MGT1799BE Full-Stack Automation: Streamlining, Automation: Streamlining, Delivering and Managing App-Centric

  • View
    212

  • Download
    0

Embed Size (px)

Text of MGT1799BE Full-Stack Automation: Streamlining, Automation: Streamlining, Delivering and Managing...

  • Kim Ranyard

    Steffen Moen

    Jad El-Zein

    MGT1799BE

    #VMworld #MGT1799BE

    Full-Stack Automation: Streamlining, Delivering and Managing App-Centric IT

    VMworld

    2017 C

    ontent: N

    ot for p

    ublicatio

    n or dis

    tribution

  • This presentation may contain product features that are currently under development.

    This overview of new technology represents no commitment from VMware to deliver these features in any generally available product.

    Features are subject to change, and must not be included in contracts, purchase orders, or sales agreements of any kind.

    Technical feasibility and market demand will affect final delivery.

    Pricing and packaging for any new technologies or features discussed or presented have not been determined.

    Disclaimer

    2

    VMworld

    2017 C

    ontent: N

    ot for p

    ublicatio

    n or dis

    tribution

  • Agenda

    1 Introduction

    2 vRealize Automation Overview

    3 Application-Centric Networking and Security

    4 Application-Centric Storage

    5 Automate the Ecosystem

    6 Beyond OOTB

    3

    VMworld

    2017 C

    ontent: N

    ot for p

    ublicatio

    n or dis

    tribution

  • VMware ESX and, eventually, VirtualCenterenabled the RIGHT-CLICK -> DEPLOYmethodology of machine provisioning

    Provisioning a new machine went from 4-5 weeks (or more) to < 5mins

    Today thanks largely to incredible advancements in technology most enterprises

    deliver [traditional] applications inThat was 15 years ago

    3-4 weeks :-(

    VMworld

    2017 C

    ontent: N

    ot for p

    ublicatio

    n or dis

    tribution

  • Why Is Automation a Thing?

    5

    VMworld

    2017 C

    ontent: N

    ot for p

    ublicatio

    n or dis

    tribution

  • Web App DB

    6

    Rapid and Repeatable Service DeploymentsAutomating Networking, Policy and Security for IT, Developers and Research

    AutomationIT Automating IT | Self-Service Infrastructure

    VMVM

    VMVM

    APP

    VMVM

    VMVM

    APPVMVM

    VMVM

    APP

    VMVM

    VMVM

    APPVMVM

    VMVM

    APP

    VMVM

    VMVM

    APPVMVM

    VMVM

    APP

    VMVM

    VMVM

    APP

    BLUEPRINTVMworld

    2017 C

    ontent: N

    ot for p

    ublicatio

    n or dis

    tribution

  • Cloud Management Is Fundamental to the SDDCvRA Defines, Delivers, and Governs the SDDC

    7

    Any Device Business Mobility: Applications | Devices | Content

    Any Application Traditional | Cloud Native

    Any Cloud Software-Defined Datacenter (SDDC)

    Cloud Management Platform

    Compute Networking

    & SecurityStorage Hybrid Cloud

    Virtual / Cloud Infrastructure

    vRealize Automation

    DevOps

    Extensibility

    Release Automation

    IaaSApp-

    CentricXaaS

    Self-Service

    GUI CLI API

    Cloud Providers

    VMworld

    2017 C

    ontent: N

    ot for p

    ublicatio

    n or dis

    tribution

  • Automation Accelerates Services Delivery

    8

    > 2-3 Days

    Wait WorkWaitWait

    Blueprint

    Speed

    Days to minutes

    Stability

    Consistent

    Repeatable

    Control

    Aligns with Business

    Processes

    Task timeWait time

    Infrastructure

    Verification

    Build VMs New

    or Clone

    Get IP

    Install, Setup, Configure Load Balancer Entries /

    Firewall Changes

    Web Server Configuration

    1- 2 days 3- 5 days 3 5 days

    1 2 days 4 7 days 2 3 days 2 5 days

    Developer

    Request

    External Interface & Integration

    IT Processes

    Ticket

    Minutes

    VMworld

    2017 C

    ontent: N

    ot for p

    ublicatio

    n or dis

    tribution

  • App Store Experience

    Service category

    Custom Service

    IaaS and XaaS

    Services

    vRAs Unified Service Catalog IaaS | Apps | XaaS Custom Services

    9

    Custom Service

    Categories

    VMworld

    2017 C

    ontent: N

    ot for p

    ublicatio

    n or dis

    tribution

  • Unified Service Delivery Converged Blueprint Designer

    10

    Common Authoring for all Machine Types

    Incorporate On-Demand Networking and Security

    Incorporate external (XaaS) custom services

    VMworld

    2017 C

    ontent: N

    ot for p

    ublicatio

    n or dis

    tribution

  • Optimized Placement Using vR Ops AnalyticsIntelligent Workload Placement (WLP)

    11

    Supports vRealize Operations 6.6+

    Utilize analytics data in

    vRealize Operations to

    optimize the placement of

    workloads

    vRA: Enable Workload

    Placement Policy (WLP) in

    Infrastructure tab.

    vR Ops: Create/Edit

    Monitoring

    Policy per workload

    requirements

    VMworld

    2017 C

    ontent: N

    ot for p

    ublicatio

    n or dis

    tribution

  • Repeatable

    deployments of

    customer environments

    to help diagnose

    technical issues

    Consistent policy

    Automated deployment

    of NAT topology with

    connected VMs

    Full automation

    Complete VMware stack

    with vRealize

    Automation, NSX and

    vSphere

    Full VMware

    SDDC

    Each deployment is

    completely self

    contained

    Isolation between

    environments

    Provide advanced

    networking topologies

    as part of the vRealize

    Automation Catalog to

    cloud users

    Multi-Machine

    Topology

    Benefits of Automating Networking & SecurityReduce Time, Reduce Errors, Increase Visibility

    VMworld

    2017 C

    ontent: N

    ot for p

    ublicatio

    n or dis

    tribution

  • 13

    App-Centric Networking & SecuritySegmentation | Tenancy

    Critical Segmentation of Workloads Production | Development

    Tenant | Shared Services

    Automated Access to Shared Services

    Security group and application policy set for

    access to shared IT services

    SDDC Automation

    Security and Performance policy model

    to simplify and automate

    Leveraged tagging to classify

    workloads into use case groups

    Overlay networking

    Production Tenant X

    Development DMZ

    Data Center 1

    Data Center 2

    VM

    VM

    VM

    VM

    VM

    VM

    VM

    VM

    VM

    VM

    VM

    VM

    VM

    VM

    VM

    VM

    VM

    VM

    VM VM VM

    VM VM

    VM

    VM

    VM

    VM

    VM

    VM

    VM

    VM

    VM

    VM

    VM

    VM

    VM

    VM

    VM

    VM

    VM

    VM

    VM VM VM

    VM VM VM

    VM+

    VMworld

    2017 C

    ontent: N

    ot for p

    ublicatio

    n or dis

    tribution

  • vRealize Automation + NSX

    14

    Unified Service Design and Delivery

    App-Centric Networking and Security

    Incorporate External Services

    Achieve greater control and visibility

    Reduce wait times for siloed IT services

    Manage Infrastructure as Code

    Lifecycle Manage Everything

    Standardized and repeatable processConverged

    Blueprint

    Cloud

    Consumers

    Cloud Admin

    Applications

    Extensibility

    Security

    Networking

    Unified Service

    Catalog

    Network ProfilesSecurity Groups Security Policies

    Network Admin Security Admin

    On-Demand Load Balancer

    AVAILABILITY SECURITYCONNECTIVITY

    Security TagsOn-Demand

    Networks

    Benefits

    VMworld

    2017 C

    ontent: N

    ot for p

    ublicatio

    n or dis

    tribution

  • NSX Automation Use Cases

    15

    Automation for IT & Developers

    Network Admins

    Security Admins

    Developers

    Virtual Network Infrastructure

    Physical Network Infrastructure

    Application Workloads

    vRealize AutomationVMworld

    2017 C

    ontent: N

    ot for p

    ublicatio

    n or dis

    tribution

  • Application-centric Network And Security Services

    16

    Deployed & Managed in the Application Context

    Support for Multi-tier Apps on Multiple

    Networks or Single Flat Network

    App-specific Networking Configuration

    Connectivity

    App-specific Security Policies

    Security

    Dynamic App Availability Configuration

    Availability

    App-specific Networking Performance

    Performance

    Web

    App

    Database VMworld

    2017 C

    ontent: N

    ot for p

    ublicatio

    n or dis

    tribution

  • vRA + NSX Cloud Operational Model

    Network Admin defines:

    Initial network configuration in NSX

    External Networks and Network Profiles in vRA

    Security Admin defines in NSX:

    Distributed Firewall Rules

    Security Groups / Policies / Tags

    Cloud architect builds Blueprints:

    Blueprints include NSX Networks, Security components, Load Balancers, VMs and Apps

    Cloud Architect publishes Blueprints

    Cloud Consumer deploy applications:

    End-to-end provisioning: networks, NAT rules, security and LB configured at deployment

    20

    Network Admin

    Security Admin

    Cloud

    Architect

    Cloud

    Consumer

    Network ProfilesExternal Networks

    Security Groups Security PoliciesSecurity Tags

    Converged

    Blueprints

    NSX Load Balancer

    1

    2

    Service Catalog

    Publish

    34

    5