SlideShare a Scribd company logo

Avi v20.1 — What’s New in Scalable, Multi-Cloud Load Balancing

Download as PPTX, PDF
Avi Networks
Avi Networks

VMware just announced the next version of the Avi Platform v20.1 The software includes several enhancements for cloud-scale networking, security, modern applications, and unique new support services.

Software
1 of 38
©2020 VMware, Inc. VMware NSX Advanced Load Balancer (Avi Networks) v20.1 Avi Networks Team Ashish Shah, Chandra Sekar What’s New in Scalable, Multi-Cloud Load Balancing
©2020 VMware, Inc. Agenda 2 Introduction Market drivers and challenges of traditional load balancers Avi Networks vision v20.1 update summary Short demo Q&A
©2020 VMware, Inc. 3 VMware Networking and Security: A Brief History Customers 6500+ 2012 2020 15,000+ 2013 2017 2018 20192016 VCN 2020 Avi Acquisition (A Complete Stack) NSX Intelligence/ Service-defined Firewall Nyansa Acquisition Veriflow Acquisition NSX with Intrinsic Security VCN 2018VeloCloud Acquisition NSX-T VMs, Containers, Bare Metal vRealize Network Insight Nicira SDN Acquisition
©2020 VMware, Inc. 4 ONE YEAR LATER
©2020 VMware, Inc. 5 6/10Top US Financials Are Customers 47%Lower Cost of Operations 97% Faster to Scale Capacity 1M+Transactions per Second 7000+ Appliance Load Balancers Replaced 70%Customer Growth in One Year
©2020 VMware, Inc. 6 Consistent application services for non-VMware and VMware environments What is the NSX Advanced Load Balancer (Avi Platform)? Enterprise-grade Load Balancing Kubernetes Ingress Services App Analytics / Insights Web Application Firewall (WAF) and App Security DNS and IPAM Global Server Load Balancing (GSLB) NSX Horizon(VDI) vSphere/vCenter Deliver Any App on Any Cloud with One Platform VCF VMC Tanzu vRO/vRA
©2020 VMware, Inc. 7 What Businesses and IT are Facing Today $ By Supporting Remote Workers To Doing More At Lower Costs The old approach to network infrastructure simply won’t work Digital Initiatives and Modern Apps Respond Adapt Accelerate
©2020 VMware, Inc. 99 Hardware / Virtual Load Balancer Challenges Active 15% Standby 0%
©2020 VMware, Inc. 10 Hardware / Virtual Load Balancer Challenges
©2020 VMware, Inc. 11 Hardware / Virtual Load Balancer Challenges Islands of capacity
©2020 VMware, Inc. 12 Hardware / Virtual Load Balancer Challenges Capacity management – manual VIP placement, costly overprovisioning, no capacity pooling No capacity pooling ? ? ? ? ? ? ?
©2020 VMware, Inc. 13 Hardware / Virtual Load Balancer Challenges Capacity management – manual VIP placement, costly overprovisioning, no capacity pooling Separate control points – operational complexity, hard to automate, painful upgrades Not designed for modern new environments like on-premises, cloud and container
©2020 VMware, Inc. 14 Can I have the Best of Both Worlds? The legacy VEs and cloud provider solutions are an unacceptable compromise Load Balancing Challenges/Tradeoffs in the Public Cloud Legacy Virtual LB offers features Cloud Provider LB offers automation & elasticity ?Tradeoff operational simplicity, automation, and cloud-native capabilities Tradeoff features, multi-cloud consistency, and portability
©2020 VMware, Inc. 15 Use load balancer’s inline location to deliver comprehensive application services Our Vision for Application Services Application trafficApplication traffic ElasticityUniversality Multi-cloud Central Mgmt. Deployment Platform Scale Out Scale In
©2020 VMware, Inc. 16 Use load balancer’s inline location to deliver comprehensive application services Our Vision for Application Services Application trafficApplication traffic ElasticityUniversality Multi-cloud Central Mgmt. Deployment Platform Scale Out Scale In Services Traffic Mgmt. App Security Analytics Visibility • Local and global load balancing • Path-based routing • Health monitoring • TLS termination, Cert mgmt. & automation • CI/CD, Canary deployments • DNS • Application policies • Authentication • Whitelist/Blacklist • IP Reputation • Bot detection* • Rate limiting • DOS detection/mitigation • WAF • Application and infra performance metrics • Transaction logging • Transaction tracing • Security insights • End-user insights
©2020 VMware, Inc. 17 Delivers load balancing as a dynamic application services fabric Modern Distributed Architecture Centralized Policies and Full Life Cycle Management App Services Control Plane Data Plane Software Load Balancer Intelligent WAF Container Ingress Avi Controller Bare Metal Virtualized Containers ON PREMISES PUBLIC CLOUD SEPARATE CONTROL & DATA PLANE ELASTICITY Application Services Fabric MULTI-CLOUD ANALYTICS AUTOMATION
©2020 VMware, Inc. 18 Cloud Native With automation across heterogeneous infrastructure Comprehensive Application Services Platform Load Balancing Security Analytics Platform Central Management 100% REST API / SDK Self-Service Multi-Tenancy Service Discovery IPAM/DNS Application Map Service Health Score Network Performance App Performance Request Logging Security Insights Web App Firewall SSL Termination DDoS Protection L3-4 ACLs L7 Rules/Policies Rate Limiting Client Auth / SSO L7 (HTTP) LB L4 (TCP/UDP) LB Global Load Balancing Content Switching Caching/Compression Autoscaling Enterprise Grade
©2020 VMware, Inc. 19 NSX VCF vCenter Bare Metal OpenStack VMC on AWS AWS Azure GCP Kubernetes OpenShift VMware Tanzu PKS AKS, GKE, EKS Customer Use Cases – Every Application Needs a Load Balancer SDDC / On-prem LB Refresh Public Cloud Containers GSLB / Local LB App Security, DDoS, WAF Platform Use Cases EUC Horizon VDI Horizon Cloud on Azure
©2020 VMware, Inc. 20 Introducing NSX Advanced Load Balancer v20.1 • Wildcard VIP • BGP Enhancements • GSLB, DNS, IPAM canary updates • Full integration for Google Cloud Platform • PULSE cloud services and proactive case management • WAF threat feeds, rate limiting enhancements • OCSP Stapling for certs • SAML 2.0 updates • VCF (VVDs) • vRO/vRA plugin • NSX-T full access LB and WAF • Ingress services architecture for highly scalable, multi-cluster, multi- site K8S/OpenShift networking services Consolidate with Integrated VMware Solutions Accelerate to Multi-cloud Secure Web Applications, Proactive Support Deliver Scalable Modern Apps
21©2020 VMware, Inc. Wildcard VIP
©2020 VMware, Inc. 22 Wildcard VIP for Firewall(VNF) Load Balancing Use Cases Firewall Sandwich Firewall On-a-stick I P S 1 I P S 2 I P S 3 Internal 10.10.0.0/8 10.2.1.10/24 10.2.1.21/24 10.2.1.23/24 10.2.2.10/24 10.2.2.21/24 10.2.2.23/24 10.2.0.2/24 10.2.3.2/24 10.2.0.1/24 10.2.3.1/24 Internet Internal 10.10.0.0/8 10.2.0.2/24 10.2.3.2/24 10.2.0.1/24 10.2.3.1/24 10.2.1.10/24 10.2.1.21/24 10.2.1.23/24 10.2.1.22/24 IPS 1 Avi SE-1 Avi SE-1 Avi SE-2 Internet IPS 2 IPS 3
23©2020 VMware, Inc. Canary GSLB Updates
©2020 VMware, Inc. 24 Traditional GSLB Challenges with Large Fault Domain Default behavior- Attempts to keep all the site up-to-date with the leader. GSLB Config change Leader Site Follower - 1 Site Follower - 2 Site Admin Instant replicationInstant replication Replication of faulty configuration can lead to application break down across sites Faulty configuration Config -C1 Config -C1 Config -C1 Application breakdown Application breakdown Application breakdown
©2020 VMware, Inc. 25 Verify before propagation NSX Advanced LB Approach: Canary GSLB Updates Leader Site Objectives • DNS service cannot be down • Intelligent sync of configs to followers • Avoid faulty configs from breaking apps globallyFollower - 1 Site Follower - 2 Site 1. Configuration change – C1 1 Config -C1 Config -C1 4. Replication is triggered for individual sites 4 4 Config -C1 2. Leader processes the new config but does not replicate instantly 2 Deployed 3. Once configuration is deployed and verified; replication policies are propagated. 3
26©2020 VMware, Inc. PULSE Cloud Services Product, User, License, and Support Experience.
©2020 VMware, Inc. 27 Cloud Services to Deliver Timely Support, Security, Updates Secure – Agile – Programmable Proactive and integrated support operations Live security threat with intelligence feed Simplified customer license experience End User / Customer Release Development Avi Controller Avi PULSE API Customer Portal Tech Support Integrated Case Management App Security Signatures IP Reputation Live Updates Central LicensingSaaS Portal Proactive Support WAF CRS Signatures Avi (legacy) License Portal Software & Patch Downloads Controller Deployments Customer Support Database Avi PULSE Cloud Services
28©2020 VMware, Inc. NSX-T Integration
©2020 VMware, Inc. 29 NSX Advanced Load Balancer and NSX-T Integration NSX-T Manager Avi management traffic over secure channel API vCenter Avi Controller Avi UI API REST API ESXI API ESXI Deploy SEs on ESXi ESXI Notifications Full LB and Security Automation for App Deployments • Lifecycle of LBs and elastic scale • Puts LBs in the right network • Automates Virtual IP allocation via IPAM and registers FQDN in DNS • Automatically programs NSX for scale out • Creates the right security policies for traffic flow with Distribute Firewall rules
32©2020 VMware, Inc. NSX Advanced LB Kubernetes Ingress Services
©2020 VMware, Inc. 33 Traffic Management & Service Discovery What are Ingress Services for Kubernetes? CISO Developers Operators Security • Local and global load balancing • Routing • Health Monitoring • TLS termination, Cert management/automation • CI/CD, Canary • DNS • Network policies • Authentication • Whitelist/Blacklist • Rate limiting • DOS detection/mitigation • WAF • Application and infra performance metrics • Transaction logging • Transaction tracing Observability
©2020 VMware, Inc. 34 Challenges with Ingress Services for Kubernetes Pod Pod Pod Pod Pod Pod Node 1 Node N Cluster 1: Active Standby Traffic to other clusters/sites IPAMDNS … • Multiple discrete solutions Disparate partial LB, Ingress, GSLB, DNS, IPAM and WAF products • Complex operations Difficult to manage and troubleshoot independent components • Lack of observability Stitch together multiple products with little analytics and no end-to-end visibility • Limited automation Lack of end-to-end automation GSLBF5 L4 LB L4 LBF5 WAFImperva Ingress Controller Open Source Ingress Controller Open Source
©2020 VMware, Inc. 35 Architectural advantage - single platform and converged app services for K8S NSX Advanced LB Consolidates Kubernetes Services • Integrated solution Comprehensive LB, Ingress, intrinsic security, WAF, GSLB, DNS, and IPAM • Operational simplicity A single solution with central control and ease of troubleshooting • Rich observability Real-time telemetry with application insights across all components • Cloud-native automation Elastic autoscaling based on closed-loop analytics and decision automation Avi Consolidated Application Services GSLB / DNS / IPAM + WAF + Ingress + LB
36©2020 VMware, Inc. Demo A single application services fabric across multiple clouds Virtualized Containers Bare Metal Virtualized Containers Virtualized Containers On-premises
©2020 VMware, Inc. 37 • Highly automated load balancing for to provide self-service to application teams • Can shorten time-to-market from 12 months to 3 weeks from inception to production • Best-in-class solution for OpenShift – automates system changes in seconds • High availability and resiliency simplifies operations and patching of infrastructure Transforming IT with a modern PaaS platform using Avi Networks Deutsche Bank Delivers “Everything-as-a-Service” Avi is completely agnostic and polyglot. It really doesn’t matter which environment you want to run; you can run Avi on it. Adam Spencer Product Owner for Fabric “ https://avinetworks.com/customers/
©2020 VMware, Inc. 38 • Migrate the Adobe Experience Cloud to the Azure with enterprise-grade support • Deliver thousands of SSL transactions per second, and elastic scale of load balancers and app servers based on real-time traffic • Improve operations with app insights and central management of all load balancers Delivering applications reliably and securely both on-premises and in the cloud Adobe Accelerates Cloud Initiatives with Microsoft Azure By reliably and securely delivering our applications, Avi Networks has become a key partner for our adoption of Azure. Brandon Pulsipher Vice President, Product Technical Operations “
©2020 VMware, Inc. 39 NSX Advanced Load Balancer – Proof Points Enterprise-grade, multi-cloud application services Simplifies root cause analysis and automates decisions Automates provisioning and enables self-service Scales elastically, on demand, based on real-time traffic Reduces operational complexity 30+% Lower TCO 41% Less Time Troubleshooting 90% Faster Provisioning 1M+ SSL TPS
©2020 VMware, Inc. 40 Learn More https://avinetworks.com/workshops https://avinetworks.com/docs/20.1/release-notes/
©2020 VMware, Inc. Thank You

Recommended

Securing Web Applications with Deep Automation with VMware NSX Advanced Load ...
Securing Web Applications with Deep Automation with VMware NSX Advanced Load ...Securing Web Applications with Deep Automation with VMware NSX Advanced Load ...
Securing Web Applications with Deep Automation with VMware NSX Advanced Load ...
Avi Networks
 
Working From Anywhere​ with​ Advanced Load Balancing​ and ​ VMware Horizon VDI
Working From Anywhere​ with​ Advanced Load Balancing​ and ​ VMware Horizon VDI Working From Anywhere​ with​ Advanced Load Balancing​ and ​ VMware Horizon VDI
Working From Anywhere​ with​ Advanced Load Balancing​ and ​ VMware Horizon VDI
Avi Networks
 
Multi-Cloud Load Balancing – Separating Fact from Fiction
Multi-Cloud Load Balancing – Separating Fact from FictionMulti-Cloud Load Balancing – Separating Fact from Fiction
Multi-Cloud Load Balancing – Separating Fact from Fiction
Avi Networks
 
Deploying Elastic, Self-Service Load Balancing for VMware NSX-T
Deploying Elastic, Self-Service Load Balancing for VMware NSX-TDeploying Elastic, Self-Service Load Balancing for VMware NSX-T
Deploying Elastic, Self-Service Load Balancing for VMware NSX-T
Avi Networks
 
Multi-Cloud Load Balancing 101 and Hands-On Lab
Multi-Cloud Load Balancing 101 and Hands-On LabMulti-Cloud Load Balancing 101 and Hands-On Lab
Multi-Cloud Load Balancing 101 and Hands-On Lab
Avi Networks
 
Enabling Remote Employees with Horizon VDI and Avi Networks
Enabling Remote Employees with Horizon VDI and Avi NetworksEnabling Remote Employees with Horizon VDI and Avi Networks
Enabling Remote Employees with Horizon VDI and Avi Networks
Avi Networks
 
Advanced Web Application Security with an Intelligent WAF
Advanced Web Application Security with an Intelligent WAFAdvanced Web Application Security with an Intelligent WAF
Advanced Web Application Security with an Intelligent WAF
Avi Networks
 
Multi Cloud Load Balancing 101 and Hands On Lab
Multi Cloud Load Balancing 101 and Hands On LabMulti Cloud Load Balancing 101 and Hands On Lab
Multi Cloud Load Balancing 101 and Hands On Lab
Avi Networks
 

Recommended

Securing Web Applications with Deep Automation with VMware NSX Advanced Load ...
Securing Web Applications with Deep Automation with VMware NSX Advanced Load ...Securing Web Applications with Deep Automation with VMware NSX Advanced Load ...
Securing Web Applications with Deep Automation with VMware NSX Advanced Load ...
Avi Networks
 
Working From Anywhere​ with​ Advanced Load Balancing​ and ​ VMware Horizon VDI
Working From Anywhere​ with​ Advanced Load Balancing​ and ​ VMware Horizon VDI Working From Anywhere​ with​ Advanced Load Balancing​ and ​ VMware Horizon VDI
Working From Anywhere​ with​ Advanced Load Balancing​ and ​ VMware Horizon VDI
Avi Networks
 
Multi-Cloud Load Balancing – Separating Fact from Fiction
Multi-Cloud Load Balancing – Separating Fact from FictionMulti-Cloud Load Balancing – Separating Fact from Fiction
Multi-Cloud Load Balancing – Separating Fact from Fiction
Avi Networks
 
Deploying Elastic, Self-Service Load Balancing for VMware NSX-T
Deploying Elastic, Self-Service Load Balancing for VMware NSX-TDeploying Elastic, Self-Service Load Balancing for VMware NSX-T
Deploying Elastic, Self-Service Load Balancing for VMware NSX-T
Avi Networks
 
Multi-Cloud Load Balancing 101 and Hands-On Lab
Multi-Cloud Load Balancing 101 and Hands-On LabMulti-Cloud Load Balancing 101 and Hands-On Lab
Multi-Cloud Load Balancing 101 and Hands-On Lab
Avi Networks
 
Enabling Remote Employees with Horizon VDI and Avi Networks
Enabling Remote Employees with Horizon VDI and Avi NetworksEnabling Remote Employees with Horizon VDI and Avi Networks
Enabling Remote Employees with Horizon VDI and Avi Networks
Avi Networks
 
Advanced Web Application Security with an Intelligent WAF
Advanced Web Application Security with an Intelligent WAFAdvanced Web Application Security with an Intelligent WAF
Advanced Web Application Security with an Intelligent WAF
Avi Networks
 
Multi Cloud Load Balancing 101 and Hands On Lab
Multi Cloud Load Balancing 101 and Hands On LabMulti Cloud Load Balancing 101 and Hands On Lab
Multi Cloud Load Balancing 101 and Hands On Lab
Avi Networks
 
Deliver Modern Applications with an Elastic Load Balancing Fabric Powered by ...
Deliver Modern Applications with an Elastic Load Balancing Fabric Powered by ...Deliver Modern Applications with an Elastic Load Balancing Fabric Powered by ...
Deliver Modern Applications with an Elastic Load Balancing Fabric Powered by ...
Avi Networks
 
What's New VMware NSX Advanced Load Balancer (Avi Networks)
What's New VMware NSX Advanced Load Balancer (Avi Networks)What's New VMware NSX Advanced Load Balancer (Avi Networks)
What's New VMware NSX Advanced Load Balancer (Avi Networks)
Avi Networks
 
Enterprise-Grade Load Balancing for VMware Cloud on AWS (VMC)
Enterprise-Grade Load Balancing for VMware Cloud on AWS (VMC)Enterprise-Grade Load Balancing for VMware Cloud on AWS (VMC)
Enterprise-Grade Load Balancing for VMware Cloud on AWS (VMC)
Avi Networks
 
7 Virtues of a Next-gen ADC
7 Virtues of a Next-gen ADC7 Virtues of a Next-gen ADC
7 Virtues of a Next-gen ADC
Avi Networks
 
Industry's Best Multi Cloud Application Services from Avi Networks, Now part ...
Industry's Best Multi Cloud Application Services from Avi Networks, Now part ...Industry's Best Multi Cloud Application Services from Avi Networks, Now part ...
Industry's Best Multi Cloud Application Services from Avi Networks, Now part ...
Avi Networks
 
How Multi-Cloud Load Balancing Automates Application Delivery and Drives Oper...
How Multi-Cloud Load Balancing Automates Application Delivery and Drives Oper...How Multi-Cloud Load Balancing Automates Application Delivery and Drives Oper...
How Multi-Cloud Load Balancing Automates Application Delivery and Drives Oper...
Avi Networks
 
Avi workshop-101
Avi workshop-101Avi workshop-101
Avi workshop-101
Avi Networks
 
7 Requirements for Modern Load Balancers
7 Requirements for Modern Load Balancers7 Requirements for Modern Load Balancers
7 Requirements for Modern Load Balancers
Avi Networks
 
Multi Cloud Load balancing 101 and Hands-on Lab
Multi Cloud Load balancing 101 and Hands-on LabMulti Cloud Load balancing 101 and Hands-on Lab
Multi Cloud Load balancing 101 and Hands-on Lab
Avi Networks
 
Bringing SaaS Simplicity to Proactive Support & Live Threat Updates
Bringing SaaS Simplicity to Proactive Support & Live Threat UpdatesBringing SaaS Simplicity to Proactive Support & Live Threat Updates
Bringing SaaS Simplicity to Proactive Support & Live Threat Updates
Avi Networks
 
Accelerating Public Cloud Migration with Multi-Cloud Load Balancing
Accelerating Public Cloud Migration with Multi-Cloud Load BalancingAccelerating Public Cloud Migration with Multi-Cloud Load Balancing
Accelerating Public Cloud Migration with Multi-Cloud Load Balancing
Avi Networks
 
Delivering Applications with Full Lifecycle Automation in a Multi-Cloud World
Delivering Applications with Full Lifecycle Automation in a Multi-Cloud WorldDelivering Applications with Full Lifecycle Automation in a Multi-Cloud World
Delivering Applications with Full Lifecycle Automation in a Multi-Cloud World
Avi Networks
 
State of Load Balancing 2020
State of Load Balancing 2020State of Load Balancing 2020
State of Load Balancing 2020
Avi Networks
 
Deep Dive on GSLB with VMware NSX Advanced Load Balancer (Avi Networks)
Deep Dive on GSLB with VMware NSX Advanced Load Balancer (Avi Networks)Deep Dive on GSLB with VMware NSX Advanced Load Balancer (Avi Networks)
Deep Dive on GSLB with VMware NSX Advanced Load Balancer (Avi Networks)
Avi Networks
 
Prevent threats With Analytics Driven Web Application Firewall
Prevent threats With Analytics Driven Web Application FirewallPrevent threats With Analytics Driven Web Application Firewall
Prevent threats With Analytics Driven Web Application Firewall
Avi Networks
 
How to Eliminate Load Balancer Upgrade Disruptions
How to Eliminate Load Balancer Upgrade DisruptionsHow to Eliminate Load Balancer Upgrade Disruptions
How to Eliminate Load Balancer Upgrade Disruptions
Avi Networks
 
L4-L7 Application Services with Avi Networks
L4-L7 Application Services with Avi NetworksL4-L7 Application Services with Avi Networks
L4-L7 Application Services with Avi Networks
Avi Networks
 
Deep Automation and ML-Driven Analytics for Application Services
Deep Automation and ML-Driven Analytics for Application ServicesDeep Automation and ML-Driven Analytics for Application Services
Deep Automation and ML-Driven Analytics for Application Services
Avi Networks
 
5 Common Hosted VoIP Myths Debunked
5 Common Hosted VoIP Myths Debunked5 Common Hosted VoIP Myths Debunked
5 Common Hosted VoIP Myths Debunked
Jive Communications
 
Multi-Cloud Load Balancing and Application Services
Multi-Cloud Load Balancing and Application ServicesMulti-Cloud Load Balancing and Application Services
Multi-Cloud Load Balancing and Application Services
Avi Networks
 
Deploying Elastic Self-Service Load Balancing
Deploying Elastic Self-Service Load BalancingDeploying Elastic Self-Service Load Balancing
Deploying Elastic Self-Service Load Balancing
Avi Networks
 
NSX_Advanced_Load_Balancer_Solution_with_Oracle.pptx
NSX_Advanced_Load_Balancer_Solution_with_Oracle.pptxNSX_Advanced_Load_Balancer_Solution_with_Oracle.pptx
NSX_Advanced_Load_Balancer_Solution_with_Oracle.pptx
Avi Networks
 

More Related Content

What's hot

Deliver Modern Applications with an Elastic Load Balancing Fabric Powered by ...
Deliver Modern Applications with an Elastic Load Balancing Fabric Powered by ...Deliver Modern Applications with an Elastic Load Balancing Fabric Powered by ...
Deliver Modern Applications with an Elastic Load Balancing Fabric Powered by ...
Avi Networks
 
What's New VMware NSX Advanced Load Balancer (Avi Networks)
What's New VMware NSX Advanced Load Balancer (Avi Networks)What's New VMware NSX Advanced Load Balancer (Avi Networks)
What's New VMware NSX Advanced Load Balancer (Avi Networks)
Avi Networks
 
Industry's Best Multi Cloud Application Services from Avi Networks, Now part ...
Industry's Best Multi Cloud Application Services from Avi Networks, Now part ...Industry's Best Multi Cloud Application Services from Avi Networks, Now part ...
Industry's Best Multi Cloud Application Services from Avi Networks, Now part ...
Avi Networks
 
How Multi-Cloud Load Balancing Automates Application Delivery and Drives Oper...
How Multi-Cloud Load Balancing Automates Application Delivery and Drives Oper...How Multi-Cloud Load Balancing Automates Application Delivery and Drives Oper...
How Multi-Cloud Load Balancing Automates Application Delivery and Drives Oper...
Avi Networks
 
Bringing SaaS Simplicity to Proactive Support & Live Threat Updates
Bringing SaaS Simplicity to Proactive Support & Live Threat UpdatesBringing SaaS Simplicity to Proactive Support & Live Threat Updates
Bringing SaaS Simplicity to Proactive Support & Live Threat Updates
Avi Networks
 
Accelerating Public Cloud Migration with Multi-Cloud Load Balancing
Accelerating Public Cloud Migration with Multi-Cloud Load BalancingAccelerating Public Cloud Migration with Multi-Cloud Load Balancing
Accelerating Public Cloud Migration with Multi-Cloud Load Balancing
Avi Networks
 
Delivering Applications with Full Lifecycle Automation in a Multi-Cloud World
Delivering Applications with Full Lifecycle Automation in a Multi-Cloud WorldDelivering Applications with Full Lifecycle Automation in a Multi-Cloud World
Delivering Applications with Full Lifecycle Automation in a Multi-Cloud World
Avi Networks
 
State of Load Balancing 2020
State of Load Balancing 2020State of Load Balancing 2020
State of Load Balancing 2020
Avi Networks
 
Prevent threats With Analytics Driven Web Application Firewall
Prevent threats With Analytics Driven Web Application FirewallPrevent threats With Analytics Driven Web Application Firewall
Prevent threats With Analytics Driven Web Application Firewall
Avi Networks
 
How to Eliminate Load Balancer Upgrade Disruptions
How to Eliminate Load Balancer Upgrade DisruptionsHow to Eliminate Load Balancer Upgrade Disruptions
How to Eliminate Load Balancer Upgrade Disruptions
Avi Networks
 
Deep Automation and ML-Driven Analytics for Application Services
Deep Automation and ML-Driven Analytics for Application ServicesDeep Automation and ML-Driven Analytics for Application Services
Deep Automation and ML-Driven Analytics for Application Services
Avi Networks
 
Multi-Cloud Load Balancing and Application Services
Multi-Cloud Load Balancing and Application ServicesMulti-Cloud Load Balancing and Application Services
Multi-Cloud Load Balancing and Application Services
Avi Networks
 

What's hot (20)

Deliver Modern Applications with an Elastic Load Balancing Fabric Powered by ...
Deliver Modern Applications with an Elastic Load Balancing Fabric Powered by ...Deliver Modern Applications with an Elastic Load Balancing Fabric Powered by ...
Deliver Modern Applications with an Elastic Load Balancing Fabric Powered by ...
 
What's New VMware NSX Advanced Load Balancer (Avi Networks)
What's New VMware NSX Advanced Load Balancer (Avi Networks)What's New VMware NSX Advanced Load Balancer (Avi Networks)
What's New VMware NSX Advanced Load Balancer (Avi Networks)
 
Enterprise-Grade Load Balancing for VMware Cloud on AWS (VMC)
Enterprise-Grade Load Balancing for VMware Cloud on AWS (VMC)Enterprise-Grade Load Balancing for VMware Cloud on AWS (VMC)
Enterprise-Grade Load Balancing for VMware Cloud on AWS (VMC)
 
7 Virtues of a Next-gen ADC
7 Virtues of a Next-gen ADC7 Virtues of a Next-gen ADC
7 Virtues of a Next-gen ADC
 
Industry's Best Multi Cloud Application Services from Avi Networks, Now part ...
Industry's Best Multi Cloud Application Services from Avi Networks, Now part ...Industry's Best Multi Cloud Application Services from Avi Networks, Now part ...
Industry's Best Multi Cloud Application Services from Avi Networks, Now part ...
 
How Multi-Cloud Load Balancing Automates Application Delivery and Drives Oper...
How Multi-Cloud Load Balancing Automates Application Delivery and Drives Oper...How Multi-Cloud Load Balancing Automates Application Delivery and Drives Oper...
How Multi-Cloud Load Balancing Automates Application Delivery and Drives Oper...
 
Avi workshop-101
Avi workshop-101Avi workshop-101
Avi workshop-101
 
7 Requirements for Modern Load Balancers
7 Requirements for Modern Load Balancers7 Requirements for Modern Load Balancers
7 Requirements for Modern Load Balancers
 
Multi Cloud Load balancing 101 and Hands-on Lab
Multi Cloud Load balancing 101 and Hands-on LabMulti Cloud Load balancing 101 and Hands-on Lab
Multi Cloud Load balancing 101 and Hands-on Lab
 
Bringing SaaS Simplicity to Proactive Support & Live Threat Updates
Bringing SaaS Simplicity to Proactive Support & Live Threat UpdatesBringing SaaS Simplicity to Proactive Support & Live Threat Updates
Bringing SaaS Simplicity to Proactive Support & Live Threat Updates
 
Accelerating Public Cloud Migration with Multi-Cloud Load Balancing
Accelerating Public Cloud Migration with Multi-Cloud Load BalancingAccelerating Public Cloud Migration with Multi-Cloud Load Balancing
Accelerating Public Cloud Migration with Multi-Cloud Load Balancing
 
Delivering Applications with Full Lifecycle Automation in a Multi-Cloud World
Delivering Applications with Full Lifecycle Automation in a Multi-Cloud WorldDelivering Applications with Full Lifecycle Automation in a Multi-Cloud World
Delivering Applications with Full Lifecycle Automation in a Multi-Cloud World
 
State of Load Balancing 2020
State of Load Balancing 2020State of Load Balancing 2020
State of Load Balancing 2020
 
Deep Dive on GSLB with VMware NSX Advanced Load Balancer (Avi Networks)
Deep Dive on GSLB with VMware NSX Advanced Load Balancer (Avi Networks)Deep Dive on GSLB with VMware NSX Advanced Load Balancer (Avi Networks)
Deep Dive on GSLB with VMware NSX Advanced Load Balancer (Avi Networks)
 
Prevent threats With Analytics Driven Web Application Firewall
Prevent threats With Analytics Driven Web Application FirewallPrevent threats With Analytics Driven Web Application Firewall
Prevent threats With Analytics Driven Web Application Firewall
 
How to Eliminate Load Balancer Upgrade Disruptions
How to Eliminate Load Balancer Upgrade DisruptionsHow to Eliminate Load Balancer Upgrade Disruptions
How to Eliminate Load Balancer Upgrade Disruptions
 
L4-L7 Application Services with Avi Networks
L4-L7 Application Services with Avi NetworksL4-L7 Application Services with Avi Networks
L4-L7 Application Services with Avi Networks
 
Deep Automation and ML-Driven Analytics for Application Services
Deep Automation and ML-Driven Analytics for Application ServicesDeep Automation and ML-Driven Analytics for Application Services
Deep Automation and ML-Driven Analytics for Application Services
 
5 Common Hosted VoIP Myths Debunked
5 Common Hosted VoIP Myths Debunked5 Common Hosted VoIP Myths Debunked
5 Common Hosted VoIP Myths Debunked
 
Multi-Cloud Load Balancing and Application Services
Multi-Cloud Load Balancing and Application ServicesMulti-Cloud Load Balancing and Application Services
Multi-Cloud Load Balancing and Application Services
 

Similar to Avi v20.1 — What’s New in Scalable, Multi-Cloud Load Balancing

Deploying Elastic Self-Service Load Balancing
Deploying Elastic Self-Service Load BalancingDeploying Elastic Self-Service Load Balancing
Deploying Elastic Self-Service Load Balancing
Avi Networks
 
NSX_Advanced_Load_Balancer_Solution_with_Oracle.pptx
NSX_Advanced_Load_Balancer_Solution_with_Oracle.pptxNSX_Advanced_Load_Balancer_Solution_with_Oracle.pptx
NSX_Advanced_Load_Balancer_Solution_with_Oracle.pptx
Avi Networks
 
From Pivotal to VMware Tanzu: What you need to know
From Pivotal to VMware Tanzu: What you need to knowFrom Pivotal to VMware Tanzu: What you need to know
From Pivotal to VMware Tanzu: What you need to know
VMware Tanzu
 
Get the Most Out of Kubernetes with NGINX
Get the Most Out of Kubernetes with NGINXGet the Most Out of Kubernetes with NGINX
Get the Most Out of Kubernetes with NGINX
NGINX, Inc.
 

Similar to Avi v20.1 — What’s New in Scalable, Multi-Cloud Load Balancing (20)

Deploying Elastic Self-Service Load Balancing
Deploying Elastic Self-Service Load BalancingDeploying Elastic Self-Service Load Balancing
Deploying Elastic Self-Service Load Balancing
 
NSX_Advanced_Load_Balancer_Solution_with_Oracle.pptx
NSX_Advanced_Load_Balancer_Solution_with_Oracle.pptxNSX_Advanced_Load_Balancer_Solution_with_Oracle.pptx
NSX_Advanced_Load_Balancer_Solution_with_Oracle.pptx
 
23.06.15 NSX ALB and vCD integration deepdive_webinar0615.pptx
23.06.15 NSX ALB and vCD integration deepdive_webinar0615.pptx23.06.15 NSX ALB and vCD integration deepdive_webinar0615.pptx
23.06.15 NSX ALB and vCD integration deepdive_webinar0615.pptx
 
Presentation v mware virtualization & cloud vision 2010
Presentation v mware virtualization & cloud vision 2010Presentation v mware virtualization & cloud vision 2010
Presentation v mware virtualization & cloud vision 2010
 
Business Agility and Security with VMware
Business Agility and Security with VMwareBusiness Agility and Security with VMware
Business Agility and Security with VMware
 
Cloud_controllers_public_webinar_aug31_v1.pptx
Cloud_controllers_public_webinar_aug31_v1.pptxCloud_controllers_public_webinar_aug31_v1.pptx
Cloud_controllers_public_webinar_aug31_v1.pptx
 
VMworld 2016 Recap
VMworld 2016 RecapVMworld 2016 Recap
VMworld 2016 Recap
 
VMworld 2013: Extend VMware’s Cloud Automation Solution with vCenter Orchestr...
VMworld 2013: Extend VMware’s Cloud Automation Solution with vCenter Orchestr...VMworld 2013: Extend VMware’s Cloud Automation Solution with vCenter Orchestr...
VMworld 2013: Extend VMware’s Cloud Automation Solution with vCenter Orchestr...
 
Inteligentní řízení WAN konektivity
Inteligentní řízení WAN konektivityInteligentní řízení WAN konektivity
Inteligentní řízení WAN konektivity
 
From Pivotal to VMware Tanzu: What you need to know
From Pivotal to VMware Tanzu: What you need to knowFrom Pivotal to VMware Tanzu: What you need to know
From Pivotal to VMware Tanzu: What you need to know
 
Transformace IT s technologiemi VMware
Transformace IT s technologiemi VMwareTransformace IT s technologiemi VMware
Transformace IT s technologiemi VMware
 
Delivering Turnkey Load Balancing in VMware Cloud with Day 0 Automation
Delivering Turnkey Load Balancing in VMware Cloud with Day 0 Automation Delivering Turnkey Load Balancing in VMware Cloud with Day 0 Automation
Delivering Turnkey Load Balancing in VMware Cloud with Day 0 Automation
 
VMworld 2015: What's New in vSphere?
VMworld 2015: What's New in vSphere?VMworld 2015: What's New in vSphere?
VMworld 2015: What's New in vSphere?
 
Get the Most Out of Kubernetes with NGINX
Get the Most Out of Kubernetes with NGINXGet the Most Out of Kubernetes with NGINX
Get the Most Out of Kubernetes with NGINX
 
VMworld 2013: Moving Beyond Infrastructure: Meeting Demands on App Lifecycle ...
VMworld 2013: Moving Beyond Infrastructure: Meeting Demands on App Lifecycle ...VMworld 2013: Moving Beyond Infrastructure: Meeting Demands on App Lifecycle ...
VMworld 2013: Moving Beyond Infrastructure: Meeting Demands on App Lifecycle ...
 
VMworld 2015: Introducing Application Self service with Networking and Security
VMworld 2015: Introducing Application Self service with Networking and SecurityVMworld 2015: Introducing Application Self service with Networking and Security
VMworld 2015: Introducing Application Self service with Networking and Security
 
Innovate - How AsiaPac is helping Customers to Build a Restricted Cloud Envir...
Innovate - How AsiaPac is helping Customers to Build a Restricted Cloud Envir...Innovate - How AsiaPac is helping Customers to Build a Restricted Cloud Envir...
Innovate - How AsiaPac is helping Customers to Build a Restricted Cloud Envir...
 
GAMO VMware vCloud Air
GAMO VMware vCloud AirGAMO VMware vCloud Air
GAMO VMware vCloud Air
 
Hybrid cloud overview and VCF on VxRAIL
Hybrid cloud overview and VCF on VxRAILHybrid cloud overview and VCF on VxRAIL
Hybrid cloud overview and VCF on VxRAIL
 
VMware Cloud on AWS - 100819.pdf
VMware Cloud on AWS - 100819.pdfVMware Cloud on AWS - 100819.pdf
VMware Cloud on AWS - 100819.pdf
 

Recently uploaded

SOCRadar Research Team: Latest Activities of IntelBroker
SOCRadar Research Team: Latest Activities of IntelBrokerSOCRadar Research Team: Latest Activities of IntelBroker
SOCRadar Research Team: Latest Activities of IntelBroker
SOCRadar
 
Prosigns: Transforming Business with Tailored Technology Solutions
Prosigns: Transforming Business with Tailored Technology SolutionsProsigns: Transforming Business with Tailored Technology Solutions
Prosigns: Transforming Business with Tailored Technology Solutions
Prosigns
 
Corporate Management | Session 3 of 3 | Tendenci AMS
Corporate Management | Session 3 of 3 | Tendenci AMSCorporate Management | Session 3 of 3 | Tendenci AMS
Corporate Management | Session 3 of 3 | Tendenci AMS
Tendenci - The Open Source AMS (Association Management Software)
 
AI/ML Infra Meetup | ML explainability in Michelangelo
AI/ML Infra Meetup | ML explainability in MichelangeloAI/ML Infra Meetup | ML explainability in Michelangelo
AI/ML Infra Meetup | ML explainability in Michelangelo
Alluxio, Inc.
 
Mastering Windows 7 A Comprehensive Guide for Power Users .pdf
Mastering Windows 7 A Comprehensive Guide for Power Users .pdfMastering Windows 7 A Comprehensive Guide for Power Users .pdf
Mastering Windows 7 A Comprehensive Guide for Power Users .pdf
mbmh111980
 
Beyond Event Sourcing - Embracing CRUD for Wix Platform - Java.IL
Beyond Event Sourcing - Embracing CRUD for Wix Platform - Java.ILBeyond Event Sourcing - Embracing CRUD for Wix Platform - Java.IL
Beyond Event Sourcing - Embracing CRUD for Wix Platform - Java.IL
Natan Silnitsky
 
GraphAware - Transforming policing with graph-based intelligence analysis
GraphAware - Transforming policing with graph-based intelligence analysisGraphAware - Transforming policing with graph-based intelligence analysis
GraphAware - Transforming policing with graph-based intelligence analysis
Neo4j
 

Recently uploaded (20)

AI/ML Infra Meetup | Perspective on Deep Learning Framework
AI/ML Infra Meetup | Perspective on Deep Learning FrameworkAI/ML Infra Meetup | Perspective on Deep Learning Framework
AI/ML Infra Meetup | Perspective on Deep Learning Framework
 
Crafting the Perfect Measurement Sheet with PLM Integration
Crafting the Perfect Measurement Sheet with PLM IntegrationCrafting the Perfect Measurement Sheet with PLM Integration
Crafting the Perfect Measurement Sheet with PLM Integration
 
A Comprehensive Appium Guide for Hybrid App Automation Testing.pdf
A Comprehensive Appium Guide for Hybrid App Automation Testing.pdfA Comprehensive Appium Guide for Hybrid App Automation Testing.pdf
A Comprehensive Appium Guide for Hybrid App Automation Testing.pdf
 
SOCRadar Research Team: Latest Activities of IntelBroker
SOCRadar Research Team: Latest Activities of IntelBrokerSOCRadar Research Team: Latest Activities of IntelBroker
SOCRadar Research Team: Latest Activities of IntelBroker
 
Prosigns: Transforming Business with Tailored Technology Solutions
Prosigns: Transforming Business with Tailored Technology SolutionsProsigns: Transforming Business with Tailored Technology Solutions
Prosigns: Transforming Business with Tailored Technology Solutions
 
Agnieszka Andrzejewska - BIM School Course in Kraków
Agnieszka Andrzejewska - BIM School Course in KrakówAgnieszka Andrzejewska - BIM School Course in Kraków
Agnieszka Andrzejewska - BIM School Course in Kraków
 
Corporate Management | Session 3 of 3 | Tendenci AMS
Corporate Management | Session 3 of 3 | Tendenci AMSCorporate Management | Session 3 of 3 | Tendenci AMS
Corporate Management | Session 3 of 3 | Tendenci AMS
 
Studiovity film pre-production and screenwriting software
Studiovity film pre-production and screenwriting softwareStudiovity film pre-production and screenwriting software
Studiovity film pre-production and screenwriting software
 
WSO2Con2024 - WSO2's IAM Vision: Identity-Led Digital Transformation
WSO2Con2024 - WSO2's IAM Vision: Identity-Led Digital TransformationWSO2Con2024 - WSO2's IAM Vision: Identity-Led Digital Transformation
WSO2Con2024 - WSO2's IAM Vision: Identity-Led Digital Transformation
 
AI/ML Infra Meetup | ML explainability in Michelangelo
AI/ML Infra Meetup | ML explainability in MichelangeloAI/ML Infra Meetup | ML explainability in Michelangelo
AI/ML Infra Meetup | ML explainability in Michelangelo
 
De mooiste recreatieve routes ontdekken met RouteYou en FME
De mooiste recreatieve routes ontdekken met RouteYou en FMEDe mooiste recreatieve routes ontdekken met RouteYou en FME
De mooiste recreatieve routes ontdekken met RouteYou en FME
 
Mastering Windows 7 A Comprehensive Guide for Power Users .pdf
Mastering Windows 7 A Comprehensive Guide for Power Users .pdfMastering Windows 7 A Comprehensive Guide for Power Users .pdf
Mastering Windows 7 A Comprehensive Guide for Power Users .pdf
 
Beyond Event Sourcing - Embracing CRUD for Wix Platform - Java.IL
Beyond Event Sourcing - Embracing CRUD for Wix Platform - Java.ILBeyond Event Sourcing - Embracing CRUD for Wix Platform - Java.IL
Beyond Event Sourcing - Embracing CRUD for Wix Platform - Java.IL
 
Breaking the Code : A Guide to WhatsApp Business API.pdf
Breaking the Code : A Guide to WhatsApp Business API.pdfBreaking the Code : A Guide to WhatsApp Business API.pdf
Breaking the Code : A Guide to WhatsApp Business API.pdf
 
top nidhi software solution freedownload
top nidhi software solution freedownloadtop nidhi software solution freedownload
top nidhi software solution freedownload
 
GraphAware - Transforming policing with graph-based intelligence analysis
GraphAware - Transforming policing with graph-based intelligence analysisGraphAware - Transforming policing with graph-based intelligence analysis
GraphAware - Transforming policing with graph-based intelligence analysis
 
Designing for Privacy in Amazon Web Services
Designing for Privacy in Amazon Web ServicesDesigning for Privacy in Amazon Web Services
Designing for Privacy in Amazon Web Services
 
Gamify Your Mind; The Secret Sauce to Delivering Success, Continuously Improv...
Gamify Your Mind; The Secret Sauce to Delivering Success, Continuously Improv...Gamify Your Mind; The Secret Sauce to Delivering Success, Continuously Improv...
Gamify Your Mind; The Secret Sauce to Delivering Success, Continuously Improv...
 
Vitthal Shirke Microservices Resume Montevideo
Vitthal Shirke Microservices Resume MontevideoVitthal Shirke Microservices Resume Montevideo
Vitthal Shirke Microservices Resume Montevideo
 
Into the Box 2024 - Keynote Day 2 Slides.pdf
Into the Box 2024 - Keynote Day 2 Slides.pdfInto the Box 2024 - Keynote Day 2 Slides.pdf
Into the Box 2024 - Keynote Day 2 Slides.pdf
 

Avi v20.1 — What’s New in Scalable, Multi-Cloud Load Balancing

  • 1. ©2020 VMware, Inc. VMware NSX Advanced Load Balancer (Avi Networks) v20.1 Avi Networks Team Ashish Shah, Chandra Sekar What’s New in Scalable, Multi-Cloud Load Balancing
  • 2. ©2020 VMware, Inc. Agenda 2 Introduction Market drivers and challenges of traditional load balancers Avi Networks vision v20.1 update summary Short demo Q&A
  • 3. ©2020 VMware, Inc. 3 VMware Networking and Security: A Brief History Customers 6500+ 2012 2020 15,000+ 2013 2017 2018 20192016 VCN 2020 Avi Acquisition (A Complete Stack) NSX Intelligence/ Service-defined Firewall Nyansa Acquisition Veriflow Acquisition NSX with Intrinsic Security VCN 2018VeloCloud Acquisition NSX-T VMs, Containers, Bare Metal vRealize Network Insight Nicira SDN Acquisition
  • 4. ©2020 VMware, Inc. 4 ONE YEAR LATER
  • 5. ©2020 VMware, Inc. 5 6/10Top US Financials Are Customers 47%Lower Cost of Operations 97% Faster to Scale Capacity 1M+Transactions per Second 7000+ Appliance Load Balancers Replaced 70%Customer Growth in One Year
  • 6. ©2020 VMware, Inc. 6 Consistent application services for non-VMware and VMware environments What is the NSX Advanced Load Balancer (Avi Platform)? Enterprise-grade Load Balancing Kubernetes Ingress Services App Analytics / Insights Web Application Firewall (WAF) and App Security DNS and IPAM Global Server Load Balancing (GSLB) NSX Horizon(VDI) vSphere/vCenter Deliver Any App on Any Cloud with One Platform VCF VMC Tanzu vRO/vRA
  • 7. ©2020 VMware, Inc. 7 What Businesses and IT are Facing Today $ By Supporting Remote Workers To Doing More At Lower Costs The old approach to network infrastructure simply won’t work Digital Initiatives and Modern Apps Respond Adapt Accelerate
  • 8. ©2020 VMware, Inc. 99 Hardware / Virtual Load Balancer Challenges Active 15% Standby 0%
  • 9. ©2020 VMware, Inc. 10 Hardware / Virtual Load Balancer Challenges
  • 10. ©2020 VMware, Inc. 11 Hardware / Virtual Load Balancer Challenges Islands of capacity
  • 11. ©2020 VMware, Inc. 12 Hardware / Virtual Load Balancer Challenges Capacity management – manual VIP placement, costly overprovisioning, no capacity pooling No capacity pooling ? ? ? ? ? ? ?
  • 12. ©2020 VMware, Inc. 13 Hardware / Virtual Load Balancer Challenges Capacity management – manual VIP placement, costly overprovisioning, no capacity pooling Separate control points – operational complexity, hard to automate, painful upgrades Not designed for modern new environments like on-premises, cloud and container
  • 13. ©2020 VMware, Inc. 14 Can I have the Best of Both Worlds? The legacy VEs and cloud provider solutions are an unacceptable compromise Load Balancing Challenges/Tradeoffs in the Public Cloud Legacy Virtual LB offers features Cloud Provider LB offers automation & elasticity ?Tradeoff operational simplicity, automation, and cloud-native capabilities Tradeoff features, multi-cloud consistency, and portability
  • 14. ©2020 VMware, Inc. 15 Use load balancer’s inline location to deliver comprehensive application services Our Vision for Application Services Application trafficApplication traffic ElasticityUniversality Multi-cloud Central Mgmt. Deployment Platform Scale Out Scale In
  • 15. ©2020 VMware, Inc. 16 Use load balancer’s inline location to deliver comprehensive application services Our Vision for Application Services Application trafficApplication traffic ElasticityUniversality Multi-cloud Central Mgmt. Deployment Platform Scale Out Scale In Services Traffic Mgmt. App Security Analytics Visibility • Local and global load balancing • Path-based routing • Health monitoring • TLS termination, Cert mgmt. & automation • CI/CD, Canary deployments • DNS • Application policies • Authentication • Whitelist/Blacklist • IP Reputation • Bot detection* • Rate limiting • DOS detection/mitigation • WAF • Application and infra performance metrics • Transaction logging • Transaction tracing • Security insights • End-user insights
  • 16. ©2020 VMware, Inc. 17 Delivers load balancing as a dynamic application services fabric Modern Distributed Architecture Centralized Policies and Full Life Cycle Management App Services Control Plane Data Plane Software Load Balancer Intelligent WAF Container Ingress Avi Controller Bare Metal Virtualized Containers ON PREMISES PUBLIC CLOUD SEPARATE CONTROL & DATA PLANE ELASTICITY Application Services Fabric MULTI-CLOUD ANALYTICS AUTOMATION
  • 17. ©2020 VMware, Inc. 18 Cloud Native With automation across heterogeneous infrastructure Comprehensive Application Services Platform Load Balancing Security Analytics Platform Central Management 100% REST API / SDK Self-Service Multi-Tenancy Service Discovery IPAM/DNS Application Map Service Health Score Network Performance App Performance Request Logging Security Insights Web App Firewall SSL Termination DDoS Protection L3-4 ACLs L7 Rules/Policies Rate Limiting Client Auth / SSO L7 (HTTP) LB L4 (TCP/UDP) LB Global Load Balancing Content Switching Caching/Compression Autoscaling Enterprise Grade
  • 18. ©2020 VMware, Inc. 19 NSX VCF vCenter Bare Metal OpenStack VMC on AWS AWS Azure GCP Kubernetes OpenShift VMware Tanzu PKS AKS, GKE, EKS Customer Use Cases – Every Application Needs a Load Balancer SDDC / On-prem LB Refresh Public Cloud Containers GSLB / Local LB App Security, DDoS, WAF Platform Use Cases EUC Horizon VDI Horizon Cloud on Azure
  • 19. ©2020 VMware, Inc. 20 Introducing NSX Advanced Load Balancer v20.1 • Wildcard VIP • BGP Enhancements • GSLB, DNS, IPAM canary updates • Full integration for Google Cloud Platform • PULSE cloud services and proactive case management • WAF threat feeds, rate limiting enhancements • OCSP Stapling for certs • SAML 2.0 updates • VCF (VVDs) • vRO/vRA plugin • NSX-T full access LB and WAF • Ingress services architecture for highly scalable, multi-cluster, multi- site K8S/OpenShift networking services Consolidate with Integrated VMware Solutions Accelerate to Multi-cloud Secure Web Applications, Proactive Support Deliver Scalable Modern Apps
  • 21. ©2020 VMware, Inc. 22 Wildcard VIP for Firewall(VNF) Load Balancing Use Cases Firewall Sandwich Firewall On-a-stick I P S 1 I P S 2 I P S 3 Internal 10.10.0.0/8 10.2.1.10/24 10.2.1.21/24 10.2.1.23/24 10.2.2.10/24 10.2.2.21/24 10.2.2.23/24 10.2.0.2/24 10.2.3.2/24 10.2.0.1/24 10.2.3.1/24 Internet Internal 10.10.0.0/8 10.2.0.2/24 10.2.3.2/24 10.2.0.1/24 10.2.3.1/24 10.2.1.10/24 10.2.1.21/24 10.2.1.23/24 10.2.1.22/24 IPS 1 Avi SE-1 Avi SE-1 Avi SE-2 Internet IPS 2 IPS 3
  • 23. ©2020 VMware, Inc. 24 Traditional GSLB Challenges with Large Fault Domain Default behavior- Attempts to keep all the site up-to-date with the leader. GSLB Config change Leader Site Follower - 1 Site Follower - 2 Site Admin Instant replicationInstant replication Replication of faulty configuration can lead to application break down across sites Faulty configuration Config -C1 Config -C1 Config -C1 Application breakdown Application breakdown Application breakdown
  • 24. ©2020 VMware, Inc. 25 Verify before propagation NSX Advanced LB Approach: Canary GSLB Updates Leader Site Objectives • DNS service cannot be down • Intelligent sync of configs to followers • Avoid faulty configs from breaking apps globallyFollower - 1 Site Follower - 2 Site 1. Configuration change – C1 1 Config -C1 Config -C1 4. Replication is triggered for individual sites 4 4 Config -C1 2. Leader processes the new config but does not replicate instantly 2 Deployed 3. Once configuration is deployed and verified; replication policies are propagated. 3
  • 25. 26©2020 VMware, Inc. PULSE Cloud Services Product, User, License, and Support Experience.
  • 26. ©2020 VMware, Inc. 27 Cloud Services to Deliver Timely Support, Security, Updates Secure – Agile – Programmable Proactive and integrated support operations Live security threat with intelligence feed Simplified customer license experience End User / Customer Release Development Avi Controller Avi PULSE API Customer Portal Tech Support Integrated Case Management App Security Signatures IP Reputation Live Updates Central LicensingSaaS Portal Proactive Support WAF CRS Signatures Avi (legacy) License Portal Software & Patch Downloads Controller Deployments Customer Support Database Avi PULSE Cloud Services
  • 28. ©2020 VMware, Inc. 29 NSX Advanced Load Balancer and NSX-T Integration NSX-T Manager Avi management traffic over secure channel API vCenter Avi Controller Avi UI API REST API ESXI API ESXI Deploy SEs on ESXi ESXI Notifications Full LB and Security Automation for App Deployments • Lifecycle of LBs and elastic scale • Puts LBs in the right network • Automates Virtual IP allocation via IPAM and registers FQDN in DNS • Automatically programs NSX for scale out • Creates the right security policies for traffic flow with Distribute Firewall rules
  • 29. 32©2020 VMware, Inc. NSX Advanced LB Kubernetes Ingress Services
  • 30. ©2020 VMware, Inc. 33 Traffic Management & Service Discovery What are Ingress Services for Kubernetes? CISO Developers Operators Security • Local and global load balancing • Routing • Health Monitoring • TLS termination, Cert management/automation • CI/CD, Canary • DNS • Network policies • Authentication • Whitelist/Blacklist • Rate limiting • DOS detection/mitigation • WAF • Application and infra performance metrics • Transaction logging • Transaction tracing Observability
  • 31. ©2020 VMware, Inc. 34 Challenges with Ingress Services for Kubernetes Pod Pod Pod Pod Pod Pod Node 1 Node N Cluster 1: Active Standby Traffic to other clusters/sites IPAMDNS … • Multiple discrete solutions Disparate partial LB, Ingress, GSLB, DNS, IPAM and WAF products • Complex operations Difficult to manage and troubleshoot independent components • Lack of observability Stitch together multiple products with little analytics and no end-to-end visibility • Limited automation Lack of end-to-end automation GSLBF5 L4 LB L4 LBF5 WAFImperva Ingress Controller Open Source Ingress Controller Open Source
  • 32. ©2020 VMware, Inc. 35 Architectural advantage - single platform and converged app services for K8S NSX Advanced LB Consolidates Kubernetes Services • Integrated solution Comprehensive LB, Ingress, intrinsic security, WAF, GSLB, DNS, and IPAM • Operational simplicity A single solution with central control and ease of troubleshooting • Rich observability Real-time telemetry with application insights across all components • Cloud-native automation Elastic autoscaling based on closed-loop analytics and decision automation Avi Consolidated Application Services GSLB / DNS / IPAM + WAF + Ingress + LB
  • 33. 36©2020 VMware, Inc. Demo A single application services fabric across multiple clouds Virtualized Containers Bare Metal Virtualized Containers Virtualized Containers On-premises
  • 34. ©2020 VMware, Inc. 37 • Highly automated load balancing for to provide self-service to application teams • Can shorten time-to-market from 12 months to 3 weeks from inception to production • Best-in-class solution for OpenShift – automates system changes in seconds • High availability and resiliency simplifies operations and patching of infrastructure Transforming IT with a modern PaaS platform using Avi Networks Deutsche Bank Delivers “Everything-as-a-Service” Avi is completely agnostic and polyglot. It really doesn’t matter which environment you want to run; you can run Avi on it. Adam Spencer Product Owner for Fabric “ https://avinetworks.com/customers/
  • 35. ©2020 VMware, Inc. 38 • Migrate the Adobe Experience Cloud to the Azure with enterprise-grade support • Deliver thousands of SSL transactions per second, and elastic scale of load balancers and app servers based on real-time traffic • Improve operations with app insights and central management of all load balancers Delivering applications reliably and securely both on-premises and in the cloud Adobe Accelerates Cloud Initiatives with Microsoft Azure By reliably and securely delivering our applications, Avi Networks has become a key partner for our adoption of Azure. Brandon Pulsipher Vice President, Product Technical Operations “
  • 36. ©2020 VMware, Inc. 39 NSX Advanced Load Balancer – Proof Points Enterprise-grade, multi-cloud application services Simplifies root cause analysis and automates decisions Automates provisioning and enables self-service Scales elastically, on demand, based on real-time traffic Reduces operational complexity 30+% Lower TCO 41% Less Time Troubleshooting 90% Faster Provisioning 1M+ SSL TPS
  • 37. ©2020 VMware, Inc. 40 Learn More https://avinetworks.com/workshops https://avinetworks.com/docs/20.1/release-notes/