configurations for reference
63
Confidential
Capacity Modeling Results
Multiple Host and VM What-If scenarios can be modeled
Virtual Machine Capacity – Trend View displays results
Up to five scenarios can be modeled
Compare or combine scenario results
64
Confidential