Cloud Computing & Application Delivery with Microsoft Azure and KEMP James Basso Systems Engineer...
-
Upload
oswin-harmon -
Category
Documents
-
view
228 -
download
3
Transcript of Cloud Computing & Application Delivery with Microsoft Azure and KEMP James Basso Systems Engineer...
Cloud Computing & Application Delivery with Microsoft Azure and KEMP
James BassoSystems Engineer
New York: 631-345-5292 • Limerick: +353-61-260-101 • Hannover: +49-511-367393-0 • Singapore: +65-62222429
Microsoft Azure Opportunities
IDC eBook - Successful Cloud Partners 2.0 (2014)The Cloud Market is Growing FastPublic IT cloud services spending reached $47.4 billion in 2013 and will reach nearly $108 billion in 2017, with a five-year compound annual growth rate (CAGR) of 23.5% - five (5) times the growth of the IT industry as a whole.
Cloud Partners Grow More Quickly and More Profitably Cloud Partners (>50% cloud revenue) have 1.5X the gross profit % vs. other partners.
Source: Worldwide and Regional Public IT Cloud Services 2013-2017 Forecast (IDC #242464, August 2013)
Mobility Apps
Big data Cloud
Industry trends driving IT pressures
How do I help my business make faster decisions?
How can I ensure my infrastructure will scale to meet demand?
Can I enable employees to work from anywhere?
How can I evolve my business apps to meet new needs?
Big data Cloud
Mobility AppsSpan multiple devices
Develop, test and deploy apps fast
Easy access to any data, any size, anywhere
Powerful analytics in familiar tools
Datacenter without boundaries
Dynamic application delivery
Infrastructure designed to withstand failure
Great user experience from anywhere
Protect your data
Cloud
Apps
Mobility
Big data
Transforming IT to address new questions
Microsoft’s answer:
The Cloud OS
Microsoft Azure Windows Server Microsoft SQL ServerMicrosoft System Center Windows Intune
With Microsoft, you’re in control of how you want to deploy:
Why the cloud?The cloud is enabling compelling new business models for Microsoft partners
Consumption-based billing
Global availability
Elastic scale
Fast time to market
Reduce capital expense1
2
3
4
5
Cloud
VirtualizationPhysicalserver
Microsoft Azure
6
Cloud Computing Patterns &Scenarios
tReso
urc
es
Inactivity
Period
t
t
t
On and OffOn & off workloads Over provisioned capacity is wasted Time to market can be cumbersome
Unpredictable DemandUnexpected/unplanned peak in demand Sudden spike impacts performance Can’t over provision for extreme cases
Reso
urc
es
Growing FastSuccessful services needs to grow/scale Keeping up w/ growth is big IT challenge Cannot provision hardware fast enough
Reso
urc
es
Predictable BurstingServices with micro seasonality trends Peaks due to periodic increased demandIT complexity and wasted capacityR
eso
urc
es
On-Demand Dev/Test/Lab environments“Cold” VMs for Disaster RecoveryBatch Job Workloads
Off-site BackupsCloud-Integrated StoragePilot > Production Application Rollouts
Replicated VMs for Disaster RecoveryInternet Web SitesB2C and B2B Applications
LOB ApplicationsSeasonal Applications ( Retail, etc )High-Performance Computing ( HPC )
KEMP Technologies Overview
KEMP Designs & Develops Load Balancer and ADC Software
ADC H/W AppliancesVirtual ADC AppliancesBare Metal ADCsCloud ADCs
Enabling our customers to achieve optimal application performance w/:
• High Availability
• Scalability
• Acceleration
• Security
KEMP – Fastest Growing ADC Vendor, #3 WW Units Shipped
Price/Performance leader with ubiquitous platform deployments :
• 22,000+ WW customer deployments
• 1,000+ channel partners
• 50% Y-on-Y KEMP Staff Growth
• 46% Y-on-Y Growth
• Double Gold Certified MS PartnerBy selling through channel partners (100% channel focused)
Company Overview
F5 NETWORKS
CITRIX
KEMP
BROCADE
RIVERBED
RADWARE
BARRACUDA
A10
CISCO
North America, ADC Units Sh ipped Q4, 2013 - Dell 'Oro Group*, (000'S)
1.3 3.2 0.4 1.8
*Get the complete Dell’Oro Group Data Center Appliance Quarterly Report here:http://www.delloro.com/products-and-services/data-center-appliance
KEMP Technologies Market Share Rapidly Increasing
#3 shipped ADC in NAM and EMEA
LoadMaster made up 10% of all ADCs shipped in Q4, 2013
F5 NETWORKS
CITRIX
KEMP
BROCADE
RIVERBED
RADWARE
BARRACUDA
A10
CISCO
EMEA, ADC Units Sh ipped Q4, 2013 - Dell 'Oro Group*, (000'S)
0.7 2.1
Company Overview – Market Position
Clear focus on making technology more accessible
Skilled at complex technology integration
Software-centric company w/out proprietary HW as integral part of cost
Fast followers with opportunistic differentiation
Ability to close loop from market demand/customer requirements to innovation/delivery
Company Overview – Core Competencies
KEMP Technologies
Company Overview – Leader with Strategic Technical Partnerships
Cloud
KEMP developed an OS that converts common HP, Dell and Cisco server platforms into full-featured, high performance ADC network appliances making it possible for customers to capitalize on their existing vendor investment and achieve unparalleled app delivery performance levels.
Bare Metal
Created to support KEMP’s focus on private cloud while delivering mainstream hardware performance levels, Virtual LoadMaster provides a feature-complete solution with a high level of mobility, provisioning and elasticity across a wide range of hypervisor platforms.
Virtual
Targeted primarily at SMB/mid-market customers that require a low-cost, rack-and-go, hardware-based appliance, “Gold Box” LoadMasters combine x86 architecture, ASICs dedicated to SSL handling and KEMP’s proprietary software for highly predictable performance levels.
Hardware
Support for popular IaaS platforms including Microsoft Azure and Amazon Web Services allows LoadMaster to provide the comprehensive Layer 7 ADC services required by many applications as customers implement their hybrid or public cloud strategy.
Cloud
The LoadMaster Family
Microsoft Azure and other cloud platforms
Hyper-V and Other Hypervisors
“Bare-metal”LMOS (ISO)
Purpose-builtAppliances
Common “Look and Feel” Across PlatformsComplete RESTful API for Automation/IntegrationWindows PowerShell API WrapperL4/7 Load BalancingSSL Acceleration/Termination and Re-encryptionL7 Session AffinityGlobal Site Load BalancingService “Aware” Health CheckingHeader ManipulationL7 TransparencyContent Caching, CompressionApplication-Specific TemplatesEdge Security Services (TMG Replacement)
KEMP LoadMaster Core Functionality
Virtual LoadMaster (VLM) for Azure
Cloud ServiceA resource container possessing a URL attribute for addressing VMs in the service
Availability SetA group of VMs in different fault domains to ensure redundancy
Affinity GroupProvides higher degree of proximity within datacenters
Basic Azure TerminologyPlatform as a Service (PaaS)Services platform for applications with low infrastructure maintenance. Lowers administration and provides easily scalable environment for websites and services. No need to worry about patching, backing up, HA, etc.
Infrastructure as a Service (IaaS)VMs on demand created from available images and requiring same administration as on premise virtual infrastructure. Gives greater flexibility.
RegionMicrosoft Azure DatacenterNorth America Europe AsiaNorth Central US North Europe East AsiaSouth Central US West Europe South East AsiaEast US JapanWest US
SharePoint ADFS Proxy ADFS Farm RDS
SharePointADFS Proxy
ADFS FarmRDS
OptionalSite-to-Site VPN or Express Route
On Premise Data Center
Enables O365 deployments w/ADFS HA in Azure
Supports Azure-only or hybrid deployments
Supports DRaaS
Provides HA for workloads now supported in Azure such as SharePoint and RDS
Web Applications w/L7 proxy needs
SNI and single IP use for multiple workloads in multi-tenant deployments
IIS
Common Use Cases with VLM in Azure
Azure Storage
Data
On Premise Private Cloud
Applications
Azure VPN
VLM-Azure for Application MSFT to Azure IaaS
Directory Replication
Problem• Limited datacenter capacity• Slow response to changing business and capacity needs• Requirement for on premise cost reduction• Need for minimal development efforts to transition apps
Solution• Azure provides a way to transition Tier 2/3 apps to cloud-hosted
VMs freeing on premise resources• Internal/External client access remains unchanged• KEMP’s VLM delivers unified experience in public/private cloud• VLM’s full Layer 7 load balancing, content switching and reverse
proxy services minimizes required application augmentation
Virtual NetworkSubnet
Organization Network
Azure VPN Connection
Internet
VLM-Azure for SharePoint on MSFT Azure IaaS
Problem• High startup costs• Need for comprehensive DR strategy• Deployment time to market
Solution• Azure’s flexible pricing drives down TCA• Azure allows for automated provisioning• Azure allows for simplified DR options• VLM-Azure makes Intranet load balancing possible for clients on the private network
VLM-Azure for ADFS on Microsoft Azure IaaS
Microsoft Apps
Custom Apps
3rd Party Apps
Windows AzureActive Directory
On Premise Active Directory Infrastructure
ADFS
Problem• Costly disaster recovery• Potential single points of failure• Need for multi-factor authentication and SSO
Solution• Azure-hosted ADFS provides resiliency for corporate data center• KEMP’s VLM GSLB capabilities allows for automatic request re-
routing in the event of failures• Windows Azure allows customers to safely and securely extend
their corporate AD authentication environment
ADFS
Virtual LoadMaster for Azure
Application VM Application VM Application VM Application VMApplication VM
Virtual Network
Cloud Service Endpoint Public IP
Cloud Service for Application VMs (optional)
Cloud Only Deployment
Cloud Service for Virtual LoadMaster VM
Client request received by LoadMaster
LoadMaster checks to see if client session exists
LoadMaster applies content rules, provides L7 services (IPS, SSL overlay, content switching, etc.)
LoadMaster distributes traffic based on scheduling method and health/status of VMs
Virtual LoadMaster for Azure
Application VM Application VMApplication VM
Virtual Network
Cloud Service Endpoint Public IP
Cloud Service for Virtual LoadMaster VM
Cloud Service for Application VMs (optional) Application VM Application VM
LoadMaster
Enterprise Network
Hybrid Deployment
Virtual LoadMaster for Azure 1
Application VM Application VM Application VM Application VMApplication VM
Virtual Network
Cloud Service Endpoint Public IP
Cloud Service for Virtual LoadMaster VM
Cloud Service for Application VMs (optional)
Client requests name resolution to access the service or application
DNS entry for Service or application endpoint (URL i.e. cloud.kempdemo.com) is delegated to LoadMaster GEO
LoadMaster uses GEO functionality to determine the health status of each participating LoadMaster and Virtual Service
Client receives response with service IP to connect to
Client application connects to resolved IP address
VLM forwards the request to the application servers according to the configured load balancing mechanism and server’s health state
Virtual LoadMaster for Azure 2
Cloud Service Endpoint Public IP
VLM 1 becomes unavailable! Future Connections Redirected to alternative LoadMaster
HA Deployment with GEO
Cloud Service for Virtual LoadMaster VM
Virtual LoadMaster Deployment Steps in Azure
Deployment Steps
Login to Azure management portal
Add VLM-Azure image to My Images from VM Depot
Deploy new VM using VLM image
License new VLM with username/password
Configure virtual services
Features KEMP VLM for Azure
Network level L4 load balancing Yes
Application-Aware L7 load balancing Yes
High Availability Yes
Hybrid Traffic Distribution Yes
Load balance across Azure VNET regions Yes (both internal Azure and external network)
Scheduling methods L4 / L7
Server persistence L4 / L7 (Cookie and more)
SSL Termination/Offload Yes
VM Resource Availability Awareness Yes
Support Basic Tier VM (~20% Savings) Yes
Support Standard Tier VM Yes (work alongside with Azure Load Balancing)
Advantages of VLM for Azure
Model Name SSL TPS Support Included MSRP
LM-Azure Basic 100 TPS Web Support Free
VLM-200 200 TPS Phone and Web $1,990
VLM-2000 1000 TPS Phone and Web $4,990
VLM-5000 10,000 TPS Phone and Web $9,990
VLM-10G 12,000 TPS Phone and Web $19,990
VLM-Azure Versions Available
RESOURCES
Virtual LoadMaster For Azure Datasheet
http://kemptechnologies.com/files/downloads/documentation/Datasheets/LM-Azure.pdf
Virtual LoadMaster for Azure HA Guide
http://kemptechnologies.com/files/downloads/documentation/7.0/Feature_Description/Feature_Description_HA_for_Azure.pdf
Virtual LoadMaster for Azure Beginners Guide
http://kemptechnologies.com/files/downloads/documentation/7.0/Feature_Description/Feature_Description-LoadMaster_for_Azure.pdf
How to Assign Static IP Addresses to Azure Virtual Machines
http://www.bhargavs.com/index.php/2014/03/13/how-to-assign-static-ip-to-azure-vm/
Questions?
Appendix
All VMs and LMs must be in same virtual network to communicate (virtual networks can’t span regions)
Azure Load Balancer is ALWAYS used
If virtual network isn’t predefined, Azure auto-assigns, preventing communication between separate cloud service(s)
When separate cloud services are used for app VMs and VLMs, ACL should be configured on app cloud service endpoint only allowing ‘internal’ connections
Storage and image region must be the same
It’s not possible to change the VS IP address that is assigned
VLM-Azure virtual services must be non-transparent
It’s not possible to move a VM from one virtual network to another after provisioning it
Configuring static IPs on application VMs being load balanced helps minimize downtime
Considerations When Using Azure Platform