Cloud Niners AWS Solutions

Transcript

1. Amazon Web Services Use Cases ©2014,'Amazon'Web'Services,'Inc.'or'its'affiliates.''All'rights'reserved.'

2. Common Use Cases •  Backup and Disaster Recovery •  Development

   and Testing •  Virtual Desktop Infrastructure •  And Much More…! –  Production Workloads, Business Critical Apps, Big- Data Crunching, Analytics…

3. Backup and Disaster Recovery ©2014,'Amazon'Web'Services,'Inc.'or'its'affiliates.''All'rights'reserved.'

4. The need for Backup and DR

5. Some  “natural”  examples…. after Brisbane Floods – January 13th 2011

   Coronation  Drive,  Milton,  QLD.… Photos: http://www.abc.net.au/news/specials/qld-floods/

6. Some  “natural”  examples…. after Brisbane Floods – January 13th 2011

   Coronation  Drive,  Milton,  QLD.… Photos: http://www.abc.net.au/news/specials/qld-floods/

7. Some  “natural”  examples…. Christchurch Earthquake - Feb 22nd 2011 Manchester

   & Glouchester Street, Christchurch.... Photos: http://www.abc.net.au/news/specials/christchurch-quake/

8. What  about  “human-made”  examples…. “Everything  fails,  all  the  time” Werner

   Vogels, CTO, Amazon.com

9. Backup and DR with AWS Drivers for Backup and DR

   with AWS

10. Business  and  Technical  Drivers  with  AWS…. Reduce costs Slash DR

    budgets by up to 50% Consolidate sites Eliminate the need to run a secondary site Reduce on-premises Eliminate 30%+ of on-premises physical equipment Remove aging technologies Eliminate tape for backup and archive

11. The  fundamental  economic  model… Utility, on-demand datacenter Primary Site Routers

    Firewalls Network Application Licenses Operating Systems Hypervisor Servers SAN Primary Storage Backup Archive AWS Routers Firewalls Network Application Licenses Operating Systems Hypervisor Servers SAN Snapshot Storage Backup Archive Secondary site costs

12. You can have different DR solutions • Easy to integrate

    existing vendors with DR on AWS • Approach: One vendor/hybrid/multiple vendors • One region/multi-regions (if you need geo-diversity) • Different DR Architectures Backup & Restore Pilot light Warm standby in AWS Multi-site solution in AWS & on- premises

13. Assets  will  sit  on  a  spectrum  of  technical  complexity… DR

    & business continuity Rebuild when required from offsite backup Run hot-hot configuration with auto-failover Recovery Time Objective (RTO) How quickly you need this asset to be recovered? e.g. 1min? 15min? 1hr? 4hrs? 1day? Recovery Point Objective (RPO) How  ‘fresh’  the  recovery  must  be  for  the  asset? e.g. zero data loss, 15mins out of date?

14. Backup and DR with AWS Backup and Storage Options

15. Simple Storage Service Highly scalable object storage 1 byte to

    5TB in size 99.999999999% durability Elastic Block Store High performance block storage device 1GB to 1TB in size Mount as drives to instances with snapshot/cloning functionalities Glacier Long term object archive Extremely low cost per gigabyte 99.999999999% durability Storage Options Very fast ‘instance’  disks Slow, rare access Fast web object storage

16. Storage Gateway – Connect On-Prem with the AWS Cloud 1.

    Local, low-latency access to the most frequently used files while storing all data in Amazon S3 (Cached-Volumes) Or 2. Scheduled off-site backups to Amazon S3 for on-premises data (Stored-Volumes)

17. Cost ($/GB/month) Performance Durability Amazon S3 0.095   Amazon

    Glacier 0.01   AWS Storage Gateway 0.095 (+ 125/GW)   Amazon EBS 0.10   Amazon EBS (PIOPS) 0.125   *AWS Oregon pricing Storage Options

18. Backup and DR with AWS Backup and DR Rules

19. 1. My backup should be accessible 1. My backup should

    be able to scale 1. My backup should be safe 2. My backup should work with a DR policy 3. Someone should care about it Backup Rules

20. VPN Public / AWS Direct Connect AWS Import/Export Backup Rules

    – My backup should be accessible

21. GW-Cached volumes GW-stored volumes “Warm” storage “Cold” Backup Rules –

    My backup should be accessible

22. • “Infinite” scale with Amazon S3 and Amazon Glacier •

    Scale to multiple regions • Seamless • No need to provision • Cost tiers (cheaper at scale) Backup Rules – My backup should be able to scale

23. • SSL Endpoints (Amazon S3 and Amazon Glacier) • Signed

    API calls • Store encrypted files • Server-side encryption • Multiple copies across different data centers • Local/cloud with AWS Storage Gateway Backup Rules – My backup should be safe

24. Backup Rules – My backup should work with a DR

    policy

25. • Clear ownership • Permissions with IAM: Users, groups Æ

    roles • Logs • AWS support Backup Rules – Someone should care about it

26. Backup and DR with AWS A  “Backup/Restore”  &  “Pilot  Light”

     reference…

27. Pilot light Stopped instances

28. Pilot light Running instances

29. Backup and DR with AWS The new HA/DR continuum…

30. The  new  HA/DR  continuum… DR with High Availability

31. App DR with Standby The  new  HA/DR  continuum…

32. Reducing Costs • AWS cost reduction (e.g, S3 cost reduction

    on Apr 2nd 2013) • Reduced redundancy (Amazon S3) • Retention policy • Hot/warm/cool/cold backup • Reserved capacity/tiers 0–1 TB 0.095 0.076 1–50 TB 0.080 0.064 50–500 TB 0.070 0.056 500–1,000 TB 0.065 0.052 1–5 PB 0.060 0.048 5+ PB 0.055 0.037 Amazon S3 Standard $/GB/Month Reduced $/GB/Month

33. AWS for Dev and Test ©2014,'Amazon'Web'Services,'Inc.'or'its'affiliates.''All'rights'reserved.'

34. © 2011 Amazon.com, Inc. and its affiliates. All rights reserved.

    May not be copied, modified or distributed in whole or in part without the express consent of Amazon.com, Inc. Multiple environments are tough Experimentation is slow Obtaining servers takes weeks Some Challenges Customers Tell Us About

35. © 2011 Amazon.com, Inc. and its affiliates. All rights reserved.

    May not be copied, modified or distributed in whole or in part without the express consent of Amazon.com, Inc. Simplify multiple environments Experiment quickly Obtain servers in minutes How the AWS Cloud Can Be Useful

36. © 2011 Amazon.com, Inc. and its affiliates. All rights reserved.

    May not be copied, modified or distributed in whole or in part without the express consent of Amazon.com, Inc. Obtain Servers in Minutes On-Premises Add New Development Environment Add New Production Environment Add New Environment in Japan Add 1,000 Servers Remove 1,000 Servers …in  Minutes Research server options Procure hardware Open Purchase orders Deploy hardware Etc…

37. © 2011 Amazon.com, Inc. and its affiliates. All rights reserved.

    May not be copied, modified or distributed in whole or in part without the express consent of Amazon.com, Inc. Create Test Environments Easily On-Premises Duplicate your production environments Duplicate your costs Duplicate efforts Difficult to dispose of Create multiple test environments easily Create with a script, or via a few mouse clicks Creation and deletion can be in minutes Create for only the time you need them

38. © 2011 Amazon.com, Inc. and its affiliates. All rights reserved.

    May not be copied, modified or distributed in whole or in part without the express consent of Amazon.com, Inc. Experiment Quickly On-Premises Experiment Infrequently Failure is expensive Less Innovation Experiment Often Fail quickly at a low cost More Innovation $ Millions Nearly $0

39. © 2011 Amazon.com, Inc. and its affiliates. All rights reserved.

    May not be copied, modified or distributed in whole or in part without the express consent of Amazon.com, Inc. New choices to make Low-risk Pay only for what you use No up-front commitment Enable New Scenarios # Instances # Hours Price 1 2000 Same 5 400 Same 10 200 Same 1000 2 Same 2000 1 Same
40. None
41. None
42. None
43. None
44. None
45. None
46. None
47. None
48. None

49. Testing at Scale ©2014,'Amazon'Web'Services,'Inc.'or'its'affiliates.''All'rights'reserved.'

50. None
51. None
52. None
53. None
54. None
55. None
56. None
57. None
58. None
59. None

60. © 2011 Amazon.com, Inc. and its affiliates. All rights reserved.

    May not be copied, modified or distributed in whole or in part without the express consent of Amazon.com, Inc. Shell uses AWS to Develop Software Faster and Cheaper Remote Team Core Development Team Extra Development Resources Contractor Team

61. © 2011 Amazon.com, Inc. and its affiliates. All rights reserved.

    May not be copied, modified or distributed in whole or in part without the express consent of Amazon.com, Inc. Orange Digital uses AWS + Puppet for Application Development “Moving  to  AWS  has  reduced  the  time  to  market  for  new  products,”  says Jennings. “Previously,  this  process  took  at  least  three  months.  AWS  has   removed a barrier, so time to market is dependent almost entirely on developing  software  and  deciding  what  we  want  to  do.” USING PUPPET, ORANGE DIGITAL CAN REPLICATE A PRODUCTION ENVIRONMENT ON DEVELOPMENT LAPTOPS, THEREBY ENSURING CONSISTENCY THROUGHOUT THE LIFECYCLE

62. © 2011 Amazon.com, Inc. and its affiliates. All rights reserved.

    May not be copied, modified or distributed in whole or in part without the express consent of Amazon.com, Inc. VSC Technologies uses AWS for Performance Testing Voyages-sncf.com managed a business volume of 2.4 billion €, with more than 10 million unique visitors per month THEIR USUAL PROVIDER REQUIRED EIGHT MONTHS TO DELIVER THE PLATFORM “AWS HAS ALLOWED US TO BENEFIT FROM THEIR AGILITY IN BRINGING ADDITIONAL CAPACITY ONLINE TO TEST NEW SOFTWARE EARLY”

63. © 2011 Amazon.com, Inc. and its affiliates. All rights reserved.

    May not be copied, modified or distributed in whole or in part without the express consent of Amazon.com, Inc. Use What You Are Already Using

64. VDI on AWS Cloud: WorkSpaces ©2014,'Amazon'Web'Services,'Inc.'or'its'affiliates.''All'rights'reserved.'

65. Some Customer Challenges • Realizing  the  “Virtual  Desktop  Dream” •

    BYOD is increasingly popular • Workforces are increasingly diverse • Tablet adoption significant • Keeping all these desktops secure

66. What does WorkSpaces offer you..? • Fully Managed • Support

    Multiple Devices • Keep Data Secure and Available • Choose Software & Hardware • Pay as You Go • Corporate Directory Integration

67. Sample Use Cases (there are many more) • Mobile Device

    Access • Secure WorkSpaces • Remote Employees • Seasonal Workers • Student WorkSpaces • Developer WorkSpaces

68. Fully Managed • Launch the number of WorkSpaces needed •

    All heavy lifting taken care of by AWS • Users receive email to install clients and connect WorkSpaces

69. Support Multiple Devices • iPad • Kindle Fire HDX (Keyboard

    & Mouse) • Android Tablet • Microsoft Windows • Mac

70. Keep Data Secure and Available • No data stored on

    end-user device • Only Pixels delivered to users (PCoIP) • User volume backed by Amazon S3

71. Keep Data Secure and Available • Securely backup and sync

    users data • Install on the WorkSpace and a PC or Mac • Data is backed up to Amazon S3 • Users can access their data when they need it

72. Install your own software • No technical restrictions on software

    installation • Use the tools you already use to distribute • Check with your ISV • Ask for WorkSpaces support

73. WorkSpaces Connect: AD Integration • Users: Get to use existing

    Enterprise Credentials • IT: WorkSpaces control like regular desktops

74. Corporate Directory Integration • Manage WorkSpaces like any other desktop

    – Group Policy – Software Distributions Tool – Install agents • Store in the OU that makes sense to you • Don’t  change  the  way  you  manage – Just less heavy lifting

75. Corporate Directory Integration Steps • Ensure existing AD is reachable

    (via VPC) • This could be on-premises or in EC2 • Configure WorkSpaces Connect • Launch WorkSpaces users in connected domain

76. Corporate Directory Integration Subnet 2 Subnet 1 AZ  ‘A’ AZ

     ‘B’ Workspaces API End-point Customer Network VPN Connection OAuth Gateway Public IP Secure Auth (443) Public IP WS User1 Public IP WS User2 On-premises Domain Controllers Directory Join Directory Join WorkSpaces Connect WorkSpaces Connect On-premises Resources

77. Resource Access Subnet 2 AZ  ‘A’ AZ  ‘B’ Workspaces API

    End-point (Customer Network) VPN Connection OAuth Gateway Public IP Secure Auth (443) Public IP WS User1 Public IP WS User2 On-premises Domain Controllers On-premises Resources Subnet 1 Subnet 3 Subnet 4

78. ©2014,'Amazon'Web'Services,'Inc.'or'its'affiliates.''All'rights'reserved.' [email protected] @cloud9ers

79. TapeAouts'require'doubling'of' dataAcenter'capacity'on'demand' ' SimulaFons'run'for'weeks,'power' grid'stability'issues' ' MonteACarlo'sweeps'need'onA demand'HPC'clusters' ' IP'Security'is'of'prime'importance'

    Challenges) “What'has'been'achieved'is' phenomenal.'We'were'able'to'double' our'simulaFon'rates'and'meet' delivery'deadlines,'while'saving' millions.'The'cloud'offered'real' business'benefits'to'us!”' Tarek'Elesseily' CEO'