MGT1761BU Swisscom Modernizes Its Cloud for … · > Swisscom Enterprise Cloud ... –Outsourcing...
Transcript of MGT1761BU Swisscom Modernizes Its Cloud for … · > Swisscom Enterprise Cloud ... –Outsourcing...
Stephan Massalt,VP Cloud Swisscom Cloud Lab Ltd.
Paul Kennedy, Chief Functional Architect vRealizeAutomation - VMware
MGT1761BU
#VMworld #MGT1761BU
Swisscom Modernizes Its Cloud for Enterprises with VMware
Our Cloud Journey 2013 - Present
VMworld 2017 Content: Not fo
r publication or distri
bution
• This presentation may contain product features that are currently under development.
• This overview of new technology represents no commitment from VMware to deliver these features in any generally available product.
• Features are subject to change, and must not be included in contracts, purchase orders, or sales agreements of any kind.
• Technical feasibility and market demand will affect final delivery.
• Pricing and packaging for any new technologies or features discussed or presented have not been determined.
Disclaimer
CONFIDENTIAL 3
VMworld 2017 Content: Not fo
r publication or distri
bution
#MGT1761BU CONFIDENTIAL 4
Swisscom. That’s us.
#MGT1761BU CONFIDENTIAL 4
VMworld 2017 Content: Not fo
r publication or distri
bution
#MGT1761BU CONFIDENTIAL
3.5 millionUltra-fast broadband
connections
5
MG
T176
1B
U -
Swis
sco
m M
od
ern
ize
s It
s C
lou
d f
or
Ente
rpri
ses
wit
h V
Mw
are
Swisscom customer key figures as at 31 December 2016
1.5 millionSwisscom TV
customers
2.4 millionfixed-line network
customers
6.6 millionmobile
communications customers
1.5 millionAll IP connections
August 28, 2017
VMworld 2017 Content: Not fo
r publication or distri
bution
#MGT1761BU CONFIDENTIAL
Au
gust
28
, 20
17
7
MG
T176
1B
U -
Swis
sco
m M
od
ern
ize
s It
s C
lou
d f
or
Ente
rpri
ses
wit
h V
Mw
are
Global trends are placing new demands on Swisscom
Cashflow
Dividends
Future-oriented infrastructure
Flexibility
Investment
Digitisation
Innovation
Security
• Saturated market for price-aggressive competition (B2C/B2B)
• Digitisation brings with it new competitors from other industries (e.g. the post office)
• National isolated solutions make scalability more difficult
Local competition
• IT companies offer services over our network
• Global competitors with economies of scale and low prices (e.g. Amazon)
• Customer contact and data are being transferred abroad
• Partners become competitors (e.g. Microsoft)
Global competition
VMworld 2017 Content: Not fo
r publication or distri
bution
#MGT1761BU CONFIDENTIAL 8
How we started the Swisscom Cloud
#MGT1761BU CONFIDENTIAL 8
VMworld 2017 Content: Not fo
r publication or distri
bution
#MGT1761BU CONFIDENTIAL
> Swisscom Enterprise Cloud
– IT operations oriented IaaS
– Traditional (Mode 1) IT
– Infrastructure management
> Private
– EC: Enterprise Outsourcing (Self Service)
> Public & Virtual Private
– DCS: Dynamic Compute (Pay as you Go)
> Swisscom Application Cloud
– Developer oriented PaaS
– Cloud native (Mode 2) applications
– Services marketplace
Au
gust
28
, 20
17
9
MG
T176
1B
U -
Swis
sco
m M
od
ern
ize
s It
s C
lou
d f
or
Ente
rpri
ses
wit
h V
Mw
are
IT Cloud – Two core propositions
Mode 1&2: Gartner Research – https://research.gartner.com/definition-whatis-bimodalSe
rvic
esA
pp
licat
ion
s
Dynamic Server Dynamic Storage
Source: Swisscom Application Cloud – https://developer.swisscom.com
Dynamic Data Center
VMworld 2017 Content: Not fo
r publication or distri
bution
#MGT1761BU CONFIDENTIAL
Ambition 2013: Cloud Provider> Apply Cloud Native principles: ‘12 Factor’> Hyper convergence: scalable, standard> Software defined ‘everything’> Use startup technology to be on cutting edge> Value is in the scalable Infrastructure
Learnings from MVP 0.4> Legacy workloads not designed for this approach> ITSM Best practices do make sense…> Security concepts not ready for this pace> Market expectations high on cost and agility
First MVP led to a re-orientation on technology for an Enterprise workload platform
Au
gust
28
, 20
17
10
MG
T176
1B
U -
Swis
sco
m M
od
ern
ize
s It
s C
lou
d f
or
Ente
rpri
ses
wit
h V
Mw
are
2013 Cloud Disruption: Software Defined Infrastructure
Cloud 0.x
CloudOS
VMworld 2017 Content: Not fo
r publication or distri
bution
#MGT1761BU CONFIDENTIAL
Ambition: Cloud based Outsourcing provider
> Mode I / Legacy workloads (Gartner)
> ITSM as a leading design principle
> Customer requirements to manage Infrastructure, not cloud native services
> Standard stack with deviations in added value on infrastructure level (backup)
> No market solution available, built own CMS
Learnings from v1.3
> Infrastructure management requires other tooling: our stack was not developed for this!
> ‘Build your self’ in fast evolving market is hard
> Maintaining support for hardware (LCM)
Au
gust
28
, 20
17
11
MG
T176
1B
U -
Swis
sco
m M
od
ern
ize
s It
s C
lou
d f
or
Ente
rpri
ses
wit
h V
Mw
are
2014: Cloud Based Outsourcing
Cloud 1.x
Cloud Management System
VMworld 2017 Content: Not fo
r publication or distri
bution
#MGT1761BU CONFIDENTIAL 12
Summer of ‘16 – Rethinking our strategy
#MGT1761BU CONFIDENTIAL 12
VMworld 2017 Content: Not fo
r publication or distri
bution
#MGT1761BU CONFIDENTIAL
Paradigm shift in the Sourcing Markets
One Outsourcing provider delivering full IT
stack of services
Combination of Cloud & Managed Service Providers combined with customers
„home made“ services
In the past Today
From “Full Outsourcing” to “Hybrid Sourcing Models” combining Best-of-Breed Providers with Customer Services
Au
gust
28
, 20
17
MG
T176
1B
U -
Swis
sco
m M
od
ern
ize
s It
s C
lou
d f
or
Ente
rpri
ses
wit
h V
Mw
are
13
VMworld 2017 Content: Not fo
r publication or distri
bution
#MGT1761BU CONFIDENTIAL
… and what it means for Service Providers
• highly standardized and automated services
• global reach
• highly scalable
• low margins
Cloud ProviderIntegrator &
Hybrid Service ProviderFull Service Provider
• Business critical applications
• Business continuity and security
• Integration capabilities
• Value add through Managed Services
• Hybrid solutions
Customer Proximity
highlow
Full Service Providers are disappearing. Specialists take over.
Au
gust
28
, 20
17
MG
T176
1B
U -
Swis
sco
m M
od
ern
ize
s It
s C
lou
d f
or
Ente
rpri
ses
wit
h V
Mw
are
14
VMworld 2017 Content: Not fo
r publication or distri
bution
#MGT1761BU CONFIDENTIAL
$
$$
$$$
Value creation
COTS
Commodity
Au
gust
28
, 20
17
15
MG
T176
1B
U -
Swis
sco
m M
od
ern
ize
s It
s C
lou
d f
or
Ente
rpri
ses
wit
h V
Mw
are
Basically it is about: Investments vs Value creation
Services
Orchestration
Infrastructure
VMworld 2017 Content: Not fo
r publication or distri
bution
#MGT1761BU CONFIDENTIAL 16
Building the 2nd generation Swisscom Cloud
#MGT1761BU CONFIDENTIAL 16
VMworld 2017 Content: Not fo
r publication or distri
bution
#MGT1761BU CONFIDENTIAL
Ambition: Deliver service across clouds
> Standardized infrastructure, Off the self tools
> Move from infrastructure focus to services
– Outsourcing 2.0 is service driven!
> Solution for managing a Private Cloud andsupport Public Clouds
> Select one strong partner to implement an maintain core components
Key changes and challenges:
> Rely on portfolio development of our partner: how can we steer?
> Integrate Service provider requirements with an in essence Enterprise focused solution
> How to develop and integrate our own tools for building and managing services
– Example is our IP Address Management solution
Au
gust
28
, 20
17
17
MG
T176
1B
U -
Swis
sco
m M
od
ern
ize
s It
s C
lou
d f
or
Ente
rpri
ses
wit
h V
Mw
are
2016: Managed Service Provider
VMworld 2017 Content: Not fo
r publication or distri
bution
The technology stack as it is built now
Au
gust
28
, 20
17
MG
T176
1B
U -
Swis
sco
m M
od
ern
ize
s It
s C
lou
d f
or
Ente
rpri
ses
wit
h V
Mw
are
18
ESC Virtual Private
vRealize Automation(Tenants, Catalogues, Services)
vROrchestration(Workflows)
vROperations(Monitoring, Metering)
Logging(vRLi, Splunk, LogStash)
Swisscom Portal
Swisscom System Integration
IdentityFederation
Single instance Multi-Tenancy
vSphere and NSX(Hypervisor, Network virtualization)
ITSM
Billing
Reporting
> Cloud Management based on VMware's vRealize Suite
SupportMicroservices
> VMware virtualization
NTP DNS IPAM …
> Dell EMC InfrastructureWorkload Platinum DCs (2 locations) Workload Gold DCs (2 locations)
vSphere and NSX(Hypervisor, Network virtualization)
Networker + Data Domain 9500
VxBlock 740
VMAX 400k
VxBlock 740
VMAX 400k
VPLEX(Metro)
Networker + Data Domain 9800
VxBlock 740
VMAX 400k
VxBlock 740
VMAX 400k
VPLEX(Metro)
Geographic distribution
BillingEvents
ITSM Sync
ImpactMgmt …
SDDC
VMworld 2017 Content: Not fo
r publication or distri
bution
#MGT1761BU CONFIDENTIAL 19
The focus points for our Journey with VMware
#MGT1761BU CONFIDENTIAL 19
VMworld 2017 Content: Not fo
r publication or distri
bution
#MGT1761BU CONFIDENTIAL
> Each vRA installation requires it own full stack…
– What if each developers needs a vRA to develop and test?
– How to test new versions, without building complete new infrastructures?
– Deploying and configuring a vRA instance can be a time-consuming process…
> The CAVA concept allows us to use vRealize to create new vRA instances
– The vRA catalogue contains an item that, when requested, provisions a new vRA/vROdeployment
– One infrastructure environment running a single vRA instance that can create other vRA deployments, including different vRA versions
Au
gust
28
, 20
17
20
MG
T176
1B
U -
Swis
sco
m M
od
ern
ize
s It
s C
lou
d f
or
Ente
rpri
ses
wit
h V
Mw
are
CAVA: Drink your own ‘Bubbles’
Blog CAVA@Swisscom
VMworld 2017 Content: Not fo
r publication or distri
bution
#MGT1761BU CONFIDENTIAL
> We are going to apply the CAVA concept to create a multi-tenant environment
– Deploy vRA and vRO instances per tenant on top of a ‘master’ vRA.
> Our benefit of having multiple environments
– Instance per developer (team) to independently develop and test
– Flexible Integration, Test and Acceptance environments.
– Sandbox per customer for specific integration testing.
– Run multiple versions of vRealize in parallel allowing for regression testing of workflows and blueprints
Au
gust
28
, 20
17
21
MG
T176
1B
U -
Swis
sco
m M
od
ern
ize
s It
s C
lou
d f
or
Ente
rpri
ses
wit
h V
Mw
are
Service provider grade Multi-Tenancy
Customer - Portal
Master - vRA
vROps
vRLI
Infrastructure
vRO
Tenant-vRATenant-vRA
Tenant -vRA
DEVTESTINT
Tenant-vRO
VMworld 2017 Content: Not fo
r publication or distri
bution
#MGT1761BU CONFIDENTIAL
> In order to deliver new services and functionality fast and flexible, we have build a ‘CI/CD’ pipeline across our different environments.
> All configuration data (artifacts) are treated as code and flows through the different stages until final deployment:
– Configuration artefacts
– Workflows for vRO
– Blueprints for vRA
> The pipelines are build in Concourse
– GIT repo’s for artifacts
– Semi automated promotion
> Customer handover in Sandbox
– Allows for customer (regression)testing of Blueprints andWorkflows
Au
gust
28
, 20
17
22
MG
T176
1B
U -
Swis
sco
m M
od
ern
ize
s It
s C
lou
d f
or
Ente
rpri
ses
wit
h V
Mw
are
Automation of services & CI/CD
INT/AATvRA(s)
DEVvRA(s)
FAT/SBvRA(s)
ProdvRA(s)
Integration
Pipeline
Automated
Acceptance
Pipeline
Factory
Acceptance
Pipeline
Sandbox
Pipeline
Production
Pipeline
DEVvRO(s)
DevTeam
Pipeline
INT/AATvRO(s)
FAT/SBvRO(s)
ProdvRO
DEVZone INTZone PRDZone
Deployment Deployment Deployment Deployment Deployment
VMworld 2017 Content: Not fo
r publication or distri
bution
#MGT1761BU CONFIDENTIAL
Au
gust
28
, 20
17
23
MG
T176
1B
U -
Swis
sco
m M
od
ern
ize
s It
s C
lou
d f
or
Ente
rpri
ses
wit
h V
Mw
are
Swisscom Portal & VMware vRealize User Interface
vRealizevIDM
> Default access to Swisscom Portal with basic catalog and deployment options
> Advanced user get option to use vRealize management environment
> One Single Sign On to Swisscom Portal
– IAM set roles and access permissions
– Aggregation of multiple IdPs behind one IAM solution
Customer IDP
Swisscom IDP
VMworld 2017 Content: Not fo
r publication or distri
bution
#MGT1761BU CONFIDENTIAL
> Next steps in the Swisscom Cloud story will be enabling customers to use any type of cloud infrastructure with a seamless user experience.
> Support for Public Clouds
– Management of infrastructure deployment
– Extend Compliancy and Security policies across various infrastructures
– Pilots with NSX-T
> Provide more advanced managed services
– Swisscom ‘own’ developed
– Leverage 3rd party services
Au
gust
28
, 20
17
24
MG
T176
1B
U -
Swis
sco
m M
od
ern
ize
s It
s C
lou
d f
or
Ente
rpri
ses
wit
h V
Mw
are
Going to the multi-cloud
SwisscomCloud
Infrastructure
ManagedServices
AWS
VMware Management Suite
Azure
Networking
Compliancy
• Managed Operating systems• Managed Databases• Managed Security
…
VMworld 2017 Content: Not fo
r publication or distri
bution
#MGT1761BU CONFIDENTIAL
2013: Cloud Provider • Cloud vs. VMware
2014: Cloud Outsourcing Provider• Cloud + VMware
2017: Managed Services Provider• Cloud = VMware
Au
gust
28
, 20
17
25
MG
T176
1B
U -
Swis
sco
m M
od
ern
ize
s It
s C
lou
d f
or
Ente
rpri
ses
wit
h V
Mw
are
Recap of the Swisscom Cloud Journey
VMworld 2017 Content: Not fo
r publication or distri
bution