1 / 50

Windows Azure IaaS

Windows Azure IaaS. Patriek van Dorp Technology Consultant Microsoft. Private Cloud to Public Cloud. Physical. Virtual. IaaS. PaaS. SaaS. Cloud Models. On Premises. Infrastructure (as a Service). Platform (as a Service). Software (as a Service). You manage. Applications.

eyal
Download Presentation

Windows Azure IaaS

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Windows Azure IaaS Patriek van Dorp Technology Consultant Microsoft

  2. Private Cloud to Public Cloud Physical Virtual IaaS PaaS SaaS

  3. Cloud Models • On Premises • Infrastructure • (as a Service) • Platform • (as a Service) • Software • (as a Service) • You manage Applications Applications Applications Applications Data Data Data Data • You manage Runtime Runtime Runtime Runtime • Managed by Microsoft Middleware Middleware Middleware Middleware • You manage • Managed by Microsoft O/S O/S O/S O/S • Managed by Microsoft Virtualization Virtualization Virtualization Virtualization Servers Servers Servers Servers Storage Storage Storage Storage Networking Networking Networking Networking

  4. Only Pay For What You Use

  5. Build infinitely scalable apps and services Support rich multi-tier architectures Automated application management Cloud Services (PaaS)

  6. What is a Cloud Service? A container of related service roles Web Role Worker Role

  7. Roles and RoleInstances • Roles are defined in a Cloud Service • A role definition specifies: • VM size • Communication Endpoints • Local storage resources • Number of Instances • Etc. • At runtime each Role will execute on one or more instances • A role instance is a set of code, configuration, and local data, deployed in a dedicated VM

  8. Packaging and Configuration CLOUD Services are described by two important artifacts: Service Definition (*.csdef) Service Configuration (*.cscfg) Your code is zipped and packaged with definition (*.cspkg) Encrypted(Zipped(Code + *.csdef)) == *.cspkg Windows Azure consumes just (*.cspkg + *.cscfg)

  9. Everything goes to the Cloud!

  10. We trust Microsoft without question!

  11. Windows Azure Virtual Machines

  12. Infrastructure as a Service The spring release of Windows Azure Infrastructure as a Service introduces new functionality that allows full control and management of virtual machines along with an extensive virtual networking offering. If deploying an application requires a developer’s involvement, it’s not IaaS

  13. Windows Azure Virtual Machines • Support for key server applications • Easy storage manageability • High availability features • Advanced networking • Integration with compute PaaS

  14. Things That Don’t Work (yet)

  15. Demo Getting Started With Virtual Machines

  16. Images Available in Preview • Windows Server 2008 R2 • Windows Server 2008 R2 with • SQL Server 2012 Evaluation • Windows Server 2012 RTM • OpenSUSE12.1 • CentOS6.2 • Ubuntu 12.04 • SUSE Linux Enterprise Server SP2 Windows Linux

  17. Persistent Disks and High Durability Windows Azure Storage (Disaster Recovery) Windows Azure Storage Virtual Machine

  18. Persistent Disks and High Durability Windows Azure Storage (Disaster Recovery) Windows Azure Storage Virtual Machine Virtual Machine

  19. Provisioning a Platform Image HyperVisor Customer’s Storage Account VM Data Disk Data OS OS Disk Platform Storage Repository Provisioning Repository ISO Stock Images Cache Unattend Add Server • Hostname • Password • … Storage API Cache.VHD Portal (API)

  20. Persistent Disk Management

  21. Disks and Images • OS Images • Microsoft • Partner • User • Disks • OS Disks • Data Disks Base OS image for new Virtual Machines Sys-Prepped/Generalized/Read Only Created by uploading or by capture Writable Disks for Virtual Machines Created during VM creation or during upload of existing VHDs.

  22. Virtual Machines and Cloud Services

  23. Cloud Services, Roles and Instances Cloud Service is a management, configuration, security, networking and service model boundary Cloud Service Web Role VM3 VM1 VM2 Worker Role VM… VM4 VM5 ROLES INSTANCES

  24. Virtual Machines Virtual Machines are roles with exactly one instance Cloud Service Implicit Cloud Service Web Role VM3 VM1 VM2 Virtual Machine VM Worker Role VM… VM4 VM5 ROLES INSTANCES

  25. Cloud Services with Virtual Machines Multiple Virtual Machines can be hosted within the same cloud service Cloud Service Cloud Service Implicit Cloud Service Web Role VM3 VM1 VM2 Virtual Machine Virtual Machine Virtual Machine VM VM VM Worker Role VM… VM4 VM5 ROLES INSTANCES

  26. Virtual Machine Networking

  27. Virtual Machine Names and DNS Full Control over Machine Names Windows Azure provided DNS Resolves VMs by name within the same cloud service Machine names are modeled explicitly and registered in the DNS service Bring Your Own DNS Server Use your on-premises DNS servers Deploy a DNS server in Windows Azure Use public DNS services

  28. Protocols and Endpoints UDP Traffic Supported in WA Load-balanced incoming traffic and allows outbound traffic Support for All IP-Based Protocols (VM to VM) Instance-to-instance communication TCP, UDP and ICMP, dynamic ports Port Forwarded Endpoints Direct communication to multiple VMs in the same cloud app Custom Load Balancer Health Probes Health check with probe timeouts HTTP based probing, allowing granular control of health checks

  29. Port Forwarding Input Endpoints Cloud Service PORT 3389 PORT 3389 PORT 5587 PORT 5586 LB/IP Single Public IP Per Cloud Service VM1 VM2

  30. Load Balanced Sets Cloud Service PORT 80 VM1 LBHTTP LB VM2 LBHTTP VM3 LBHTTP

  31. Demo Load Balanced Sets

  32. Virtual Machine Availability

  33. Service Level Agreement 99.95% for multiple role instances 4.38 hours of downtime per year 99.9% for single role instances 8.75 hours of downtime per year What’s Included? Compute Hardware failure (disk, cpu, memory) Datacenter failures - Network failure, power failure Hardware upgrades, Software maintenance – Host OS Updates Planned downtime – 6 day notice, 6 hour window, 25 minute downtime What’s Not Included VM crashes caused by 3rd party software, Guest OS Updates

  34. Fault and Update Domains Fault Domains Represent groups of resources anticipated to fail together (i.e. Same rack, same server) Update Domains Represents groups of resources that will be updated together Host OS updates honour service update domains Specified in service definition Default of 5 (up to 20) Fabric Controller spreads role instances across Update Domains and Fault Domains

  35. Fault and Update Domains Fault Domain Fault Domain Rack Rack Web Role UD #1 UD #2 INSTANCE INSTANCE INSTANCE INSTANCE Worker Role UD #1 UD #2 INSTANCE INSTANCE INSTANCE INSTANCE

  36. Virtual Machines Availability Sets Update Domains are honored by Host OS updates Fault Domain Fault Domain Rack Rack Virtual Machine Virtual Machine Availability Set IIS2 IIS1 UD #2 UD #1 Availability Set Virtual Machine Virtual Machine SQL1 SQL2 UD #1 UD #2

  37. Windows Azure Virtual Networks

  38. Windows Azure Connectivity Options ENTERPRISE CLOUD Data Synchronization SQL Data Sync Application-Layer Connectivity & Messaging Service Bus Secure Machine-to-Machine Network ConnectivityWindows Azure Connect Secure Site-to-Site Network Connectivity Windows Azure Virtual Network Secure Site-to-Site Network Connectivity Windows Azure Virtual Network

  39. Windows Azure Virtual Networks Your “virtual” branch office / datacenter in the cloud Enables customers to extend their Enterprise Networks into Windows Azure Networking on-ramp for migrating existing apps and services to Windows Azure Enables customers to run “hybrid” apps that span cloud and their premises A protected private virtual network in the cloud Enables customers to setup secure private IPv4 networks fully contained within Windows Azure IP address persistence Inter-service DIP-to-DIP communication

  40. Virtual Network Features Customer-managed private virtual networks within Windows Azure Bring your own IPv4 addresses Control over placement of Windows Azure Roles within the network Stable IPv4 addresses for VMs Hosted VPN Gateway that enables site-to-site connectivity Automated provisioning & management Support existing on-premises VPN devices Use on-premise DNS servers for name resolution Enables customers to use their on-premise DNS servers for name resolution Enables VMs running in Windows Azure to be joined to corporate domains running on-premise (use your on-premise Active Directory)

  41. Demo Getting Started With Virtual Networks

  42. Supported VPN Device List Juniper Cisco • Generic VPN devices must support • IKE v1 • AES 128, 256 • SHA1, SHA2

  43. Scenarios

  44. Virtual Network Scenarios Hybrid Public/Private Cloud Enterprise app in Windows Azure requiring connectivity to on-premise resources Enterprise Identity and Access Control Manage identity and access control with on-premise resources (on-premises Active Directory) Monitoring and Management Remote monitoring and trouble-shooting of resources running in Windows Azure Advanced Connectivity Requirements Cloud deployments requiring persistent IP addresses and direct connectivity across services

  45. Connecting Applications and VMs Strengths Simplicity Tenant Autonomy VIP Swap (cloud services) Easy Local Dev/Test Cloud Service Load Balancer 80 WA Web Role or Web Site SQL Data Access Traffic Through Public Endpoint Secure Endpoints with Windows Server Firewall Cloud Service Weaknesses Higher Latency Less SecureManagement/Deployment Overhead 2001-1433 SQL Server Load Balancer

  46. Connecting Cloud Services with VNET Strengths More Secure Low Latency Cloud App Autonomy VIP Swap (stateless roles) Advanced Connectivity Requirements ContosoVNet (10.0.0.0/8) Cloud Service 1 FrontEndSubnet (10.0.0.0/16) 80 WA Web Role Role Load Balancer Direct Access via VNET Cloud Service 2 Weaknesses VNET Complexity No Windows Azure provided DNS SQLSubnet (10.1.0.0/16) AD AD Subnet (10.2.0.0/16) SQL Mirror

  47. Mixing PaaS and IaaS in the Same Cloud Service Strengths Windows Azure provided DNS Low latency connectivity Single deployment, update and management unit Cloud Service 80 Virtual Machine Weakness No VIP Swap (coming in the future) WA Web Role Load Balancer Available at General Availability

  48. Summary Choose the Cloud Model that Fits Your Needs With PaaS (Web/Worker Roles) you loose some control and you need to fit the mold of the Cloud vendor With IaaS you have full control over your platform and you can run (almost) any software you like Use Virtual Networks to Leverage Legacy Systems on-premises Use the existing IT Pro skills present in your organization to extend your corporate network to the Cloud Create subnets to control the applications that can access resources on-premises Paas and IaaS – Better Together Mix and Match PaaS and IaaS to create the most desirable architectures fast and save

  49. patriek.van.dorp@sogeti.nl @pvandorp http://onwindowsazure.com http://windowsazure.com Questions

  50. Local touch - Global reach

More Related