TheSaffaGeek

My ramblings about all things technical


3 Comments

#NSX Announcements at #VMworld US

At todays VMworld US there are a number of NSX announcements as NSX grows it’s capabilities and features and raises the bar for SDN. Some of of the announcements at todays VMworld US conference in Las Vegas will be around a new version of NSX-T called NSX-T 2.0, VMware Cloud on AWS which provides a service that delivers a seamless extension for vSphere customers into AWS and NSX Secure Networking and the the ability for network virtualisation and security for native AWS workloads.

Firstly if you don’t know what NSX-T is then I would recommend you read the overview of it here or register for session NET1510BU . For version 2.0 there are a number of announcements, the high level  such as:

  • Cloud-Native App Frameworks
    • VMs and Containers
    • CNI Plugin Integration for Kubernetes (K8s) /Pivotal Cloud Foundry
    • NSX-T PaaS /CaaS Integration
      • NSX integration with Kubernetes
      • NSX Container Plugin (NCP) for integration with PaaS with NSX Manager
      • Native Container Networking:
        • IP address per container / POD
        • Container Network integration with DC network via routing and BGP
        • Micro-segmentation – inter project and intra project isolation
        • Network and Security Automation – created as part of app deployment
        • Multi-tenant network topologies
        • Multiple Containers (PODs for K8s) in a VM (Container Host)
        • Support for vSphere and KVM

For VMware cloud on AWS there is an extensive amount of announcements and features about the service but for NSX in particular it is about centralised management, comprehensive visibility and enterprise-class security

  • Discovery
    • Visibility into apps and resources they consume
    • Analyse usage and utilisation across clouds
    • Possible with AWS (Native), Azure (Compute) and Private Cloud (vSphere)
  • Cost Insight
    • Accounting and cost optimisation for multiple clouds
    • Track and analyse your costs and trends
    • Possible with AWS (Native), Azure (Compute) and Private Cloud (vSphere)
  • Network Insight
    • Operational visibility, control and compliance across clouds
    • Optimise performance, health and availability
    • Possible with AWS (Native) and Private Cloud (vSphere)
  • Secure Networking
    • Secure networks with micro-segmentation
    • Create private networks within or across clouds
    • Possible with AWS (Native)

For NSX Secure Networking

  • On-Prem Automation and Networking & Security
    • Multi-domain networking
    • Automation with OpenStack
    • Micro-segmentation
    • Consistent and scalable micro segmentation security – unified policy management across multiple public clouds
    • Precise control over cloud networking topologies, traffic flows, IP addressing and protocols
    • Standard network data works with existing Day 2 operations tools and processes

If you are looking for some top sessions around these announcements then the following top 10 networking and security sessions should be a great fit:

  • Transforming networking and security for the digital era – TS7003KU –Tuesday August 29,12:30pm – 13:30 pm
  • Use virtualization to secure application infrastructure – SAI3237SU – Monday August 28,11am – 12pm
  • Why networking is at the heart of digital transformation – NET3235SU – Monday August 28,1pm – 2pm
  • NSX everywhere: The network bridge for on premises, private, and native public clouds – NET3236SU – Monday August 28,4pm – 5pm
  • Introduction to VMware NSX – NET1152BU – Monday August 28,4pm – 5pm
  • Application security reviews made easy with VMware latest security solution – SAI2895BU – Tuesday August 29,4pm – 5pm
  • The NSX practical path – NET3282BU – Monday August 28,2:30pm – 3:30pm
  • When clouds collide, lightning strikes – NET3282BU – Wednesday August 30, 1pm – 2pm
  • The future of networking and security with NSX-T – NET1821BU – Tuesday August 29, 11:30am –12:30pm
  • Container networking with NSX-T overview – NET1521GU – Monday August 28, 1pm – 2pm

Gregg

Advertisements


2 Comments

VMware Cloud Services

Customers aren’t just running their workloads in their vSphere datacenters but are also now running more and more workloads natively in the public cloud providers and this can be a challenge for businesses who might not have the current skillset or mechanisms to monitor and manage these public workloads. VMware have now announced a way of homogenising the cloud and providing a mechanism for you to consume all the cloud providers and manage across these various providers where you can manage, provision and migrate workloads easily between you on premises environment to the public cloud providers.

image

VMware did a survey recently and the amount of their customers who are using or evaluating a public cloud provider has now almost reached 100 percent with the feedback being 97% and an increase of 11% since 2016.

image

The amount of workloads these surveyed customers have running in these public clouds however are still very small although most see it where being on multiple public cloud providers is the ideal end state but this brings two major problems:

Operational Complexity

  • Application and management tool sprawl
  • Inefficient cost management across multiple clouds
  • Compliance gaps due to different architectures

Increased Risk Exposure

  • Inconsistent security architectures and policies
  • Lack of visibility into and across multiple clouds
  • Lack of expertise on specific platforms

image

For  VMware Cloud Services there are mainly five different services that are being announced at todays VMworld and they are:

Discovery: Holistic View of All Cloud Resources

  • Visibility into apps and resources they consumer
  • Analyse usage and utilisation across clouds
  • Public and private cloud inventory and metrics collection in minutes
  • AWS and Azure inventory collection using cloud user credentials and APIs
  • Private cloud inventory collection using a lightweight VMware vCenter data-collector
  • Central repository for all public and private cloud inventory
  • Inventory search based on cloud resource attributes
  • Expose native cloud tags and group cloud resources to simplify reporting, operations and actions across other VMware Cloud Services
  • Single place to add public and private cloud account credentials
  • Secure management of cloud credentials and account owners
  • Shared configurations of Clouds Accounts for data collections across multiple VMware Cloud Services

image

image

Cost Insight

  • Accounting and cost optimisation for multiple clouds
  • Track and analyse your costs and trends
  • Estimate total cloud spend across public and private clouds
  • Compare spend by cloud providers, regions, accounts or other groups
  • Analyse costs and drill deeper to identify key cost drivers
  • Track cloud costs over time and project future costs based on historical data
  • Compare actual spend with assigned budgets
  • Share cloud costs and budget comparisons with application teams
  • Identify powered off virtual machines
  • Identify unused cloud storage resources
  • Customise threshold limits for identifying unused resources

image

image

VMware NSX Cloud

  • Secure networks with micro-segmentation
  • Create private networks with or across clouds
  • Network abstraction through overlays
  • Segmentation control independent of cloud
  • Stamp out consistent overlay networks
  • Ops consistency and improved visibility
  • Improved IT efficiency and lower OpEx

image

Network Insight

  • Operational visibility, control and compliance across clouds.
  • Optimise performance, health and availability
  • Understand application dependencies by analysing traffic flow patterns between VMs
  • accelerate micro-segmentation planning and use firewall rule recommendations to improve cloud security
  • Continuously monitor, troubleshoot and audit cloud security posture over time
  • Discover AWS,VMW and physical network infrastructure resources including AWS VPCs, security groups and cloud tags
  • Troubleshoot network connectivity issues between VMs with visibility into virtual and physical data center network layers
  • Rapidly identify issues through pro-active events and alerts
  • Scale across large NSX deployments with powerful visualisations for topology and health
  • Avoid configuration issues with NSX deployments based on health checklists
  • Quickly pinpoint issues for resolution with the help of intuitive UI and search

Wavefront

  • Metrics-driven monitoring and real-time analytics
  • Real time metrics monitoring at scale
  • “First pane of glass” visibility
  • Shared Model of application/system for both developers and ops

image

 

If you are interested in any of the solutions above then I would recommend getting to the VMware booth at VMworld US if attendign the conference or speak to your VMware sales executive if you aren’t attending to get a demo setup

Gregg