OpenStack® and the EnterpriseMark InterranteSenior Vice President, Cloud EngineeringHPE Helion

The next-generation cloud is based on open source

OpenStack has become mainstream

All workloads are in play, cloud native, high performance

computing, NFV

Ready for traditional enterprise

workloads/pets

Integration with existing infrastructure

TelcoFinancial and

Healthcare

Government and

Defense

Migrating current workloads

Entire datacenter

OpenStack deployments in production grew from 16% to 67%

OpenStack has become mainstream

Helion OpenStack – across all verticals

What customers tell usNeed help to move 10K poorly utilized apps to a modern hybrid infrastructure

30% Retired or

Replaced with SaaS

10,000+ apps

PrivateClouds

ManagedClouds

Global PublicClouds

Traditional IT

10% Of apps won’t change: “Don’t change the app,Just make it cheaper.”

45%Of apps should have:

“Agility of cloud, with the control of private.”

15%Of apps should: “Move to

public cloud, where it makes sense.”

“…and give me Common Services across existing & new apps:”• Integrated chargeback and billing• Security and compliance auditing• Application patching and management

HPE Multi-Cloud StrategyOpen approach to meet customers where they are

AWSGoogle

Hybrid Management

HPE Helion OpenStack

®Azure Stack

HPE /Other Hardware

Azure

Public Cloud MicrosoftPublic Cloud4: Private or managed clouds in customer or HPE

datacenters

HPE Helion/Partner Professional Services

Container Platforms

(Mesosphere, Docker)

Service Providers

Cloud 28+

(EMEA)

HPEPartners

Traditional Workload Orchestration Cloud Native Orchestration

vSphere

BUSINESS CONTINUITY

HA for Control Plane Services

Live Migration

Rolling upgrades without downtime for both the control plane and the compute nodes

SECURITY AND COMPLIANCE

Certifications such as PCI, STIG and HIPAA

Reduce the risk of breaches and attacks

TCO/SCALE

Delivering Monasca, Elasticsearch, Logstash, Kibanna (ELK), and Ceilometer

Richer operations platform based on intelligent monitoring

WORKLOAD DIVERSITY

Support vast majority of workloads driven use cases for customers

From scale out workloads,

VM or container based to traditional, large workloads running on BaremetalHYBRID IT

SDN integrationout of the box

Multi region/hypervisor

INTEGRATION

Interop with datacenter hardware and software- networking, compute, storage, IP management

How did we get here?Together we made our customers successful

Enterprises need us to step up

Identity federation based on Keystone

Consistent policy framework and distributed routing capabilities in Neutron

Monasca needs to continue to scale without impact on control plane, across regions and converge with ELK

PUSH FOR MORE SCALE

OPERATIONAL EXCELLENCE

Lifecycle management for containerized control plane

On par with legacy virtualization TCO

Multi-cloud monitoring BUSINESS CONTINUITY

Backup recovery for ALL control plane services with Freezer

Back up/recovery for VM volumes

Multi-site disaster recovery

NFV workloads VM High Availability with Masakari

CONNECT

Augmenting third party vendors add-ons

SDN controllers and firewalls

BURA LIVE MIGRATION HA

SECURITY

Multi tenant Ironic

Containers on bare metal

HYBRID IT

Multi hypervisor live migration

9

OpenStack journey around securityFirst- we had to meet the standard to be production readyThen we had to land security requirements by vertical and implement them into our stack- Regulatory compliance standards exist today for several verticals and across the globe

- Financial, Healthcare, Federal, Service Provider etc.- Examples

- PCI for financial, HIPAA for healthcare, NIST STIG for defense, FedRAMP for federal- SOX , ISO 27001 for service provider, UK Data Protection Act, EU General Data Protection Regulation etc.

- These standards have - Existed for many years to address traditional IT security needs- Recently updated (in the last few years) to address cloud security

- Cloud security includes requirements to address virtualized IT (security around VMs, monitoring, patching)- A few are addressing API security

There is more to do- But none are addressing open source-based multi-cloud (IaaS/PaaS) security

- OpenStack services, REST APIs, Container security, cloud native workloads, operational cloud security- Secure Development Lifecycle best practices

HPE-IT second generation private cloud quick facts

2 Sites

6 AZs

Propel

CLOUD SELECTOR

FULL OPENSTACK API SUPPORT

2 Stacks

Helion OpenStack

CSA

PHYSICAL COMPARTME

NT ISOLATION

HelionIaaS / PaaS / Services Commercia

l Private Cloud

24X7X365 SUPPORT CLOUD PLATFORM

LBaaSFWaaS

DNSaaS BaaSSNAPSHOTSSTREAMING

ContainersIsolated

Infrastructure Management

Platform

17K+VMs

HIGHLY AVAILABLE

IT & USER VM IMAGES

8000+

CORES

5 PBSTORAGE

156 TB

RAM

Global Support & Monitoring across multiple countries – follow the sun

CHARGEBACK / SHOWBACK

PRIVATE NETWORK

ISOLATION & POLICIES

HPE Portfolio is based on open technologies

Helion OpenStack: Enterprise-grade OpenStack

cloud to configure a fully open cloud platform

Helion Stackato:

Open, cloud application platform, built on Cloud Foundry®

supporting a variety of runtimes, frameworks and services. Works

on top of any IaaS or with a multi-IaaS environment.

Helion Carrier Grade: Enables telecommunications

operators to use Commercial-off-the-shelf (COTS) hardware to manage Virtualized Network

Functions (VNF) within a carrier grade NFV architecture.

Helion CloudSystem:Comprehensive hardware and

software solution for private and hybrid cloud, delivering hosting, automation, and orchestration of

traditional and cloud native workloads

Helion Cloud Suite: A new software suite enabling

customers to deliver and manage their full spectrum of applications

-- from traditional, virtualized, cloud native and containers --

across a broad range of infrastructure environments

Thank youInterrante@hpe.com@interrante