SlideShare a Scribd company logo

IaaS with Software Defined Networking

Download as PPTX, PDF
Prasenjit Sarkar
Prasenjit Sarkar

Customer interest is increasing well beyond just what our standalone products offer. In fact, customer don’t care about the products, they care about the solution. IaaS with SDN as a solution is extremely popular. Therefore, this is focused on joint solution of vRA, vRO, NSX-v and 3rd party options.

Software
1 of 32
1 Éamon Ryan Prasenjit Sarkar Senior Solutions Architect Staff Solutions Architect IaaS with SDN The Good, Bad and Confusing
2 Purpose and Audience Purpose • Customer interest is increasing well beyond just what our standalone products offer • In fact – customer don’t care about the products, they care about the solution • IaaS with SDN as a solution – extremely popular • Therefore, focus on joint solution: vRA, vRO, NSX-v and 3rd party options Intended Audience • Anyone dealing with this joint solution
3 Learning Outcomes
4 Life of a Network Engineer!!! ;-) Not everything in life is fair
5 Distributed Switch  A network path defines where exactly a VM would connect.  You cannot use routed or NATed Profiles without vCNS or NSX. Only External Profiles would be used Without NSX, DvPortgroup becomes Network path MMBP1 MMBP2 What is Network Path for vRealize Automation? Without NSX-V
6 To Core Switches Distributed-Router-01 Perimeter-Gateway-01  The External Network Profile has to be associated on the Logical Switch connected on the Uplink of the DLR Associate External Network profile here Distributed Router Model
7 To Core Switches Distributed-Router-01 Perimeter-Gateway-01  The External Network Profile has to be associated on the Logical Switch connected on the Uplink of the DLR Associate External Network profile here Advantage of this model:  You can automatically redistribute Connected Routes on DLR into OSPF  You can make use of ECMP Distributed Router Model – Difference in behavior for Routed Profile
8 To Core Switches Perimeter-Gateway-01  The External Network Profile has to be associated on the Logical Switch connected on the Internal Interface of the Perimeter Edge Associate External Network profile here Perimeter Edge Model
9 To Core Switches Perimeter-Gateway-01  The External Network Profile has to be associated on the Logical Switch connected on the Uplink of the DLR Associate External Network profile here One Drawback in this Model:  You cannot automatically advertise networks below the application edge to devices located upwards(Perimeter GW, Core Switches)  Cannot make use of ECMP Perimeter Edge Model – Difference in behavior for Routed Profile
10 Workload Distributed Switch MMBP1 Transit Logical Switch Core DvPortgroup Distributed Router 01 Perimeter GW 01 Mgmt Distributed Switch What is Network Path for vRealize Automation? With NSX-V
11 Transit-Logical-switch Transit-Logical-switch-01 Network Path: Ext-DLR->Distributed Gateway Network Path: Ext-ESG->Perimeter-Gateway-01 Test-Routed-Profile Test-NAT-Profile To Core Switches Distributed-Router-01 Perimeter-Gateway-01Perimeter-Gateway-02Perimeter-Gateway-03 The Complete Story
12 NSX with vRA – On Demand Deployment Model Provider Logical Router (HA) External Networks  2 Tiers of Routing • Distributed Logical Router or NSX Edge for Application Router • NSX Edge for Provider Router  Dynamic Routing externally  Dynamic Routing (DLR), Static Routing or NAT internally (Edge) Dynamic Routing (OSPF, BGP) Transit Uplink 192.168.10.0/24 (External Network Profile) Static Route added automatically  On Demand Model is typically used for more dynamic Test/Dev style workloads, particularly when there is a requirement for overlapping IP addresses Dynamic Routing (OSPF, BGP) Web Logical Switch (Routed) DB Logical Switch (Routed) MMS 1 Routed App LS (Routed) 172.16.10.0/29 172.16.10.8/29 172.16.10.16/29 Web Logical Switch (Routed) App LS (Routed) DB LS (Routed) MMS 2 Routed 172.16.20.0/29 172.16.20.8/29 172.16.20.16/29 Web Logical Switch (NAT) App LS (Private) DB LS (Private) MMS 3 NAT & Private 172.16.100.0/24 172.16.101.0/24 172.16.102.0/24 Web Logical Switch (NAT) App LS (Private) DB LS (Private) MMS 4 NAT & Private 172.16.100.0/24 172.16.101.0/24 172.16.102.0/24 DLR
13 NSX with vRA – Pre Created Deployment Model Dynamic Routing (OSPF, BGP) External Networks  2 Tiers of Routing • Distributed Logical Router for Application Router • NSX Edge for Provider Router  Dynamic Routing  Use existing LS as external network profiles  One Arm Load Balancing on demand (vCNS Edge in 6.0, NSX Edge in 6.1) Prod-01 Logical Switch Dev-01 Logical Switch LB LB LB Dynamic Routing (OSPF, BGP) Transit Uplink 192.168.10.0/24 (External Network Profile) Scale Out Provider Logical Router (NSX 6.1) MMS 1 VMs MMS 2 VMs MMS 3 VMs  Pre-Created model is typically used with Production or more static workloads and the application topology is multi-tier on a single network Prod Web SG A Prod App SG A Prod DB SG A Dev Web SG A Dev App SG A Dev DB SG A Dev Web SG B Dev App SG B Dev DB SG B Distributed Logical Router Prod Web SG B Prod App SG B Prod DB SG B MMS 4 VMs LB 172.16.50.0/24 (External Network) 172.16.60.0/24 (External Network) Dynamic Routing (OSPF, BGP) with ECMP Dynamic Routing (OSPF, BGP) with ECMP Provider Logical Router (NSX 6.1)
14 NSX Security Groups & Security Policies  End-Users and Cloud Admins are able to select pre-defined security policies already approved by the Security Admin in NSX  Security policies are applied to one or more security groups where workloads are members  These security groups are created on-demand by vRA at deployment time WHAT you want to protect HOW you want to protect it SECURITY GROUP SECURITY POLICY Members (VM, vNIC) and Context (user identity, security posture) “Standard Web”  Firewall – allow inbound HTTP/S, allow outbound ANY  IPS – prevent DOS attacks, enforce acceptable use Services (Firewall, antivirus, IPS etc.) and Profiles (labels representing specific policies)
15 NSX Security Tags  NSX Security Tags can be used to define IF/THEN workflows for security services, e.g. IF user selects a “Finance” application, THEN place the VM in the “Finance” security group INFRASTRUCTURE APPS Security Admin “Finance Policy”  IF Tag = Finance THEN add VM to Security Group “Finance” with Security Policy “Finance” Step 1: Security Admin pre-defines a Security Group and a Security Policy with dynamic membership based on a Security Tag “Finance App”  Set Tag “Finance” Cloud Admin Multi- Machine Blueprint Step 2: Cloud Admin creates a Multi- Machine Blueprint which sets a Security Tag. Cloud Admin needs no knowledge of Security Groups or Security Policies.
16 NSX Security Tags  NSX Security Tags can be used to define IF/THEN workflows for security services, e.g. IF user selects a “Finance” application, THEN place the VM in the “Finance” security group INFRASTRUCTURE APPS Requests “Finance App” Service Catalog Step 3: End-User requests Application via the Service Catalog Cloud Consumer Step 4: VM is automatically deployed with its Security Tag WHAT you want to protect Step 5: VM is dynamically assigned to the relevant pre-defined Security Group SG=Finance
17 vRA Feature Set Supporting NSX Feature vRA 7.0 Future Day 1: Automated Routed, NAT, LB and security for single machines blueprints R R Day 1: Automated Routed, NAT, LB and security for application stack (micro-segmentation) R R Visual topology in blueprint: Drag-and-drop of networks, LB and security objects in Canvas and map relationships R R Day 1 and 2: Enhance NSX NAT with features for SNAT, DNAT, port forwarding and PAT monitors in network profile and add Day 2 updates Q R Day 2: Update NSX security groups, tags and policies applied to VMs Q R Day 1 and 2: Enhance NSX LB with features for port, algorithm, persistence, IP address pool, health check monitors in blueprint and add Day 2 updates Q R NSX Multi-vCenter Feature Support (IP and MAC set security groups) Q R Day 1 and 2: Support for enabling HA on NSX Edges Q R Day 1 and 2: Define NSX firewall rules for the app in blueprint and Day 2 add/change/remove firewall rules on VMs Q R Day 2: Change network adapters, IP address, DHCP, DNS, etc. on VM Q R Request time: Change Network, LB and Security settings Q R Direct support for IPAM solutions Q R Support NSX functionality in vCloud Air Q R
18 vRealize Automation 7.0 What’s changing that helps here?
19 vRealize Automation 7.0 – Changes • Easier setup • Graphical canvas • Relationship Mapping • Networking components as first class • Manageable Items • More support for on-demand networking objects • Single machines with advanced networking • Orchestrator • Event broker system Relevant to IaaS with SDN
20 vRealize Automation 7.0 – Easier Setup NSX Integration for Blueprint Authoring & Deployment • Automated connectivity to existing or on- demand networks • Micro-segmentation for application stack • Automated security policy enforcement thru NSX security policies, groups and tags • On-demand dedicated NSX load balancer
21 vRealize Automation 7.0 – Single Machine Networking • vCAC 5.2 -> Custom properties • vRA 6.x -> GUI based network options for MMBP only • vRA 7.0 -> GUI based network options for all (but all are now one – no single/MMBP difference)
22 vRealize Automation 7.0 – Orchestrator The vRO 7.0 Control Center • Embedded + External • New modern UI for vRO setup, configuration, workflow monitoring, troubleshooting, and other useful information. • Collect metrics for workflow execution • Analyze running workflows • General troubleshooting • Manage, Import/Export central DB • WAY more slick than previous “legacy” UI
23 NSX vRealize Orchestrator Plugin Abstracting with vRO Benefits • Ability to support multiple product versions (vCNS, NSX) transparently to vRA • Network and security workflows are decoupled from policy engine, enabling more rapid release and update to workflows • Ability to deliver fixes and updates more rapidly • Easier to extend/customize workflows by adding your own logic or leveraging other systems • Provide Self Service access to NSX vRO workflows through Advanced Service Designer • Can be used without vRA Warning: Supported for the vRA workflows ONLY
24 NSX vCenter Dynamic Types Plugin Abstracting with vRO Benefits • Has been built by Christophe Decanini and offers additional workflows the official plugin doesn’t cover. • It’s FREE ! • Designed to be used in XaaS context • Source code available at https://flowgrab.com or in the VMware communities • https://communities.vmware.com/docs/DOC-29032 • Can be extended easily, through the NSX REST API as it’s built leveraging the dynamic types plugin generator • Great learning opportunity (vRO and NSX) ! Warning: Not Supported by VMware
25 NSX-vRO Plugin 1.1.0 or 2.0.0 Feature Continued support for interoperability between vRA, vRO and NSX Expanded support and bug fixes for use of the plugin with vRA ASD / XaaS Enhance NSX NAT with features for SNAT, DNAT, port forwarding and PAT monitors in network profile and add Day 2 updates Support full management (CRUD) of NSX security groups, tags and policies applied to VMs Support for Enhanced NSX LB management with features such as LB port, algorithm, persistence, IP address pool, health check monitors Support for advanced NSX Edge features (HA, Logging, etc.) NSX firewall rule management (CRUD operations) Full documentation of the NSX-vRO plugin for general consumption Better scale and performance requirements Support for NSX Transformers (Crosshairs target)
26 vCAC 6.0.x and NSX Integration NSX vSphere (NSX-v) vCloud Automation Center vCenter Server vSphere Host (ESXi) vCNS Model NSX API (REST) VIM API (SOAP) AMQP
27 vRealize Automation and NSX Integration NSX vSphere (NSX-v) vRealize Automation vCenter Server vSphere Host (ESXi) vCNS Model NSX API (REST) VIM API (SOAP) AMQP vRealize Orchestrator vRO API (REST) NSX Plugin
28 vRealize Automation 7.0 – Event Broker • New event broker system • Allows blocking task style implementations • Dozens of notification possibilities • Ability to wire any of these to vRealize Orchestrator • Therefore ability to use vRO to influence NSX at any of these points • Standard machine stub callouts will still exist
29 DEMO: Cross site vMotion with vSphere, vRA and NSX Oooh!
30 Review of Learner Objectives You should be able to meet the following objectives: • Understand the benefits of the integration between NSX and vRealize Automation • Be able to articulate to customers the value of the joint solution • Create NSX network and security components to be consumed by vRealize Automation • Configure Network Profiles • Configure a multi-machine blueprint with networking and security • Deploy a multi-tier application from the vRealize Automation catalog with networking and security components.
31 Key Takeaways The NSX and vRealize Automation integration allows for the automation of multi-tier applications with networking and security components There are many different deployment options with the joint NSX and vRealize Automation solution. Understand your customer requirements and prescribe the appropriate deployment options.
32 Q&A

Recommended

Self service it with v realizeautomation and nsx
Self service it with v realizeautomation and nsxSelf service it with v realizeautomation and nsx
Self service it with v realizeautomation and nsxsolarisyougood
 
VMworld 2014: VMware NSX and vCloud Automation Center Integration Technical D...
VMworld 2014: VMware NSX and vCloud Automation Center Integration Technical D...VMworld 2014: VMware NSX and vCloud Automation Center Integration Technical D...
VMworld 2014: VMware NSX and vCloud Automation Center Integration Technical D...VMworld
 
VMUGbe 21 Filip Verloy
VMUGbe 21 Filip VerloyVMUGbe 21 Filip Verloy
VMUGbe 21 Filip VerloyFilip Verloy
 
VMworld 2013: Technical Deep Dive: Build a Collapsed DMZ Architecture for Opt...
VMworld 2013: Technical Deep Dive: Build a Collapsed DMZ Architecture for Opt...VMworld 2013: Technical Deep Dive: Build a Collapsed DMZ Architecture for Opt...
VMworld 2013: Technical Deep Dive: Build a Collapsed DMZ Architecture for Opt...VMworld
 
VMworld 2013: Virtualized Network Services Model with VMware NSX
VMworld 2013: Virtualized Network Services Model with VMware NSX VMworld 2013: Virtualized Network Services Model with VMware NSX
VMworld 2013: Virtualized Network Services Model with VMware NSX VMworld
 
VMware NSX - Lessons Learned from real project
VMware NSX - Lessons Learned from real projectVMware NSX - Lessons Learned from real project
VMware NSX - Lessons Learned from real projectDavid Pasek
 
VMworld 2016: Advanced Network Services with NSX
VMworld 2016: Advanced Network Services with NSXVMworld 2016: Advanced Network Services with NSX
VMworld 2016: Advanced Network Services with NSXVMworld
 
NSX: La Virtualizzazione di Rete e il Futuro della Sicurezza
NSX: La Virtualizzazione di Rete e il Futuro della SicurezzaNSX: La Virtualizzazione di Rete e il Futuro della Sicurezza
NSX: La Virtualizzazione di Rete e il Futuro della SicurezzaVMUG IT
 

Recommended

Self service it with v realizeautomation and nsx
Self service it with v realizeautomation and nsxSelf service it with v realizeautomation and nsx
Self service it with v realizeautomation and nsxsolarisyougood
 
VMworld 2014: VMware NSX and vCloud Automation Center Integration Technical D...
VMworld 2014: VMware NSX and vCloud Automation Center Integration Technical D...VMworld 2014: VMware NSX and vCloud Automation Center Integration Technical D...
VMworld 2014: VMware NSX and vCloud Automation Center Integration Technical D...VMworld
 
VMUGbe 21 Filip Verloy
VMUGbe 21 Filip VerloyVMUGbe 21 Filip Verloy
VMUGbe 21 Filip VerloyFilip Verloy
 
VMworld 2013: Technical Deep Dive: Build a Collapsed DMZ Architecture for Opt...
VMworld 2013: Technical Deep Dive: Build a Collapsed DMZ Architecture for Opt...VMworld 2013: Technical Deep Dive: Build a Collapsed DMZ Architecture for Opt...
VMworld 2013: Technical Deep Dive: Build a Collapsed DMZ Architecture for Opt...VMworld
 
VMworld 2013: Virtualized Network Services Model with VMware NSX
VMworld 2013: Virtualized Network Services Model with VMware NSX VMworld 2013: Virtualized Network Services Model with VMware NSX
VMworld 2013: Virtualized Network Services Model with VMware NSX VMworld
 
VMware NSX - Lessons Learned from real project
VMware NSX - Lessons Learned from real projectVMware NSX - Lessons Learned from real project
VMware NSX - Lessons Learned from real projectDavid Pasek
 
VMworld 2016: Advanced Network Services with NSX
VMworld 2016: Advanced Network Services with NSXVMworld 2016: Advanced Network Services with NSX
VMworld 2016: Advanced Network Services with NSXVMworld
 
NSX: La Virtualizzazione di Rete e il Futuro della Sicurezza
NSX: La Virtualizzazione di Rete e il Futuro della SicurezzaNSX: La Virtualizzazione di Rete e il Futuro della Sicurezza
NSX: La Virtualizzazione di Rete e il Futuro della SicurezzaVMUG IT
 
VMworld 2013: Operational Best Practices for NSX in VMware Environments
VMworld 2013: Operational Best Practices for NSX in VMware Environments VMworld 2013: Operational Best Practices for NSX in VMware Environments
VMworld 2013: Operational Best Practices for NSX in VMware Environments VMworld
 
VMworld Europe 2014: Advanced Network Services with NSX
VMworld Europe 2014: Advanced Network Services with NSXVMworld Europe 2014: Advanced Network Services with NSX
VMworld Europe 2014: Advanced Network Services with NSXVMworld
 
VMworld 2013: Advanced VMware NSX Architecture
VMworld 2013: Advanced VMware NSX Architecture VMworld 2013: Advanced VMware NSX Architecture
VMworld 2013: Advanced VMware NSX Architecture VMworld
 
VMworld 2016: How to Deploy VMware NSX with Cisco Infrastructure
VMworld 2016: How to Deploy VMware NSX with Cisco InfrastructureVMworld 2016: How to Deploy VMware NSX with Cisco Infrastructure
VMworld 2016: How to Deploy VMware NSX with Cisco InfrastructureVMworld
 
VMworld 2013: VMware NSX Integration with OpenStack
VMworld 2013: VMware NSX Integration with OpenStack VMworld 2013: VMware NSX Integration with OpenStack
VMworld 2013: VMware NSX Integration with OpenStack VMworld
 
VMworld 2013: Bringing Network Virtualization to VMware Environments with NSX
VMworld 2013: Bringing Network Virtualization to VMware Environments with NSX VMworld 2013: Bringing Network Virtualization to VMware Environments with NSX
VMworld 2013: Bringing Network Virtualization to VMware Environments with NSX VMworld
 
VMworld 2013: NSX PCI Reference Architecture Workshop Session 1 - Segmentation
VMworld 2013: NSX PCI Reference Architecture Workshop Session 1 - SegmentationVMworld 2013: NSX PCI Reference Architecture Workshop Session 1 - Segmentation
VMworld 2013: NSX PCI Reference Architecture Workshop Session 1 - SegmentationVMworld
 
Nsx security deep dive
Nsx security deep diveNsx security deep dive
Nsx security deep divesolarisyougood
 
VMworld 2015: VMware NSX Deep Dive
VMworld 2015: VMware NSX Deep DiveVMworld 2015: VMware NSX Deep Dive
VMworld 2015: VMware NSX Deep DiveVMworld
 
NSX Reference Design version 3.0
NSX Reference Design version 3.0NSX Reference Design version 3.0
NSX Reference Design version 3.0Doddi Priyambodo
 
VMworld 2016: Migrating from a hardware based firewall to NSX to improve perf...
VMworld 2016: Migrating from a hardware based firewall to NSX to improve perf...VMworld 2016: Migrating from a hardware based firewall to NSX to improve perf...
VMworld 2016: Migrating from a hardware based firewall to NSX to improve perf...VMworld
 
VMware NSX + Cumulus Networks: Software Defined Networking
VMware NSX + Cumulus Networks: Software Defined NetworkingVMware NSX + Cumulus Networks: Software Defined Networking
VMware NSX + Cumulus Networks: Software Defined NetworkingCumulus Networks
 
VMware NSX primer 2014
VMware NSX primer 2014VMware NSX primer 2014
VMware NSX primer 2014Sanjay Basu
 
Network Virtualization with VMware NSX
Network Virtualization with VMware NSXNetwork Virtualization with VMware NSX
Network Virtualization with VMware NSXScott Lowe
 
vVMworld 2013: Deploying, Troubleshooting, and Monitoring VMware NSX Distribu...
vVMworld 2013: Deploying, Troubleshooting, and Monitoring VMware NSX Distribu...vVMworld 2013: Deploying, Troubleshooting, and Monitoring VMware NSX Distribu...
vVMworld 2013: Deploying, Troubleshooting, and Monitoring VMware NSX Distribu...VMworld
 
VMUG - NSX Architettura e Design
VMUG - NSX Architettura e DesignVMUG - NSX Architettura e Design
VMUG - NSX Architettura e DesignVMUG IT
 
Business Agility and Security with VMware
Business Agility and Security with VMwareBusiness Agility and Security with VMware
Business Agility and Security with VMwareAngel Villar Garea
 
Si fa presto a dire SDDC: come, quando e perché?
Si fa presto a dire SDDC: come, quando e perché?Si fa presto a dire SDDC: come, quando e perché?
Si fa presto a dire SDDC: come, quando e perché?Andrea Mauro
 
VMworld 2015: The Future of Network Virtualization with VMware NSX
VMworld 2015: The Future of Network Virtualization with VMware NSXVMworld 2015: The Future of Network Virtualization with VMware NSX
VMworld 2015: The Future of Network Virtualization with VMware NSXVMworld
 
VMworld 2013: Deploying VMware NSX Network Virtualization
VMworld 2013: Deploying VMware NSX Network Virtualization VMworld 2013: Deploying VMware NSX Network Virtualization
VMworld 2013: Deploying VMware NSX Network Virtualization VMworld
 
VXLAN Practice Guide
VXLAN Practice GuideVXLAN Practice Guide
VXLAN Practice GuidePrasenjit Sarkar
 
Understanding Virtual Networking in the Cloud - RightScale Compute 2013
Understanding Virtual Networking in the Cloud - RightScale Compute 2013Understanding Virtual Networking in the Cloud - RightScale Compute 2013
Understanding Virtual Networking in the Cloud - RightScale Compute 2013RightScale
 

More Related Content

What's hot

VMworld 2013: Operational Best Practices for NSX in VMware Environments
VMworld 2013: Operational Best Practices for NSX in VMware Environments VMworld 2013: Operational Best Practices for NSX in VMware Environments
VMworld 2013: Operational Best Practices for NSX in VMware Environments VMworld
 
VMworld Europe 2014: Advanced Network Services with NSX
VMworld Europe 2014: Advanced Network Services with NSXVMworld Europe 2014: Advanced Network Services with NSX
VMworld Europe 2014: Advanced Network Services with NSXVMworld
 
VMworld 2013: Advanced VMware NSX Architecture
VMworld 2013: Advanced VMware NSX Architecture VMworld 2013: Advanced VMware NSX Architecture
VMworld 2013: Advanced VMware NSX Architecture VMworld
 
VMworld 2016: How to Deploy VMware NSX with Cisco Infrastructure
VMworld 2016: How to Deploy VMware NSX with Cisco InfrastructureVMworld 2016: How to Deploy VMware NSX with Cisco Infrastructure
VMworld 2016: How to Deploy VMware NSX with Cisco InfrastructureVMworld
 
VMworld 2013: VMware NSX Integration with OpenStack
VMworld 2013: VMware NSX Integration with OpenStack VMworld 2013: VMware NSX Integration with OpenStack
VMworld 2013: VMware NSX Integration with OpenStack VMworld
 
VMworld 2013: Bringing Network Virtualization to VMware Environments with NSX
VMworld 2013: Bringing Network Virtualization to VMware Environments with NSX VMworld 2013: Bringing Network Virtualization to VMware Environments with NSX
VMworld 2013: Bringing Network Virtualization to VMware Environments with NSX VMworld
 
VMworld 2013: NSX PCI Reference Architecture Workshop Session 1 - Segmentation
VMworld 2013: NSX PCI Reference Architecture Workshop Session 1 - SegmentationVMworld 2013: NSX PCI Reference Architecture Workshop Session 1 - Segmentation
VMworld 2013: NSX PCI Reference Architecture Workshop Session 1 - SegmentationVMworld
 
Nsx security deep dive
Nsx security deep diveNsx security deep dive
Nsx security deep divesolarisyougood
 
VMworld 2015: VMware NSX Deep Dive
VMworld 2015: VMware NSX Deep DiveVMworld 2015: VMware NSX Deep Dive
VMworld 2015: VMware NSX Deep DiveVMworld
 
NSX Reference Design version 3.0
NSX Reference Design version 3.0NSX Reference Design version 3.0
NSX Reference Design version 3.0Doddi Priyambodo
 
VMworld 2016: Migrating from a hardware based firewall to NSX to improve perf...
VMworld 2016: Migrating from a hardware based firewall to NSX to improve perf...VMworld 2016: Migrating from a hardware based firewall to NSX to improve perf...
VMworld 2016: Migrating from a hardware based firewall to NSX to improve perf...VMworld
 
VMware NSX + Cumulus Networks: Software Defined Networking
VMware NSX + Cumulus Networks: Software Defined NetworkingVMware NSX + Cumulus Networks: Software Defined Networking
VMware NSX + Cumulus Networks: Software Defined NetworkingCumulus Networks
 
VMware NSX primer 2014
VMware NSX primer 2014VMware NSX primer 2014
VMware NSX primer 2014Sanjay Basu
 
Network Virtualization with VMware NSX
Network Virtualization with VMware NSXNetwork Virtualization with VMware NSX
Network Virtualization with VMware NSXScott Lowe
 
vVMworld 2013: Deploying, Troubleshooting, and Monitoring VMware NSX Distribu...
vVMworld 2013: Deploying, Troubleshooting, and Monitoring VMware NSX Distribu...vVMworld 2013: Deploying, Troubleshooting, and Monitoring VMware NSX Distribu...
vVMworld 2013: Deploying, Troubleshooting, and Monitoring VMware NSX Distribu...VMworld
 
VMUG - NSX Architettura e Design
VMUG - NSX Architettura e DesignVMUG - NSX Architettura e Design
VMUG - NSX Architettura e DesignVMUG IT
 
Business Agility and Security with VMware
Business Agility and Security with VMwareBusiness Agility and Security with VMware
Business Agility and Security with VMwareAngel Villar Garea
 
Si fa presto a dire SDDC: come, quando e perché?
Si fa presto a dire SDDC: come, quando e perché?Si fa presto a dire SDDC: come, quando e perché?
Si fa presto a dire SDDC: come, quando e perché?Andrea Mauro
 
VMworld 2015: The Future of Network Virtualization with VMware NSX
VMworld 2015: The Future of Network Virtualization with VMware NSXVMworld 2015: The Future of Network Virtualization with VMware NSX
VMworld 2015: The Future of Network Virtualization with VMware NSXVMworld
 
VMworld 2013: Deploying VMware NSX Network Virtualization
VMworld 2013: Deploying VMware NSX Network Virtualization VMworld 2013: Deploying VMware NSX Network Virtualization
VMworld 2013: Deploying VMware NSX Network Virtualization VMworld
 

What's hot (20)

VMworld 2013: Operational Best Practices for NSX in VMware Environments
VMworld 2013: Operational Best Practices for NSX in VMware Environments VMworld 2013: Operational Best Practices for NSX in VMware Environments
VMworld 2013: Operational Best Practices for NSX in VMware Environments
 
VMworld Europe 2014: Advanced Network Services with NSX
VMworld Europe 2014: Advanced Network Services with NSXVMworld Europe 2014: Advanced Network Services with NSX
VMworld Europe 2014: Advanced Network Services with NSX
 
VMworld 2013: Advanced VMware NSX Architecture
VMworld 2013: Advanced VMware NSX Architecture VMworld 2013: Advanced VMware NSX Architecture
VMworld 2013: Advanced VMware NSX Architecture
 
VMworld 2016: How to Deploy VMware NSX with Cisco Infrastructure
VMworld 2016: How to Deploy VMware NSX with Cisco InfrastructureVMworld 2016: How to Deploy VMware NSX with Cisco Infrastructure
VMworld 2016: How to Deploy VMware NSX with Cisco Infrastructure
 
VMworld 2013: VMware NSX Integration with OpenStack
VMworld 2013: VMware NSX Integration with OpenStack VMworld 2013: VMware NSX Integration with OpenStack
VMworld 2013: VMware NSX Integration with OpenStack
 
VMworld 2013: Bringing Network Virtualization to VMware Environments with NSX
VMworld 2013: Bringing Network Virtualization to VMware Environments with NSX VMworld 2013: Bringing Network Virtualization to VMware Environments with NSX
VMworld 2013: Bringing Network Virtualization to VMware Environments with NSX
 
VMworld 2013: NSX PCI Reference Architecture Workshop Session 1 - Segmentation
VMworld 2013: NSX PCI Reference Architecture Workshop Session 1 - SegmentationVMworld 2013: NSX PCI Reference Architecture Workshop Session 1 - Segmentation
VMworld 2013: NSX PCI Reference Architecture Workshop Session 1 - Segmentation
 
Nsx security deep dive
Nsx security deep diveNsx security deep dive
Nsx security deep dive
 
VMworld 2015: VMware NSX Deep Dive
VMworld 2015: VMware NSX Deep DiveVMworld 2015: VMware NSX Deep Dive
VMworld 2015: VMware NSX Deep Dive
 
NSX Reference Design version 3.0
NSX Reference Design version 3.0NSX Reference Design version 3.0
NSX Reference Design version 3.0
 
VMworld 2016: Migrating from a hardware based firewall to NSX to improve perf...
VMworld 2016: Migrating from a hardware based firewall to NSX to improve perf...VMworld 2016: Migrating from a hardware based firewall to NSX to improve perf...
VMworld 2016: Migrating from a hardware based firewall to NSX to improve perf...
 
VMware NSX + Cumulus Networks: Software Defined Networking
VMware NSX + Cumulus Networks: Software Defined NetworkingVMware NSX + Cumulus Networks: Software Defined Networking
VMware NSX + Cumulus Networks: Software Defined Networking
 
VMware NSX primer 2014
VMware NSX primer 2014VMware NSX primer 2014
VMware NSX primer 2014
 
Network Virtualization with VMware NSX
Network Virtualization with VMware NSXNetwork Virtualization with VMware NSX
Network Virtualization with VMware NSX
 
vVMworld 2013: Deploying, Troubleshooting, and Monitoring VMware NSX Distribu...
vVMworld 2013: Deploying, Troubleshooting, and Monitoring VMware NSX Distribu...vVMworld 2013: Deploying, Troubleshooting, and Monitoring VMware NSX Distribu...
vVMworld 2013: Deploying, Troubleshooting, and Monitoring VMware NSX Distribu...
 
VMUG - NSX Architettura e Design
VMUG - NSX Architettura e DesignVMUG - NSX Architettura e Design
VMUG - NSX Architettura e Design
 
Business Agility and Security with VMware
Business Agility and Security with VMwareBusiness Agility and Security with VMware
Business Agility and Security with VMware
 
Si fa presto a dire SDDC: come, quando e perché?
Si fa presto a dire SDDC: come, quando e perché?Si fa presto a dire SDDC: come, quando e perché?
Si fa presto a dire SDDC: come, quando e perché?
 
VMworld 2015: The Future of Network Virtualization with VMware NSX
VMworld 2015: The Future of Network Virtualization with VMware NSXVMworld 2015: The Future of Network Virtualization with VMware NSX
VMworld 2015: The Future of Network Virtualization with VMware NSX
 
VMworld 2013: Deploying VMware NSX Network Virtualization
VMworld 2013: Deploying VMware NSX Network Virtualization VMworld 2013: Deploying VMware NSX Network Virtualization
VMworld 2013: Deploying VMware NSX Network Virtualization
 

Viewers also liked

Understanding Virtual Networking in the Cloud - RightScale Compute 2013
Understanding Virtual Networking in the Cloud - RightScale Compute 2013Understanding Virtual Networking in the Cloud - RightScale Compute 2013
Understanding Virtual Networking in the Cloud - RightScale Compute 2013RightScale
 
aCloud Services Architecture - Harshal Pimpalkhute, Sr. Prod. Mktg. Mgr., A1...
aCloud Services Architecture - Harshal Pimpalkhute, Sr. Prod. Mktg. Mgr., A1...aCloud Services Architecture - Harshal Pimpalkhute, Sr. Prod. Mktg. Mgr., A1...
aCloud Services Architecture - Harshal Pimpalkhute, Sr. Prod. Mktg. Mgr., A1...Mirantis
 
vRA + NSX Technical Deep-Dive
vRA + NSX Technical Deep-DivevRA + NSX Technical Deep-Dive
vRA + NSX Technical Deep-DiveVMUG IT
 
Networking in the Cloud Age (LISA 2012 Tutorial)
Networking in the Cloud Age (LISA 2012 Tutorial)Networking in the Cloud Age (LISA 2012 Tutorial)
Networking in the Cloud Age (LISA 2012 Tutorial)Chiradeep Vittal
 
ODCA infrastructure as-a-service Framework & Usage Scenarios
ODCA infrastructure as-a-service Framework & Usage ScenariosODCA infrastructure as-a-service Framework & Usage Scenarios
ODCA infrastructure as-a-service Framework & Usage ScenariosOpen Data Center Alliance
 
Cloud Networking is not Virtual Networking - London VMUG 20130425
Cloud Networking is not Virtual Networking - London VMUG 20130425Cloud Networking is not Virtual Networking - London VMUG 20130425
Cloud Networking is not Virtual Networking - London VMUG 20130425Greg Ferro
 
Comparing Cloud-Based Infrastructure Services
Comparing Cloud-Based Infrastructure ServicesComparing Cloud-Based Infrastructure Services
Comparing Cloud-Based Infrastructure ServicesCDW
 
Tutorial on SDN and OpenFlow
Tutorial on SDN and OpenFlowTutorial on SDN and OpenFlow
Tutorial on SDN and OpenFlowKingston Smiler
 
The Future of Cloud Networking is VMware NSX
The Future of Cloud Networking is VMware NSXThe Future of Cloud Networking is VMware NSX
The Future of Cloud Networking is VMware NSXScott Lowe
 
SDN Basics – What You Need to Know about Software-Defined Networking
SDN Basics – What You Need to Know about Software-Defined NetworkingSDN Basics – What You Need to Know about Software-Defined Networking
SDN Basics – What You Need to Know about Software-Defined NetworkingSDxCentral
 
Software Defined networking (SDN)
Software Defined networking (SDN)Software Defined networking (SDN)
Software Defined networking (SDN)Milson Munakami
 
From SDN to Cloud Networking
From SDN to Cloud NetworkingFrom SDN to Cloud Networking
From SDN to Cloud NetworkingJuniper Networks
 
Software-Defined Networking(SDN):A New Approach to Networking
Software-Defined Networking(SDN):A New Approach to NetworkingSoftware-Defined Networking(SDN):A New Approach to Networking
Software-Defined Networking(SDN):A New Approach to NetworkingAnju Ann
 
Introduction to Software Defined Networking (SDN)
Introduction to Software Defined Networking (SDN)Introduction to Software Defined Networking (SDN)
Introduction to Software Defined Networking (SDN)rjain51
 
Software-Defined Networking SDN - A Brief Introduction
Software-Defined Networking SDN - A Brief IntroductionSoftware-Defined Networking SDN - A Brief Introduction
Software-Defined Networking SDN - A Brief IntroductionJason TC HOU (侯宗成)
 

Viewers also liked (18)

VXLAN Practice Guide
VXLAN Practice GuideVXLAN Practice Guide
VXLAN Practice Guide
 
Understanding Virtual Networking in the Cloud - RightScale Compute 2013
Understanding Virtual Networking in the Cloud - RightScale Compute 2013Understanding Virtual Networking in the Cloud - RightScale Compute 2013
Understanding Virtual Networking in the Cloud - RightScale Compute 2013
 
Locaweb cloud and sdn
Locaweb cloud and sdnLocaweb cloud and sdn
Locaweb cloud and sdn
 
aCloud Services Architecture - Harshal Pimpalkhute, Sr. Prod. Mktg. Mgr., A1...
aCloud Services Architecture - Harshal Pimpalkhute, Sr. Prod. Mktg. Mgr., A1...aCloud Services Architecture - Harshal Pimpalkhute, Sr. Prod. Mktg. Mgr., A1...
aCloud Services Architecture - Harshal Pimpalkhute, Sr. Prod. Mktg. Mgr., A1...
 
vRA + NSX Technical Deep-Dive
vRA + NSX Technical Deep-DivevRA + NSX Technical Deep-Dive
vRA + NSX Technical Deep-Dive
 
Networking in the Cloud Age (LISA 2012 Tutorial)
Networking in the Cloud Age (LISA 2012 Tutorial)Networking in the Cloud Age (LISA 2012 Tutorial)
Networking in the Cloud Age (LISA 2012 Tutorial)
 
ODCA infrastructure as-a-service Framework & Usage Scenarios
ODCA infrastructure as-a-service Framework & Usage ScenariosODCA infrastructure as-a-service Framework & Usage Scenarios
ODCA infrastructure as-a-service Framework & Usage Scenarios
 
Cloud Networking is not Virtual Networking - London VMUG 20130425
Cloud Networking is not Virtual Networking - London VMUG 20130425Cloud Networking is not Virtual Networking - London VMUG 20130425
Cloud Networking is not Virtual Networking - London VMUG 20130425
 
Comparing Cloud-Based Infrastructure Services
Comparing Cloud-Based Infrastructure ServicesComparing Cloud-Based Infrastructure Services
Comparing Cloud-Based Infrastructure Services
 
Tutorial on SDN and OpenFlow
Tutorial on SDN and OpenFlowTutorial on SDN and OpenFlow
Tutorial on SDN and OpenFlow
 
The Future of Cloud Networking is VMware NSX
The Future of Cloud Networking is VMware NSXThe Future of Cloud Networking is VMware NSX
The Future of Cloud Networking is VMware NSX
 
SDN Basics – What You Need to Know about Software-Defined Networking
SDN Basics – What You Need to Know about Software-Defined NetworkingSDN Basics – What You Need to Know about Software-Defined Networking
SDN Basics – What You Need to Know about Software-Defined Networking
 
Software Defined networking (SDN)
Software Defined networking (SDN)Software Defined networking (SDN)
Software Defined networking (SDN)
 
From SDN to Cloud Networking
From SDN to Cloud NetworkingFrom SDN to Cloud Networking
From SDN to Cloud Networking
 
Software-Defined Networking(SDN):A New Approach to Networking
Software-Defined Networking(SDN):A New Approach to NetworkingSoftware-Defined Networking(SDN):A New Approach to Networking
Software-Defined Networking(SDN):A New Approach to Networking
 
Introduction to Software Defined Networking (SDN)
Introduction to Software Defined Networking (SDN)Introduction to Software Defined Networking (SDN)
Introduction to Software Defined Networking (SDN)
 
Software-Defined Networking SDN - A Brief Introduction
Software-Defined Networking SDN - A Brief IntroductionSoftware-Defined Networking SDN - A Brief Introduction
Software-Defined Networking SDN - A Brief Introduction
 
Sdn ppt
Sdn pptSdn ppt
Sdn ppt
 

Similar to IaaS with Software Defined Networking

VMworld 2013: VMware Compliance Reference Architecture Framework Overview
VMworld 2013: VMware Compliance Reference Architecture Framework Overview VMworld 2013: VMware Compliance Reference Architecture Framework Overview
VMworld 2013: VMware Compliance Reference Architecture Framework Overview VMworld
 
SDN and NFV: Friends or Enemies
SDN and NFV: Friends or EnemiesSDN and NFV: Friends or Enemies
SDN and NFV: Friends or EnemiesJustyna Bak
 
VMworld 2013: Datacenter Transformation with Network Virtualization: Today an...
VMworld 2013: Datacenter Transformation with Network Virtualization: Today an...VMworld 2013: Datacenter Transformation with Network Virtualization: Today an...
VMworld 2013: Datacenter Transformation with Network Virtualization: Today an...VMworld
 
VMware NSX for vSphere - Intro and use cases
VMware NSX for vSphere - Intro and use casesVMware NSX for vSphere - Intro and use cases
VMware NSX for vSphere - Intro and use casesAngel Villar Garea
 
[OpenStack Day in Korea 2015] Track 2-3 - 오픈스택 클라우드에 최적화된 네트워크 가상화 '누아지(Nuage)'
[OpenStack Day in Korea 2015] Track 2-3 - 오픈스택 클라우드에 최적화된 네트워크 가상화 '누아지(Nuage)'[OpenStack Day in Korea 2015] Track 2-3 - 오픈스택 클라우드에 최적화된 네트워크 가상화 '누아지(Nuage)'
[OpenStack Day in Korea 2015] Track 2-3 - 오픈스택 클라우드에 최적화된 네트워크 가상화 '누아지(Nuage)'OpenStack Korea Community
 
OVNC 2015-Software-Defined Networking: Where Are We Today?
OVNC 2015-Software-Defined Networking: Where Are We Today?OVNC 2015-Software-Defined Networking: Where Are We Today?
OVNC 2015-Software-Defined Networking: Where Are We Today?NAIM Networks, Inc.
 
SDN and NFV Friends or Enemies ?
SDN and NFV Friends or Enemies ?SDN and NFV Friends or Enemies ?
SDN and NFV Friends or Enemies ?Kedar Raval
 
Know about SDN and NFV
Know about SDN and NFVKnow about SDN and NFV
Know about SDN and NFVKedar Raval
 
Simplifying the secure data center
Simplifying the secure data centerSimplifying the secure data center
Simplifying the secure data centerCisco Canada
 
Embracing SDN in the Next Gen Network
Embracing SDN in the Next Gen NetworkEmbracing SDN in the Next Gen Network
Embracing SDN in the Next Gen NetworkNetCraftsmen
 
Reston Virtualization Group 9-18-2014
Reston Virtualization Group 9-18-2014 Reston Virtualization Group 9-18-2014
Reston Virtualization Group 9-18-2014 VMwareJenn
 
20151019 v mworld2015-recap-02
20151019 v mworld2015-recap-0220151019 v mworld2015-recap-02
20151019 v mworld2015-recap-02Kevin Groat
 
VMworld 2014: Introduction to NSX
VMworld 2014: Introduction to NSXVMworld 2014: Introduction to NSX
VMworld 2014: Introduction to NSXVMworld
 
Nuage Networks, A Policy Driven Approach to SDN - Interop Tokyo 2014
Nuage Networks, A Policy Driven Approach to SDN - Interop Tokyo 2014Nuage Networks, A Policy Driven Approach to SDN - Interop Tokyo 2014
Nuage Networks, A Policy Driven Approach to SDN - Interop Tokyo 2014Scott Sneddon
 
Cisco deploying openstack with UCS
Cisco deploying openstack with UCSCisco deploying openstack with UCS
Cisco deploying openstack with UCSsolarisyougood
 
Simplifying SDN Networking Across Private and Public Clouds
Simplifying SDN Networking Across Private and Public CloudsSimplifying SDN Networking Across Private and Public Clouds
Simplifying SDN Networking Across Private and Public Clouds5nine
 
2011-11-03 Intelligence Community Cloud Users Group
2011-11-03 Intelligence Community Cloud Users Group2011-11-03 Intelligence Community Cloud Users Group
2011-11-03 Intelligence Community Cloud Users GroupShawn Wells
 
VMworld 2013: SDDC is Here and Now: A Success Story
VMworld 2013: SDDC is Here and Now: A Success Story VMworld 2013: SDDC is Here and Now: A Success Story
VMworld 2013: SDDC is Here and Now: A Success Story VMworld
 

Similar to IaaS with Software Defined Networking (20)

NSX, un salt natural cap a SDN
NSX, un salt natural cap a SDNNSX, un salt natural cap a SDN
NSX, un salt natural cap a SDN
 
VMworld 2013: VMware Compliance Reference Architecture Framework Overview
VMworld 2013: VMware Compliance Reference Architecture Framework Overview VMworld 2013: VMware Compliance Reference Architecture Framework Overview
VMworld 2013: VMware Compliance Reference Architecture Framework Overview
 
SDN and NFV: Friends or Enemies
SDN and NFV: Friends or EnemiesSDN and NFV: Friends or Enemies
SDN and NFV: Friends or Enemies
 
VMworld 2013: Datacenter Transformation with Network Virtualization: Today an...
VMworld 2013: Datacenter Transformation with Network Virtualization: Today an...VMworld 2013: Datacenter Transformation with Network Virtualization: Today an...
VMworld 2013: Datacenter Transformation with Network Virtualization: Today an...
 
VMware NSX for vSphere - Intro and use cases
VMware NSX for vSphere - Intro and use casesVMware NSX for vSphere - Intro and use cases
VMware NSX for vSphere - Intro and use cases
 
[OpenStack Day in Korea 2015] Track 2-3 - 오픈스택 클라우드에 최적화된 네트워크 가상화 '누아지(Nuage)'
[OpenStack Day in Korea 2015] Track 2-3 - 오픈스택 클라우드에 최적화된 네트워크 가상화 '누아지(Nuage)'[OpenStack Day in Korea 2015] Track 2-3 - 오픈스택 클라우드에 최적화된 네트워크 가상화 '누아지(Nuage)'
[OpenStack Day in Korea 2015] Track 2-3 - 오픈스택 클라우드에 최적화된 네트워크 가상화 '누아지(Nuage)'
 
OVNC 2015-Software-Defined Networking: Where Are We Today?
OVNC 2015-Software-Defined Networking: Where Are We Today?OVNC 2015-Software-Defined Networking: Where Are We Today?
OVNC 2015-Software-Defined Networking: Where Are We Today?
 
SDN and NFV Friends or Enemies ?
SDN and NFV Friends or Enemies ?SDN and NFV Friends or Enemies ?
SDN and NFV Friends or Enemies ?
 
Know about SDN and NFV
Know about SDN and NFVKnow about SDN and NFV
Know about SDN and NFV
 
Simplifying the secure data center
Simplifying the secure data centerSimplifying the secure data center
Simplifying the secure data center
 
Embracing SDN in the Next Gen Network
Embracing SDN in the Next Gen NetworkEmbracing SDN in the Next Gen Network
Embracing SDN in the Next Gen Network
 
Reston Virtualization Group 9-18-2014
Reston Virtualization Group 9-18-2014 Reston Virtualization Group 9-18-2014
Reston Virtualization Group 9-18-2014
 
20151019 v mworld2015-recap-02
20151019 v mworld2015-recap-0220151019 v mworld2015-recap-02
20151019 v mworld2015-recap-02
 
vRA7 What's New
vRA7 What's NewvRA7 What's New
vRA7 What's New
 
VMworld 2014: Introduction to NSX
VMworld 2014: Introduction to NSXVMworld 2014: Introduction to NSX
VMworld 2014: Introduction to NSX
 
Nuage Networks, A Policy Driven Approach to SDN - Interop Tokyo 2014
Nuage Networks, A Policy Driven Approach to SDN - Interop Tokyo 2014Nuage Networks, A Policy Driven Approach to SDN - Interop Tokyo 2014
Nuage Networks, A Policy Driven Approach to SDN - Interop Tokyo 2014
 
Cisco deploying openstack with UCS
Cisco deploying openstack with UCSCisco deploying openstack with UCS
Cisco deploying openstack with UCS
 
Simplifying SDN Networking Across Private and Public Clouds
Simplifying SDN Networking Across Private and Public CloudsSimplifying SDN Networking Across Private and Public Clouds
Simplifying SDN Networking Across Private and Public Clouds
 
2011-11-03 Intelligence Community Cloud Users Group
2011-11-03 Intelligence Community Cloud Users Group2011-11-03 Intelligence Community Cloud Users Group
2011-11-03 Intelligence Community Cloud Users Group
 
VMworld 2013: SDDC is Here and Now: A Success Story
VMworld 2013: SDDC is Here and Now: A Success Story VMworld 2013: SDDC is Here and Now: A Success Story
VMworld 2013: SDDC is Here and Now: A Success Story
 

Recently uploaded

Buds n Tech IT Solutions: Top-Notch Web Services in Noida
Buds n Tech IT Solutions: Top-Notch Web Services in NoidaBuds n Tech IT Solutions: Top-Notch Web Services in Noida
Buds n Tech IT Solutions: Top-Notch Web Services in Noidabntitsolutionsrishis
 
PREDICTING RIVER WATER QUALITY ppt presentation
PREDICTING RIVER WATER QUALITY ppt presentationPREDICTING RIVER WATER QUALITY ppt presentation
PREDICTING RIVER WATER QUALITY ppt presentationvaddepallysandeep122
 
Catch the Wave: SAP Event-Driven and Data Streaming for the Intelligence Ente...
Catch the Wave: SAP Event-Driven and Data Streaming for the Intelligence Ente...Catch the Wave: SAP Event-Driven and Data Streaming for the Intelligence Ente...
Catch the Wave: SAP Event-Driven and Data Streaming for the Intelligence Ente...confluent
 
Software Project Health Check: Best Practices and Techniques for Your Product...
Software Project Health Check: Best Practices and Techniques for Your Product...Software Project Health Check: Best Practices and Techniques for Your Product...
Software Project Health Check: Best Practices and Techniques for Your Product...Velvetech LLC
 
英国UN学位证,北安普顿大学毕业证书1:1制作
英国UN学位证,北安普顿大学毕业证书1:1制作英国UN学位证,北安普顿大学毕业证书1:1制作
英国UN学位证,北安普顿大学毕业证书1:1制作qr0udbr0
 
Cloud Data Center Network Construction - IEEE
Cloud Data Center Network Construction - IEEECloud Data Center Network Construction - IEEE
Cloud Data Center Network Construction - IEEEVICTOR MAESTRE RAMIREZ
 
Maximizing Efficiency and Profitability with OnePlan’s Professional Service A...
Maximizing Efficiency and Profitability with OnePlan’s Professional Service A...Maximizing Efficiency and Profitability with OnePlan’s Professional Service A...
Maximizing Efficiency and Profitability with OnePlan’s Professional Service A...OnePlan Solutions
 
Best Web Development Agency- Idiosys USA.pdf
Best Web Development Agency- Idiosys USA.pdfBest Web Development Agency- Idiosys USA.pdf
Best Web Development Agency- Idiosys USA.pdfIdiosysTechnologies1
 
Implementing Zero Trust strategy with Azure
Implementing Zero Trust strategy with AzureImplementing Zero Trust strategy with Azure
Implementing Zero Trust strategy with AzureDinusha Kumarasiri
 
SuccessFactors 1H 2024 Release - Sneak-Peek by Deloitte Germany
SuccessFactors 1H 2024 Release - Sneak-Peek by Deloitte GermanySuccessFactors 1H 2024 Release - Sneak-Peek by Deloitte Germany
SuccessFactors 1H 2024 Release - Sneak-Peek by Deloitte GermanyChristoph Pohl
 
Balasore Best It Company|| Top 10 IT Company || Balasore Software company Odisha
Balasore Best It Company|| Top 10 IT Company || Balasore Software company OdishaBalasore Best It Company|| Top 10 IT Company || Balasore Software company Odisha
Balasore Best It Company|| Top 10 IT Company || Balasore Software company Odishasmiwainfosol
 
Odoo 14 - eLearning Module In Odoo 14 Enterprise
Odoo 14 - eLearning Module In Odoo 14 EnterpriseOdoo 14 - eLearning Module In Odoo 14 Enterprise
Odoo 14 - eLearning Module In Odoo 14 Enterprisepreethippts
 
SpotFlow: Tracking Method Calls and States at Runtime
SpotFlow: Tracking Method Calls and States at RuntimeSpotFlow: Tracking Method Calls and States at Runtime
SpotFlow: Tracking Method Calls and States at Runtimeandrehoraa
 
Alfresco TTL#157 - Troubleshooting Made Easy: Deciphering Alfresco mTLS Confi...
Alfresco TTL#157 - Troubleshooting Made Easy: Deciphering Alfresco mTLS Confi...Alfresco TTL#157 - Troubleshooting Made Easy: Deciphering Alfresco mTLS Confi...
Alfresco TTL#157 - Troubleshooting Made Easy: Deciphering Alfresco mTLS Confi...Angel Borroy López
 
Taming Distributed Systems: Key Insights from Wix's Large-Scale Experience - ...
Taming Distributed Systems: Key Insights from Wix's Large-Scale Experience - ...Taming Distributed Systems: Key Insights from Wix's Large-Scale Experience - ...
Taming Distributed Systems: Key Insights from Wix's Large-Scale Experience - ...Natan Silnitsky
 
KnowAPIs-UnknownPerf-jaxMainz-2024 (1).pptx
KnowAPIs-UnknownPerf-jaxMainz-2024 (1).pptxKnowAPIs-UnknownPerf-jaxMainz-2024 (1).pptx
KnowAPIs-UnknownPerf-jaxMainz-2024 (1).pptxTier1 app
 
GOING AOT WITH GRAALVM – DEVOXX GREECE.pdf
GOING AOT WITH GRAALVM – DEVOXX GREECE.pdfGOING AOT WITH GRAALVM – DEVOXX GREECE.pdf
GOING AOT WITH GRAALVM – DEVOXX GREECE.pdfAlina Yurenko
 
Open Source Summit NA 2024: Open Source Cloud Costs - OpenCost's Impact on En...
Open Source Summit NA 2024: Open Source Cloud Costs - OpenCost's Impact on En...Open Source Summit NA 2024: Open Source Cloud Costs - OpenCost's Impact on En...
Open Source Summit NA 2024: Open Source Cloud Costs - OpenCost's Impact on En...Matt Ray
 
CRM Contender Series: HubSpot vs. Salesforce
CRM Contender Series: HubSpot vs. SalesforceCRM Contender Series: HubSpot vs. Salesforce
CRM Contender Series: HubSpot vs. SalesforceBrainSell Technologies
 

Recently uploaded (20)

Hot Sexy call girls in Patel Nagar🔝 9953056974 🔝 escort Service
Hot Sexy call girls in Patel Nagar🔝 9953056974 🔝 escort ServiceHot Sexy call girls in Patel Nagar🔝 9953056974 🔝 escort Service
Hot Sexy call girls in Patel Nagar🔝 9953056974 🔝 escort Service
 
Buds n Tech IT Solutions: Top-Notch Web Services in Noida
Buds n Tech IT Solutions: Top-Notch Web Services in NoidaBuds n Tech IT Solutions: Top-Notch Web Services in Noida
Buds n Tech IT Solutions: Top-Notch Web Services in Noida
 
PREDICTING RIVER WATER QUALITY ppt presentation
PREDICTING RIVER WATER QUALITY ppt presentationPREDICTING RIVER WATER QUALITY ppt presentation
PREDICTING RIVER WATER QUALITY ppt presentation
 
Catch the Wave: SAP Event-Driven and Data Streaming for the Intelligence Ente...
Catch the Wave: SAP Event-Driven and Data Streaming for the Intelligence Ente...Catch the Wave: SAP Event-Driven and Data Streaming for the Intelligence Ente...
Catch the Wave: SAP Event-Driven and Data Streaming for the Intelligence Ente...
 
Software Project Health Check: Best Practices and Techniques for Your Product...
Software Project Health Check: Best Practices and Techniques for Your Product...Software Project Health Check: Best Practices and Techniques for Your Product...
Software Project Health Check: Best Practices and Techniques for Your Product...
 
英国UN学位证,北安普顿大学毕业证书1:1制作
英国UN学位证,北安普顿大学毕业证书1:1制作英国UN学位证,北安普顿大学毕业证书1:1制作
英国UN学位证,北安普顿大学毕业证书1:1制作
 
Cloud Data Center Network Construction - IEEE
Cloud Data Center Network Construction - IEEECloud Data Center Network Construction - IEEE
Cloud Data Center Network Construction - IEEE
 
Maximizing Efficiency and Profitability with OnePlan’s Professional Service A...
Maximizing Efficiency and Profitability with OnePlan’s Professional Service A...Maximizing Efficiency and Profitability with OnePlan’s Professional Service A...
Maximizing Efficiency and Profitability with OnePlan’s Professional Service A...
 
Best Web Development Agency- Idiosys USA.pdf
Best Web Development Agency- Idiosys USA.pdfBest Web Development Agency- Idiosys USA.pdf
Best Web Development Agency- Idiosys USA.pdf
 
Implementing Zero Trust strategy with Azure
Implementing Zero Trust strategy with AzureImplementing Zero Trust strategy with Azure
Implementing Zero Trust strategy with Azure
 
SuccessFactors 1H 2024 Release - Sneak-Peek by Deloitte Germany
SuccessFactors 1H 2024 Release - Sneak-Peek by Deloitte GermanySuccessFactors 1H 2024 Release - Sneak-Peek by Deloitte Germany
SuccessFactors 1H 2024 Release - Sneak-Peek by Deloitte Germany
 
Balasore Best It Company|| Top 10 IT Company || Balasore Software company Odisha
Balasore Best It Company|| Top 10 IT Company || Balasore Software company OdishaBalasore Best It Company|| Top 10 IT Company || Balasore Software company Odisha
Balasore Best It Company|| Top 10 IT Company || Balasore Software company Odisha
 
Odoo 14 - eLearning Module In Odoo 14 Enterprise
Odoo 14 - eLearning Module In Odoo 14 EnterpriseOdoo 14 - eLearning Module In Odoo 14 Enterprise
Odoo 14 - eLearning Module In Odoo 14 Enterprise
 
SpotFlow: Tracking Method Calls and States at Runtime
SpotFlow: Tracking Method Calls and States at RuntimeSpotFlow: Tracking Method Calls and States at Runtime
SpotFlow: Tracking Method Calls and States at Runtime
 
Alfresco TTL#157 - Troubleshooting Made Easy: Deciphering Alfresco mTLS Confi...
Alfresco TTL#157 - Troubleshooting Made Easy: Deciphering Alfresco mTLS Confi...Alfresco TTL#157 - Troubleshooting Made Easy: Deciphering Alfresco mTLS Confi...
Alfresco TTL#157 - Troubleshooting Made Easy: Deciphering Alfresco mTLS Confi...
 
Taming Distributed Systems: Key Insights from Wix's Large-Scale Experience - ...
Taming Distributed Systems: Key Insights from Wix's Large-Scale Experience - ...Taming Distributed Systems: Key Insights from Wix's Large-Scale Experience - ...
Taming Distributed Systems: Key Insights from Wix's Large-Scale Experience - ...
 
KnowAPIs-UnknownPerf-jaxMainz-2024 (1).pptx
KnowAPIs-UnknownPerf-jaxMainz-2024 (1).pptxKnowAPIs-UnknownPerf-jaxMainz-2024 (1).pptx
KnowAPIs-UnknownPerf-jaxMainz-2024 (1).pptx
 
GOING AOT WITH GRAALVM – DEVOXX GREECE.pdf
GOING AOT WITH GRAALVM – DEVOXX GREECE.pdfGOING AOT WITH GRAALVM – DEVOXX GREECE.pdf
GOING AOT WITH GRAALVM – DEVOXX GREECE.pdf
 
Open Source Summit NA 2024: Open Source Cloud Costs - OpenCost's Impact on En...
Open Source Summit NA 2024: Open Source Cloud Costs - OpenCost's Impact on En...Open Source Summit NA 2024: Open Source Cloud Costs - OpenCost's Impact on En...
Open Source Summit NA 2024: Open Source Cloud Costs - OpenCost's Impact on En...
 
CRM Contender Series: HubSpot vs. Salesforce
CRM Contender Series: HubSpot vs. SalesforceCRM Contender Series: HubSpot vs. Salesforce
CRM Contender Series: HubSpot vs. Salesforce
 

IaaS with Software Defined Networking

  • 1. 1 Éamon Ryan Prasenjit Sarkar Senior Solutions Architect Staff Solutions Architect IaaS with SDN The Good, Bad and Confusing
  • 2. 2 Purpose and Audience Purpose • Customer interest is increasing well beyond just what our standalone products offer • In fact – customer don’t care about the products, they care about the solution • IaaS with SDN as a solution – extremely popular • Therefore, focus on joint solution: vRA, vRO, NSX-v and 3rd party options Intended Audience • Anyone dealing with this joint solution
  • 4. 4 Life of a Network Engineer!!! ;-) Not everything in life is fair
  • 5. 5 Distributed Switch  A network path defines where exactly a VM would connect.  You cannot use routed or NATed Profiles without vCNS or NSX. Only External Profiles would be used Without NSX, DvPortgroup becomes Network path MMBP1 MMBP2 What is Network Path for vRealize Automation? Without NSX-V
  • 6. 6 To Core Switches Distributed-Router-01 Perimeter-Gateway-01  The External Network Profile has to be associated on the Logical Switch connected on the Uplink of the DLR Associate External Network profile here Distributed Router Model
  • 7. 7 To Core Switches Distributed-Router-01 Perimeter-Gateway-01  The External Network Profile has to be associated on the Logical Switch connected on the Uplink of the DLR Associate External Network profile here Advantage of this model:  You can automatically redistribute Connected Routes on DLR into OSPF  You can make use of ECMP Distributed Router Model – Difference in behavior for Routed Profile
  • 8. 8 To Core Switches Perimeter-Gateway-01  The External Network Profile has to be associated on the Logical Switch connected on the Internal Interface of the Perimeter Edge Associate External Network profile here Perimeter Edge Model
  • 9. 9 To Core Switches Perimeter-Gateway-01  The External Network Profile has to be associated on the Logical Switch connected on the Uplink of the DLR Associate External Network profile here One Drawback in this Model:  You cannot automatically advertise networks below the application edge to devices located upwards(Perimeter GW, Core Switches)  Cannot make use of ECMP Perimeter Edge Model – Difference in behavior for Routed Profile
  • 10. 10 Workload Distributed Switch MMBP1 Transit Logical Switch Core DvPortgroup Distributed Router 01 Perimeter GW 01 Mgmt Distributed Switch What is Network Path for vRealize Automation? With NSX-V
  • 11. 11 Transit-Logical-switch Transit-Logical-switch-01 Network Path: Ext-DLR->Distributed Gateway Network Path: Ext-ESG->Perimeter-Gateway-01 Test-Routed-Profile Test-NAT-Profile To Core Switches Distributed-Router-01 Perimeter-Gateway-01Perimeter-Gateway-02Perimeter-Gateway-03 The Complete Story
  • 12. 12 NSX with vRA – On Demand Deployment Model Provider Logical Router (HA) External Networks  2 Tiers of Routing • Distributed Logical Router or NSX Edge for Application Router • NSX Edge for Provider Router  Dynamic Routing externally  Dynamic Routing (DLR), Static Routing or NAT internally (Edge) Dynamic Routing (OSPF, BGP) Transit Uplink 192.168.10.0/24 (External Network Profile) Static Route added automatically  On Demand Model is typically used for more dynamic Test/Dev style workloads, particularly when there is a requirement for overlapping IP addresses Dynamic Routing (OSPF, BGP) Web Logical Switch (Routed) DB Logical Switch (Routed) MMS 1 Routed App LS (Routed) 172.16.10.0/29 172.16.10.8/29 172.16.10.16/29 Web Logical Switch (Routed) App LS (Routed) DB LS (Routed) MMS 2 Routed 172.16.20.0/29 172.16.20.8/29 172.16.20.16/29 Web Logical Switch (NAT) App LS (Private) DB LS (Private) MMS 3 NAT & Private 172.16.100.0/24 172.16.101.0/24 172.16.102.0/24 Web Logical Switch (NAT) App LS (Private) DB LS (Private) MMS 4 NAT & Private 172.16.100.0/24 172.16.101.0/24 172.16.102.0/24 DLR
  • 13. 13 NSX with vRA – Pre Created Deployment Model Dynamic Routing (OSPF, BGP) External Networks  2 Tiers of Routing • Distributed Logical Router for Application Router • NSX Edge for Provider Router  Dynamic Routing  Use existing LS as external network profiles  One Arm Load Balancing on demand (vCNS Edge in 6.0, NSX Edge in 6.1) Prod-01 Logical Switch Dev-01 Logical Switch LB LB LB Dynamic Routing (OSPF, BGP) Transit Uplink 192.168.10.0/24 (External Network Profile) Scale Out Provider Logical Router (NSX 6.1) MMS 1 VMs MMS 2 VMs MMS 3 VMs  Pre-Created model is typically used with Production or more static workloads and the application topology is multi-tier on a single network Prod Web SG A Prod App SG A Prod DB SG A Dev Web SG A Dev App SG A Dev DB SG A Dev Web SG B Dev App SG B Dev DB SG B Distributed Logical Router Prod Web SG B Prod App SG B Prod DB SG B MMS 4 VMs LB 172.16.50.0/24 (External Network) 172.16.60.0/24 (External Network) Dynamic Routing (OSPF, BGP) with ECMP Dynamic Routing (OSPF, BGP) with ECMP Provider Logical Router (NSX 6.1)
  • 14. 14 NSX Security Groups & Security Policies  End-Users and Cloud Admins are able to select pre-defined security policies already approved by the Security Admin in NSX  Security policies are applied to one or more security groups where workloads are members  These security groups are created on-demand by vRA at deployment time WHAT you want to protect HOW you want to protect it SECURITY GROUP SECURITY POLICY Members (VM, vNIC) and Context (user identity, security posture) “Standard Web”  Firewall – allow inbound HTTP/S, allow outbound ANY  IPS – prevent DOS attacks, enforce acceptable use Services (Firewall, antivirus, IPS etc.) and Profiles (labels representing specific policies)
  • 15. 15 NSX Security Tags  NSX Security Tags can be used to define IF/THEN workflows for security services, e.g. IF user selects a “Finance” application, THEN place the VM in the “Finance” security group INFRASTRUCTURE APPS Security Admin “Finance Policy”  IF Tag = Finance THEN add VM to Security Group “Finance” with Security Policy “Finance” Step 1: Security Admin pre-defines a Security Group and a Security Policy with dynamic membership based on a Security Tag “Finance App”  Set Tag “Finance” Cloud Admin Multi- Machine Blueprint Step 2: Cloud Admin creates a Multi- Machine Blueprint which sets a Security Tag. Cloud Admin needs no knowledge of Security Groups or Security Policies.
  • 16. 16 NSX Security Tags  NSX Security Tags can be used to define IF/THEN workflows for security services, e.g. IF user selects a “Finance” application, THEN place the VM in the “Finance” security group INFRASTRUCTURE APPS Requests “Finance App” Service Catalog Step 3: End-User requests Application via the Service Catalog Cloud Consumer Step 4: VM is automatically deployed with its Security Tag WHAT you want to protect Step 5: VM is dynamically assigned to the relevant pre-defined Security Group SG=Finance
  • 17. 17 vRA Feature Set Supporting NSX Feature vRA 7.0 Future Day 1: Automated Routed, NAT, LB and security for single machines blueprints R R Day 1: Automated Routed, NAT, LB and security for application stack (micro-segmentation) R R Visual topology in blueprint: Drag-and-drop of networks, LB and security objects in Canvas and map relationships R R Day 1 and 2: Enhance NSX NAT with features for SNAT, DNAT, port forwarding and PAT monitors in network profile and add Day 2 updates Q R Day 2: Update NSX security groups, tags and policies applied to VMs Q R Day 1 and 2: Enhance NSX LB with features for port, algorithm, persistence, IP address pool, health check monitors in blueprint and add Day 2 updates Q R NSX Multi-vCenter Feature Support (IP and MAC set security groups) Q R Day 1 and 2: Support for enabling HA on NSX Edges Q R Day 1 and 2: Define NSX firewall rules for the app in blueprint and Day 2 add/change/remove firewall rules on VMs Q R Day 2: Change network adapters, IP address, DHCP, DNS, etc. on VM Q R Request time: Change Network, LB and Security settings Q R Direct support for IPAM solutions Q R Support NSX functionality in vCloud Air Q R
  • 18. 18 vRealize Automation 7.0 What’s changing that helps here?
  • 19. 19 vRealize Automation 7.0 – Changes • Easier setup • Graphical canvas • Relationship Mapping • Networking components as first class • Manageable Items • More support for on-demand networking objects • Single machines with advanced networking • Orchestrator • Event broker system Relevant to IaaS with SDN
  • 20. 20 vRealize Automation 7.0 – Easier Setup NSX Integration for Blueprint Authoring & Deployment • Automated connectivity to existing or on- demand networks • Micro-segmentation for application stack • Automated security policy enforcement thru NSX security policies, groups and tags • On-demand dedicated NSX load balancer
  • 21. 21 vRealize Automation 7.0 – Single Machine Networking • vCAC 5.2 -> Custom properties • vRA 6.x -> GUI based network options for MMBP only • vRA 7.0 -> GUI based network options for all (but all are now one – no single/MMBP difference)
  • 22. 22 vRealize Automation 7.0 – Orchestrator The vRO 7.0 Control Center • Embedded + External • New modern UI for vRO setup, configuration, workflow monitoring, troubleshooting, and other useful information. • Collect metrics for workflow execution • Analyze running workflows • General troubleshooting • Manage, Import/Export central DB • WAY more slick than previous “legacy” UI
  • 23. 23 NSX vRealize Orchestrator Plugin Abstracting with vRO Benefits • Ability to support multiple product versions (vCNS, NSX) transparently to vRA • Network and security workflows are decoupled from policy engine, enabling more rapid release and update to workflows • Ability to deliver fixes and updates more rapidly • Easier to extend/customize workflows by adding your own logic or leveraging other systems • Provide Self Service access to NSX vRO workflows through Advanced Service Designer • Can be used without vRA Warning: Supported for the vRA workflows ONLY
  • 24. 24 NSX vCenter Dynamic Types Plugin Abstracting with vRO Benefits • Has been built by Christophe Decanini and offers additional workflows the official plugin doesn’t cover. • It’s FREE ! • Designed to be used in XaaS context • Source code available at https://flowgrab.com or in the VMware communities • https://communities.vmware.com/docs/DOC-29032 • Can be extended easily, through the NSX REST API as it’s built leveraging the dynamic types plugin generator • Great learning opportunity (vRO and NSX) ! Warning: Not Supported by VMware
  • 25. 25 NSX-vRO Plugin 1.1.0 or 2.0.0 Feature Continued support for interoperability between vRA, vRO and NSX Expanded support and bug fixes for use of the plugin with vRA ASD / XaaS Enhance NSX NAT with features for SNAT, DNAT, port forwarding and PAT monitors in network profile and add Day 2 updates Support full management (CRUD) of NSX security groups, tags and policies applied to VMs Support for Enhanced NSX LB management with features such as LB port, algorithm, persistence, IP address pool, health check monitors Support for advanced NSX Edge features (HA, Logging, etc.) NSX firewall rule management (CRUD operations) Full documentation of the NSX-vRO plugin for general consumption Better scale and performance requirements Support for NSX Transformers (Crosshairs target)
  • 26. 26 vCAC 6.0.x and NSX Integration NSX vSphere (NSX-v) vCloud Automation Center vCenter Server vSphere Host (ESXi) vCNS Model NSX API (REST) VIM API (SOAP) AMQP
  • 27. 27 vRealize Automation and NSX Integration NSX vSphere (NSX-v) vRealize Automation vCenter Server vSphere Host (ESXi) vCNS Model NSX API (REST) VIM API (SOAP) AMQP vRealize Orchestrator vRO API (REST) NSX Plugin
  • 28. 28 vRealize Automation 7.0 – Event Broker • New event broker system • Allows blocking task style implementations • Dozens of notification possibilities • Ability to wire any of these to vRealize Orchestrator • Therefore ability to use vRO to influence NSX at any of these points • Standard machine stub callouts will still exist
  • 29. 29 DEMO: Cross site vMotion with vSphere, vRA and NSX Oooh!
  • 30. 30 Review of Learner Objectives You should be able to meet the following objectives: • Understand the benefits of the integration between NSX and vRealize Automation • Be able to articulate to customers the value of the joint solution • Create NSX network and security components to be consumed by vRealize Automation • Configure Network Profiles • Configure a multi-machine blueprint with networking and security • Deploy a multi-tier application from the vRealize Automation catalog with networking and security components.
  • 31. 31 Key Takeaways The NSX and vRealize Automation integration allows for the automation of multi-tier applications with networking and security components There are many different deployment options with the joint NSX and vRealize Automation solution. Understand your customer requirements and prescribe the appropriate deployment options.