Introduction to NSX SD-WAN by VeloCloud: Enabling …...by VeloCloud: Enabling the Digital WAN...
Transcript of Introduction to NSX SD-WAN by VeloCloud: Enabling …...by VeloCloud: Enabling the Digital WAN...
#vmworld
Introduction to NSX SD-WAN by VeloCloud: Enabling the
Digital WAN TransformationBruce Davie, CTO, Asia Pacific & Japan, VMware, Inc.Ray Wong, Principal Systems Engineer, VMware, Inc.
BRE2129BE
#BRE2129BE
VMworld 2018 Content: Not for publication or distribution
Disclaimer
2©2018 VMware, Inc.
This presentation may contain product features orfunctionality that are currently under development.
This overview of new technology represents no commitment from VMware to deliver these features in any generally available product.
Features are subject to change, and must not be included in contracts, purchase orders, or sales agreements of any kind.
Technical feasibility and market demand will affect final delivery.
Pricing and packaging for any new features/functionality/technology discussed or presented, have not been determined.
VMworld 2018 Content: Not for publication or distribution
Agenda
3©2018 VMware, Inc.
Virtual Cloud Networking and SD-WAN
Understanding drivers for SD-WAN
Introduction to NSX SD-WAN by VeloCloud
Components, Features, and Use Cases
VMware Vision for SD-WAN
VMworld 2018 Content: Not for publication or distribution
4©2018 VMware, Inc.
BRANCH
BRANCH
BRANCH
BRANCH
BRANCH
BRANCH
BRANCH
BRANCH
TELCO/NFV
TELCO/NFV
EDGE/IOT
TELCO/NFV
BRANCH
BRANCH
EDGE/IOT
EDGE/IOT
The Virtual Cloud NetworkConnect and Protect your BusinessVMworld 2018 Content: Not for publication or distribution
5©2018 VMware, Inc.
Identity
Apps and Data
Policy ScalabilityAnalytics and Insights
Secure Connectivity Availability
Users
Private Data Centers
VMs, Containers, Microservices
Branch Offices
Public Clouds
Telco Networks
Things
Virtual Cloud NetworkingConnect & Protectany workload across any environment
Built-in
Automated
Programmable
Application Centric
VMworld 2018 Content: Not for publication or distribution
6©2018 VMware, Inc.
MPLS SD-WAN NSX SD-WAN by VeloCloud
1997 2013 2018
VMworld 2018 Content: Not for publication or distribution
7©2018 VMware, Inc.
Expensive Private Lines
Slow Deployment Times
Backhaul for Cloud Services
Constrained Choice of Links
Before… Expensive, Complex and Inefficient
Branch Data center100s to 1000s
Private Line (MPLS)
Cloud
VMworld 2018 Content: Not for publication or distribution
8©2018 VMware, Inc.
NSX SD-WAN Edge
NSX SD-WANGateways
NSX SD-WANGateways
NSX SD-WAN Edge
MPLS + Broadband + LTE
After… the Cloud is the Network
Apps move to the cloud
Branch Data center100s to 1000s
Cloud
Use Multiple Transports, Reduced costs
Deploy in Days Optimized Cloud Access
Assured Application Performance
VMworld 2018 Content: Not for publication or distribution
9©2018 VMware, Inc.
Business Benefits
Agile Rollouts Broadband & LTE Zero touch
deployments Flexible
configurations
Lower Cost Economical
bandwidth Lower IT costs Efficient usage
Application Performance & Reliability Optimal customer
experience Reliable uptime Cloud and legacy
apps
Simplified Security Enables business Minimizes risk Reduced
compliance efforts
VMworld 2018 Content: Not for publication or distribution
10©2018 VMware, Inc.
Branch Site with NSX SD-WAN Edge by VeloCloud
NSX SD-WAN Gateway by VeloCloud withEmbedded ControllerPublic Internet
Legacy EnterpriseData Center
SD-WAN Enterprise Data Centerwith NSX SD-WAN Edge by VeloCloud Cluster
ProviderEdge
ProviderEdge
Internet
SAAS
MPLSPrivateCircuit
“Site to siteSD-WAN plus benefits ofcloud gateways for SaaS”
Introducing NSX SD-WAN by VeloCloudEnterprise Over-the-Top Service
Hub for SD-WAN to data center including private links
Hosted gateways for SD-WAN to SaaS/IaaS
Hub-less design for legacy data centers
NSX SD-WAN Orchestrator by VeloCloud
VMworld 2018 Content: Not for publication or distribution
11©2018 VMware, Inc.
Simplified WAN Management
Assured Application Performance
Managed On-ramp to the Cloud
NSX SD-WAN by VeloCloud - Key Differentiators
Branch Edges
SaaS / IaaS
Zero-touch deployments, simplified operations, one-click service insertion
Direct cloud access with performance, reliability and security
Datacenter Edges
Transport independent performance for the most demanding apps, leverages economical bandwidth
SD-WAN OverlayPrivate /MPLS 3G/4G LTE
Internet Broadband
NSX SD-WAN Orchestrator
Cloud Gateways
VMworld 2018 Content: Not for publication or distribution
12©2018 VMware, Inc.
Monitoring, Management, and Analytics: NSX SD-WAN OrchestratorA single pane of glass for your entire SD-WAN solution
A fully multi-tenant solution offering:
Zero-touch provisioning of new sites and branches
Simple configuration and policy management
On-going visibility and agile troubleshooting
VMworld 2018 Content: Not for publication or distribution
13©2018 VMware, Inc.
Global Gateways
99.99% Reliability SLA
440+Gateways
63Orchestrators
30Regions
VMworld 2018 Content: Not for publication or distribution
14©2018 VMware, Inc.
NSX Branch to Datacenter Service Platforms
Micro to Small Branch Small to Midsized Branch Large Branch/Data Center
NSX SD-WAN Edge by VeloCloud
No local appsCloud or integrated security
NSX SD-WAN Edge Services Platform
No local appsOne networking VNF e.g. NGFW
Edge VNF SecurityURL/content filteringIDS/IPS
VMware NSX
Roadmap
NSX with NSX SD-WAN VNF
Local appsMany VMs including network services
NSX / vSAN
Ap
p X
IoT
GW
File
Ana
lytic
s
NG
FW
SD-W
AN
CPE
VMworld 2018 Content: Not for publication or distribution
15©2018 VMware, Inc.
Assured Application Performance Over Any Link
Continuous Monitoring Dynamic Per Packet Steering On Demand Remediation
• App Quality Score• Error Correction • TCP Optimization
• Link Detection• Performance Monitoring
• Single or Multi- Link Capability Performance and action drill down
MPLS, Internet broadband and LTE circuits
ISP 1
ISP 2
VMworld 2018 Content: Not for publication or distribution
16©2018 VMware, Inc.
Assured Application PerformanceVideo Conference over WAN Link with 2% Packet Loss
Without NSX SD-WAN by VeloCloud With NSX SD-WAN by VeloCloudVMworld 2018 Content: Not for publication or distribution
17©2018 VMware, Inc.
Optimized Performance for Cloud Apps – Office 365O365 on a Single Link (Brownout condition) from Branch in Thailand to Gateway in Singapore
VeloCloud
Non-SDWAN
VMworld 2018 Content: Not for publication or distribution
18©2018 VMware, Inc.
Outcome Driven Segmentation
Branch 1
Branch 2
Retail Store
Me
dia
NSX SD-WAN OrchestratorAnd Controller
NSX SD-WAN Edge PCINetwork
Datacenter
SBC
Simple Enterprise Wide Segment Creation
Segment Aware Topology
Isolation and Overlapping IP
Segment Aware Policies
On-Premises and Cloud
VMworld 2018 Content: Not for publication or distribution
19©2018 VMware, Inc.
NSX SD-WAN by VeloCloudIntegration with NSX Data Center and NSX Cloud
Assured Application Performance Across
the Network
Simplified Activation and Automated Connectivity
End-to-End Segmentation from Data Center to Branch
NSX SD-WAN Edge
NSX SD-WANGateways
NSX SD-WANGateways
NSX SD-WAN Edge
NSX Data Center
Branch100s to 1000s
NSX SD-WAN Gateways in IBM Cloud, AWS, Azure, etc.
NSX Cloud
Cloud Apps
Data Center Apps
VMworld 2018 Content: Not for publication or distribution
20©2018 VMware, Inc.
NSX Branch to Data Center End to end services, analytics and policy
Simple enterprise-wide segment creation
Segment-aware topology
Isolation & overlapping IP
Segment-aware policies
On-premises and cloud
Branch 1
Branch 2
Retail 1
Corp-HR10.1.0.0/24
Voice10.1.0.0/24
Corp-HR10.2.0.0/24
Corp-MKT10.2.0.0/24
Voice10.2.0.0/24
Corp-MKT10.3.0.0/24
PCI10.3.0.0/24
Guest10.4.0.0/24
VeloCloud Edge
NSX routing domain Corp-HR
NSX routing domain Corp-MKT
NSX routing domain PCI
Data Center
HRIS Payroll
CRM Analyst
PCI Network
VeloCloud Orchestrator and Controller
VMware NSXVMware ESXi
Roadmap
SD-WAN analytics
Policy automation
via API
VMware vRealize Network Insight
NSX Manager
VMworld 2018 Content: Not for publication or distribution
21©2018 VMware, Inc.
Global WAN / Managed WAN
VMworld 2018 Content: Not for publication or distribution
22©2018 VMware, Inc.
Private backbone has limitations for offnet areas
Internet only access may have performance issues
Global Multi-National Challenges
Extending private bb to
satellite offices too pricey
“Offnet” broadband unreliable
No local personnel for
installation
SDWAN overlay on
Internet lacks performance
VMworld 2018 Content: Not for publication or distribution
23©2018 VMware, Inc.
Regional SD-WAN hub on legacy backbone
Offnet satellites get SD-WAN assured performance overlay to hub
Satellites get access to backbone connected non SD-WAN sites
DIY: Hub Access to Backbone
VMworld 2018 Content: Not for publication or distribution
24©2018 VMware, Inc.
SP deployed SD-WAN Gateways as a service
Integrated access to SP backbone and/or cloud datacenters
Offnet satellites get SD-WAN assured performance overlay to Gateway
SP Network Integrated SD-WAN
“SD-WAN integrated
into provider network, not OTT ”
VMworld 2018 Content: Not for publication or distribution
25©2018 VMware, Inc.
Data plane in the cloud, not just management
True multi-tenant Gateways and Orchestrator
Multi-tier, role-based managementfor SPs
SD-WAN for Service Provider IntegrationEnabling true hybrid networks
SD-WAN for last mile/access
Access to private network for mid mile
Hub-less deployment in DCs and non-SD-WAN sites
NSX SD-WAN Orchestrator by VeloCloud• BGP / CE elimination• COS, MPLS policing, tunnel shaper
NSX-WAN Gateway by VeloCloudwith Embedded Controller
Public Internet
ProviderEdge
Branch Site withNSX-WAN Edge
by VeloCloudor
NSX-WAN VNF by VeloCloud
Legacy EnterpriseData Center
Provider Edgeand Gateways
PrivateCircuit
Provider Cloud Data Centerwith Provider Gateways
MPLS
SAAS
Internet
VMworld 2018 Content: Not for publication or distribution
26©2018 VMware, Inc.
Extend NSX SD-WAN into Public Cloud
VMworld 2018 Content: Not for publication or distribution
27©2018 VMware, Inc.
Flexible Deployment Options for AWS
VPC
Direct Connect
Edge
Partner Gateways
Edge
• Improve experience for partner hosted apps• Enable direct access to the cloud
Private Cloud
• Achieve SLAs from SPs• Benefit from last-mile and mid-mile optimization
Partner/SP Deployment
Public Cloud
DistributedNSX SD-WAN Gateways
VMworld 2018 Content: Not for publication or distribution
28©2018 VMware, Inc.
Ease of SD-WAN Deployments
VMworld 2018 Content: Not for publication or distribution
29©2018 VMware, Inc.
Have existing MPLS contracts and managed CPEs?
Undepreciated investment in WAN routers?
Ability only to add SD-WAN to some sites?
Desire for no forklift upgrades?
Privacy concerns?
Have hybrid, multi-cloud datacenters? Have no cloud mandate?
Unable to Take Advantage of SD-WAN Use Cases?It’s easier than you think
VMworld 2018 Content: Not for publication or distribution
30©2018 VMware, Inc.
• Cloud or on-premises orchestrator and controllers• Controller functions: route reflector, VPN control,
link measurements
Incremental and Interoperable SD-WAN Rollouts
NSX SD-WAN by VeloCloud Orchestrator
NSX SD-WAN by VeloCloud ControllersNSX SD-WAN Edge
by VeloCloud
NSX SD-WAN Edge by VeloCloud
NSX SD-WAN by VeloCloub Hub Cluster
OSPF, BGP
BGP Route Learning and Distribution
OSPF, BGP
OSPF, BGP
Co-exist
Replace
Legacy
Internet
MPLS
VMworld 2018 Content: Not for publication or distribution
31©2018 VMware, Inc.
No Cloud Needed
Virtual Edge for
IaaSwith cloud gatewaysfor SaaS NSX SD-WAN
Edge
SD-WANEnterprise DC
Internet
Private—MPLS
NSX SD-WAN Edge Cluster
Public Internet
NSX SD-WAN Orchestrator
PE PE
Private Circuit
NSX SD-WAN Virtual Edge in Cloud Marketplaces
Hub for SD-WAN to data center including private links
Orchestrator and Controllers on-premise
Cloud access via datacenter / backbone
VMworld 2018 Content: Not for publication or distribution
32©2018 VMware, Inc.
VMware Vision for SD-WAN
VMworld 2018 Content: Not for publication or distribution
‹#› 33©2018 VMware, Inc.
VMware Named as a Leader in the Gartner Magic Quadrant for WAN Edge Infrastructure
Source: Gartner, Inc., Magic Quadrant for Enterprise Mobility Management Suites, October 10, 2018.This graphic was published by Gartner, Inc. as part of a larger research document and should be evaluated in the context of the entire document. The Gartner document is available upon request from VMware.Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner's research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.
VMware SD-WAN by VeloCloud
Positioned Furthest on Completeness of Vision
Leader in the Ability to Execute
VMworld 2018 Content: Not for publication or distribution
34Confidential │ ©2018 VMware, Inc.
VeloCloud Vision: VMware – WAN Edge Today
Public Cloud
TelcoService
Cloud Service
MPLS + Broadband + LTE
SaaS
Data Center
Gateways
Orchestrator
Branch
Branch
Branch
Edge
Edge
Edge
VMworld 2018 Content: Not for publication or distribution
35Confidential │ ©2018 VMware, Inc.
Branch
Edge
Vision for WAN Edge CY2019 to CY 2021
Branch
Edge
Public Cloud
TelcoService
Cloud Service
Gateways
Edge
SaaS
Data Center
IoT
Users and things
Policy-DrivenLAN Integration
Policy-DrivenDC Integration
Extended Platform for Analytics and Virtual Services
Extended Overlays
+Mobile, IoT, Puck +LP-WAN, BLE, 5G
GatewayFederation
Orchestrator
Branch
VMworld 2018 Content: Not for publication or distribution
36©2018 VMware, Inc.
NETWORKING AND SECURITY MANAGEMENT AND AUTOMATION
vRealize AutomationEnd-to-end workload automation
Network InsightNetwork discovery and insights
Cloud-Based Management Workflow Automation Blueprints / Templates Insights / Discovery Visibility
NETWORK AND SECURITY VIRTUALIZATION
AppDefenseModern application
security
NSX SD-WANby VeloCloud
WAN connectivity services
NSX Hybrid ConnectData center and cloud
workload migration
NSX Data CenterNetworking and
security for data center workloads
NSX CloudNetworking and
security for Public Cloud workloads
Security Integration Extensibility Automation Elasticity
VMware NSX PortfolioThe Foundation of the Virtual Cloud Network
VMworld 2018 Content: Not for publication or distribution
37©2018 VMware, Inc.
The Future of Networking
©2018 VMware, Inc.
VMworld 2018 Content: Not for publication or distribution
38©2018 VMware, Inc.
Available at the VMworld
Bookstore
Download today!
Find SD-WAN Resourcesvmware.com/go/sd-wanRead the VeloCloud by VMware Blogblogs.vmware.com/velocloud/
Where to Get Started
Visit the VMware BoothProduct overviews, use-case demos
Meet the ExpertsJoin our experts in an intimate roundtable discussion
Free Hands-on LabsTest drive SD-WAN with expert-led or self-pacedhands-on labs labs.hol.vmware.com
Engage and Learn
Experience
Try
VMworld 2018 Content: Not for publication or distribution
DON’T FORGET TO FILL OUT YOUR SURVEY.
#vmworld #BRE2129BE
VMworld 2018 Content: Not for publication or distribution
THANK YOU!
#vmworld #BRE2129BE
VMworld 2018 Content: Not for publication or distribution