VMware Cloud Foundation...NSX-T n v1 on WLD1 vRA Horizon VDI App Volumes 3rd Party Software Software...

©2020 VMware, Inc.

VMware Cloud FoundationSolution Overview

Colin Smith | SDDC Cloud Architect – Government, Education & Healthcare

2©2020 VMware, Inc.

Legacy Data Centers Slow You Down…

Agility

Scalability

SecurityConfidential │ ©2020 VMware, Inc.

Efficiency


Cloud Operating Model – Deliver what the Business Cares AboutA Universal Workload Platform – Built for Today and The Future

Mission Critical Apps

Virtual Desktops

Data Analytics/Hadoop

Machine Learning

Container Apps IoT

IaaS DaaS

NSXvSAN

VMware Cloud Foundation

vSphere vRealize SDDC Manager

CaaS PaaS

Data Center Edge Service Provider Public Cloud


VMware Cloud FoundationConsistent infrastructure and operations to speed innovation

Network

Storage

Compute

Mgmt.

Cloud Foundation

Consistency & Security

StandardizedArchitecture

Full Stack Approach Built-in Security Apps/Services/Infrastructure Automation

Tested and Validated

Simplified Experience


Management Compute Storage Networking

Public Cloud EdgeData Center


VMware Cloud FoundationFully Integrated Infrastructure for the Hybrid Cloud

Josh Townsend May 2019

Infrastructure and Operations

Across Hybrid CloudsCONSISTENT

Deploy & Manage Infrastructure/Apps

With the Ease of Cloud Operating ModelSIMPLE

Intrinsic and Intelligent Security

For Apps and InfrastructureSECURE

Enterprise Developer Experience

Accelerates Apps and ContainersCONSUMABLE


VMware Cloud Foundation is the Ideal Hybrid Cloud Platform

Intrinsic Security & Lifecycle Automation


Network Compute Storage

• Built on standardized & validated architectures

• Integrated software-defined cloud platform

• Simplest to deploy and operate

• Built-in intrinsic security

• Supports traditional and new workloads

• Simplest path to hybrid cloud



Compute Storage Network

Automation & Operations



VMware Cloud Foundation 4 with TanzuApp-focused Management | Dev & IT Ops Collaboration

IT Operator

vSANNSX-TvSphere

Developer




vRealize

VMware Cloud Foundation Services KUBERNETES & RESTful APIs

Tanzu Runtime Services

Tanzu Kubernetes Grid Service

Hybrid Infrastructure Services

Network Service

Storage Service

vSphere Pod Service

Registry Service

vCenterServer


Traditional Apps

Containers

Intrinsic Security Built into Every Layer of the Infrastructure

Micro-segmentation

VPN

Secure end user

Multi-Cloud Security

Storage

Data at rest encryption

Cluster-level key management

Hardware agnostic (no self-encrypting drives)

Compute

VM-level encryption

Encrypted vMotion

Multi-factor authentication

TPM / vTPM 2.0 + VBS

Management

Governance

Compliance

Container registry services

vSphere Trust Authority

Network


• Purpose Built SDDC Environment

– Dedicated vSAN Ready Nodes

– Dedicated vCenter / NSX Manager

– Create, expand, and delete independently

• Automated provisioning

– Management Domain provisioned at initial Bring Up

– Virtual Infrastructure (VI) WLD provisioned on-demand

– Horizon – automated deployment to an existing VI WLD

– Enterprise PKS - automated deployment to an existing VI WLD

• Up to 15 Workload domains can be created

• Configure multiple vSphere Clusters per Workload Domain

Workload Domain Overview

vCenter Server NSX Manager

vSphere vSAN

Workload Domain 1

NSX


Management Domain

Special purpose domain

• Created during Bring-up

One per VCF instance

• Minimum 4 hosts

• Built using vSAN and NSX-T

Runs infrastructure components

• SDDC Manager, vCenter Server(s), NSX-T Manager(s), Optional: vRealize Operations, vRealize Log Insight, vRealize Automation

• Can be used for AD, Backup, 3rd

party tools, etc

vCenter & NSX Manager instances for all WLDs run in Management Domain 1st Four Nodes

Virtual Infrastructure Workload Domains

App-

Volumes

View

Connect

vCenter

App-

Volumes

View Compose

View

Connect

SQL AD

VI Workload Domain with Horizon overlay

vSAN Datastore

Virtual Distributed Switch

ESXi01 ESXi02 ESXi03 ESXi04vSphere Cluster + vSAN

Management Workload Domain

Cloud Foundation Infrastructure VMs

Workload Domain Component VMs located in Management Domain

vCenterSDDC MGR

vCenter

NSX CtrlNSX CtrlvRealize

Operations NSX CtrlNSX CtrlvRealize

Automation

Optional

vCenter

vRealize Suite Lifecycle Manager

NSX Managers

NSX Managers


Log Insight

NSX Managers

NSX Managers


VMware Cloud Foundation: VI Workload DomainsOn-demand, policy managed infrastructure for workloads

HETEROGENOUS HARDWARE RESOURCE POOL e.g. GPUs, Large Storage/Memory, Higher Performance Storage

Mapping to specific HW infrastructure capabilities

ExternalIP/FC Storage

PKSNSX-T

n

v1 on WLD1

vRAHorizon VDI

App Volumes

3rd Party Software

Software FlexibilityProducts, Versions, 3rd party software

Hardware ChoiceVendors, Configuration

Application Mapped InfrastructureCapacity, Performance,Security/Compliance,HW requirements

Large Memory Servers

MANAGEMENT DOMAIN

e.g. Hytrust, Palo Alto FW

External APIIntegrations

VM

WA

RE

CL

OU

D F

OU

ND

AT

ION

Hybrid Connectore.g. HCX, HLMExternal Interfaces

Can be specific to certainWorkload Domains (WLD)

PKSNSX-T

n

v2 on WLD2

ML App

Database WORKLOAD DOMAIN

DesktopWORKLOAD DOMAIN

GPU enabled servers

IaaS WORKLOAD DOMAIN

Machine LearningWORKLOAD DOMAIN

GPU enabled servers

ContainerWORKLOAD DOMAINS


vCenter vCenter

VCF Single Site Deployment

1 VCF Stretched Deployment

2

vCenter

Stretched vSAN workload domain(s) between 2 sites. Each cluster has option to be stretched

Single site deployment of one or more workload domains. Each workload domain can be multi- clustered

Cloud Foundation Deployment OptionsSingle site, Stretched and Multi-site Deployments

SDDC Manager

SDDC Manager

vCenter

SDDC Manager

VM

vCenter

SDDC Manager

VM

VCF Multi-instance Management

3

Multiple VCF instances connected via a Federation for aggregated visibility and ease of management

Site

Site Boundary

Federation


Day 0 Policy-based Flexibility

Rapid Deployment & Scale to Best Practice

SDDC Manager

Data Center AutomationAutomated Day 0 to Day N Operations of your Hybrid Cloud Infrastructure

SSL Certificate Replacement

Password Update & Rotation

Day 2

Day N

Deploy Container Architectures (PKS/Tanzu)

SDDC Patching, Upgrades and LCM

Create/Expand/Delete Workload Domain(s)

Public API Support


Updates over Time

Lifecycle Management - Ease of Upgrades and PatchingA new way to manage data center infrastructure, not individual components

Network

Compute

Storage

ESXiPSCvCenter

vSAN

NSX

SDDC Components

Management

vRealize

Updates applied per Cluster

WLD 2

WLD 1

MGMT WLD

WLD 3

Cluster 1

Cluster Y

Cluster

Cluster

Cluster 1

Cluster X

dependency

3.93.8.1

SDDC ManagerLCM

Update Bundle Released

UpdateNotification

ReviewUpdates

ScheduleUpdates

Monitor& Reporting

SDDC ManagerLCM


Connects using your My VMware Credentials

Determines applicable bundles based upon your software versions

Download additional Install Bundle like vRealize Suite Lifecycle Manager

Step 1: Authenticate to the VMware depot

Step 2: Download applicable bundles

Step 3: Install the bundle, or Schedule for Install

Lifecycle ManagementVMware Cloud Foundation

Authenticate

SDDC Manager

1

2

3

VMware depot

Schedule Updates

Single-Click Updates

Download Bundle

Install Bundle


Used when SDDC Manager does not have access to the VMware depot

Manually download update bundles and transfer them to SDDC manager

Command line tool, shipped with SDDC Manager (/home/vmware/vcf/lcm/lcm-tools)

Step 1: Generate marker file on SDDC Manager

Step 2: Copy tool and marker file to computer with internet access

Step 3: Execute tool to download applicable update bundles

Step 4: Transfer bundle(s) to SDDC Manager repository

Offline Lifecycle ManagementVMware Cloud Foundation

Transfer

Download

SDDC Manager

CopyMarker File1

23

4

VMware depot

Single-Click Updates

Schedule Updates


vSphere Lifecycle Manager(vLCM)

Base image Vendor Addon Firmware & Drivers Addon

Initial Support for vSphere Lifecycle Manager

Uses desired-state model for all lifecycle operations

• Monitors compliance “drift”

• Remediates back to desired state

Built to manage hosts at cluster level

• Hypervisor

• Drivers

• Firmware

Modular framework supports vendor firmware plugins

• Dell

• HPE

On Supported Hardware in a vLCM Workload Domain

DesiredState

vSphere vSAN

Drift

ESXi/vSAN Drivers BIOSI/O ControllersStorage devicesNICsBMC

Vendor plugins

DesiredImage

vmware.com Vendor

Remediate drift

Apply Image across cluster

1 2 3 4

Managed by

SDDC Manager


Features 3.0 3.5.x 3.7.x 3.8.x 3.9.x

Any vSAN Ready Node & Network YES YES VxRAIL added YES YES

vSAN Stretch Cluster YES YES YES YES YES

Multi Cluster WLD YES YES YES YES YES

Composability Support HPE Synergy YES YES YES Dell MX Added

NFS Backed Workload Domains - YES YES YES YES

NSX-T Workload Domains - YES1 YES Yes YES

FC Storage YES YES YES Principal Added

Automated Horizon Deployment - - YES YES YES

Full API Coverage YES YES

Automated Enterprise PKS Deployment YES YES

Multi Instance Management YES

Cluster Level Upgrades YES

Multi-pNIC Support New in 3.9.1*

Application Virtual Networks (AVN) New in 3.9.1

VMware Cloud Foundation Capability EvolutionSept 2018 Feb 2018 Mar 2019 July 2019 Jan 2020

*Multi-pNIC available as API only


VMFSvVols

Supports a broad range of storage options

VCF 4 Supports a Portfolio of Storage Solutions

vSAN NFS

BlockFile


Storage Policy Based Management

(Adjustable)

Tag based initial placement

(fixed)


Management Domain

vSAN

Workload Domain

vSAN

Workload Domain

NFS

Workload Domain

FC

Principle Storage Options – Used to Create the Workload Domain

Supplemental Storage – Used to add capacity the Domains

Principle Storage – vSAN is required to Create the Management Domain

FCNFSiSCSI

IP or FC Network

Switches

VMware Cloud Foundation StorageFlexible Storage Options

vVols


VMware Cloud on Dell EMC, powered by DellEMC VxRail

VMware Cloud on AWS Outpost, powered by AWS Hardware(Coming Soon)

Flexible Consumption ModelChoice of Hardware and Clouds for Cloud Foundation-enabled Hybrid Deployments

Public Cloud

VMware Cloud on AWS

Azure VMware Solution by CloudSimple

Azure VMware Solution by Virtustream

PowerEdge MXSynergy

on

* ***

Josh Townsend May 2019

(More Coming)

VM

wa

re

Ma

na

ge

d

Cu

sto

me

r M

an

ag

ed

Pa

rtn

er

Ma

na

ge

d

vSANReadyNodes&Integrated

Systems*

ComposableSystems

Co-Engineered Systems

VMware Cloud on Dell EMC

VMware Cloud on Outpost

Private Cloud

Google Cloud VMware Solution by Cloud Simple


Workload Domains & Deployment Overview


VCF Consolidated Architecture

• Compute workloads co-reside in management workload domain

• Shared vSphere cluster with resource pools

VCF Standard Architecture

• Management domain is dedicated to running infrastructure workloads

• Compute workloads run in VI domain(s) and are managed by separate vCenter servers

Small

Today

Tomorrow

Start with what you need, easily scale non disruptively

Start small and Grow

VMware Cloud Foundation Deployment Types

Large


Standard Architecture

vCenterSDDC MGR

vCenter


Operations NSX CtrlNSX CtrlvRealize

Automation

Optional

Standard Architecture

Infrastructure runs on a dedicated Management Workload Domain. Workload VMs run in dedicated VI and/or VDI workload domains.

InfrastructureVMs

WorkloadVMs

Cluster 1Cluster 1

VMVMVM

VMVMVM

VMVMVM

VMVMVM


vSphere Cluster + vSANESXi01 ESXi02 ESXi04

NSX vSwitch

…

vSAN

ESXi03 ESXi04 ESXi64

NSX vSwitch

…

vSAN

vSphere Cluster + vSAN


NSX vSwitch

…

vSAN

vCenter

Cluster N


NSX vSwitch

…

vSAN

VI Workload Domain 1 VI Workload Domain 2


NSX Managers

NSX Managers


Log Insight

NSX Managers

VMVMVM

VMVMVM

VMVMVM

VMVMVM VMVM

VMVMVM

VMVMVM

VMVMVM

VM

Targets medium to large deployments

• Requires a minimum of 7 servers (recommend 8)

Management domain dedicated to infrastructure

Dedicated VI domain(s) for user workloads

• Each WLD can consist of multiple clusters

Up to 15 WLD including Management Domain

• vCenter instances run in linked-mode

• Each WLD can consist of multiple clusters

vCenter

NSX Edge Cluster

vCenter

NSX Edge ClustervCenter

NSX Edge Cluster VMVM

VMVMVM

VMVMVM

VMVMVM

VM


Consolidated ArchitectureInfrastructure and Workload VMs run together on the Management Domain inside separate resource pools.

InfrastructureVMs

vSphere Cluster + vSAN

WorkloadVMs


vCenterSDDC

Manager NSX CtrlNSX Ctrl

NSX Managers

NSX CtrlNSX Ctrl

vRealize Log Insight

NSX CtrlNSX Ctrl

vRealize Operations NSX Ctrl

NSX CtrlvRealize

Automation

Optional


Consolidated vSwitch

…

vSAN

Management Resource Pool

VMVMVM

VMVMVM

Workload Resource Pool

VMVMVM

VMVMVM

VMVMVM

Consolidated Architecture


Targets smaller deployments

• Minimum of 4 servers

Infrastructure and compute VMs run together on shared management domain

Resource Pools used to segregate / isolate workload types

Supports multiple clusters and scale to documented Cloud Foundation maximums

All nodes within a Consolidated Architecture deployment must be vSAN ready nodes

vCenter

NSX Edge Cluster


NSX Architecture Options

Choice of Deployment Model

• Management domain has Private NSX Managers and Edge cluster

• Management: Optionally deploy NSX Edge Cluster at Day X

Management Domain vCenter

NSX-T ManagersNSX-T Managers

NSX-T ManagersNSXESG

NSXEdge

Management Workload DomainSSO Domain

SDDC Manager






• Workload Domains Create New or Re-use NSX Managers


Cluster 1 Cluster 2

APPOS

APPOS

APPOS

Workload Domain 1. NSX -T

APPOS

APPOS

APPOS

APPOS

ESXi ESXiESXi ESXi

APPOS

Workload Domain 1 vCenter


NSX-T Managers

APPOS

APPOS

APPOS

APPOS


NSX-T Managers

NSXESG

NSXEdge

NSX Manager Boundary


SDDC Manager










Cluster 1

Workload Domain 2. – NSX-T

Cluster 1

APPOS

APPOS

ESXi

Cluster 2

DBOS

DBOS

ESXiESXi ESXi

Cluster 1 Cluster 2

APPOS

APPOS

APPOS


APPOS

APPOS

APPOS

APPOS

ESXi ESXiESXi ESXi

APPOS



NSX-T Managers



APPOS

APPOS

APPOS

APPOS

VDI VDI VDI VDI


NSX-T Managers


NSX-T Managers

NSXESG

NSXEdge



SDDC Manager







• Edge Deployment Choice



Cluster 1


Cluster 1

APPOS

APPOS

ESXi

Cluster 2

DBOS

DBOS

ESXiESXi ESXi

Cluster 1 Cluster 2

APPOS

APPOS

APPOS


APPOS

APPOS

APPOS

APPOS

ESXi ESXiESXi ESXi

APPOS



NSX-T Managers



APPOS

APPOS

APPOS

APPOS

VDI VDI VDI VDI


NSX-T Managers


NSX-T Managers

NSXESG

NSXEdge

NSXESG

NSXEdge

NSXESG

NSXEdge

NSXESG

NSXEdge

NSXESG

NSXEdge




SDDC Manager


Expandable as needed, up to vSphere Configuration Maximums

Physical Hardware Overview – Notional Design


Top-of-Rack Switches

Management Switch (Optional)

Virtual Infrastructure WLD #1

Virtual Infrastructure WLD #2

Available Capacity

Inter-rack or Spine Switches

Rack fully populated with vSAN ReadyNodes

MinimumOf 4 ReadyNodes

Expand

Expand

VI WLD

#3


Enabling the Hybrid Cloud with VCF


Private Cloud Edge Solutions

VMware ManagedVMware Cloud

Partner ManagedVMware Cloud Provider Program

Customer ManagedCustomer Infrastructure

Management Compute Storage Networking

VMware Cloud Foundation Hybrid Cloud PlatformOperational Consistency Across Private and Public Clouds


Cloud Foundation

Cloud Foundation

Cloud Foundation

Building a Hybrid Cloud with VMware Cloud on AWSPublic cloud service sold, delivered and supported by VMware

Region 1

Cloud Foundation

Region 2

Region 3Cloud

Foundation

Amazon EC2

AmazonS3

AmazonRDS

AWS Direct

Connect

AWS IAM

AWS IoT

vRealize Management

Operational Consistency Across the Hybrid Cloud

On Prem Cloud

Access to All AWS Services

HybridMobility Tunnel

VMware Cloud on AWS


Cloud Foundation

Cloud Foundation

Cloud Foundation

Building a Hybrid Cloud with VMware Cloud PartnersPublic cloud services offered by our strategic partners

Geo 1

Cloud Foundation

Geo 2

Geo 3Cloud Foundation

vRealize Management

Operational Consistency Across the Hybrid Cloud

On Prem Cloud

HybridMobility Tunnel


Conclusion


D E L I V E R S

Developer Ready Infrastructure

Automated infrastructure and

developer-ready APIs

Universal Platform

Single platform for VMs and Containers

Lowest TCO

28% cheaper than 3-tier

infrastructure

Foundation for Hybrid

Extend to the same software

stack in public clouds

+

The Ubiquitous Hybrid Cloud Platform



Ideal Hybrid Cloud Solution Combines the Best of Both WorldsDiverse Clouds • Same People • Same Process • Same Tools

Secure/Compliant

Lower Costs

Scalable &Agile

Common Operational

Model

Self-drivingOperations

Support Traditional &

New Apps

Easy to Use& Automated

PRIVATE CLOUD

PUBLIC CLOUD

EDGE CLOUD

PUBLIC CLOUD



vSAN

NSX

vSphere

vSphere

vSphere

vSphere

vRealize

Virtual Infrastructure Software-defined Data Center Hybrid Cloud Platform

vSphere

ESXi ESXi

ESXi ESXi

vCenter

VMware Cloud

Hybrid Operations

AzureVMware Cloud

Foundation

Azure services

AWSVMware Cloud

Foundation

AWS services

Data CentersVMware Cloud

Foundation

Edge LocationsVMware Cloud

Foundation

GCPVMware Cloud

Foundation

GCP services

VCPPVMware Cloud

Foundation

provider services

Virtual Cloud Network

Powering Hybrid IT Organizations

v1 v2 v3

VMware Evolution

VMware Cloud Foundation...NSX-T n v1 on WLD1 vRA Horizon VDI App Volumes 3rd Party Software Software...

Documents

Transcript of VMware Cloud Foundation...NSX-T n v1 on WLD1 vRA Horizon VDI App Volumes 3rd Party Software Software...