ABCS25: Migrate to Modernize - A journey from VMware On-Prem to Azure Native Services by Fabrice Krebs & André Pereira

Transcript

1. Migrate to Modernize A journey from VMware On-Prem to Azure

   Native Services Fabrice Krebs – Sr. Tech. Specialist Azure Infrastructure André Pereira – Tech. Specialist Azure Infrastructure

2. Why customers move VMware workloads to Azure Licensing concerns Datacenters

   expiry and software end of life Urgent capacity needs Security threats Avoid software and hardware refresh Budget and resource constraints Extend and scale apps

3. Your organization today • Existing VMware on-premises environment • Existing

   VMware skillsets • Existing VMware VCF subscriptions Azure benefits • Price protection • Business and IT agility • Global scale and elasticity • Increased security and resiliency • Proximity to data & AI services • Platform for developer innovation • Sustainability and carbon reduction

4. Migrate to modernize Exit your datacenter Move VCF private cloud

   deployments to Azure Lock in pricing and discounts Get predictable pricing and save with existing licenses Modernize on your terms Integrate with 200+ Azure services Attach to AI and data analytics services Extract more value from your data

5. Azure VMware Solution as your first step Fastest migration option

   ✓ Migrate VMware workloads “as-is” with minimal refactoring in a private cloud solution ✓ Continue to leverage existing VMware expertise while gaining Azure skills ✓ Use VMware tech stack and VCF subscriptions on Azure infrastructure Get price protection ✓ Lock in pricing with 1, 3, or 5 year Reservation Instances ✓ Exchange reservations at your own rate to use with other Native Cloud Services ✓ No need to renew licenses with VMware by Broadcom: licensing and support is included ✓ Included technology: vSphere, vSAN, NSX, HCX Enterprise, VCF Operations and VCF Automation

6. Migrate fast without refactoring VMware vCenter VM VM VM VM

   ESXi Hosts Storage (vSAN) Compute VMware technology stack Your datacenter Migrate with​ VMware tools​ like HCX (enabling vMotion). Connect via​ Azure​ ExpressRoute​ or a VPN for hybrid operations.​ Azure VMware Solution VMware vCenter VM VM VM VM ESXi Hosts Storage (vSAN) Network (NSX) VMware technology stack VMware-certified hardware Azure Azure backbone network

7. Azure VMware Solution | Connectivity Azure Region Customer datacenter Customer

   edge router Microsoft Enterprise Edge (MSEE) Azure VNET Azure Services Azure Subscription(s) Dedicated Microsoft Enterprise Edge (D-MSEE) The ExpressRoute between AVS D-MSEE and MSEE is part of the AVS service providing backbone connectivity to/from Azure Dedicated. ExpressRoute ExpressRoute ER gateway AVS Network

8. Azure VMware Solution | Enable public IP to the NSX

   Edge Customer datacenter ER gateway ExpressRoute Internet NSX-T Edge VM Load Balancer Network segment HCX Azure region NVA AVS Network Azure VNet Direct internet access Enable inbound and outbound internet access for AVS to NSX-T Edge—does not interact with other Azure-native services. DDoS protection DDoS security protection against network traffic in and out of the internet. 65 trillions signals analyzed per day NSX Edge as terminating point Use the NSX Manager to configure network security and connectivity in and out of the internet.

9. Brazil South West US North Central US Canada Central South

   Central US Central US Canada East West US 2 West US 3 US Gov AZ East US East US 2 US Gov VA Japan East Australia Southeast Japan West East Asia Southeast Asia Australia East South Africa North North Europe UK South West Europe UK West France Central Germany West Central Sweden Central Switzerland West Switzerland North Italy North Qatar Central UAE North India Central Generally available New in the last year Azure VMware Solution global availability https://azure.microsoft.com/en-us/explore/global-infrastructure/products-by-region/?products=azure-vmware&rar=true&regions=all Azure VMware Solution Now available in 33 regions Azure IaaS Now available in more than 70+ regions

10. AVS SKUs & Hardware Details AV36P AV48 AV52 AV64 CPU

    36 Cores 48 Cores 52 Cores 64 Cores vCPUs 72 96 104 128 RAM 768 GB 1.024TB 1.5 TB 1 TB All-flash raw capacity 20.70 TB all NVMe 25.6TB all NVMe (19.20TB in Japan East) 40.00 TB all NVMe 19.20 TB all NVMe Minimum 3 nodes per vSphere cluster Maximum 16 nodes per vSphere cluster Maximum 12 clusters per Private Cloud instance Maximum 96 nodes per Private Cloud instance

11. VCF Operations HCX vSphere Ent Plus VMware vSAN Enterprise VMware

    NSX VCF Operations VCF Operations for Logs VCF Automation VCF Operations Suite (Formerly Aria) VCF Operations for Networks vCenter vSphere ESXi Key Included in AVS Included in AVS (Private Preview*)​ *Phased availability, timing base on specific customer scenario, check with your Microsoft Account Team for more details. VCF Add-Ons Not included in AVS VCF​​ Add-on purchase through VMware​ Live Site Recovery Live Cyber Recovery LSR LCR VMware Live Recovery Tanzu add-on services are not included or supported by AVS. Tanzu Services Add-on purchase through Microsoft in the Azure Portal​ Key Distributed FW Gateway FW VMware Firewall ALB / GLB VMware Load Balancer IDS / IPS VMware ATP VCF Included in Azure VMware Solution

12. Storage overview Azure VMware Solution VMware vCenter VM VM VM

    VM ESXi Hosts Storage (vSAN) Network (NSX) VMware technology stack VMware-certified hardware Azure VMware vSAN is your primary storage • Fully configured all-flash vSAN storage, local to the cluster. • De-duplication and compression enabled by default. • Each node of the vSphere cluster has two disk groups with one cache disk and three capacity disks. Flexibility for intensive workloads • Azure NetApp Files • Azure Elastic SAN • Pure Cloud Block Store

13. Data Protection Storage Virtual Desktops Disaster Recovery Growing technology partner

    ecosystem

14. Azure VMware Solution certifications Now available General Certifications ISO 20000-1:2011

    ISO 22301:2012 ISO 27001:2013 ISO 27017:2015 ISO 27018:2014 ISO 9001:2015 HITRUST SOC 1 Type 2 SOC 2 Type 2 SOC 3 TISAX TruSight WCAG 2.0 CDSA CFTC 1.31 AVS on HiPAA BAA PCI certification CSA STAR Attestation CSA STAR certification CSA STAR Self-Assessment Geo-Specific EU ENISA IAF EU Model Clauses European Banking Authority NBB and FSMA (Belgium) FINMA (Switzerland) FSA (Denmark) C5 (Germany) KNF (Poland) NEN 7510:2011 (Netherlands) BIR 2012 (Netherlands) AFM and DNB (Netherlands) AMF and ACPR (France) DPP (UK) NHS IG Toolkit (UK) FCA and PRA (UK) FERPA (US) FFIEC (US) GLBA (US) MPAA (US) Geo-Specific My Number Act (Japan) MAS and ABS (Singapore) OSFI (Canada) Canadian Privacy Laws RBI and IRDAI (India) APRA (Australia) Coming soon FedRamp High on Public-certified IL4

15. Free up resources and avoid hidden costs VMware on premises

    Management Applications Operating system Hypervisor Storage Servers SAN Networking Power & cooling Facilities Real estate Extended security updates VMware in Azure Management Application Operating system Customer Manages Azure VMware Solution Azure Manages Allow resources to spend more time focusing on tasks that add higher value to your organization.

16. Azure VMware Solution | Shared responsibilities matrix Control boundaries

17. Azure VMware Solution | VMware HCX App mobility Infrastructure hybridity

    Infrastructure abstraction vSphere 5.0+ On-premises AVS Internet / WAN Accelerate cloud adoption App Mobility across vSphere 5.0+ version on-premises to AVS. Hybrid cloud extension Multisite, WAN-optimized, secured, load- balanced, traffic-engineered network extension. Transform with bulk migration Zero downtime on live migrations and scheduled large-scale warm migrations.

18. Virtual Distributed Switch (VDS) On-Premises Azure VMware Solution (AVS) Express

    Route “Default Gateway” “HCX Network Extension Appliance” (Edge) vSphere 1.) vMotion Migration (one VM at a Time; Zero Downtime) 2.) Bulk Migration (up to 200 VM at a Time; Reboot to Cloud; Minimal Downtime) 3.) Replication Assisted vMotion (Bulk Migration; Zero Downtime) Dedicated Microsoft Enterprise Edge Router (D-MSEE) L2VPN over IPSec Express Route Native Azure Microsoft Enterprise Edge Router (MSEE) Azure VNet HCX Manager ER Gateway Global Reach (NSX-T) IPSEC VPN VWAN HUB HCX Connector Extension Optimization Migration Extension Optimization Migration Get URL and download Connector (OVA) Deploy and activate connector (license key generated portal) Create sitepair Create Network profiles (vMotion, management, uplink, replication (RAV)) Create compute profile. Select services to enable (network extension, migration). Select datastores to deploy and networks to use. Service Mesh vSphere HCX Network Extension

19. Migrate to modernize Exit your datacenter Move VCF private cloud

    deployments to Azure Lock in pricing and discounts Get predictable pricing and save with existing licenses Modernize on your terms Integrate with 200+ Azure services Attach to AI and data analytics services Extract more value from your data

20. Azure VMware Solution Azure Functions Azure PostgreSQL Azure Cosmos DB

    Azure SQL family Azure MySQL & MariaDB GitHub Azure API Management Azure Container Registry Visual Studio Code Azure Container Apps Azure AI Services Azure Machine Learning Azure AI Search Copilot for Azure Microsoft Entra ID Azure Policy Defender for Cloud Key Vault Azure Advisor DDoS Protection Azure Firewall Azure Monitor Azure Arc Leverage Azure Cloud Native Ecosystem Powered by Microsoft Azure AI / ML Management & Security Development tools & Integration Services Managed Databases Cloud operations anywhere

21. Azure VMware Solution | VMware HCX Demo

22. AVS SDDC Target Front / middle tier application PostgreSQL Database

    Dedicated MSEE Dedicated MSEE SDDC on-premises Front / middle tier application PostgreSQL Database AVS SDDC Target Front / middle tier application PostgreSQL Database Dedicated MSEE Dedicated MSEE SDDC on-premises Front / middle tier application PostgreSQL Database AVS SDDC Target Front / middle tier application PostgreSQL Database Dedicated MSEE Dedicated MSEE SDDC on-premises Front / middle tier application PostgreSQL Database Demo Architecture HCX Site Pairing HCX Replicated Assisted vMotion Container App Environment Spoke VNET VNET peering Azure Database PostgreSQL Server Front / Middle Tier application ExpressRoute Hub VNET ExpressRoute Gateway Windows VM Jumphost Linux VM Jumphost Azure Bastion PostgreSQL managed migration service Container App Environment Spoke VNET VNET peering Azure Database PostgreSQL Server Front / Middle Tier application

23. Demo Architecture (video)

24. Get started with landing zone accelerator Patterns and automation support

    80% of configuration and enable customization Accelerated • Builds on the Azure Landing Zone • Helps define a strategic design path and target technical state. • Includes automation to get to production faster Scalable, flexible • Meet performance requirements and enable customization based on business requirements Trusted • Tap into Microsoft's technical and prescriptive guidance • Access reference architectures and reference implementations Supports 80% of total solution 20% Custom: CSA, Partner 30% Azure VMware Solution landing zone accelerator / Azure Verified Modules 50% Azure landing zone accelerator

25. VMware Rapid Migration Plan Offers and licensing benefits for Azure

    VMware Solution Get price protection Lock in pricing and discounts for 1, 3, or 5* years • Reserved Instances for Azure VMware Solution can be exchanged anytime for other Azure Reserved Instances • Additional 20% off the 1-yr reserved instance for a limited time (June 30, 2025) *Special offer: 5-yr RI for AVS ends on December 30, 2025 Save with existing licenses Azure Hybrid Benefit • Use Windows Server and SQL Server on-premises licenses with Software Assurance to save on Azure* Free extended security updates • Get up to 3 years free security updates on Azure for Windows Server and SQL Server 2012 and 2014 VMware Cloud Foundation (VCF) subscription portability • Utilize existing VCF subscriptions on AVS. *Most competitive WS/SQL Server pricing on Azure Get migration assistance Get Azure credits to modernize Use the Azure Migrate and Modernize program for migration funding and comprehensive resources Streamline migration with Cloud Migration Factory Up to a one-time $120k incentive to modernize with Azure Available for 1-yr, 3-yr, or 5-yr RIs on new migrations Limited time: Ends June 30, 2025

26. Myths and facts around Azure VMware Solution (AVS) AVS incurs

    higher costs compared to on-premises solutions Implementing AVS requires overhauling my entire monitoring, backup, and related ecosystems. Connection between on-premises infrastructure and Azure will be costly. Using AVS will lock me on Microsoft Azure. A 5-year commitment to AVS means being locked to the service for the entire duration. Migrating from VMware VMs to Azure native VMs is a complex and costly process. Azure is perceived as overly complex for small businesses.

27. References Baseline information • Product page: Azure VMware Solution •

    Documentation: Azure VMware Solution • SLA: SLA for Azure VMware Solution • Azure Regions: Azure Products by Region • Service Limits: Azure VMware Solution subscription limits and quotas\ Migration planning and operations • GitHub repository: Azure/azure-vmware-solution • Well-Architected Framework: Azure VMware Solution workloads • Cloud Adoption Framework: Introduction to the Azure VMware Solution adoption scenario • Network connectivity scenarios: Enterprise-scale network topology and connectivity for Azure VMware Solution • Enterprise-Scale Landing Zone: Enterprise-scale for Microsoft Azure VMware Solution • Enterprise-Scale GitHub repository: Azure/Enterprise-Scale-for-AVS • Azure CLI: Azure Command-Line Interface (CLI) Overview • PowerShell module: Az.VMware Module • Azure Resource Manager: Microsoft.AVS/privateClouds • REST API: Azure VMware Solution REST API • Terraform provider: azurerm_vmware_private_cloud Terraform Registry • Availability Design Considerations • Recoverability Design Considerations • Performance Design Considerations AVS click-through demos
28. None

29. Thank you