Cloud Foundation to Execute on Innovation

Transcript

1. Cloud Foundation to Execute on Innovation Albert W. Alberts -

   KPN Martijn Baecke - VMware November 26th 2018 London Gartner IT Infrastructure, Operations & Cloud Strategies Conference

2. BRIDGING ACROSS SILOS OF INNOVATION

3. ACT ONE Server Wars Heat Up IT Must Choose Sides

   Tech News

4. VMWARE COMMUNITY Powered by VMware vSphere DELL SERVERS HP SERVERS

   IBM SERVERS

5. ACT TWO CIO Mandate: Break the Chains “Hardware Networks Too

   Rigid” Tech News

6. VMWARE COMMUNITY Powered by VMware NSX BROCADE HARDWARE FIREWALL CISCO

   HARDWARE LOAD BALANCERS JUNIPER

7. ACT THREE Tech News Cloud Migrations Hit a Wall Businesses

   Struggle to Adapt

8. PUBLIC CLOUD PRIVATE CLOUD VMWARE COMMUNITY Powered by VMware Cloud

9. AND FOR OUR NEXT ACT…

10. Tech News Complexity Explodes in Multi-Cloud Era CIOs Search for

    Path Forward

11. IBM CLOUD MICROSOFT AZURE AMAZON WEB SERVICES GOOGLE CLOUD VMWARE

    COMMUNITY Powered by VMware Cloud

12. Micro- services Mobile Cloud “The Application Is a Network” Data

    APP
13. None

14. 14 14 Confidential │ ©2018 VMware, Inc. VMware Cloud The

    complete portfolio for the Multi-Cloud Journey Cloud Native Apps Time to market • Innovation • Scale • Differentiation Existing Apps Cost Management • Security • Reliability • Control VISIBILITY OPERATIONS AUTOMATION SECURITY GOVERNANCE CONTAINER MANAGEMENT VMware Cloud Services Hybrid Cloud Native Public Cloud CONTAINERS VIRTUAL MACHINES for VMware VMware Cloud on AWS Project Dimension KUBERNETES VM VMware Cloud Automation & Operations CONSISTENT OPERATIONS Management and Operations • Across Clouds CONSISTENT INFRASTRUCTURE Compute, Networking, Storage, and Security (VMs, Containers, XaaS) OPEN & FLEXIBLE DEVELOPER EXPERIENCE Open Source IaaS, PaaS, CaaS, FaaS • Tooling • Telemetry

15. 15 Confidential │ ©2018 VMware, Inc. Digital Business Digital Business

    Requires a Digital Foundation To support the people, processes, apps, and data that power the business Consistent Infrastructure Consistent Operations Intrinsic Security People Modern Apps Processes Data Digital Foundation Adaptive. Resilient. Secure.

16. KPN CloudNL VMware (VPC) How we enabled Digital Innovation …

    Albert W. Alberts, November 26th 2018 London Gartner IT Infrastructure, Operations & Cloud Strategies Conference

17. Who am I … • KPN since Jan. 1999: –

    HetNet (ISP), VoIP, Comet (backend deployment), Bewaarplicht (email logging), Cloud DevOps, CloudNL VMware, API Store (Apigee) • Architect (with a software background) • KPN patents & pending • MeetUp organizations: – devNetNoord, – domoticaGrunn, – ManageIQ Albert W. Alberts Private Home automation (soft- & hardware), Bramble Swimming, Waterpolo, Cycling, Travelling Contact [email protected] @a_w_alberts www.linkedin.com/in/albertalberts

18. Koninklijke KPN N.V. or Royal Dutch Telecom • Dutch landline

    and mobile telecommunications company • Mobile Network Operator (KPN- and TelfortMobile) • Mobile Virtual Network Operator (Simyo, Ortel Mobile) • Internet Service Provider • Multi-play services (Interactive Television, IPTV) • Wholesale services • ICT services in the Benelux or just KPN

19. Koninklijke KPN N.V. or Royal Dutch Telecom • Dutch landline

    and mobile telecommunications company. • Mobile Network Operator (KPN- and TelfortMobile) • Mobile Virtual Network Operator (Simyo, Ortel Mobile) • Internet Service Provider. • Multi-play services (Interactive Television, IPTV). • Wholesale services • ICT services in the Benelux. or just KPN Consumer Services Business Services

20. KPN ICT services One of the ICT Services … Managed

    Hybrid Cloud – an application centric service concept based on cloud infrastructure, networking, managed services and integrated compliance and security focused on delivering a true hybrid service fit for each application including 24/7 operational support. part of the department Business Services
21. None

22. CloudNL characteristics: • Services delivered by KPN in Dutch datacenters;

    • Platform managed from within the Netherlands under Dutch law; • Cloud Compliance Framework assurance (CCF).

23. Cloud characteristics: • Self-service management • Create own infra •

    Manage own infra • Scalable • Pay per use

24. CloudNL Microsoft, based on Microsoft WAP technology

25. CloudNL VMware, based on VMware technology • vRealize Automation; •

    vRealize Orchestration; • NSX; • vCenter & vSphere.

26. Virtual Machines Networking Backup CloudNL VMware Focus on Infrastructure (IaaS)

27. Virtual Machines Networking Backup CloudNL VMware vRealize suite vRealize Automation

    vRealize Orchestration

28. vRealize Automation vRealize Orchestration Compute resources Networking resources Storage resources

    CloudNL VMware Portal ReST API What does the customer get? Interfaces

29. vRealize Automation vRealize Orchestration Compute resources Networking resources Storage resources

    CloudNL VMware Portal ReST API What does the customer get? Interfaces Go Ruby Python C# enable Infrastructure as Code

30. vRealize Automation vRealize Orchestration Virtual Machines Networking Backup Compute resources

    Networking resources Storage resources CloudNL VMware Portal API What does the customer get? Interfaces

31. Tenant A Tenant A private IP private IP NSX Edge

    pair public IP public IP Tenant ESG Tenant ESG Perimeter ESG Perimeter ESG default GW Perimeter ESG Perimeter ESG Distributed Logical Router Tenant A ESG Tenant A ESG Distributed Logical Router VM VM VM VM VM VM VM VM transport network default GW default GW default GW transport network public network, without NAT(ting) private network, with sNAT(ting) Internet Datacenter 1 Datacenter 2 What does the customer get? Default network setup: front-end & back-end

32. vRealize Automation vRealize Orchestration Compute resources Networking resources Storage resources

    CloudNL VMware Portal How does the customer get it? Order / Request

33. vRealize Automation vRealize Orchestration Compute resources Networking resources Storage resources

    How does the customer get it? Order / Request flow Portal CloudNL VMware

34. vRealize Automation vRealize Orchestration Compute resources Networking resources Storage resources

    How does the customer get it? Order / Request flow Portal € Billing

35. vRealize Orchestration Compute resources Networking resources Storage resources How does

    the customer get it? Order / Request flow € Billing vRealize Automation Portal

36. vRealize Orchestrator workflow Create a simple NSX Load Balancer

37. CloudNL VMware, virtual private cloud • External customers • Internal

    customers

38. How Managed Hybrid Cloud evolved Virtual Private Cloud: – External

    customers – Internal customers: • IoT services • API Store • App Factory (ALM) • Digital (kubernetes) • interactive TV • … intended for external customers 2017 2018 customers internal customers external customers

39. Why do internal customers choose the VPC platform? Virtual Private

    Cloud: – Avoid internal processes – Store sensitive data on premise – No “datacenter” responsibilities – Influence on the service(s) delivered – Easy to set up, easy to deploy – RBAC – Connectivity to internal services – … focus on things that matter

40. Internal VPC platform References: • State of DevOps Report 2018

    – Stage 5: Provide self-service capabilities • ThoughtWorks Radar vol. 19 – Shared VPC pattern – Multi Account Cloud Setup pattern* a corporate evolution … TECHNIQUES TOOLS LANGUAGE & FRAMEWORKS PLATFORMS ADOPT TRIAL ASSESS HOLD HOLD ASSESS TRIAL ADOPT * CloudNL VPC offers multiple accounts with different roles

41. KPN CloudNL VMware, the team • 1 Product Owner •

    3 OPS • 3 DEV • 1 Tester • 1 Architect who and how?

42. KPN CloudNL VMware, service portfolio • Basic generic dual datacenter

    infrastructure • Standard OS images • Software Defined Networking (SDN) with VMware NSX • New services start with a Minimal Viable Product • Service request to add new services or service features • Extract services based on existing implementations • Direct contact with customers • Ease of use vs. full-featured services what and how?

43. Service creation ease of use vs. full-featured services MVP Select

    number of customers

44. Service creation ease of use vs. full-featured services MVP missing

    features Select number of customers

45. Service creation ease of use vs. full-featured services MVP MVP

    missing features Generic Service

46. Service creation ease of use vs. full-featured services Generic Service

    All customers

47. Service creation ease of use vs. full-featured services Generic Service

    feature feature feature feature Some customers

48. Service creation ease of use vs. full-featured services Generic Service

    Service Module Service Module Service Module Service Module ease of use full-featured &

49. NSX Load Balancers: “simple” vs advanced ease of use vs

    full-featured “simple” Load Balancer: one catalog item with multiple tabs Advanced Load Balancer: multiple catalog items with dependencies

50. “Load Balancer” NSX Load Balancer: “simple” vs advanced Guided vs

    Reusable Building blocks Load Balancer Host Load Balancer Certificate Load Balancer Application Profile Load Balancer Load Balancer Health Monitor Load Balancer Application Rule Load Balancer Pool Load Balancer Pool Members Application Profile Health Check Certificates “simple” Load Balancer: one catalog item with multiple tabs General Advanced Load Balancer: multiple catalog items with dependencies tab Catalog item

51. Structure of an advanced NSX Load Balancer Creation order Load

    Balancer Host Load Balancer Certificate Load Balancer Application Profile Load Balancer (service) Load Balancer Health Monitor Load Balancer Application Rule Load Balancer Pool creation order

52. Tenant AWAlberts Tenant AWAlberts private IP private IP NSX Edge

    pair public IP public IP Tenant ESG Tenant ESG Perimeter ESG Perimeter ESG default GW Perimeter ESG Perimeter ESG Distributed Logical Router Tenant ESG AWAlberts Tenant ESG AWAlberts Distributed Logical Router VM VM transport network default GW default GW default GW transport network Internet Demo_01 Demo_02 Create an Internet-Facing Load Balancer Create an Internet-Facing Load Balancer with two VMs in the back-end Datacenter 1 Datacenter 2

53. Tenant AWAlberts private IP public IP Tenant ESG Perimeter ESG

    default GW Perimeter ESG Distributed Logical Router Tenant ESG AWAlberts VM VM default GW transport network Internet Load Balancer Create NSX Load Balancer, with two nodes public IP Portal vRA, vRO Create an Internet-Facing Load Balancer Create an Internet-Facing Load Balancer with two VMs in the back-end Demo_01 Demo_02 Datacenter 1

54. Datacenter 1 Tenant AWAlberts private IP public IP Tenant ESG

    Perimeter ESG default GW Perimeter ESG Distributed Logical Router Tenant ESG AWAlberts VM VM default GW transport network Internet Create NSX Load Balancer, with two nodes public IP Create an Internet-Facing Load Balancer Create an Internet-Facing Load Balancer with two VMs in the back-end Demo_01 Demo_02 Load Balancer Portal vRA, vRO Application Profile Health Check Certificates General Load Balancer Load Balancer Host Load Balancer Pool Health Monitor Application Profile

55. Tenant AWAlberts private IP public IP Tenant ESG Perimeter ESG

    default GW Perimeter ESG Distributed Logical Router Tenant ESG AWAlberts VM VM default GW transport network Internet Load Balancer public IP: 145.128.67.82:3333 while true; do curl 145.128.67.82:3333 sleep 1 done Portal vRA, vRO Create an Internet-Facing Load Balancer Create an Internet-Facing Load Balancer with two VMs in the back-end Demo_01 Demo_02 VMs listening on port 3333 Datacenter 1

56. Demo Create an Internet Facing Load Balancer with two VMs

    in the back-end [2:53]

57. Key takeaways • Setup a good architecture • Look at

    your portfolio from a user perspective • Start with a MVP (Pareto) • Automate

58. Questions now or later at the VMware booth ...

59. Thank you for your attention!