KPN CloudNL VMware, vRA en NSX in een Nederlandse multi-tenant Cloud oplossing

Transcript

1. KPN CloudNL VMware vRA en NSX in een Nederlandse multi-tenant

   Cloud oplossing Albert W. Alberts, 16 maart 2017

2. Even voorstellen … • KPN sinds jan. 1999: – HetNet,

   VoIP, Comet, Bewaarplicht, Cloud, CloudNL VMware • Architect (met een software achtergrond) • KPN patenten • devNetNoord organisatie Albert W. Alberts Privé Raspberry Pi / Home automation MeetUp bezoeker Zwemmen. waterpolo, reizen Contact LinkedIn: https://www.linkedin.com/in/albertalberts/ Twitter: @a_w_alberts Email: [email protected]

3. KPN CloudNL VMware • 1 Commercieel Product Owner • 1

   Technisch Product Owner • 3 OPS • 2 DEV • 1 Test • 1 Architect • ½ Proces The Team: who and how?
4. None

5. CloudNL kenmerken: • Diensten worden geleverd vanuit KPN eigen datacenters

   in Nederland; • Beheer vanuit Nederland onder Nederlandse wet- en regelgeving; • Assurance via het Cloud Compliance Framework (CCF).

6. Cloud kenmerken: • Self-service management • Eigen infra creëren •

   Eigen infra beheren • Schaalbaarheid • Betalen voor gebruik

7. CloudNL Microsoft, gebaseerd op Microsoft technologie

8. CloudNL VMware, gebaseerd op VMware technologie • vRealize Automation; •

   vRealize Orchestration; • NSX; • vCenter & vSphere.

9. Virtual Machines Networking Backup CloudNL VMware Focus op Infrastructuur (IaaS)

10. Virtual Machines Networking Backup CloudNL VMware vRealize suite vRealize Automation

    vRealize Orchestration

11. vRealize Automation vRealize Orchestration Compute resources Networking resources Storage resources

    CloudNL VMware Portal ReST API What does the customer get? Interfaces

12. vRealize Automation vRealize Orchestration Compute resources Networking resources Storage resources

    CloudNL VMware Portal ReST API What does the customer get? Interfaces Go Ruby Python C#

13. vRealize Automation vRealize Orchestration Virtual Machines Networking Backup Compute resources

    Networking resources Storage resources CloudNL VMware Portal API What does the customer get? Interfaces

14. Tenant A Tenant A private IP private IP NSX Edge

    pair public IP public IP Tenant ESG Tenant ESG Perimeter ESG Perimeter ESG default GW Perimeter ESG Perimeter ESG Distributed Logical Router Tenant A ESG Tenant A ESG Distributed Logical Router VM VM VM VM VM VM VM VM transport network default GW default GW default GW transport network public network, without NAT(ting) private network, with sNAT(ting) Internet Aalsmeer (CCA) Apeldoorn (APD) What does the customer get? Default network setup: front-end & back-end

15. Tenant A Tenant A private IP private IP NSX Edge

    pair public IP public IP Tenant ESG Tenant ESG default GW Distributed Logical Router Tenant A ESG Tenant A ESG Distributed Logical Router VM VM VM VM VM VM VM VM transport network default GW default GW default GW transport network public network, without NAT(ting) private network, with sNAT(ting) Aalsmeer (CCA) Apeldoorn (APD) KPN Cloud Connect What does the customer get? Custom network setup: no internet, on-premise connected via KPN Cloud Connect

16. Tenant ESG Distributed Logical Router Tenant B ESG transport network

    Tenant A Tenant ESG Distributed Logical Router Tenant B ESG transport network Tenant A private IP public IP Perimeter ESG default GW Perimeter ESG VM VM VM VM default GW transport network Internet Tenant ESG Tenant A ESG Distributed Logical Router Aalsmeer (CCA) Apeldoorn (APD) private IP public IP Perimeter ESG default GW Perimeter ESG VM VM VM VM default GW transport network Tenant ESG Tenant A ESG Distributed Logical Router Wat does the customer get? Multitenancy, separation at the pESG

17. vRealize Automation vRealize Orchestration Compute resources Networking resources Storage resources

    CloudNL VMware Portal ReST API How does the customer get it?

18. vRealize Automation vRealize Orchestration Compute resources Networking resources Storage resources

    CloudNL VMware Portal How does the customer get it? Order / Request

19. vRealize Automation vRealize Orchestration Compute resources Networking resources Storage resources

    How does the customer get it? Order / Request flow Portal € Billing

20. vRealize Orchestration Compute resources Networking resources Storage resources How does

    the customer get it? Order / Request flow € Billing vRealize Automation Portal

21. vRealize Orchestrator workflow Create NSX Load Balancer

22. Tenant AWAlberts Tenant AWAlberts private IP private IP NSX Edge

    pair public IP public IP Tenant ESG Tenant ESG Perimeter ESG Perimeter ESG default GW Perimeter ESG Perimeter ESG Distributed Logical Router Tenant ESG AWAlberts Tenant ESG AWAlberts Distributed Logical Router transport network default GW default GW default GW transport network Internet Aalsmeer (CCA) Apeldoorn (APD) Demo: Create Virtual Machine Create a Virtual Machine in the back-end network

23. Tenant AWAlberts private IP public IP Tenant ESG Perimeter ESG

    default GW Perimeter ESG Distributed Logical Router Tenant ESG AWAlberts VM default GW transport network Internet Aalsmeer (CCA) Create Virtual Machine: CentOS Linux v7.1 CTOS7CCA01 CTOS7CCA01 Portal vRA, vRO Demo: Create Virtual Machine Create a Virtual Machine in the back-end network

24. Tenant AWAlberts private IP public IP Tenant ESG Perimeter ESG

    default GW Perimeter ESG Distributed Logical Router Tenant ESG AWAlberts VM default GW transport network Internet Aalsmeer (CCA) CTOS7CCA01 Portal vRA, vRO CentOS Linux 7 (Core) Kernel 3.10.0-327.36.3.e17.x86 on an x86_64 C7ACTOS7CCA01 login: root Password: Last login: Fri Mar 10 10:44:55 on ttty1 root@C7ACTOS7CCA01 ~]# Demo: Create Virtual Machine Create a Virtual Machine in the back-end network

25. Demo Create a Virtual Machine in the back-end network

26. Tenant AWAlberts Tenant AWAlberts private IP private IP NSX Edge

    pair public IP public IP Tenant ESG Tenant ESG Perimeter ESG Perimeter ESG default GW Perimeter ESG Perimeter ESG Distributed Logical Router Tenant ESG AWAlberts Tenant ESG AWAlberts Distributed Logical Router VM VM transport network default GW default GW default GW transport network Internet Aalsmeer (CCA) Apeldoorn (APD) CTOS7CCA01 CTOS7CCA02 Demo: Create an Internet-Facing Load Balancer Create an Internet-Facing Load Balancer with two VMs in the back-end

27. Tenant AWAlberts private IP public IP Tenant ESG Perimeter ESG

    default GW Perimeter ESG Distributed Logical Router Tenant ESG AWAlberts VM VM default GW transport network Internet Aalsmeer (CCA) CTOS7CCA01 CTOS7CCA02 Load Balancer Create NSX Load Balancer, with nodes: CTOS7CCA01 CTOS7CCA02 public IP Portal vRA, vRO Demo: Create an Internet-Facing Load Balancer Create an Internet-Facing Load Balancer with two VMs in the back-end

28. Tenant AWAlberts private IP public IP Tenant ESG Perimeter ESG

    default GW Perimeter ESG Distributed Logical Router Tenant ESG AWAlberts VM VM default GW transport network Internet Aalsmeer (CCA) CTOS7CCA01 CTOS7CCA02 Load Balancer public IP while true; do curl 145.128.67.82:3000 sleep 1 done Portal vRA, vRO Demo: Create an Internet-Facing Load Balancer Create an Internet-Facing Load Balancer with two VMs in the back-end

29. Demo Create an Internet Facing Load Balancer with two VMs

    in the back-end

30. Vragen nu of straks bij de KPN stand

31. Bedankt voor jullie aandacht ! en er zijn vacatures …

32. var http = require('http'); http.createServer(function (req, res) { res.writeHead(200, {'Content-Type':

    'text/plain'}); res.end(‘Hello, my name is CTOS7CCA01. I\’m numero UNO!\n’); }).listen(3000, “[node IP-address]”); console.log('Server running at http://[node IP-address]:3000/‘); Webserver with node.js, load balancer node index.js

33. #!/bin/bash # This script runs until you stop it with

    Ctrl-C while true; do curl [load balancer IP-address]:3000 sleep 1 done Bash script calling the load balancer IP-address load-balancer-test.sh