NET1821BU THE FUTURE OF NETWORKING AND SECURITY WITH NSX-T Bruce Davie CTO, APJ 2

Similar documents
Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

VMware + OpenStack. Dan Wendlandt Director of Product Management VMware VMware Inc. All rights reserved.

VMworld 2017 Content: Not for publication #CNA1699BE CONFIDENTIAL 2

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Management Product Overview and Glimpse into the Future

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

CNA1699BU Running Docker on your Existing Infrastructure with vsphere Integrated Containers Martijn Baecke Patrick Daigle VMworld 2017 Content: Not fo

Accelerate OpenStack* Together. * OpenStack is a registered trademark of the OpenStack Foundation

What You Need to Know About OpenStack + VMware

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Build Cloud like Rackspace with OpenStack Ansible

NTT Com Press Conference March 1, 2016 #enterprisecloud

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

An Introduction to Red Hat Enterprise Linux OpenStack Platform. Rhys Oxenham Field Product Manager, Red Hat

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Best Practice Deployment of F5 App Services in Private Clouds. Henry Tam, Senior Product Marketing Manager John Gruber, Sr. PM Solutions Architect

DEEP DIVE: OPENSTACK COMPUTE

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

VMware Cloud Provider Platform

Buenos Aires 31 de Octubre de 2018

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

"Charting the Course... H8Q14S HPE Helion OpenStack. Course Summary

Kubernetes Container Networking with NSX-T Data Center Deep Dive

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Minimal OpenStack Starting Your OpenStack Journey

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

NephOS. A Single Turn-key Solution for Public, Private, and Hybrid Clouds

Launching StarlingX. The Journey to Drive Compute to the Edge Pilot Project Supported by the OpenStack

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

DevOps CICD PopUp. Software Defined Application Delivery Fabric. Frey Khademi. Systems Engineering DACH. Avi Networks

CONTAINERS AND MICROSERVICES WITH CONTRAIL

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

DevOps Course Content

#techsummitch

The Virtualisation Security Journey: Beyond Endpoint Security with VMware and Symantec

Contrail Cloud Platform Architecture

NephOS. A Single Turn-key Solution for Public, Private, and Hybrid Clouds

Road to Private Cloud mit OpenStack Projekterfahrungen

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

BRKDCT-1253: Introduction to OpenStack Daneyon Hansen, Software Engineer

Cisco Container Platform

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

High Availability for Enterprise Clouds: Oracle Solaris Cluster and OpenStack

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

OpenStack Mitaka Release Overview

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Accelerate at DevOps Speed With Openshift v3. Alessandro Vozza & Samuel Terburg Red Hat

PSOACI Why ACI: An overview and a customer (BBVA) perspective. Technology Officer DC EMEAR Cisco

Build your own Cloud on Christof Westhues

A Practitioner s Guide to Migrating Workloads to VMware Cloud on AWS

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Cloud Computing. Amazon Web Services (AWS)

Reimagining OpenStack*

Application Centric Microservices Ken Owens, CTO Cisco Intercloud Services. Redhat Summit 2015

Fujitsu World Tour 2018

Customer Case Studies on Accelerating Their Path to Hybrid Cloud

The Latest EMC s announcements

Run Stateful Apps on Kubernetes with PKS: Highlight WebLogic Server

Adobe Digital Marketing s IT Transformation with OpenStack

ANIKET DAPTARI & RANJINI RAJENDRAN CONTRAIL TEAM

VMware Integrated OpenStack with Kubernetes Getting Started Guide. VMware Integrated OpenStack 4.0

A Cloud WHERE PHYSICAL ARE TOGETHER AT LAST

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Contrail Cloud Platform Architecture

Exploring Cloud Security, Operational Visibility & Elastic Datacenters. Kiran Mohandas Consulting Engineer

Data Center and Cloud Automation

CLOUD INFRASTRUCTURE ARCHITECTURE DESIGN

Introducing VMware Validated Designs for Software-Defined Data Center

VMworld 2013 Overview

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Introducing VMware Validated Designs for Software-Defined Data Center

IBM Cloud for VMware Solutions

Red Hat Containers Roadmap. Red Hat A panel of product directors

Redefining Hybrid Cloud Management with vcenter Hybrid Linked Mode

Zero to Microservices in 5 minutes using Docker Containers. Mathew Lodge Weaveworks

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

NET1846. Introduction to NSX. Milin Desai, VMware, Inc Kausum Kumar, VMware, Inc

WHITE PAPER. RedHat OpenShift Container Platform. Benefits: Abstract. 1.1 Introduction

IBM Cloud Orchestrator Version User's Guide IBM

OPENSTACK Building Block for Cloud. Ng Hwee Ming Principal Technologist (Telco) APAC Office of Technology

UP! TO DOCKER PAAS. Ming

Taming your heterogeneous cloud with Red Hat OpenShift Container Platform.

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Orchestrating the Cloud Infrastructure using Cisco Intelligent Automation for Cloud

Transcription:

NET1821BU The Future of Network Virtualization with NSX-T #VMworld #NET1821BU

NET1821BU THE FUTURE OF NETWORKING AND SECURITY WITH NSX-T Bruce Davie CTO, APJ 2

DISCLAIMER This presentation may contain product features that are currently under development. This overview of new technology represents no commitment from VMware to deliver these features in any generally available product. Features are subject to change, and must not be included in contracts, purchase orders, or sales agreements of any kind. Technical feasibility and market demand will affect final delivery. Pricing and packaging for any new technologies or features discussed or presented have not been determined. VMworld 2017 Content: Not for publication 3

12 HOURS UNIVERSITY COLLEGE LONDON MELBOURNE UNIVERSITY

INFORMATION SUPERHIGHWAY SUPER TELEPHONE NETWORK 5 SUPER VIDEO NETWORK INTERNET

L2 networks MPLS L3 networks

VPN MPLS 7

TWO NETWORK APPROACHES Build to meet needs of today s applications Build flexible, programmable infrastructure for future innovation 8

THE ONLY CONSTANT IS CHANGE New types of infrastructure VMworld 2017 New application architectures Content: Not for publication New shiny objects

NSX PROVIDES FLEXIBILITY FOR HETEROGENEITY Branch offices/edge Computing/IOT Cloud VMworld 2017 Content: Not for publication New app frameworks BARE METAL On-premises End users

NSX EMPOWERS MODERN APP DEVELOPMENT Renovate Build new On-demand infrastructure Service-like experience Programmatic DevOps-centric IT

ROADMAP INSIDE VIEW Control plane Management plane Data plane WHAT YOU CAN DO Programmatic networking & security for: Multi-cloud Application frameworks Developer cloud

NETWORK VIRTUALIZATION ARCHITECTURE Logically centralized control, distributed enforcement CLOUD CONSUMPTION MANAGEMENT PLANE CONTROL PLANE VMworld 2017 Content: Not for Self-service portal Cloud management API entry-point, UI publication Maps desired logical state to physical world DATA PLANE Scale-out distributed forwarding

MANAGEMENT, CONTROL, AND DATA PLANES Mapping state at many levels MANAGEMENT PLANE CONTROL PLANE VMworld 2017 Desired state Network topology request Request stored and acknowledged Content: Not for publication Calculate data plane state Discovered state Translated state DATA PLANE Realized state Identify data plane resources

INSIDE VIEW Control plane Management plane Data plane

CONTROL PLANE CHALLENGES MANAGEMENT PLANE CONTROL PLANE DATA PLANE Heterogeneity Scalability

CONTROL PLANE AND HETEROGENEITY DATA PLANE MANAGEMENT PLANE CONTROL PLANE VMworld 2017 Content: Not for publication DP 1 DP 2 DP 3 DP 4

CONTROL PLANE HETEROGENEITY AND SCALE DATA PLANE MANAGEMENT PLANE CONTROL PLANE VMworld 2017 Content: Not for publication DP 1 DP 2 DP 3 DP 4

A BETTER WAY LOCAL CONTROL PLANE MANAGEMENT PLANE CENTRAL CONTROL PLANE CLUSTER LCP 1 LCP 2 LCP 3 LCP 4 DATA PLANE DP 1 DP 2 DP 3 DP 4

INSIDE VIEW Control plane Management plane Data plane

INCREASED PRESSURE ON THE MANAGEMENT PLANE MANAGEMENT PLANE API REQUEST API REQUEST REQUIREMENTS Persistence Scale High availability IMPLEMENTATIONVMworld Distributed, shared log API REQUEST 2017 Content: Not for publication RESULTS Scalable API service

INDEPENDENTLY SCALABLE CONTROL, MANAGEMENT, AND PERSISTENCE MANAGEMENT PLANE CONTROL PLANE LOG NODE LOG NODE LOG NODE Desired state AKA source of truth

DISTRIBUTED LOG: SCALABLE SOURCE OF TRUTH MANAGEMENT PLANE VMworld 2017 Content: Not for Log 13 Log 14 DISTRIBUTED LOG Not just a place to store error messages publication IT IS: I/O bandwidth A data structure scales with disk units No single Append point of only failure Globally Immutable consistent history view of of desired state transactions Parallel reads and writes to redundant disks

DISTRIBUTED LOG 201 MANAGEMENT PLANE API REQUEST Log 12 API REQUEST Log 13 Get token Get token Sequencer Sequencer Layout Log 12 Log 13 Log 14 TO LEARN MORE https://github.com/corfudb/corfudb Storage Storage

INSIDE VIEW Control plane Management plane Data plane

HETEROGENEOUS DATA PLANE DATA PLANE DP 1 DP 2 DP 3 DP 4 Edge DPDK Public cloud DP 5 DP 5

DPDK BENEFITS System level L3 performance (MPPS) 350 300 250 200 150 100 50 0 55 L3FWD PERFORMANCE GENERATIONAL GAINS 80.1 IPV4 L3 Forwarding performance of 64byte packets 164.9 2010 (25 WMR) 2011 (15 SNB) 2012 (25 SNB) 2013 (25 IVB) 2014 (25 HSW) 2015 (25 BDW) 255 279.9 346.7 180 Gbps Source: Intel. Video: DPDK Performance Benchmarking. 2016. https://software.intel.com/en-us/videos/dpdk-performance-benchmarking

HIGH-PERFORMANCE ARCHITECTURE Cache Multi-context appliance Flow cache

ROADMAP INSIDE VIEW Control plane Management plane Data plane WHAT YOU CAN DO Programmatic networking & security for: Multi-cloud Application frameworks Developer cloud

WHAT YOU CAN DO Developer cloud Container networking Multi-cloud HOW IT WORKS AND WHY IT MATTERS

OPENSTACK COMPONENTS Horizon (web portal) Nova (compute) vcenter vsphere Neutron (network) NSX Install, Configure and Troubleshoot CLI Tools / SDKs Cinder (block storage) Log Insight Log collection, O/S Content pack Glance (images) vcenter Datastores VVols / vsan / VMFS / NFS Heat (orchestration) vrops OpenStack mgmt pack Local DB Keystone (identity) LDAP Ceilometer (metering) Basic open source Swift (object store) 3 rd -party object storage vrb Cost visibility, governance, etc... OpenStack Components: VMware Technology Integrations: Current

DEVELOPER CLOUD Developer DevOps Heat, Terraform, Kubernetes, etc. Configuration templates API Puppet Chef Ansible Configuration management tools NETWORKING SECURITY NETWORKING SECURITY Provision infra using standard APIs Infrastructure as code

INFRASTRUCTURE AS CODE AND CONTINUOUS DEPLOYMENT DevOps Infrastructure code Commits infrastructure code to VCS Iterate Continuous Integration Server (e.g., Jenkins) Feedback from quality testing Detect change and integrate Feedback from monitoring and metrics Version Control System (e.g., Git) Development Testing / Staging / UAT Production

WHAT YOU CAN DO Developer cloud Container networking Multi-cloud HOW IT WORKS AND WHY IT MATTERS

CONTAINERS AND NETWORK SECURITY Flat container networks create opportunities for attackers Internet Port 80 Website Website Website Website Vault Vault Internal network Database Confidential information

ENTERPRISE NETWORKING FOR CONTAINERS NSX provides segmentation, visibility and integration Internet Port 80 Website Website Website Website Vault Internal network Vault Database Physical network infrastructure

KUBERNETES AND NSX COMPONENTS Network Container Plugin (NCP) Kubernetes master etcd API-Server Scheduler NS: foo K8s / OS Adapter PaaS Adapter CaaS Adapter More NSX Container Plugin NCM Infrastructure NSX/Kubernetes topology NS: bar NSX Manager API Client NSX NSX Manager

KUBERNETES DEMO Network, load balancing, and security configured as part of Kubernetes deployment Yelb-ui Deployment Kubernetes Yelb-appserver Redis Deployment Deployment Admin config App-driven config Logical Router Layer 3 Yelb ui Yelb appserver Redis server

CONTAINER NETWORKING

WHAT YOU CAN DO Developer cloud Container networking Multi-cloud HOW IT WORKS AND WHY IT MATTERS

NSX ON-PREMISES AND IN THE CLOUD NSX on-premises We give you bits You install On your servers / In your network You patch, upgrade Perpetual license (usually) NSX as a Service Just log in and use No installation Our servers / Our network We take care of patches/upgrades Pay per use Features are (mostly) the same

NSX CLOUD SERVICE PUBLIC CLOUD Customer VPCs Gateway VPC OVS Agent Windows AMI CLOUD GATEWAY OVS Agent Linux AMI VPC#1 VPC#2 SaaS Components CLOUD PLUGIN NSX Controller NSX Manager AWS / other cloud management portal

YOUR JOURNEY Start thinking differently about networking VMworld 2017 Start building a flexible infrastructure that allows innovation NSX is your foundation for the future of networking Make a difference at your company and in your future Content: Not for publication

At VMworld Transform Networking and Security Showcase Keynote [TS7003KU] 8/29, 12:30 p.m. - 1:30 p.m. Hands on Lab: VMware NSX-T with Kubernetes [ELW182602U] 8/29, 3:00 p.m. - 4:30 p.m. NSX-T Advanced Architecture Concepts [NET1863BU] 8/30, 10:00 a.m. - 11:00 a.m. Learn VMware Network Virtualization Blog & YouTube Channel Tech Docs & POC Guide on NSX VMTN Community Cloud services: cloud.vmware.com Connect NSX VMUG VMware{code} Slack Channel

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback