Anthos€¦ · Anthos Transform It provides configuration-as-code via Anthos Config Management,...
Transcript of Anthos€¦ · Anthos Transform It provides configuration-as-code via Anthos Config Management,...
Anthos: Modernize, Build and Run Workloads in Hybrid and Multi-Cloud Environments
Table of Contents:
● Overview - Cloud Adoption … 02
● How Hybrid and Multi-Cloud are Different? … 03
● Anthos Stack & Its Components … 04
● Planning a Successful Hybrid & Multi-Cloud Journey … 06
● Adoption Challenges and Risks … 13
● Anthos - Cost-Benefits Analysis … 14
● Migrate and Build with Logicbulls and Google Cloud … 15
Strategy. Transformation. LeanOps.
“84% of enterprises run on a multi-cloud
strategy. Cloud technology trends show
28% of companies prefer hybrid cloud
strategies. Public and private clouds are used
equally by 17% of companies” - Rightscale
“22% of enterprise workloads will be
handled by hybrid cloud platforms. 83% of
enterprises will upload workload to the cloud
— 41% on public cloud platforms, 22% –
on hybrid ones” - Forbes
Hybrid and multi-cloud strategies are preferred by
companies as it offers flexibility and scalability along with
the ability to decouple infrastructure hardware, mitigate
dependencies arising from single cloud adoption, and
solving the challenges of traditional on-premise
environments.
But what is the right model for your organization?
Hybrid and Multi-Cloud Adoption Overview
2
Choosing Multi-Cloud or Hybrid Cloud?
A well-defined cloud strategy is an essential element of every successful IT department. An organization’s cloud adoption planning begins with a
basic, yet pertinent, question – Hybrid or Multi-cloud? While they may have similar attributes, hybrid or multi-cloud greatly differ at an
operational level. One must consider the pros and cons of both traditional and new practices in terms of tools, security, and budgets.
For example, hybrid clouds require organizational focus on native operational tools whereas, multi-cloud require focus and investment on
third-party tools. In a multi-cloud environment, data security is a shared responsibility of the cloud vendor and the user. While in a hybrid cloud
environment, you have more responsibilities and control over data, applications, and security. Financially, every cloud has its benefits and
drawbacks, along with associated price tags. Performance analysis of existing workloads against service offerings provided by each public cloud
can help you get an idea of the total cost of ownership (TCO) and return on investment (ROI); guiding you to make the right choice for your
organization.
Choosing the right cloud model can be tricky. But with the right cloud implementation partner, like LogicBulls, navigating the cloud environment
gets simpler. LogicBulls helps business leaders identify the right cloud model by using an industry-proven framework and custom approach to
enable the initial assessment of workloads for cloud suitability. We evaluate application environments to assess the treatment of applications in
the cloud and maximize its business value.
3
Hybrid and Multi-Cloud - Same or Different?
Hybrid Cloud
It is a centralized identity across multiple environments, having one or
more private or on-prem traditional datacenter with high-speed
connectivity, integrated security, and data integration capabilities. It
allows applications to run between public and private clouds, seamlessly.
Additionally, this allows applications and data to move between public
and private clouds.
Multi-Cloud
It is a cloud infrastructure that is present on more than one public cloud,
with or without having a traditional on-prem / data center. The
multi-cloud environment may or may not have interconnectivity or
integration among public and private clouds.
Although used interchangeably, a hybrid cloud is not the same as a multi-cloud. The key difference lies in its applications and data integration capabilities from a
connectivity, security and portability standpoint.
PublicCloud 2
Private Cloud
Public Cloud 1
Private or Traditional Datacenter
The key to success with both the deployments is the holistic management of all your resources as if they were at one location. Managing resources in their
respective cloud, without considering adjacent environments, will result in wasted capacity and budget. To achieve your desired business outcomes you'll need
deep visibility and insights into your multi-cloud or hybrid environment.
Private Cloud
4
Successful cloud adoption requires careful analysis of workloads to identify the treatment of
applications in the cloud (rehost, re-architect, refactor, recode or replatform), network design and
architecture, and its ability to integrate the dependencies of public or private cloud supported by
a realistic implementation plan.
LogicBulls brings in years of expertise in developing multi-cloud strategies, managing multi-cloud
infrastructure, and deploying Anthos for seamless migration. Our team of experts and client
stakeholders have been helping clients with preliminary analysis, identifying cloud treatment for
applications landscape, defining the plans, identifying and mitigating risks for successful hybrid
and multi-cloud adoption. We adopt industry best practices and tools to efficiently control and
manage your multi-cloud environment.
A Typical Cloud Adoption Journey with Anthos:
1. Assess and Prioritize the workloads
2. Anthos Migrate
3. Anthos Transform
4. Enable continuous integration and continuous delivery
5. Secure workload and its ecosystem
Planning a Successful Hybrid and Multi-Cloud Adoption
5
1. Assess and Prioritize the Workloads (Illustrative)
Positive business case for applications identified for Portfolio Optimization and Cloud Migration, using transition cost, one time investment and ongoing costs as per recommended target state for the applications
Current State Discovery & Assessment
Application Optimization & Cloud
Suitability Assessment
Cloud Migration Approach based on deployment
model
Target State Application Model
Cloud Migration Roadmap, Business
Case & Rollout
Application a
Compute
Storage
NetworkApplication b
Application c
Compute
Storage
Network
Application aIn cloud
Cloud
Application bIn cloud
Cloud
Application cIn Cloud
Cloud Delivery
Model(s)
IaaS
PaaS, GKE
SaaS
Re-architect
Refactor
Rehost
Replace
Cloud Service Model
RecodeHybrid
(with Anthos)
Private
Public
Retire
Effective cloud strategy involves assessment of existing workloads (i.e., web, database) for business value in the cloud. Treatment of workloads in the cloud take substantial effort, time and cost and hence its important to assess and prioritize the workloads before you take up your cloud journey. LogicBulls’ custom framework provides a strategic advantage wherein IT leaders can assess and work only on prioritized workloads.; greatly reducing assessment timelines.
6
Prioritize workloads for Cloud in the order - SaaS, PaaS, IaaS
Planning a Hybrid and Multi-Cloud Adoption
2. Anthos Migrate
A. Carve Actionable Migration Journey
Most digital transformations will be a mix of strategies (i.e., hybrid, multi-cloud).
For the workloads that will benefit from containers, Migrate for Anthos delivers
a fast, smooth path to modernization. Don't settle for being locked into existing
infrastructure or one migration path. With Google, run your workloads how you
want, where you want. For other workloads that are better suited as a VM,
simply move them as is with Migrate for Compute Engine (Rehost).
C. Capitalize on the benefits of containers
With workloads upgraded to containers, IT can eliminate OS-level maintenance,
patching, and security like was previously needed for VMs. Plus, after upgrading,
businesses are well positioned to easily adopt even more technologies like
Anthos, GKE, Istio, and more.
B. Upgrade to Containers with Ease
Some workloads are simply written off by IT as "unable to upgrade." But Migrate
for Anthos strips away layers of manual effort, making migration and
modernization a possibility for those workloads, even with small IT teams. With
built-in testing and streaming migration technology that boots workloads in the
cloud quickly, you'll eliminate complexity and knowledge gaps that have previously
held businesses back from being able to modernize.
7
Planning a Hybrid and Multi-Cloud Adoption
Anthos enables enterprises run applications in containers across multiple clouds: from your own datacenter on hyper scale public clouds including Google cloud, AWS (Beta) and Azure (future). Anthos is built on open source Kubernetes, Istio and KNative - the fundamental cloud native technologies developed and operated by Google Cloud.
Use Migrate for Anthos to move and convert workloads (i.e., web, MySQL database, Redis server, Nginx web server, a Ruby on Rails application, or cron jobs) directly into containers in Google Kubernetes Engine (GKE). Target workloads can include physical servers and VMs running on-premises, in Compute Engine, or in other clouds, giving you the flexibility to transform your existing infrastructure with ease.
Please also refer https://cloud.google.com/anthos for more details
Anthos Stack Architecture - Overview
GKE On-Prem GKE - Google Cloud
Google Source Repositories
Google Cloud Build
Google Container Registry
Public Cloud (GCP, AWS, Azure)
On-Prem / Private Cloud
Hub/Connect
Service Mesh (CSM)
Config/Policy Management
Container Orchestration (Kubernetes)
API
Stackdriver
Container
API APIAPI
Container ContainerContainerMo
nit
ori
ng
Hybrid cloud implementations tend to be complex due to the integration required between the on-prem data centers and the public cloud data centers. Concerns may arise about
network and internet security, complex bidirectional traffic routing, data access, provisioning requirements and many more. Hence, hybrid cloud implementations tend to require
several third-party tools and services depending upon the specific capabilities expected. Google Cloud’s Anthos simplifies hybrid cloud by bringing the necessary tools and services
together for a secure and scalable hybrid cloud implementation.
App App AppApp
GCP Build Toolchain Google Cloud Marketplace
8
Planning a Hybrid and Multi-Cloud Adoption
Workload Performance
3. Anthos Transform
When it comes to assessing workloads for Anthos (GKE), it is critical for an enterprise to understand:
● Workload performance requirements
● Mapping of performance to compute resources (i.e., PODS)
● Enable scalability and efficiency
● Auditing and logging of transactions
Cloud containers enable multi-cloud by providing application developers with a consistent environment for
application portability by abstraction. Kubernetes, a container orchestration tool, orchestrates millions of
containers every week, regardless of its location - public cloud, private cloud, or on-prem infrastructure.
Kubernetes automates application rollouts, updates, and rollbacks. It runs continuous health checks on
applications, automatically restarting containers that fail or have stalled. Thus, developers can focus on
functionalities instead of grappling with different cloud environments. While enterprises are freed from
vendor lock-ins. Based on organizational growth and cloud usage, the tool automatically upscales or
downscales applications.
LogicBulls has years of experience in planning, implementing, and successfully rehosted or refactored
applications for the cloud. Containerized applications can be virtually deployed on any operating system and
environment: bare metal, private cloud, or public cloud.
Resource Cost
Resource Utilization
9
Planning a Hybrid and Multi-Cloud Adoption
LogicBulls guides the transformation of your IT environment with Migrate for Anthos. We simplify the migration of all target workloads (physical servers/VMs) to the cloud quickly and with minimal upfront downtime.
One key aspect to keep in mind is that migrating your apps or workloads to the cloud isn’t just about shifting where the compute resources run; it’s also an opportunity to modernize them with containers. Microservices, containers, dockers, and Kubernetes provide applications the agility and portability for seamless application modernization and migration.
Planning a Hybrid and Multi-Cloud Adoption
Different components before and after migration in the VM
Source : Anthos for Migrate presentations
3. Anthos Transform
Anthos configuration management enables CI/CD deployments for complex builds. It provides configuration-as-code via Anthos Config Management, which deploys the Anthos Config Management Operator to your GKE or GKE on-prem clusters; allowing you to monitor and apply any configuration changes detected in a Git repo.
At LogicBulls, we practice agile and DevOps models to deploy a structured CI/CD. We have several years of hands-on experience of designing and deploying hybrid cloud
environment and continuous cost optimization. Through a structured process, we guide businesses to understand the issues that arise with CI/CD in terms of skills, resources,
tools, and processes.
Key benefits:
● Single source of truth, control, and management for easier code reviews, validation, automated testing, rollouts, and rollback workflows
● One-step deployment across all clusters by turning a single Git commit into multiple kubectl commands across all clusters
● Rich inheritance model for applying changes by creating a layered Namespace model that allows for configuration inheritance across the repo folder structure.
● Permissioned access to sensitive data ensuring regulatory compliance.
4. Enable Continuous Integration and Continuous Delivery
11
Planning a Hybrid and Multi-Cloud Adoption
5. Secure Workloads with Anthos
Modern apps differ from traditional apps in three key attributes: microservices architecture, declarative configuration, and high degrees of automation. However, without a way to
enforce consistency and manage workloads that span environments, your organization can face security challenges during application modernization. Through years of experience,
and multiple cloud migration projects, LogicBulls has identified three key security challenges that emerge with modern apps:
● Applying consistent policies across heterogeneous environments
● Securing the software supply chain
● Securing multi-tenant environments across a shared platform
● Auditing and logging of events and transactions
Enforcing policies across the environments
We deploy Anthos Config Management to
create a common configuration for all your
admin policies and apply it to all your
clusters wherever deployed. By automating
and scaling policy creation, rollout, audit,
and enforcement continuously across all
Anthos environments, your developers can
execute as fast as the business requires
while staying within the guardrails put in
place by security.
Deploying only trusted workloads
When enterprise uses Anthos, they benefit
from the native vulnerability scanning
capabilities of Container Registry. It looks
for known vulnerabilities (based off the
Common Vulnerability and Exposures (CVE)
database). Having knowledge of image
vulnerabilities prior to deployment, enables
your developers and operators to prevent
patchable and potentially high-risk images
from being deployed into production.
Isolating workloads with different risk profiles
Containers with different risk profiles can share
the same host kernel or cluster of machine
nodes. You need to isolate and segment your
apps with different risk profiles running on this
shared infrastructure so that only authorized
services can communicate with each other and
access intended resources.
12
Planning A Hybrid and Multi-Cloud Adoption
Auditing and Logging with Stackdriver
Stackdriver enables filtering the logs to just the
entries you need to export, creating an export
to a destination of your choice and setting up a
processing pipeline if the logs need to be
normalized.
Stackdriver Kubernetes Engine Monitoring
provides out-of-the-box dashboards that allow
us to select the view we want — focusing on
the infrastructure, workloads, and services.
Adoption Risks and Challenges
Despite its many benefits, hybrid and multi-cloud cloud brings in some adoption risks and challenges
such as:
● Insufficient due-diligence around cybersecurity (threats, vulnerabilities, and risks)
● Managing multiple cloud service providers
● Complexities around scalability and workload dependency
● Erratic workload analysis for Kubernetes vs. other options (technical, functional or financial)
● Managing total cost of ownership
● The complexity of the systems further strain IT teams
LogicBulls understands the pitfalls of any cloud adoption and migration journey. Our proactive
approach, custom templates, learnings from previous projects, and years of knowledge of our
subject matter experts mitigate the risks and ensure seamless cloud adoption.
13
Anthos Platform: Cost - Benefits Analysis
Improved Productivity for Dev And Security
Anthos enables faster application development, testing, and deployment. It reduces time spent on non-coding activities by 28-38% which also means less human error and consistency in deploying your applications. Anthos enables consistent, unified security policy creation and enforcement.
Streamlined Operational and Migration Efficiencies
Anthos can help improve the user experience, speed, consistency, and security of application modernization, development, monitoring, and management. It reduces time spent on platform management by 40% to 55%, reduces time to migrate apps by 58% to 75%, and reduces release and patching effort by 90% to 97.5%.
Increased Customer Advocacy and Performance
Not only can Anthos reduce bottom-line costs, it can also enhance customer experience and accelerate business velocity — driving top-line financial sales lift. It increases revenue by 0.1% to 0.7% via customer advocacy and increases retention by reducing application downtime events by 20% to 60%.
Upto 38% reduction in
time spent on non-coding
activities
Upto 55% reduction in
time spent on platform
management
Increased revenue upto
0.7% and significant
reduction in downtime
14
*Source: A Forrester Total Economic Impact™ Study Commissioned By Google November 2019
According to Forrester, Anthos adoption improves productivity, brings operational efficiencies, and increases customer advocacy. With Logicbulls as an implementation partner, organizations can leverage the benefits of Anthos and collect on their cloud ROI. We achieve this with systematic Google cloud planning, design, and implementation.
Logicbulls leverages its proven approach, custom framework, and trusted methodology to first assess and fully understand your technology landscape. With preliminary
analysis, we can build a customized plan, ensuring end-to-end integration of complex workflows, enablement of teams, and provide visibility into platform performance
metrics. Our cloud adoption expertise is supported via:
● A global pool of experts and GCP-certified engineers
● On-site CTO and Advisory Services for key clients
● Proactive 24*7 LeanOps Monitoring Platform for multi-cloud environments
● Proven practices and frameworks that improve agility and ensure timely delivery of projects
Irrespective of your business objective or your industry, we can help you design the right solution by leveraging a portfolio of services that Cloud Platform offers. Our
Google services, including Anthos implementation, grows and scales with your needs through ongoing optimization consulting. A flexible resource model enables
cost-effective value proposition for our clients without compromising quality service delivery.
We are small enough to engage and listen, but big enough to deliver complex programs. Our service capabilities include:
● Business Technology Consulting
● Anthos Migration and Development
● Cloud-Native Development
● Cloud Managed Services
● Workplace Transformation
Modernize, Migrate and Build Applications with Logicbulls and Google Cloud
www.Logicbulls.com
Phone: +1 510 335 9563
11501 Dublin Blvd, Dublin CA - 94568
Suvarchala KarumanchiSr. Architect and Evangelist - Google Cloud (Engg.)[email protected]
Ravi TalwaiSenior Vice President - Engg and [email protected]