This document provides an overview of VMware Cloud on AWS, which allows customers to run VMware vSphere-based workloads on AWS. It discusses the product features including vSphere, VSAN storage, and NSX network virtualization running on dedicated AWS hardware. The document outlines the technical architecture including connectivity between on-premises and AWS VPC networks. It also provides examples of hybrid use cases such as live migrating VMs between on-premises and VMware Cloud on AWS using vMotion, and accessing native AWS services like S3 and Redshift from VMs.
This document discusses Azure networking features such as virtual networks, subnets, private and public IP addresses, load balancing, network security groups, routing, virtual network peering, and secure network designs. It provides an overview of these concepts with examples and considerations for using Azure networking components to design secure network architectures in Azure.
An Azure virtual network (VNet) provides connectivity and security for virtual machines and allows access to the public internet and other VMs. Network security groups contain rules that allow or deny network traffic, and Azure load balancers distribute incoming internet traffic across VMs. Availability sets distribute VMs across update and fault domains for redundancy and high availability. Virtual network gateways connect Azure VNets and on-premises networks, while Traffic Manager controls traffic distribution across endpoints in different datacenters.
This document discusses using Amazon CloudFront, AWS WAF, and AWS Lambda to protect web applications. AWS WAF provides firewall protection at CloudFront edge locations and can block exploits, abuse, and application DDoS attacks. CloudFront works with AWS WAF to filter legitimate traffic from attacks like SQL injection, cross-site scripting, and others. AWS Lambda can be used to automate security by integrating IP reputation lists and detecting HTTP floods and scans/probes. Resources are provided for webinars and tutorials on configuring AWS WAF and AWS Lambda for automatic protection of web applications.
CI-CD with AWS Developer Tools and Fargate_AWSPSSummit_SingaporeAmazon Web Services
The document discusses continuous integration, delivery, and deployment (CI/CD) using AWS services like CodeCommit, CodeBuild, CodeDeploy, CodePipeline, ECS Fargate, and ECR. It covers building Docker images with CodeBuild, orchestrating deployment pipelines with CodePipeline, and deploying containers to ECS Fargate.
This document discusses DevOps practices at Amazon, including:
1. Amazon uses DevOps practices like continuous integration, deployment, and automation to deploy code changes frequently and reliably, with mean deployment times of 11.6 seconds and up to 10,000 deployments in an hour.
2. Adopting DevOps practices has led to a 75% reduction in outages from software deployments and a 90% reduction in outage minutes since 2006.
3. The document outlines DevOps tools and practices used at Amazon like AWS services for version control, continuous integration, deployment automation, and monitoring.
This document discusses securing web applications with AWS WAF. It begins by explaining why a web application firewall (WAF) is needed to protect against bad users and application vulnerabilities while allowing good users. It then defines what AWS WAF is, noting that it allows users to block or allow web requests and monitor security events. AWS WAF provides APIs and a console for easy configuration of rules to protect websites and content while integrating with development workflows. The document outlines the steps to set up AWS WAF, including creating a web ACL, adding rules and match conditions, and assigning it to CloudFront. It notes the pay-as-you-go pricing model for AWS WAF.
Disaster Recovery using AWS -Architecture blueprintsHarish Ganesan
This presentation explores various ways of architecting Disaster Recovery using Amazon Web services (AWS) Cloud The sample architecture element contains Managed DNS servers , Load Balancers and Data replicators , Amazon EC2 , MySQL M-M , AWS EBS ,AWS Elastic Load Balancing, AWS Auto Scaling , AWS CloudWatch and AWS S3
This document discusses Azure networking features such as virtual networks, subnets, private and public IP addresses, load balancing, network security groups, routing, virtual network peering, and secure network designs. It provides an overview of these concepts with examples and considerations for using Azure networking components to design secure network architectures in Azure.
An Azure virtual network (VNet) provides connectivity and security for virtual machines and allows access to the public internet and other VMs. Network security groups contain rules that allow or deny network traffic, and Azure load balancers distribute incoming internet traffic across VMs. Availability sets distribute VMs across update and fault domains for redundancy and high availability. Virtual network gateways connect Azure VNets and on-premises networks, while Traffic Manager controls traffic distribution across endpoints in different datacenters.
This document discusses using Amazon CloudFront, AWS WAF, and AWS Lambda to protect web applications. AWS WAF provides firewall protection at CloudFront edge locations and can block exploits, abuse, and application DDoS attacks. CloudFront works with AWS WAF to filter legitimate traffic from attacks like SQL injection, cross-site scripting, and others. AWS Lambda can be used to automate security by integrating IP reputation lists and detecting HTTP floods and scans/probes. Resources are provided for webinars and tutorials on configuring AWS WAF and AWS Lambda for automatic protection of web applications.
CI-CD with AWS Developer Tools and Fargate_AWSPSSummit_SingaporeAmazon Web Services
The document discusses continuous integration, delivery, and deployment (CI/CD) using AWS services like CodeCommit, CodeBuild, CodeDeploy, CodePipeline, ECS Fargate, and ECR. It covers building Docker images with CodeBuild, orchestrating deployment pipelines with CodePipeline, and deploying containers to ECS Fargate.
This document discusses DevOps practices at Amazon, including:
1. Amazon uses DevOps practices like continuous integration, deployment, and automation to deploy code changes frequently and reliably, with mean deployment times of 11.6 seconds and up to 10,000 deployments in an hour.
2. Adopting DevOps practices has led to a 75% reduction in outages from software deployments and a 90% reduction in outage minutes since 2006.
3. The document outlines DevOps tools and practices used at Amazon like AWS services for version control, continuous integration, deployment automation, and monitoring.
This document discusses securing web applications with AWS WAF. It begins by explaining why a web application firewall (WAF) is needed to protect against bad users and application vulnerabilities while allowing good users. It then defines what AWS WAF is, noting that it allows users to block or allow web requests and monitor security events. AWS WAF provides APIs and a console for easy configuration of rules to protect websites and content while integrating with development workflows. The document outlines the steps to set up AWS WAF, including creating a web ACL, adding rules and match conditions, and assigning it to CloudFront. It notes the pay-as-you-go pricing model for AWS WAF.
Disaster Recovery using AWS -Architecture blueprintsHarish Ganesan
This presentation explores various ways of architecting Disaster Recovery using Amazon Web services (AWS) Cloud The sample architecture element contains Managed DNS servers , Load Balancers and Data replicators , Amazon EC2 , MySQL M-M , AWS EBS ,AWS Elastic Load Balancing, AWS Auto Scaling , AWS CloudWatch and AWS S3
The document provides an overview of Red Hat OpenShift Container Platform, including:
- OpenShift provides a fully automated Kubernetes container platform for any infrastructure.
- It offers integrated services like monitoring, logging, routing, and a container registry out of the box.
- The architecture runs everything in pods on worker nodes, with masters managing the control plane using Kubernetes APIs and OpenShift services.
- Key concepts include pods, services, routes, projects, configs and secrets that enable application deployment and management.
How can you accelerate the delivery of new, high-quality services? How can you be able to experiment and get feedback quickly from your customers? To get the most out of the agility afforded by serverless and containers, it is essential to build CI/CD pipelines that help teams iterate on code and quickly release features. In this talk, we demonstrate how developers can build effective CI/CD release workflows to manage their serverless or containerized deployments on AWS. We cover infrastructure-as-code (IaC) application models, such as AWS Serverless Application Model (AWS SAM) and new imperative IaC tools. We also demonstrate how to set up CI/CD release pipelines with AWS CodePipeline and AWS CodeBuild, and we show you how to automate safer deployments with AWS CodeDeploy.
Introduction to AWS VPC, Guidelines, and Best PracticesGary Silverman
I crafted this presentation for the AWS Chicago Meetup. This deck covers the rationale, building blocks, guidelines, and several best practices for Amazon Web Services Virtual Private Cloud. I classify it as a somewhere between a 101 and 201 level presentation.
If you like the presentation, I would appreciate you clicking the Like button.
AWS Fundamentals @Back2School by CloudZoneIdan Tohami
This document provides an overview of an AWS Fundamentals course. The course objectives are to teach attendees how to navigate the AWS Management Console, understand foundational AWS services like EC2, VPC, S3, and EBS, manage security and access with IAM, use database services like DynamoDB and RDS, and manage resources with services like Auto Scaling, ELB, and CloudWatch. The agenda covers introductions to AWS, foundational services, security and IAM, databases, and management tools.
AWS Code* services provide an easy way to build and operate a CI/CD pipeline for your project apps. In this session, we will cover the different AWS code services (CodeCommit, CodeBuild, CodeDeploy, CodePipeline and CodeStar) and the integration of these tools into your project.
Massive Lift & Shift Migrations to Microsoft Azure with the Microsoft Migrati...Morgan Simonsen
Presentation given at the Nordic Infrastructure Conference (NIC) 2015 about migrating servers to Azure IaaS using the Microsoft Migration Accelerator (MA).
OpenShift is a Platform-as-a-Service that provides development environments on demand using containers. It automates application lifecycles including build, deploy, and retirement. OpenShift uses containers to package applications and dependencies in a portable way. Red Hat addresses concerns around adopting containers at scale through OpenShift, which provides security, scalability, integration, management and certification capabilities. OpenShift runs on a user's choice of infrastructure and orchestrates applications across nodes using Kubernetes.
Amazon RDS allows you to launch an optimally configured, secure and highly available database with just a few clicks. It provides cost-efficient and resizable capacity while managing time-consuming database administration tasks, freeing you to focus on your applications and business.
The document discusses Amazon EKS (Elastic Kubernetes Service), which allows users to run Kubernetes on AWS. It highlights that EKS manages the control plane for users and provides native integrations with other AWS services like load balancers, IAM, and container registry. The document also summarizes key capabilities like high availability of the Kubernetes masters, networking options, version upgrades, and how to provision Kubernetes nodes on EKS.
Emerging Trends in Hybrid-Cloud & Multi-Cloud StrategiesChaitanya Atreya
As Cloud Computing rapidly evolves, newer deployment strategies such as Hybrid-Cloud, Multi-Cloud and On-Prem Cloud are emerging. More and more enterprise solution providers are offering support for a combination of these deployment targets. It is imperative that the larger organizations have a clear Hybrid-Cloud and Multi-Cloud strategy to avoid cloud lock-in and to de-risk business decisions.
What do each of these terminologies mean? What is the scope of each and overlap if any? We will discuss the emerging best-practices across these interdisciplinary trends, especially in the context of Modern Data and Analytics Platforms and Enterprise Self-Service.
The document describes Amazon EKS (Elastic Container Service for Kubernetes), including an overview of EKS, its architecture, features, and integration with other AWS services. Key points include: EKS manages Kubernetes control planes and nodes are launched in the customer's VPC, EKS supports networking via the AWS VPC CNI plugin, and EKS provides security and access management using IAM roles and policies.
Kubernetes Concepts And Architecture Powerpoint Presentation SlidesSlideTeam
The document provides an overview of Kubernetes concepts and architecture. It begins with an introduction to containers and microservices architecture. It then discusses what Kubernetes is and why organizations should use it. The remainder of the document outlines Kubernetes components, nodes, development processes, networking, and security measures. It provides descriptions and diagrams explaining key aspects of Kubernetes such as architecture, components like Kubelet and Kubectl, node types, and networking models.
This document discusses OpenShift Container Platform, a platform as a service (PaaS) that provides a full development and deployment platform for applications. It allows developers to easily manage application dependencies and development environments across basic infrastructure, public clouds, and production servers. OpenShift provides container orchestration using Kubernetes along with developer tools and a user experience to support DevOps practices like continuous integration/delivery.
Cloud Migration 과 Modernization 을 위한 30가지 아이디어-박기흥, AWS Migrations Specialist...Amazon Web Services Korea
규모의 경제에서 속도의 경제로 이동하고 있는 요즘, 기업의 경쟁우위를 위하여 클라우드 마이그레이션과 애플리케이션 및 프로세스 현대화는 생존을 위한 필수조건이 되었습니다. 본 세션에서는 마이그레이션과 현대화를 위한 30여 가지 아이디어를 살펴보고자 합니다. 제약 이론, 도요타 생산방식과 같이 개선을 위한 기반 사상에서 DevOps, FinOps, SRE 등의 프랙티스와 그를 구성하는 SLA, Loosely Couple Architecture, CI/CD 등의 메카니즘, 그리고 마이그레이션을 위한 Transitional Architecture, Data Migration Architecture 등 30여 가지 아이디어를 공유합니다.
Designing security & governance via AWS Control Tower & Organizations - SEC30...Amazon Web Services
Whether it is per business unit or per application, many AWS customers use multiple accounts to meet their infrastructure isolation, separation of duties, and billing requirements. In this session, we cover considerations, limitations, and security patterns when building a multi-account strategy. We explore topics such as thought pattern, identity federation, cross-account roles, consolidated logging, and account governance. We conclude by presenting an enterprise-ready landing-zone framework and providing the background needed to implement an AWS Landing Zone using AWS Control Tower and AWS Organizations.
Bring the VMware Software-Defined Data Center to Amazon Web Services with VMware Cloud. In this webinar we will dive into the compute, network and storage architecture of the VMware Cloud on AWS solution. We will look at real-world, live applications running in VMware Cloud on AWS which integrate with native AWS services such as S3 and Amazon Relational Database Service. We’ll discuss common deployment scenarios including Hybrid Cloud Architectures and Disaster Recovery and explore how the TCO of these implementations differ in VMware Cloud as compared to on-premises implementations.
This document introduces Amazon CloudFront, a content delivery network (CDN) that provides fast, secure, and cost-effective global delivery of content. Some key features of CloudFront include its full-featured caching network with a global infrastructure tuned for optimal performance, high security, robust analytics, and self-service capabilities. CloudFront can deliver content for various market segments like media/entertainment, gaming, eCommerce, and software downloads. It aims to provide high performance, reach a wide global audience, and ensure financial feasibility for scalable content delivery.
The document discusses various backup and archival strategies using AWS services like Amazon S3, EBS, Glacier, and Snowball. It provides examples of using S3 lifecycle policies to transition data between storage tiers, taking EBS snapshots for EC2 instance backups, and using Snowball for large-scale data transfers to the cloud. Backup and archival solutions can provide durability, scalability, cost savings, and reduce risks compared to on-premises options.
VMWare Cloud for the AWS Cloud | AWS Public Sector Summit 2017Amazon Web Services
VMware Cloud on AWS brings VMware's enterprise class Software-Defined Data Center software to Amazon's public cloud. VMware is delivered as an on-demand, elastically scalable, and cloud-based and is a sold, operated and supported service for any application. Its software is optimized for next-generation, elastic, bare metal AWS infrastructure. This solution enables customers to use a common set of software and tools to manage both their AWS-based and on-premises vSphere resources consistently. Further virtual machines in this environment have seamless access to the broad range of AWS services. This session will introduce this new service and examine some of the use cases, benefits, and go-to market approaches of the service. We will also include an overview of the underlying AWS architecture, key enabling services, and the feature roadmap. Learn More: https://aws.amazon.com/government-education/
VMware CloudTM on AWS brings VMware’s enterprise class Software-Defined Data Center software to Amazon’s public cloud, delivered as an on-demand, elastically scalable, cloud-based VMware sold, operated and supported service for any application and optimized for next-generation, elastic, bare metal AWS infrastructure. This solution enables customers to use a common set of software and tools to manage both their AWS-based and on-premises vSphere resources consistently. Further virtual machines in this environment have seamless access to the broad range of AWS services as well. This session will introduce this exciting new service and examine some of the use cases and benefits. The session will also include a VMware Tech Preview that demonstrates standing up a complete SDDC cluster on AWS and various operations using standard tools like vCenter.
The document provides an overview of Red Hat OpenShift Container Platform, including:
- OpenShift provides a fully automated Kubernetes container platform for any infrastructure.
- It offers integrated services like monitoring, logging, routing, and a container registry out of the box.
- The architecture runs everything in pods on worker nodes, with masters managing the control plane using Kubernetes APIs and OpenShift services.
- Key concepts include pods, services, routes, projects, configs and secrets that enable application deployment and management.
How can you accelerate the delivery of new, high-quality services? How can you be able to experiment and get feedback quickly from your customers? To get the most out of the agility afforded by serverless and containers, it is essential to build CI/CD pipelines that help teams iterate on code and quickly release features. In this talk, we demonstrate how developers can build effective CI/CD release workflows to manage their serverless or containerized deployments on AWS. We cover infrastructure-as-code (IaC) application models, such as AWS Serverless Application Model (AWS SAM) and new imperative IaC tools. We also demonstrate how to set up CI/CD release pipelines with AWS CodePipeline and AWS CodeBuild, and we show you how to automate safer deployments with AWS CodeDeploy.
Introduction to AWS VPC, Guidelines, and Best PracticesGary Silverman
I crafted this presentation for the AWS Chicago Meetup. This deck covers the rationale, building blocks, guidelines, and several best practices for Amazon Web Services Virtual Private Cloud. I classify it as a somewhere between a 101 and 201 level presentation.
If you like the presentation, I would appreciate you clicking the Like button.
AWS Fundamentals @Back2School by CloudZoneIdan Tohami
This document provides an overview of an AWS Fundamentals course. The course objectives are to teach attendees how to navigate the AWS Management Console, understand foundational AWS services like EC2, VPC, S3, and EBS, manage security and access with IAM, use database services like DynamoDB and RDS, and manage resources with services like Auto Scaling, ELB, and CloudWatch. The agenda covers introductions to AWS, foundational services, security and IAM, databases, and management tools.
AWS Code* services provide an easy way to build and operate a CI/CD pipeline for your project apps. In this session, we will cover the different AWS code services (CodeCommit, CodeBuild, CodeDeploy, CodePipeline and CodeStar) and the integration of these tools into your project.
Massive Lift & Shift Migrations to Microsoft Azure with the Microsoft Migrati...Morgan Simonsen
Presentation given at the Nordic Infrastructure Conference (NIC) 2015 about migrating servers to Azure IaaS using the Microsoft Migration Accelerator (MA).
OpenShift is a Platform-as-a-Service that provides development environments on demand using containers. It automates application lifecycles including build, deploy, and retirement. OpenShift uses containers to package applications and dependencies in a portable way. Red Hat addresses concerns around adopting containers at scale through OpenShift, which provides security, scalability, integration, management and certification capabilities. OpenShift runs on a user's choice of infrastructure and orchestrates applications across nodes using Kubernetes.
Amazon RDS allows you to launch an optimally configured, secure and highly available database with just a few clicks. It provides cost-efficient and resizable capacity while managing time-consuming database administration tasks, freeing you to focus on your applications and business.
The document discusses Amazon EKS (Elastic Kubernetes Service), which allows users to run Kubernetes on AWS. It highlights that EKS manages the control plane for users and provides native integrations with other AWS services like load balancers, IAM, and container registry. The document also summarizes key capabilities like high availability of the Kubernetes masters, networking options, version upgrades, and how to provision Kubernetes nodes on EKS.
Emerging Trends in Hybrid-Cloud & Multi-Cloud StrategiesChaitanya Atreya
As Cloud Computing rapidly evolves, newer deployment strategies such as Hybrid-Cloud, Multi-Cloud and On-Prem Cloud are emerging. More and more enterprise solution providers are offering support for a combination of these deployment targets. It is imperative that the larger organizations have a clear Hybrid-Cloud and Multi-Cloud strategy to avoid cloud lock-in and to de-risk business decisions.
What do each of these terminologies mean? What is the scope of each and overlap if any? We will discuss the emerging best-practices across these interdisciplinary trends, especially in the context of Modern Data and Analytics Platforms and Enterprise Self-Service.
The document describes Amazon EKS (Elastic Container Service for Kubernetes), including an overview of EKS, its architecture, features, and integration with other AWS services. Key points include: EKS manages Kubernetes control planes and nodes are launched in the customer's VPC, EKS supports networking via the AWS VPC CNI plugin, and EKS provides security and access management using IAM roles and policies.
Kubernetes Concepts And Architecture Powerpoint Presentation SlidesSlideTeam
The document provides an overview of Kubernetes concepts and architecture. It begins with an introduction to containers and microservices architecture. It then discusses what Kubernetes is and why organizations should use it. The remainder of the document outlines Kubernetes components, nodes, development processes, networking, and security measures. It provides descriptions and diagrams explaining key aspects of Kubernetes such as architecture, components like Kubelet and Kubectl, node types, and networking models.
This document discusses OpenShift Container Platform, a platform as a service (PaaS) that provides a full development and deployment platform for applications. It allows developers to easily manage application dependencies and development environments across basic infrastructure, public clouds, and production servers. OpenShift provides container orchestration using Kubernetes along with developer tools and a user experience to support DevOps practices like continuous integration/delivery.
Cloud Migration 과 Modernization 을 위한 30가지 아이디어-박기흥, AWS Migrations Specialist...Amazon Web Services Korea
규모의 경제에서 속도의 경제로 이동하고 있는 요즘, 기업의 경쟁우위를 위하여 클라우드 마이그레이션과 애플리케이션 및 프로세스 현대화는 생존을 위한 필수조건이 되었습니다. 본 세션에서는 마이그레이션과 현대화를 위한 30여 가지 아이디어를 살펴보고자 합니다. 제약 이론, 도요타 생산방식과 같이 개선을 위한 기반 사상에서 DevOps, FinOps, SRE 등의 프랙티스와 그를 구성하는 SLA, Loosely Couple Architecture, CI/CD 등의 메카니즘, 그리고 마이그레이션을 위한 Transitional Architecture, Data Migration Architecture 등 30여 가지 아이디어를 공유합니다.
Designing security & governance via AWS Control Tower & Organizations - SEC30...Amazon Web Services
Whether it is per business unit or per application, many AWS customers use multiple accounts to meet their infrastructure isolation, separation of duties, and billing requirements. In this session, we cover considerations, limitations, and security patterns when building a multi-account strategy. We explore topics such as thought pattern, identity federation, cross-account roles, consolidated logging, and account governance. We conclude by presenting an enterprise-ready landing-zone framework and providing the background needed to implement an AWS Landing Zone using AWS Control Tower and AWS Organizations.
Bring the VMware Software-Defined Data Center to Amazon Web Services with VMware Cloud. In this webinar we will dive into the compute, network and storage architecture of the VMware Cloud on AWS solution. We will look at real-world, live applications running in VMware Cloud on AWS which integrate with native AWS services such as S3 and Amazon Relational Database Service. We’ll discuss common deployment scenarios including Hybrid Cloud Architectures and Disaster Recovery and explore how the TCO of these implementations differ in VMware Cloud as compared to on-premises implementations.
This document introduces Amazon CloudFront, a content delivery network (CDN) that provides fast, secure, and cost-effective global delivery of content. Some key features of CloudFront include its full-featured caching network with a global infrastructure tuned for optimal performance, high security, robust analytics, and self-service capabilities. CloudFront can deliver content for various market segments like media/entertainment, gaming, eCommerce, and software downloads. It aims to provide high performance, reach a wide global audience, and ensure financial feasibility for scalable content delivery.
The document discusses various backup and archival strategies using AWS services like Amazon S3, EBS, Glacier, and Snowball. It provides examples of using S3 lifecycle policies to transition data between storage tiers, taking EBS snapshots for EC2 instance backups, and using Snowball for large-scale data transfers to the cloud. Backup and archival solutions can provide durability, scalability, cost savings, and reduce risks compared to on-premises options.
VMWare Cloud for the AWS Cloud | AWS Public Sector Summit 2017Amazon Web Services
VMware Cloud on AWS brings VMware's enterprise class Software-Defined Data Center software to Amazon's public cloud. VMware is delivered as an on-demand, elastically scalable, and cloud-based and is a sold, operated and supported service for any application. Its software is optimized for next-generation, elastic, bare metal AWS infrastructure. This solution enables customers to use a common set of software and tools to manage both their AWS-based and on-premises vSphere resources consistently. Further virtual machines in this environment have seamless access to the broad range of AWS services. This session will introduce this new service and examine some of the use cases, benefits, and go-to market approaches of the service. We will also include an overview of the underlying AWS architecture, key enabling services, and the feature roadmap. Learn More: https://aws.amazon.com/government-education/
VMware CloudTM on AWS brings VMware’s enterprise class Software-Defined Data Center software to Amazon’s public cloud, delivered as an on-demand, elastically scalable, cloud-based VMware sold, operated and supported service for any application and optimized for next-generation, elastic, bare metal AWS infrastructure. This solution enables customers to use a common set of software and tools to manage both their AWS-based and on-premises vSphere resources consistently. Further virtual machines in this environment have seamless access to the broad range of AWS services as well. This session will introduce this exciting new service and examine some of the use cases and benefits. The session will also include a VMware Tech Preview that demonstrates standing up a complete SDDC cluster on AWS and various operations using standard tools like vCenter.
VMware CloudTM on AWS brings VMware’s enterprise class Software-Defined Data Center software to Amazon’s public cloud, delivered as an on-demand, elastically scalable, cloud-based VMware sold, operated and supported service for any application and optimized for next-generation, elastic, bare metal AWS infrastructure. This solution enables customers to use a common set of software and tools to manage both their AWS-based and on-premises vSphere resources consistently. Further virtual machines in this environment have seamless access to the broad range of AWS services as well. This session will introduce this exciting new service and examine some of the use cases and benefits. The session will also include a VMware Tech Preview that demonstrates standing up a complete SDDC cluster on AWS and various operations using standard tools like vCenter.
AWS re:Invent 2016: VMware and AWS Together - VMware Cloud on AWS (ENT317)Amazon Web Services
VMware CloudTM on AWS brings VMware’s enterprise class Software-Defined Data Center software to Amazon’s public cloud, delivered as an on-demand, elastically scalable, cloud-based VMware sold, operated and supported service for any application and optimized for next-generation, elastic, bare metal AWS infrastructure. This solution enables customers to use a common set of software and tools to manage both their AWS-based and on-premises vSphere resources consistently. Further virtual machines in this environment have seamless access to the broad range of AWS services as well. This session will introduce this exciting new service and examine some of the use cases and benefits of the service. The session will also include a VMware Tech Preview that demonstrates standing up a complete SDDC cluster on AWS and various operations using standard tools like vCenter.
2018.04.16 vmware cloud on aws - paul woodward - ncwivmugPaul Woodward Jr
This document provides an overview of AWS integration with VMware Cloud on AWS. Key points include:
- VMware Cloud on AWS allows customers to run VMware software on AWS hardware, providing access to native AWS services.
- It offers a fully configured VMware stack including vCenter Server, NSX Manager, and ESXi hosts that is provisioned and managed by VMware.
- Customers can leverage their existing VMware tools and skills to build out and manage cloud environments while also gaining access to AWS capabilities like storage, compute, and networking.
- The service aims to provide an extension of on-premises VMware environments into the cloud with consistent operations, control, and application support
Presentation vmware building “your cloud”solarisyourep
The document discusses how to build a private cloud using VMware technologies. It describes how VMware vSphere virtualizes the environment, VMware vCloud Director is used to build the private cloud, and VMware vCloud Connector Plug-in allows migrating workloads between the private cloud and vSphere environments or public clouds. Professional services from VMware can help with planning and deploying the private cloud.
1) The document discusses VMware Cloud on AWS, a service that will allow customers to run VMware software-defined data center (SDDC) technologies like vSphere, vSAN, and NSX on the AWS cloud.
2) It highlights benefits like consistency with on-premises VMware environments, easy workload portability between on-premises and AWS clouds, and direct access to native AWS services.
3) The service will initially be available in selected AWS regions, with plans to expand availability to additional regions over time, and will allow customers to connect their on-premises environments to their VMware Cloud on AWS through options like IPSEC VPN or AWS Direct Connect.
The document provides an overview of the Cisco Nexus 1000V virtual switch, including:
1) The Nexus 1000V uses Virtual Ethernet Modules (VEMs) that replace the VMware vSwitch on each hypervisor and a Virtual Supervisor Module (VSM) that controls the VEMs and provides a unified NX-OS CLI.
2) Port profiles allow common configurations to be defined once and applied to multiple virtual Ethernet ports, simplifying management of virtual networking resources.
3) The distributed data plane means each VEM switches independently without synchronization, and the VSM is not in the data path between VEMs.
The document provides an overview of hybrid architectures and how to design, build, and manage distributed applications across hybrid infrastructures using Amazon Web Services. It discusses topics like interconnectivity, availability, security, hybrid networks with AWS VPC and Direct Connect, and automated provisioning with AWS CloudFormation and configuration management with AWS OpsWorks. Example hybrid architectures are also presented, including a SAP HANA deployment across an on-premises data center and AWS VPC, and a company running applications in multiple cloud providers.
AWS June Webinar Series - Deep dive: Hybrid ArchitecturesAmazon Web Services
In this webinar, learn how you evaluate, design, build, and manage distributed applications over hybrid infrastructures using Amazon Web Services. This webinar follows the evolution of a simple legacy data center expansion with basic connectivity into managing complex hybrid applications. Along the way, we investigate best practice designs in use by AWS customers. Topics covered include: interconnectivity, availability, security, hybrid networks with Amazon VPC and AWS Direct Connect as well as how AWS makes it easy to automate provisioning.
Learning Objectives: • Learn how to evaluate, design, build, and manage distributed applications over hybrid infrastructures using AWS. • Understand hybrid architecture topology and points of integration with AWS. • See example architectures and hear best practices from successful hybrid implementations
Who Should Attend: • Network managers, Infrastructure architects, Application owners
In this session, learn how you evaluate, design, build, and manage distributed applications over hybrid infrastructures using Amazon Web Services. This session follows the evolution of a simple legacy data center expansion with basic connectivity into managing complex hybrid applications. Along the way, we investigate best practice designs in use by AWS customers. Topics covered include interconnectivity, availability, security, and hybrid networks with Amazon VPC and AWS Direct Connect, as well as automated provisioning with AWS CloudFormation and configuration management with AWS OpsWorks.
This document provides an agenda and overview of NSX and vRealize Automation integration capabilities. The agenda includes topics on NSX use cases with vRA, unified service delivery using the Converged Blueprint Designer, extensibility options, and a Q&A session. Key integration features covered are on-demand network and security provisioning, application-centric blueprints, infrastructure as code, and policy-driven lifecycle extensibility. Architectural considerations for deploying vRA in an HA configuration on NSX are also reviewed.
VMware 2015: Next Horizon for Cloud Networking and SecurityVMworld
Software Defined Networking (SDN) and network virtualization has become an accepted part of modern data center architecture. The transformation of networking into a software industry has accelerated innovation and given rise to a number of new technologies and use cases that were previously impossible. Network virtualization is starting to have profound impact on services, security, the underlying physical networks and the organization of the IT organizations that use them. How will network virtualization impact the next horizon for cloud networking and security?
In this session Guido Appenzeller presents a tech-preview of NSX working with Docker Containers and Amazon Web Services (AWS). Additional speakers include Scott Lowe, Mukesh Hira and Jacob Cherkas from VMware and Suneet Nandwani from eBay.
Self service it with v realizeautomation and nsxsolarisyougood
This document discusses using VMware's NSX and vRealize Automation (vRA) products to provide self-service IT capabilities. It outlines how NSX logical networking and security services like logical switches, firewalls, and load balancers can be dynamically configured and deployed through vRA blueprints and service catalogs. The document also covers updates in NSX and vRA integration in version 6.2, including network profiles, security groups, tags, and distributed logical routing support. Finally, it discusses considerations for deploying NSX with vRA and demonstrates the networking and security workflows.
Adoption of VMware Cloud on AWS is Accelerating in the Enterprise Amazon Web Services
As enterprise customers accelerate their hybrid cloud and modern application strategies, VMware Cloud, using the unique capabilities of AWS, empowers modern workloads with consistent infrastructure, operations, and reduced costs. In this session, learn how enterprises are using VMware Cloud on AWS for such use cases as cloud migrations, data center extension, disaster recovery, next-generation applications, and app modernization.
This document provides an overview of Chris Wahl and his expertise in networking and virtualization. It summarizes his background as a VMware Certified Design Expert and Pluralsight author. The bulk of the document then summarizes key concepts regarding software-defined networking and how NSX implements networking, security and virtualization services in a virtualized environment in 3 sentences or less per section. It also briefly outlines example use cases and approaches to infrastructure as code and network automation using NSX.
VMware vCloud Director Technisch OverzichtArjan Hendriks
This document provides an overview of VMware vCloud Director and the components of a VMware cloud architecture. It discusses VMware vCloud Director, vSphere, vCenter Server, and other core components. It also covers setting up the management cluster, cloud resources like provider VDCs and networks, organizations, catalogs, and chargeback. The goal is to provide the information needed to deploy a complete VMware cloud.
VMware vCloud Director is a cloud computing platform that allows enterprises and service providers to deliver virtual infrastructure as a service. It provides self-service provisioning, automated life cycle management, and governance to users through a web-based portal. vCloud Director supports multi-tenancy, centralized management, and chargeback for usage while maintaining control over the underlying virtual infrastructure. It utilizes concepts such as organizations, virtual datacenters, catalogs, and networks to abstract away the physical infrastructure.
Similar to VMware and AWS Together - VMware Cloud on AWS (20)
This document discusses containers and Amazon ECS. It provides an overview of containers and their benefits like portability and efficiency. It then describes Amazon ECS as a highly scalable and performant container management service that supports Docker containers. It discusses how ECS runs applications on a managed cluster of EC2 instances using tasks, services, and scheduling. It also outlines some key benefits of ECS like being fully managed, integration with other AWS services, and application load balancing. Finally, it provides examples of commands to create an ECS cluster, register a task definition, and create a service to run tasks.
This document provides an overview of an AWS event. It includes details about the AWS business including $16B in annual revenue and over 135,000 active customers. It discusses the breadth of AWS services and tools available, positioning AWS as a leader in cloud infrastructure. The document outlines how AWS gives customers superpowers with super sonic speed and pace of innovation. It provides examples of how customers are using AWS services to transform their businesses.
Serverless Big Data Architectures: Serverless Data AnalyticsKristana Kane
Serverless architectures are evolving to support big data analytics workflows. The document outlines serverless services for ingesting, storing, processing, and visualizing data. It describes how AWS Lambda, DynamoDB, S3, Kinesis, Athena, Glue, and other serverless services can be used without provisioning or managing servers. Serverless design patterns are presented for real-time analytics, interactive queries, and ETL workflows. A demo is promised to illustrate serverless big data architectures.
Getting Started with AWS Lambda and Serverless ComputingKristana Kane
This document provides an overview of AWS Lambda and serverless computing. It discusses AWS compute offerings like EC2, ECS, and Lambda. Lambda allows running code in response to events without provisioning or managing servers. Benefits include automatic scaling, pay per use, and built-in availability. Common use cases for Lambda include web applications, backends, data processing, chatbots, and IT automation. Best practices for Lambda include limiting function size, parameterizing code, and using versions and aliases. The document also provides examples of serverless applications and architectures using Lambda along with other AWS services.
An Overview to Artificial Intelligence Services at AWSKristana Kane
The document provides an overview of artificial intelligence capabilities on AWS, including Amazon Polly for text-to-speech, Amazon Rekognition for computer vision, Apache MXNet as a deep learning framework, and Amazon Lex for building conversational bots. It describes their features and common use cases, such as using computer vision for facial analysis and recognition, building conversational interfaces for devices with Amazon Lex, and more.
This document summarizes a presentation about security at scale on AWS. It discusses AWS security controls that customers don't need to manage themselves. It also outlines the AWS Cloud Adoption Framework for adapting security practices to the cloud. Finally, it provides examples of how to implement security capabilities like identity and access management, detective controls, infrastructure security, data protection, and incident response on AWS.
The document provides an overview of AWS IoT and Greengrass. It discusses key features like IoT rules for processing device data, device shadows for command and control when devices are offline, lifecycle events for device connectivity, and using Greengrass to run AWS Lambda functions and device shadows locally on edge devices for offline operation and low-latency processing. Greengrass extends AWS IoT by allowing devices to communicate securely on the local network and with the cloud.
Automating Security in Cloud Workloads with DevSecOps Kristana Kane
This document discusses automating security in cloud workloads using DevSecOps. It outlines why security automation is important to reduce risk and keep pace with scalable infrastructure. The security team's role changes to focus on providing security as a service across the development lifecycle. Security automation can be applied in continuous integration/deployment pipelines, cloud infrastructure, and runtime environments. Practical examples are provided like automatically isolating compromised instances. A variety of tools from AWS and partners can help with tasks like validation, tracking, alerting and reporting to benchmark security posture and drive remediation. Open source projects also offer code to learn from for automating security best practices in AWS environments.
This document provides an overview of Apache MXNet and deep learning on AWS. It begins with an introduction to deep learning applications and trends. The rest of the document discusses MXNet features like scalability, language support and frameworks comparisons. It also covers MXNet usage on AWS like integration with services and AI research. The document concludes with developer resources like notebooks, documentation and tools for building models with MXNet.
This document provides an overview of AWS IoT and examples of how several companies are using it. It discusses how Rachio uses AWS IoT to connect sprinkler controllers and calibrate based on soil and weather data. It describes how Philips Healthcare collects and analyzes patient data from medical devices using AWS IoT. The document also discusses how Sonos, British Gas, and Dropcam leverage AWS IoT capabilities like telemetry data collection and real-time video streaming. Overall, the document showcases various customer use cases and how AWS IoT can help connect devices, collect and analyze data, and build applications.
This document provides an overview of microservices architecture and Amazon ECS. It begins with definitions of microservices and comparisons to monolithic architectures. Key characteristics of microservices are described. Amazon ECS is introduced as a fully managed container orchestration service that integrates with other AWS services. The document discusses deploying containers on ECS and task placement options. Examples are provided of architectures using ECS and other AWS services like Lambda, Aurora and DynamoDB. Case studies of Samsung and Instacart's use of microservices on ECS are summarized. Details of the internal workings of ECS around scheduling and placement are covered. The Twelve-Factor App methodology is discussed in relation to ECS. Finally, the document introduces Blo
Migrating Your Databases to AWS Deep Dive on Amazon RDS and AWSKristana Kane
This document provides an overview of migrating databases to AWS using Amazon RDS and AWS Database Migration Service (DMS). It discusses how AWS RDS offers scalable, managed relational databases, the different database engines supported by RDS, and key features like security, monitoring, high availability and scaling. It then covers how AWS DMS can be used to migrate databases to AWS with no downtime by continuously replicating and migrating data. Finally, it shares examples of how customers have used RDS and DMS for heterogeneous, homogeneous, large-scale and split migrations.
"Choosing proper type of scaling", Olena SyrotaFwdays
Imagine an IoT processing system that is already quite mature and production-ready and for which client coverage is growing and scaling and performance aspects are life and death questions. The system has Redis, MongoDB, and stream processing based on ksqldb. In this talk, firstly, we will analyze scaling approaches and then select the proper ones for our system.
Essentials of Automations: Exploring Attributes & Automation ParametersSafe Software
Building automations in FME Flow can save time, money, and help businesses scale by eliminating data silos and providing data to stakeholders in real-time. One essential component to orchestrating complex automations is the use of attributes & automation parameters (both formerly known as “keys”). In fact, it’s unlikely you’ll ever build an Automation without using these components, but what exactly are they?
Attributes & automation parameters enable the automation author to pass data values from one automation component to the next. During this webinar, our FME Flow Specialists will cover leveraging the three types of these output attributes & parameters in FME Flow: Event, Custom, and Automation. As a bonus, they’ll also be making use of the Split-Merge Block functionality.
You’ll leave this webinar with a better understanding of how to maximize the potential of automations by making use of attributes & automation parameters, with the ultimate goal of setting your enterprise integration workflows up on autopilot.
[OReilly Superstream] Occupy the Space: A grassroots guide to engineering (an...Jason Yip
The typical problem in product engineering is not bad strategy, so much as “no strategy”. This leads to confusion, lack of motivation, and incoherent action. The next time you look for a strategy and find an empty space, instead of waiting for it to be filled, I will show you how to fill it in yourself. If you’re wrong, it forces a correction. If you’re right, it helps create focus. I’ll share how I’ve approached this in the past, both what works and lessons for what didn’t work so well.
Connector Corner: Seamlessly power UiPath Apps, GenAI with prebuilt connectorsDianaGray10
Join us to learn how UiPath Apps can directly and easily interact with prebuilt connectors via Integration Service--including Salesforce, ServiceNow, Open GenAI, and more.
The best part is you can achieve this without building a custom workflow! Say goodbye to the hassle of using separate automations to call APIs. By seamlessly integrating within App Studio, you can now easily streamline your workflow, while gaining direct access to our Connector Catalog of popular applications.
We’ll discuss and demo the benefits of UiPath Apps and connectors including:
Creating a compelling user experience for any software, without the limitations of APIs.
Accelerating the app creation process, saving time and effort
Enjoying high-performance CRUD (create, read, update, delete) operations, for
seamless data management.
Speakers:
Russell Alfeche, Technology Leader, RPA at qBotic and UiPath MVP
Charlie Greenberg, host
Your One-Stop Shop for Python Success: Top 10 US Python Development Providersakankshawande
Simplify your search for a reliable Python development partner! This list presents the top 10 trusted US providers offering comprehensive Python development services, ensuring your project's success from conception to completion.
"$10 thousand per minute of downtime: architecture, queues, streaming and fin...Fwdays
Direct losses from downtime in 1 minute = $5-$10 thousand dollars. Reputation is priceless.
As part of the talk, we will consider the architectural strategies necessary for the development of highly loaded fintech solutions. We will focus on using queues and streaming to efficiently work and manage large amounts of data in real-time and to minimize latency.
We will focus special attention on the architectural patterns used in the design of the fintech system, microservices and event-driven architecture, which ensure scalability, fault tolerance, and consistency of the entire system.
What is an RPA CoE? Session 1 – CoE VisionDianaGray10
In the first session, we will review the organization's vision and how this has an impact on the COE Structure.
Topics covered:
• The role of a steering committee
• How do the organization’s priorities determine CoE Structure?
Speaker:
Chris Bolin, Senior Intelligent Automation Architect Anika Systems
"Frontline Battles with DDoS: Best practices and Lessons Learned", Igor IvaniukFwdays
At this talk we will discuss DDoS protection tools and best practices, discuss network architectures and what AWS has to offer. Also, we will look into one of the largest DDoS attacks on Ukrainian infrastructure that happened in February 2022. We'll see, what techniques helped to keep the web resources available for Ukrainians and how AWS improved DDoS protection for all customers based on Ukraine experience
Must Know Postgres Extension for DBA and Developer during MigrationMydbops
Mydbops Opensource Database Meetup 16
Topic: Must-Know PostgreSQL Extensions for Developers and DBAs During Migration
Speaker: Deepak Mahto, Founder of DataCloudGaze Consulting
Date & Time: 8th June | 10 AM - 1 PM IST
Venue: Bangalore International Centre, Bangalore
Abstract: Discover how PostgreSQL extensions can be your secret weapon! This talk explores how key extensions enhance database capabilities and streamline the migration process for users moving from other relational databases like Oracle.
Key Takeaways:
* Learn about crucial extensions like oracle_fdw, pgtt, and pg_audit that ease migration complexities.
* Gain valuable strategies for implementing these extensions in PostgreSQL to achieve license freedom.
* Discover how these key extensions can empower both developers and DBAs during the migration process.
* Don't miss this chance to gain practical knowledge from an industry expert and stay updated on the latest open-source database trends.
Mydbops Managed Services specializes in taking the pain out of database management while optimizing performance. Since 2015, we have been providing top-notch support and assistance for the top three open-source databases: MySQL, MongoDB, and PostgreSQL.
Our team offers a wide range of services, including assistance, support, consulting, 24/7 operations, and expertise in all relevant technologies. We help organizations improve their database's performance, scalability, efficiency, and availability.
Contact us: info@mydbops.com
Visit: https://www.mydbops.com/
Follow us on LinkedIn: https://in.linkedin.com/company/mydbops
For more details and updates, please follow up the below links.
Meetup Page : https://www.meetup.com/mydbops-databa...
Twitter: https://twitter.com/mydbopsofficial
Blogs: https://www.mydbops.com/blog/
Facebook(Meta): https://www.facebook.com/mydbops/
How information systems are built or acquired puts information, which is what they should be about, in a secondary place. Our language adapted accordingly, and we no longer talk about information systems but applications. Applications evolved in a way to break data into diverse fragments, tightly coupled with applications and expensive to integrate. The result is technical debt, which is re-paid by taking even bigger "loans", resulting in an ever-increasing technical debt. Software engineering and procurement practices work in sync with market forces to maintain this trend. This talk demonstrates how natural this situation is. The question is: can something be done to reverse the trend?
AppSec PNW: Android and iOS Application Security with MobSFAjin Abraham
Mobile Security Framework - MobSF is a free and open source automated mobile application security testing environment designed to help security engineers, researchers, developers, and penetration testers to identify security vulnerabilities, malicious behaviours and privacy concerns in mobile applications using static and dynamic analysis. It supports all the popular mobile application binaries and source code formats built for Android and iOS devices. In addition to automated security assessment, it also offers an interactive testing environment to build and execute scenario based test/fuzz cases against the application.
This talk covers:
Using MobSF for static analysis of mobile applications.
Interactive dynamic security assessment of Android and iOS applications.
Solving Mobile app CTF challenges.
Reverse engineering and runtime analysis of Mobile malware.
How to shift left and integrate MobSF/mobsfscan SAST and DAST in your build pipeline.
Northern Engraving | Modern Metal Trim, Nameplates and Appliance PanelsNorthern Engraving
What began over 115 years ago as a supplier of precision gauges to the automotive industry has evolved into being an industry leader in the manufacture of product branding, automotive cockpit trim and decorative appliance trim. Value-added services include in-house Design, Engineering, Program Management, Test Lab and Tool Shops.
The Microsoft 365 Migration Tutorial For Beginner.pptxoperationspcvita
This presentation will help you understand the power of Microsoft 365. However, we have mentioned every productivity app included in Office 365. Additionally, we have suggested the migration situation related to Office 365 and how we can help you.
You can also read: https://www.systoolsgroup.com/updates/office-365-tenant-to-tenant-migration-step-by-step-complete-guide/
"Scaling RAG Applications to serve millions of users", Kevin GoedeckeFwdays
How we managed to grow and scale a RAG application from zero to thousands of users in 7 months. Lessons from technical challenges around managing high load for LLMs, RAGs and Vector databases.
2. What to expect from the session
• Why hybrid IT?
• Product overview of VMware Cloud on AWS
• Technical overview – review key enabling technologies
• Technical drilldown - how this thing works
• Illustrated use cases for an integrated VMware/AWS ecosystem
3. Revisiting the NIST Cloud deployment models…
Private cloud
The cloud infrastructure
is:
• operated solely for
an organization.
• It may be managed
by the organization
or a third party and…
• may exist on-
premises or off-
premises.
Community cloud
The cloud infrastructure
is:
• shared by several
organizations and
supports a specific
community that has
shared concerns
(e.g., mission,
security
requirements, policy,
and compliance
considerations).
• It may be managed
by the organizations
or a third party and…
• may exist on-
premises or off-
premises.
Public cloud
The cloud infrastructure
is:
• made available to
the general public or
a large industry
group and…
• is owned by an
organization selling
cloud services.
Hybrid cloud
The cloud infrastructure
is:
• a composition of two
or more clouds
(private, community,
or public) that remain
unique entities but
are bound together
by standardized or
proprietary
technology that
enables data and
application portability
(e.g., cloud bursting
for load balancing
between clouds).
The NIST Definition of Cloud Computing
Authors: Peter Mell and Tim Grance - Version 15, 10-7-09
https://www.nist.gov/sites/default/files/documents/itl/cloud/cloud-def-v15.pdf
4. What do customers really want for hybrid IT?
Run workloads
on-premises
Run workloads in
the cloud
Tight integration
between on-
premises and the
cloud
Without buying
new hardware
5. VMware Cloud on AWS removes these barriers and enables faster hybrid cloud adoption
Common challenges with hybrid cloud adoption
Incongruent
Networks
Operational
Inconsistency
Need to Learn
New Skillsets &
Tools
Multiple
Monitoring &
Control
Mechanisms
Multiple Virtual
Machine Formats
7. VMware Cloud on AWS: Overview
vRealize Suite, PowerCLI
VMware Cloud on AWS
AWS Global InfrastructureCustomer data center
Management
(vCenter Server)
vCenter Server
Single pane of glass and API across on-premises and cloud
Access to all AWS services
Amazon
EC2
Amazon
S3
Amazon
RDS
AWS Direct
Connect
AWS IAMAmazon
Redshift
…
…
…
…
AWS CloudFormation, CLI, SDK
AWS Global Infrastructure
Technical Preview
8. VMware Cloud on AWS: AWS view
VMware
operated,
supported, and
maintained
Gateway … Fully configured VMware software stack running
on state-of-the-art infrastructure provisioned on-
demand in minutes
Latest software
• VCSA, ESXi, NSX, VSAN, H5 client
Dynamic capacity
• DRS/HA compute cluster (Intel x86)
• VSAN storage cluster (SSD)
• NSX network virtualization (10 Gbps+)
Flexible topology
• Standalone cloud cluster
• Hybrid connectivity to on-premises
• Cloud-to-cloud connectivity
Overview
NSX
Manager
…
…
…
ESXi
ESXi
ESXi
…ESXi
…ESXi
…ESXi
VMware Cloud on AWS
Single tenant (dedicated) bare metal
Amazon EC2 hardware
vCenter
Server
Technical Preview
9. AWS Global Infrastructure
VMware Cloud on AWS: AWS integration
Access to all native AWS services
Amazon
EC2
Amazon
S3
Amazon
RDS
AWS Direct
Connect
IAMAWS IoT
…
…
…
…
VMware Cloud on AWS
Technical Preview
10. VMware Cloud on AWS: Ops and Support
The fully configured VMware Cloud software
stack will be provisioned, operated, and
maintained directly by VMware.
Overview
Provisioning
• Automated account creation and
environment provisioning by using the API
• Automated interconnection created between
VMware and AWS customer accounts
Operations
• Support provided by VMware directly
• AWS infrastructure (for VMC) support
managed by VMware
• Ongoing infrastructure monitoring
Maintenance
• Ongoing stack maintenance managed
directly by VMware
• Upgrade implementation and execution
Technical Preview
11. Common scenarios and use cases
There are multiple reasons and/or scenarios for why a VMware and/or AWS customer
would consider VMware Cloud on AWS.
Scenario 1:
Maintain and expand
ExpandMaintain
Geo expansion
Disaster recovery, backup, and
continuity of operations
Scenario 2:
Consolidate and migrate
MigrateConsolidate
Data center consolidation
Application migration
Scenario 3:
Workload flexibility
Prod, dev, test, lab, and training
Burst capacity
Flex as needed
Technical Preview
12. VMware Cloud on AWS: Account Structure
• VMware Cloud VPC account
- A new AWS solution account is created for each customer
- Is owned, operated, and paid directly by VMware
- Each solution account is single tenant for all ESXi hosts
- Solution account is linked to a VMware Master-Payor account
• AWS customer VPC account
- Is owned, operated, and paid directly by the customer
- VMware Cloud endpoints are automatically deployed into the customer VPC with
customer consent
- Has full access to VMware Cloud endpoints within the VPC
- Has full access to the entire catalog of native AWS services within the AWS Region of
deployment
Technical Preview
13. VMware Cloud on AWS: Access model
• VMC is delivered ‘As a Service’ with the following operational model:
- AWS manages the physical resources
- VMware manages the hypervisor and management components (includes monitoring,
patching, upgrades, etc.)
- Customer manages their VMs (and networks)
• Customer access is via vCenter and VMC portal with some restrictions
- No root ESXi access
- No vSphere Distributed Switch (VDS) configuration access
- No direct management of VM/NSX Edge access
Technical Preview
14. VMware Cloud on AWS: Simplified mode
• Auto-deploy and provision the VMC infrastructure
resources via predefined VMC Portal workflows
• Setup of initial networks and admin access granted
to vCenter
• Deploy a prescriptive network topology
• Establish pre-defined VPN connectivity
• Provide inbound access to workload VMs
• Control Firewall access to workload VMs
• Consume pre-created VMC network services
• Deploy workload VMs
• Attach workload VMs to networks
• Create new networks
• Manage IP addressing for workload VMs
vSphere (H5)
Web Client
VI Admin
Cloud
Networking
Admin
VMC Web Portal
Technical Preview
15. VMware Cloud on AWS: Advanced mode
• Provision network and security for Custom Data
Center(s)
• Define and establish VPN connectivity with on
premise location(s)
• Define Security Groups and Policies for workload
VMs
• Add, modify, and/or delete network topologies
• Advanced NSX use cases: Distributed firewall(s),
load balancing, routing, etc.
• Deploy workload VMs
• Attach workload VMs to networks created by
NSX admins
• Create new networks
• Manage IP addressing for workload VMs
vSphere (H5)
Web Client
and/or
vSphere API
VI Admin /
Cloud Admin
NSX Manager
via Full NSX UI
Networking
Admin
Technical Preview
17. Compute: vSphere on “bare-metal”
Compute
- 36 PCPUs (72 vCPUs)
- 512GB RAM
- 8 x 2TB NVMe local SSD
- Dedicated Host
vSphere Features
- vSphere HA
- vMotion
- DRS
- Elastic DRS
Storage
- ESXi boot-from-EBS
- 16TB NVMe-backed local
raw storage
Networking
- 10 Gbps+
- VMware Cloud Private
Endpoints
vSphere
Amazon EC2
Based on the I3 Instance family
Technical Preview
18. • Industry leading private
storage virtualization
platform
• Flash SSD on bare-metal
hosts
• Fully featured
ü Deduplication
ü Compression
ü Erasure coding
Storage Capabilities
Storage: VSAN
Disk Group 1 Disk Group 2
Write buffer
Capacity
Tier
ESXi-01 VSAN
VSAN
Technical Preview
21. Existing customer environment
Customer Data Center
vSphere Environment
Non-vSphere Environment
ESXi
Deploy a standalone NSX Edge appliance into
your existing vSphere environment to extend
the VMware Cloud on AWS environment to your
premises.
VMware
Endpoints
Technical Preview
22. Provision VMware Cloud VPC
Customer Data Center
vSphere Environment
Non-vSphere Environment
ESXi
ESXi
Amazon EC2
The full VMware Cloud on AWS
stack will be auto-provisioned
and configured at launch into a
single tenant AWS account
(owned and operated by
VMware).
VMware
Endpoints
VMware Cloud VPC
Technical Preview
23. Provision or designate a target customer-owned VPC
Customer Data Center
Customer VPC
VPC subnet VPC subnet
vSphere Environment
VMware
Endpoints
Non-vSphere Environment
ESXi
VMware Cloud VPC
ESXi
Amazon EC2
A customer-owned AWS account
is created and/or assigned to
interoperate with the VMware
Cloud on AWS VPC.
Technical Preview
24. Connect data center to customer-owned VPC
Customer Data Center
vSphere Environment
Non-vSphere Environment
ESXi
Customer VPC
VPC subnet VPC subnet
AWS Direct
Connect
Private
VIF
VMware Cloud VPC
ESXi
Amazon EC2
Private connectivity is
established from the customer
data center to the customer–
owned VPC (multiple options)
VMware
Endpoints
Technical Preview
25. Connect data center to VMware-owned VPC
Customer Data Center
vSphere Environment
Non-vSphere Environment
ESXi
Customer VPC
VPC subnet VPC subnet
AWS Direct
Connect
Private
VIF
VMware Cloud VPC
ESXi
Amazon EC2
Create a secondary transit path for a separate
VLAN (and Hosted Private VIFs) from the
customer data center to the VMware Cloud on
AWS VPC for vMotion and cluster
management traffic
VMware
Endpoints
vMotion and Cluster Management
Hosted
Private
VIF(s)
Technical Preview
26. Link VMware Cloud VPC and customer VPC
Customer VPC
Customer Data Center
AWS Direct
Connect
VMware Cloud
Endpoints
VPC subnet VPC subnet
VPC subnet
vSphere Environment
Non-vSphere Environment
ESXi
VMware Cloud VPC
ESXi
Amazon EC2
Link the VMware Cloud
VPC and the Customer
VPC using private VPC
endpoints
VMware
Endpoints
vMotion and Cluster Management
Hosted
Private
VIF(s)
Private
VIF
Technical Preview
27. Deploy and consume native AWS services
Customer VPC VMware Cloud VPC
Customer Data Center
AWS Direct
Connect
VMware Cloud
Endpoints
VPC subnet VPC subnet
VPC subnet
Private Managed
AWS ServicesCustomer Instances
vSphere Environment
Non-vSphere Environment
ESXi
ESXi
Amazon EC2
Internet
Public VIF
Regional AWS Services
AWS
Lambda
Amazon
S3
Amazon
CloudFront
Etc…
VMware
Endpoints
vMotion and Cluster Management
Hosted
Private
VIF(s)
Private
VIF
Technical Preview
29. Operating in the hybrid ecosystem: Examples
• Use X-vMotion to migrate a virtual machine from a customer data
center to VMware Cloud on AWS
• Copy an object from a virtual machine in VMware Cloud to an
Amazon S3 bucket
• Connect a virtual machine in VMware Cloud to an Amazon Redshift
cluster
• Connect web server hosted on a virtual machine in VMware Cloud
using public Internet access
Technical Preview
30. Operating in the hybrid ecosystem: X-vMotion
Customer VPC
Customer Data Center
AWS Direct
Connect
VMware Cloud
Endpoints
VPC subnet VPC subnet
VPC subnet
Private Managed
AWS ServicesCustomer Instances
vSphere Environment
Non-vSphere Environment
ESXi
Internet
Private
VIF
Public VIF
VMware Cloud VPC
ESXi
Amazon EC2
vMotion from site to VMware Cloud
Regional AWS Services
AWS
Lambda
Amazon
S3
Amazon
CloudFront
Etc…
VMware
Endpoints
vMotion and Cluster Management
Hosted
Private
VIF(s)
Technical Preview
31. Operating in the hybrid ecosystem: Amazon S3
Customer VPC
Customer Data Center
AWS Direct
Connect
VMware Cloud
Endpoints
VPC subnet VPC subnet
VPC subnet
Private Managed
AWS ServicesCustomer Instances
vSphere Environment
Non-vSphere Environment
ESXi
Internet
Private
VIF
Public VIF
VMware Cloud VPC
ESXi
Amazon EC2
Copy an
object from
virtual
machine to
S3Regional AWS Services
AWS
Lambda
Amazon
S3
Amazon
CloudFront
Etc…
VMware
Endpoints
vMotion and Cluster Management
Hosted
Private
VIF(s)
Technical Preview
32. Operating in the hybrid ecosystem: Amazon Redshift
Customer VPC
Customer Data Center
AWS Direct
Connect
VMware Cloud
Endpoints
VPC subnet VPC subnet
VPC subnet
Private Managed
AWS ServicesCustomer Instances
vSphere Environment
Non-vSphere Environment
ESXi
Internet
Private
VIF
Public VIF
VMware Cloud VPC
ESXi
Amazon EC2
Connect
virtual
machine to
Amazon
RedshiftRegional AWS Services
AWS
Lambda
Amazon
S3
CloudFront Etc…
VMware
Endpoints
vMotion and Cluster Management
Hosted
Private
VIF(s)
Technical Preview
33. Operating in the hybrid ecosystem: VM internet access
Customer VPC
Customer Data Center
AWS Direct
Connect
VMware Cloud
Endpoints
VPC subnet VPC subnet
VPC subnet
Private Managed
AWS ServicesCustomer Instances
vSphere Environment
Non-vSphere Environment
ESXi
Internet
Private
VIF
Public VIF
VMware Cloud VPC
ESXi
Amazon EC2
Connect to a
virtual
machine
from the
Internet
Assign
Elastic IP
Configure
NAT
Regional AWS Services
AWS
Lambda
Amazon
S3
Amazon
CloudFront
Etc…
VMware
Endpoints
vMotion and Cluster Management
Hosted
Private
VIF(s)
Technical Preview
34. Security and governance
• VMware Cloud transit endpoints rest within the customer-owned VPC
• Customers maintain access security control of the transit path using
standard AWS security practices (security groups, NACL, flow logs, and so
on)
• vMotion traffic is encrypted (new in 6.5)
• VM-level encryption (new in 6.5)
• Audit-quality logging (new in 6.5)
• Fully managed offering delivered by VMware
• VMware manages the infrastructure patching and upgrades of the VMware
Cloud environment
Technical Preview