Hybrid Cloud Solutions with Cisco and Microsoft Innovation Rob Tappenden, Technical Solution Architect rtappend@cisco.com March 2016
Today s industry and business challenges
Industry Evolution & Data Centres Digitisation and IoT/IoE Traditional Applications Monolithic Model Multi-tier Apps Open-ness Cloud-native applications Business Agility with cloud model Micro-services / Bi-Modal IT / DevOps Manual Interaction IT Silos based approach Configuration driven DevOps Policy and Automation Enterprise-wide policy, hyper-convergence and crossdomain automation Consumption driven with analytics and programmability Focus on products Disjoint approaches to solve technical demands Cohesiveness as after thought Agility & Scale Focus on business solutions Data Center is the foundation for business agility Delivered as a solution and / or as a service,
The Evolution of Cloud Traditional Private Cloud Managed Cloud Public cloud Hybrid Cloud IT Control On-Prem CapEx Convenience Off-Prem OpEx
The Evolution of Workloads Existing IT Cloud-Enabled Cloud-Native (Containers) App App App App App Service Service App App App Service Service Web Servers App Servers Database Web Servers App Servers Database.rb.py.go Java Physical Infrastructure Local Dedicated Shared Runtime Micro-services on Containers Windows Azure Stack
A Day in the Life - Typical Challenges Line of Business Leader Our customer experience has to be great... I want to run my apps now We simply can t wait for infrastructure. Cloud Administrator We need selfservice with new services for apps that scale. And my tenants want it fast. Chief Info. Security Officer Preparing for every application security situation is nearly impossible. And we have to move fast. Infrastructure Manager We manage them box-by-box. It takes time to set up and check for manual errors.
Today s Challenge for IT Teams? Managing Hybrid Cloud Environments
Microsoft Azure Technology Customers IT admin Microsoft Azure
Azure Pack: Cloud in your Data Centre Customers IT admin Windows Azure Pack
Tenant experience
Tenant experience
Is Infrastructure in your way?
Introducing: Application Centric Infrastructure Apps + Infrastructure Physical + Virtual Open + Secure On-Premises + Cloud APPLICATION ORIENTED POLICY = OPERATIONAL SIMPLICITY
Policy driven cloud infrastructure V(X)LAN OpFlex V(X)LAN OpFlex V(X)LAN OpFlex V(X)LAN OpFlex KVM Open vswitch OpFlex Agent ESXi VMware DVS Cisco AVS Hyper-V MSFT vswitch Docker Open vswitch OpFlex Agent VM 1 VM 2 VM 1 VM 1 VM 2 VM 1 VM 1 VM 2 VM 1 Docker1 Docker2 Docker1 Docker1 1
Application Requirements drive the Cloud Infrastructure Two Languages must be unified to deliver next-gen cloud services and agility Application Language Network Language Application policy and dependencies Security requirements Service level agreement Application performance Compliance Geo dependencies Compute, Storage, etc.. reqts WAN Connections LAN, VLAN, VXLAN switching, secure Tenancy IP addressing and Subnets Firewalls and Security Quality of service, Bandwidth Load balancing Network resiliency, Analytics Requires an Application Centric Infrastructure
Cisco ACI: Microsoft System Center / Azure Pack Azure Pack GUI Policy Management: APIC / Azure Pack Websites, Apps, Database, VMs, ACI Provider Portal Consumer Self-Service Portal VM Discovery: OpFlex Websites VMs SQL Service Bus Future Services Microsoft System Center R2 w/ Service Provider Foundation OpFlex Driver ACI PROVIDER SERVICE Encapsulation: VLAN, NVGRE Zero touch network provisioning Service Insertion (Physical/ Virtual) ACI FABRIC
Application Centric Policy Network SME Security SME Application SME Physical Networking Networki ng Hypervisors and Virtual Networking ors and Virtual Networki ng Compute Compute L4 L7 L4 L7 Services Services Storage Storage Multi Multi DC DC WAN and Cloud WAN and Cloud 1 Subject Matter Experts Define Policies 2 Policies Used To Create Application Network Profile Templates 3 Automated policy configuration across the infrastructure 4 Life cycle management for day 1, day 2 operations
Cisco ACI and Azure Pack Workflow 1 ACI Application Network Profile 1 Create Application Policy 7 Xxxxxxxxxx Xxxxxxx xxxxxxxxxxxxxxx App Profile Load Firewall Web App DB Balancer 2 3 Push Network Profiles To The Cisco APIC Get VLANS Allocated For Each EPG 3 2 ACI Fabric 4 Create VM Networks APIC Admin (Basic Infrastructure) 6 5 Instantiate VMs 1 4 5 OpFlex Agent 6 7 Indicate EP Attach To Attached Leaf When VM Starts Push Policy On Leaf Where EP Attaches Azure Pack Tenant/ Admin APIC Plugin SCVMM Plugin Azure Pack We b We b We b Ap p Ap p We b Hypervisor DB DB Server 1 Server 2 Server 3
Use Cases Shared Network and Virtual Private Network Shared Network Tenant Private Network Finance Tenant Shared Services Tenant DevTest Tenant Finance Tenant Shared Services DevTest Tenant 10.0.10.0/24 Tenant 10.0.10.0/24 WEB APP DB WEB APP APP APP DB APP APP WEB APP DB WEB APP WE B WE B DB WEB B WEB B 192.168.0.0/16 192.168.0.0/16 ACI Common services ACI Common services DHCP FW DHCP FW DNS LB DNS LB
Cisco ACI Network Offerings Features Shared Network Tenant Private Network Isolated Networks Firewall Shared DHCP Shared Load Balancer Shared Services Public Internet Access Private Address Space Private DHCP Server
ACI enables segmentation based on business needs ACI benefits Protect your state-ofthe-art data center Contain threats and segment user access more easily Mitigate centralisation risks Through policy-based segmentation that enables varying levels of granularity PRODUCTION POD SHARED SERVICES Basic data center network segmentation Basic DMZ DEV TEST PROD Application lifecycle segmentation Application VLAN 1 VXLAN 2 VLAN 3 Networkcentric Networkcentric segmentation WEB APP DB Service level microsegmentation Service Level WEB WEB Intra-EPG microsegmentation Intra- EPG NEW OVS/OpFlex Container segmentation Increasing level of segmentation VM Container Level
Simplify Operations: System Health Score Aggregation of system-wide health, including pod health scores, tenant health scores, system fault counts domain and type and the APIC cluster health state.
Application Health Score Aggregation of end point group health, including: end points contexts bridge domains ports VLAN / VXLAN that are relevant to that particular application health state.
Simplify Troubleshooting Viewing the Application from EP to EP with Services Application behind firewall and Load balancer is having performance issues. Firewall and Load balancers are virtual. Wizard quickly draws a logical topology as well as pinpoint virtual port channel (VPC) issue.
Let's take a quick look
Application Health Score Aggregation of end point group health, including: end points contexts bridge domains ports VLAN / VXLAN that are relevant to that particular application health state.
Cisco ACI for the Microsoft Cloud A next-generation solution, designed to meet today s rapidly changing business needs Cisco and Microsoft together deliver: New cloud services for tenants and their enterprise applications A new operational model Policy-driven infrastructure A clear evolutionary path Agile Consistent Open Secure Faster, application centric Across virtual and physical infrastructures Interoperable, API Automated, compliant
But wait..
How many clouds have you got?
Are they all the same?
True Hybrid Cloud with CliQr Cloud Agnostic Single Intuitive Platform CliQr-Hosted SaaS or Onsite Deployment Full N-Tier Multi-Tenancy Integrated Security Highly Scalable Distributed Architecture Cloud-Specific Automated Provisioning and Deployment Native, No Overhead
What Makes CliQr s Approach Unique? Labor /Services Intensive Infrastructure-Centric Workflows / Scripting Required Each Cloud Application-Centric Cloud-Agnostic On-Board Once Run Anywhere Script / Workflows
Profile Once, Run Anywhere New or existing Simple to complex Portable No lock-in
Benchmarking: Workload Placement Matters PetClinic - Three Tier Web Application Blender 5 task rendering job
Business Centric Services Stack ITSM / Service Catalog / Approval Workflow / Financial controls (Prime Services Catalog or ServiceNow) APPLICATIONS (multi-tier web apps, Hadoop, batch, desktop) CliQr (Application Centric Modeling and Lifecycle Management) SERVICES (database, load balancer, app server, etc.) POLICIES (scaling, aging, lifecycle, governance) Application Centric Profiles OPS (Chef, Puppet, log collectors, repositories) DEVOPS (PaaS, API gateway, APM, Jenkins plugin) IPAM HSM SSO UCS Director (Infrastructure Centric Management and Workflows) Infrastructure Centric Workflows Compute (UCS) Storage / SAN (NetApp / EMC / MDS & Nexus FC/FCoE) FlexPod / Vblock Network (ACI)
Get started today 1 2 View the resources available Contact your Data#3 or Cisco Account Rep 3 Establish a pilot Resources: Microsoft Hybrid Cloud with ACI Solution Brief Cisco Application Centric Infrastructure Integration with Microsoft White PaperCisco Application Centric Infrastructure and Microsoft SCVMM and Azure Pack Cisco Hybrid Cloud w/ Cisco ONE ECS/CliQr White PaperCisco ONE Enterprise Cloud Suite for Hybrid Ready Private Cloud Solution OverviewACI and CliQr Cloud Center Overview