130 likes | 342 Views
Product Roadmap: IIS 7.0. Matthew Boettcher Web Platform Technical Evangelist (Hosting) Developer & Platform Evangelism Division (DPE) Europe, Middle East, and Africa Region (EMEA) matthewb@microsoft.com. Product History. 1996 - V1 ships with WindowsNT 4.0
E N D
Product Roadmap: IIS 7.0 Matthew Boettcher Web Platform Technical Evangelist (Hosting) Developer & Platform Evangelism Division (DPE) Europe, Middle East, and Africa Region (EMEA) matthewb@microsoft.com
Product History • 1996 - V1 ships with WindowsNT 4.0 • V2 & V3 releases came in follow-up SP releases • 1997 – V4 part of NT 4 Option Pack • 2000 – V5 installed by default in Windows 2000 • 2003 – V6 released in Windows Server 2003 • 2007 – V7 to be released in “Longhorn” Server
IIS 6.0 Today • Secure by Default • IIS no longer installed by default with OS • IIS installs with “locked down” configuration • Runs with minimal permissions, secure configuration • Secure by Design • Extensive design & code reviews • Penetration testing • Defense in depth • Process architecture design for application failure • Health detection • Automatic recycling of applications Result: Zero critical security patches since release. #1 in reliability for major internet sites.
Internet Information Services (IIS) 7.0 • Key Benefits for Hosting • Extensibility:Flexible extensibility model for powerful customization • Scalability:Increased density in terms of Web sites hosted per Web server • Administration Tool:All new delegated administration • Diagnostics:Rich troubleshooting tools and diagnostic information
IIS7: a next generation web application platform. • Componentized server • Reduce memory footprint and attack surface area • Specialize the server • Plug features in and out after deployment • Unified request processing pipeline across ASP.NET and IIS • All services can apply to all content types • Single place to manage each feature • Rich extensibility model • Powerful and easy extensibility APIs • Extend the server with native or managed components
IHttpHandlers IIS6 Architecture Refresher • Server is monolithic:cant extend core featurescant remove core featurescant add features • Feature duplication between IIS and ASP.NET. • Features limited due to position in pipeline. • ASP.NET functionality not applied to IIS content types. w3wp.exe iiscore aspnet_isapi.dll handlers cgi static file Isapi exts IHttpModule Events url map begin req determine handler auth’c req logging auth’z req custom errors w3svc compression resolve cache end req authentication handler map update req cache ISAPI Filter Notifications handler exec rel req state url map log auth’c req Trace.axd PageHandler End net session Pre-proc headers http.sys
other native modules other managed modules basic auth url auth’z digest auth role mgr IHttpHandlers windows auth forms auth IIS7 Architecture • Unified request processing pipeline. • All services provided by self-contained modules • Modules can be managed or native • All services can apply to all requests Native or Managed Handlers Native Handler Managed IHttpHandler iiscore aspnet_isapi static file isapi ext *.aspx trace.axd IHttpModule Events handlers url map Integrated pipeline cgi static file Isapi exts begin req Native Module IHttpModule end auth’c req log Determinehandler update cache auth’z req w3svc Isapi filter notifications release state resolve cache end req execute handler url map log handler map update req cache pre-execute handler acquire state handler exec rel req state auth’c req End net session map handler resolve cache authorize Pre-proc headers Trace.axd *.aspx authenticate begin http.sys
Highlights • Server = modular components (44+)Customize the server • Reduce attack surface area • Reduce memory footprint • Replace IIS7 components with own or third party • Specialize server workload (edge server, load balancer, etc) • Gain control of the server • Enable and disable features while server is running • Enable and disable features for each application • I can modify the server out of band • Add new features from Microsoft or third party
Extensibility and Scalability • Customization tools for your service offerings • Enable granularity of specific features • Facilitate reduction of support and administration issues • Modular core server built on public extensibility APIs • Building block architecture where core features can be added and removed • Configurable server workload with reduced attack surface • Choose to install only required modules • Easy-to-use server farm configuration and management features • Use the administration tool to manage thousands of sites
Administration Tool and Diagnostics • Consistent set of management tools • IIS and ASP.NET integrated together • Security set in one place • Administration tool that supports hosting scenarios • Enable delegated management on a per-site/per-application basis • Admin account on remote server not required for tool access • In real time, view the currently executing requests • See which customer request is taking the CPU to 100% • Easily see the state of all Sites, AppPools, and Apps • Example: Are there any failed application pools on this machine? • Example: What applications are currently active?
Summary • With IIS 7.0, hosting partners gain: • Tremendous extensibility, flexibility, and customization • An integrated Web application server stack • Compatibility with existing applications • Bullet-proof reliability • For more information regarding IIS 7.0: • IIS 7.0 Software Development Kit available via MSDN Library • IIS 7.0 Operations Guide & Feature Reference available via TechNet Windows Server TechCenter
Matthew Boettcher Web Platform Technical Evangelist (Hosting) Developer & Platform Evangelism Division (DPE) Europe, Middle East, and Africa Region (EMEA) matthewb@microsoft.com
© 2006 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.