Extending Your Infrastructure & Data to the Cloud


Published on

Margaret Dawson, VP at Symform, and Pavan

Published in: Technology, Business
  • Be the first to comment

  • Be the first to like this

No Downloads
Total views
On SlideShare
From Embeds
Number of Embeds
Embeds 0
No embeds

No notes for slide
  • I’m trying to create some slides that tell the “how symform works” story in a butt simple way.  The first slide in this deck is how we do it today.  And for techy folks, they get it.  However, we need a way to tell it that is more graphical and simpler.  I’ve created two slides that attempt to do that, but I’ve taken just clip art or shapes or whatever.  What I need are some better pieces of art – I still think they should be simple illustrations like these – for each part of the story.  But I’d like them to be consistent style and using our branding colors.   I think the best analogy of how we “shred” data is a shredder.   There is no deadline for this, so maybe over next 2 weeks, you could think about it and play with graphics a bit.  What do you think? If we do this right, we should be able to create a fun video of this, too.
  • CloudSwitch was built with the hybrid cloud in mind - how to make it easy and secure to extend your data center to the cloud. New and legacy apps can be deployed into the cloud with point and click simplicity and managed as if they were running locally. CloudSwitch helps large enterprises with provisioning or moving– simply, securely and with NO modifications. Our whole reason for being is to make the cloud feel like a secure and seamless extension of data center environments. Our value prop is to move applications to the cloud without changing anything , and with connectivity back to the data center with security that meets the CSOs needs. This has great value for enterprise IT. With CloudSwitch:Cloud resources are secured end-to-end as an extension of the enterprise's security perimeter - all data and communications are encrypted and stay in the control of the enterprise.The entire system is isolated, the key management is completely isolated so only customers have access to the keys and not the cloud providerApplications run in the cloud without modification – no need to re-architect an app for a specific cloud.Users can manage applications running in the cloud using existing management tools and processes, just as they did before.Enterprises are now free from cloud lock-in, able to move applications to the right place as needed -- to another cloud or back to the data center.
  • The CSA is an OVF formatted virtual appliance deployed in your data center. Once configured to point to ESX servers – you can migrate virtual machines or provision virtual machines in the cloud. When you start the provisioning or migration we automatically launch an initial node (the CSI) – secure initial gateway into the cloud to protect and data and communications. Once that is in place you have secure connectivity to the cloud. The crux of our technology lies in the cloud isolation technology which creates a secure envelope that encompasses your entire cloud deployment. – with this secure envelope you have full network and disk encryption end to end from inside your data center, across the internet and through to the cloud. Encryption keys are always under your control inside your data center so the cloud provider only sees encrypted connections to servers and storage. Here is the end result – you have your virtual servers running on our cloud isolation tech - your images retaining all its patches. You have seamless connectivity by virtue of the appliance and the CSI. Secure, layer 2 bridge so these machines look exactly as they would in the data center – connectivity to DNS, LDAP , IDS, etc..
  • Biogen use case: continuous integration (Hudson for JAVA compilation) Customers dip their toe in the water with app/dev use cases. We provide a secure connection between the DC and the cloud (CSI) and this allows customers to put sensitive information in the cloud
  • Hosting app in DC , bursting to cloud (large financial services ). Add servers in the cloud to your load balancer , and then dial up and dial down as necessary. You can do this programmatically via our SOAP based web services interface or via the load balancer’s interface. Typically you monitor this via Gomez and NagiosThis is a hybrid cloud model – the customer had a physical DC , hosting an app to the public. They faced cyclical demand during market open and market close. Their options were to buy more hardware , build out the infra or burst into another environment. They chose to use the cloud for a “burst” use case. In peak periods demand would be sent over to the cloud
  • This slide depicts a sample HPC cluster deployed entirely in the cloud. The terms used are generic, however a relevant specific example is Oracle’s Grid Engine sitting on top of infrastructure managed by Rocks Cluster. In this model, there are four primary components in the cloud:Queue Master: Responsible for orchestrating job activity across compute nodesProvisioning Server: Responsible for managing the operating system provisioning process for new compute nodes.Data Server: Responsible for housing the data sets consumed by the compute nodes.Compute Nodes: Responsible for the actual “number crunching” as managed by the Queue Master.The primary end users are scientists and researchers, generating data through specialized research equipment. This data is then transferred into the cloud for analysis by the compute cluster.The CSA manages all infrastructure allocation, providing raw, cloud-based resources for the cluster and orchestrating server lifecycle actions for these compute nodes in the cloud using our SOAP based web services interface
  • First view, shows all virtual machines running in the cloud. A few running in Enterprise Cloud, Express and Amazon. Highlight that we have server lifecycle options , expand the server to provide more details on the server. Show the IP column, these are private IP columns , not the IPs given out by cloud providers. We can support multiple NICs on a server. RBAC allows you to control who can do what in the CloudSwitch console. VM and ISO locations, this is how CloudSwitch connects to ESX hosts – that allows us to drill into an ESX server to select one or more servers for migration. Automatically select the right cloud resource to map to your virtual machine’s profileWhat type of latency? When a customer migrates out of the DC to the cloud that is obviously introducing latency – the physics of it introduces latency. The encryption and the arch – what latency does the CSI introduce? It varies, generally we are anywhere from 1ms to 5 ms worst case. There is tons of traffic flowing through the CSI – it is busy performing encryption , decryption. Typically we are in the 2 ms to 3 ms range. One of the follow-on questions – what is our tolerance for latency? If it is a very high transaction app you probably don’t want to put your DB in DC and app in the cloud. That will slow things down as you commit writes to the DB – that is in general a poor design regardless of the cloud. In terms of perf overhead – it depends on what the app is doing. Compute intensive apps (eg: number crunching, processor bound work) – those run fast in CloudSwitch. In some cases they run faster on us because we do some optimization on thigns like register access to improve efficiency. We run processor benchmarks to test our own overhead and some of them indicate that we are faster. However, apps that have high transactional IO you will see a slowdown because of encryption and our own isolation tech as we handle things like context switching.
  • Extending Your Infrastructure & Data to the Cloud

    1. 1. Extending Your Existing Infrastructure and Data to the CloudPavan Pant, Margaret Dawson,Director of Product Management, Vice President of Product MgmtCloudSwitch, Terremark & Marketing, Symform
    2. 2. Benefits of Using the CloudCost Effective Dynamic Fast Value Leverages existing IT• Zero capital • On-demand • Rapid • Extends legacy expense availability and deployment in a apps and required and scaling with a matter of weeks systems, with no pay-as-you-grow network affect and immediate infrastructure subscription and continuous improvement in build out and pricing improvements processes expert services 2
    3. 3. What that meansThe cloud should . . . Not mean rip and replace Leverage what you’ve already got Not require you to dip into your limited Capex budget Allow you to share budget with the business side Add more agility Enable you to move to new technologies 3
    4. 4. Ways to Get Started . . . Initiative Cloud Platform Example Platform as a Service (PaaS) Microsoft Azure New Web Application Platform as a Service (PaaS) Engine Yard Business Process as a Service New Business Process IBM BlueWorks Live (BPaaS) ERP / CRM Upgrade or NetSuite / Migration Software as a Service (SaaS) Salesforce.com Symform Cloud Data Backup SaaS or IaaS AWS Dev or Test Infrastructure as a Service Environment Skytap (IaaS) VDC Data center extension Infrastructure as a Service CloudSwitch 4
    5. 5. Extending a NAS to the SymformCloud Storage Network
    6. 6. What is Symform? World’s First De-centralized, Peer-to-Peer Cloud Storage Network - You exchange excess local storage for cheap cloud storage6
    7. 7. How it WorksPoint Symform at Files in the folder Each block is Each encryptedthe folders you are chopped into encrypted using block is thenwant to backup 64MB blocks 256-AES and a shredded into 96 randomly- fragments (includes generated key redundancy) And all this is done BEHIND your firewall
    8. 8. How it WorksSymform then distributes the 96fragments to 96 differentgeographic nodes on theSymform network
    9. 9. Extend NAS data to the Symform CloudLocal backup to the QNAP NAS,which is then mirrored in theSymform cloud network The Revolutionary Cloud Storage Network www.symform.com
    10. 10. CloudSwitch Hybrid Cloud
    11. 11. What is CloudSwitch? • Software that integrates data center & cloud environments » Part of Enterprise Cloud services » Easy to deploy in customer’s data center » Allows point-and-click migration of Private legacy apps Dedicated Multi-tenant Cloud Cloud Cloud » Provides enhanced security for cloud workloads Enterprise Data Center Colo, MSP & Cloud Services » Extends internal networks, tools & processes to the cloud Public Cloud A » Supports multiple cloud services Public Cloud B “Utility” Cloud Services 32
    12. 12. CloudSwitch Product Architecture Customer Data Center/ Cloud 1 Private Cloud CLOUD ISOLATION TECHNOLOGYTM VIRTUAL MANAGEMENT/CONTROLS App 3 App 2 CloudSwitch App 1 App 2 Instance CloudSwitch (CSI) Appliance (CSA) ENCRYPTED TUNNEL VIRTUALIZED STORAGE FIREWALL App 3 App 3 App 3 App 4 App 5 Cloud 2 CLOUD ISOLATION TECHNOLOGYTM App 5 VIRTUALIZED CloudSwitch Instance STORAGE (CSI) DATA CENTER SERVICES: DNS, LDAP, Identity, Infrastructure… VIRTUALIZED STORAGE 33
    13. 13. USE CASES
    14. 14. Application Development in the Cloud Data Center (Lab) Cloud CloudSwitch Secure CloudSwitch Appliance Connection Instance (CSA) (CSI) DEV 1 QA 1 PERF 1 QA 2 PERF 2 DEV 2 Clone Operation Access to Multiple Environments Developers QA n PERF n DEV n 35
    15. 15. Integrated Cloud Capacity On-Demand Data Center (DMZ) Cloud CloudSwitch Secure CloudSwitch Appliance Connection Instance Web Database App (CSA) (CSI) Web Database App Server 1 Server 1 Server 1 Server 2 Server 2 Server 2 Load Balancer Pool Web Database App Administrators Load Balancer Server n Server n Server n Firewall Internet Customers 36
    16. 16. Cluster Scale-out in the Cloud Data Center (Internal) Cloud Compute Cluster Compute Job Submission Queue Provision Scientists & Researchers Master Server Data Center LAN CloudSwitch CloudSwitch Secure Appliance Connection Instance (CSA) (CSI) Firewall Administrators Data Server Compute LAN Data Source 1 Data Source 2 Data Center LAN Compute 1 Compute 2 Compute ‘n’ 000 37
    18. 18. Top Considerations for Moving to Cloud • Internal IT team skill set evaluationCore Competence • Cost of resources / training needed • Under 6 month deployment needed? Time to Market • Immediate customer or partner requirement • Revenue at stake Business Impact • Improve customer experience • Can we maintain security policies and compliance? Security • What data is involved? • Do we have Capex? Budget • Shared with LOB? • Need to phase in implementationNeed to Start Small • Large pain but minimal footprint 39
    19. 19. Thank Youppant@cloudswitch.com margaret@symform.comTwitter: @pavanpant Twitter: @seattledawson