O'Reilly logo

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

VMware Cross-Cloud Architecture

Book Description

Enhance your virtualization skills by mastering storage and network virtualization with automation across different Clouds

About This Book

  • Migrate and build your applications in Hybrid Cloud with VMware Cross Cloud components and services
  • Gain in-depth configuration insights of VMware Cross Cloud architecture
  • Learn to migrate applications from VMware to AWS and IBM Cloud

Who This Book Is For

This book is for administrators, Cloud architects and network engineers who want to globalize their infrastructure using VMware and AWS services. An initial setup of workloads and data center is beneficial.

What You Will Learn

  • Install and configure the Cloud foundation with Cross-Cloud services
  • Configure vSphere high availability with the vCenter redundancy setup
  • Architect and configure VMware with AWS Cloud
  • Deploy VMware components in IBM Soft Layer
  • Extend your DR setup with VMware to consume DRaaS
  • Design and configure software-defined networking
  • Implement compliance regulations to fix violations

In Detail

Over the past two decades, VMware vSphere has been known as the most trusted and reliable virtualization platform. VMware Cross-Cloud Architecture shows you how to design and configure Cross Cloud Architecture by using VMware Cloud Foundation and vRealize Suite with various use cases across private, public, and hybrid Cloud. This book takes you through everything from a basic understanding of virtualization to advanced aspects of storage and network virtualization, clustering, automation, and management.

This book will be your guide to designing all aspects of Cloud.

We start with the challenges faced by a traditional data center, define problem statements for you, and then brief you on respective solutions. Moving on, all kinds of virtualization and Cloud offerings from AWS and IBM Soft Layer are introduced and discussed in detail. Then, you'll learn how to design IT infrastructures for new and existing applications with a combination of Cloud Foundation, vRealize Suite, and vSphere enabled with VSAN and NSX. Furthermore, you'll learn how to design and configure high availability, disaster recovery, and apply an appropriate compliance matrix.

Toward the end of the book, you will learn how to calculate the TCO/ROI, along with the VMware products packaging and licensing in detail.

Style and approach

This book follows a step-by-step, practical approach which will help you to have a better understanding of the cloud technology and the steps required to quickly reap its benefits while at the same time lowering your IT implementation risk and cost.

Downloading the example code for this book You can download the example code files for all Packt books you have purchased from your account at http://www.PacktPub.com. If you purchased this book elsewhere, you can visit http://www.PacktPub.com/support and register to have the files e-mailed directly to you.

Table of Contents

  1. Title Page
  2. Copyright and Credits
    1. VMware Cross-Cloud Architecture
  3. Packt Upsell
    1. Why subscribe?
    2. PacktPub.com
  4. Contributors
    1. About the author
    2. About the reviewer
    3. Packt is searching for authors like you
  5. Preface
    1. Who this book is for
    2. What this book covers
    3. To get the most out of this book
      1. Download the color images
      2. Conventions used
    4. Get in touch
      1. Reviews
  6. The Freedom with Cross-Cloud Architecture
    1. Scaling your business with Cross-Cloud Architecture
    2. Top IT drivers for integrating public clouds
    3. Cloud challenges and solutions
      1. Challenge 1 – connection and security with full compliance and control
      2. Challenge 2 – managing/integrating across clouds
    4. VMware Cross-Cloud Architecture
    5. Secure connectivity across clouds
    6. The backbone of a private cloud
    7. Extending services to public clouds
      1. Multi-cloud/mixed cloud use cases
    8. Cloud solutions supporting business objectives
      1. Modernizing your data center
      2. VMware hybrid clouds
    9. VMware – a partner for every cloud
      1. VMware vCloud Air
      2. AWS hybrid cloud
      3. IBM Cloud for VMware solutions
      4. Solution features
        1. Reference architecture
        2. IBM Cloud for VMware solutions
        3. Conceptual view
        4. Logical view
        5. Deployment view
    10. Summary
  7. Implementing Service Architecture for Cross-Cloud Services
    1. Architecture overview
      1. Seamless integration of software-defined services
      2. Automating IT infrastructure
      3. Policy-based resource containers
      4. Automating manual and repetitive tasks
      5. Unified Management Console
      6. Scalability and performance
    2. Workload domains
      1. Management workload domain
      2. Workload domains
      3. VDI workload domains
    3. Hardware architecture – rack architecture
      1. Rack hardware
      2. Rack sizing
      3. Rack wiring
    4. Storage architecture (software-defined storage)
      1. vSAN storage policies
    5. Network architecture (network virtualization or software-defined network)
      1. Logical network design
    6. VMware Cloud Foundation software design
      1. SDDC Manager
        1. Physical Resource Manager
        2. Logical Resource Manager
          1. LRM Controller
          2. LRM logical resources and LRM services
        3. Hardware Management Service (HMS)
        4. Lifecycle management
          1. vSphere products
          2. NSX
          3. vRealize products
          4. vRealize Operations Manager
          5. vRealize Log Insight
          6. vRealize Automation, VMware vRealize Business, and VMware vRealize Orchestrator
    7. Summary
  8. Transforming a Data Center from Silos to Software-Defined Services
    1. Need for VMware in data center transformation
    2. Business requirements of customers
    3. Interoperability and integration
      1. Logical design
        1. Orchestrator topology choice
        2. Orchestrator server mode choice
        3. vRealize Orchestrator SDDC cluster choice
    4. Integrated architecture design model for private and public clouds
      1. Private cloud integrated architecture design with network and security
    5. Integrated architecture design for virtual machines and applications
      1. Consumption model of network services components
      2. Components and processes for logical switching
        1. vRealize Automation with logical switching consumption overview
    6. Introduction to DevOps and its benefits
      1. Building, deploying, and running services in an innovative way
    7. SDDC object life cycle
      1. vRealize code stream functionality
      2. Automating application release without manual intervention
      3. Advantages of DevOps
    8. Summary
  9. Designing a Mixed Cloud Model with VMware
    1. Core elements of VMware's Cross-Cloud Architecture
      1. Cross-Cloud Services
      2. Choosing suitable applications to move in the cloud
    2. VMware Cloud on AWS
      1. Components/technologies used in VMware-AWS partnerships
      2. Migrating your existing applications to AWS
      3. Application migration phases with supporting tools
        1. Migration assessment
        2. Schema conversion
        3. Conversion of embedded SQL and application code
        4. Data migration
        5. Testing converted code
        6. Data replication
        7. Deployment to AWS and Go-Live
          1. Post-deployment monitoring
    3. Managing AWS with vCenter
      1. Managing administrators on the management portal
        1. Steps for adding an administrator
        2. Steps for removing an administrator
      2. VPCs and subnets management
        1. Steps for creating a VPC and subnets
        2. Steps for deleting a VPC
      3. Security groups management
        1. Steps for creating a security group
        2. Steps for deleting a security group
        3. Environment management in AWS
        4. Steps for creating an environment
        5. Steps for deleting an environment
        6. User permissions management
    4. VM migration to Amazon EC2 with AWS Connector for vCenter
      1. The VM import authorization process
      2. Virtual machine migration process
      3. Backing up the instance
      4. Migrated EC2 instance export process
      5. Troubleshooting migration
        1. Validation of the certificates
    5. VMware Cross-Cloud Model with IBM Cloud
      1. Prerequisites
      2. Components/services used in this architecture
      3. VMware Cloud services architecture on SoftLayer
        1. Physical infrastructure
      4. Physical operational model
        1. Logical operational model
        2. Cluster (compute, storage, and network) architecture
          1. Compute clusters
          2. Management cluster
          3. Edge cluster
          4. Storage cluster
        3. Physical network provided by SoftLayer
          1. Simplicity
          2. Scalability
          3. High bandwidth
          4. Fault-tolerant transport
        4. Physical storage
          1. vSAN
          2. Network File System (NFS)
        5. Storage virtualization
          1. VMware SDS is vSAN
          2. Virtual Machine Disks (VMDK)
        6. Virtual infrastructure
          1. Compute virtualization
          2. Provisioning
          3. Resource scheduling
          4. Availability
          5. Performance
        7. Network virtualization
          1. Network virtualization components
          2. Distributed virtual switches
          3. Network I/O control details
          4. Network virtualization services
        8. Infrastructure management
          1. Compute management
          2. Storage management
          3. Network management
        9. Common services
          1. Identity and access services
          2. DNS
          3. NTP services
          4. Simple Mail Transfer Protocol (SMTP) services
          5. Certificate Authority (CA) services
        10. Cloud management services
          1. Service catalogue
          2. Self-service portal
          3. Infrastructure and process orchestration
          4. Software orchestration
        11. Operational services
          1. Backup and restore
          2. Disaster recovery
          3. Monitoring
          4. Log consolidation and analysis
          5. Patching
        12. Business services
          1. Business management
          2. IT financials
          3. IT benchmarking
    6. Cloud-based approaches for Disaster Recovery as a Service (DRaaS) solutions
    7. Summary
  10. Implementing Service Redundancy Across All Layers
    1. vSphere virtualization software
      1. VMware vCenter Management Server
      2. vCenter main components
      3. Environment preparation
      4. Certificate for the vSphere Web Client and the Log Browser
      5. Verify that the environment is working properly
      6. Comparison of the vCenter deployment topologies
      7. vSphere HA/redundancy features
      8. vSphere HA
        1. vSphere vMotion details
          1. EVC feature details
          2. vSphere DRS feature details
          3. VMware vSphere Distributed Power Management
          4. Resource pools feature details
      9. vSphere Fault Tolerance
        1. Relevance of vSphere Fault Tolerance for vCenter HA
      10. VM Component Protection (VMCP)
      11. vSphere Metro Storage Cluster (vMSC)
      12. vSphere Replication
      13. vCenter Watchdog
      14. vCenter database clustering
      15. Memory reservations
        1. Maximizing memory performance
        2. CPU and memory shares, reservations, and limits
        3. Virtual machine disks
          1. Multiple virtual disks
          2. Virtual disk location
          3. Swap file location
        4. Virtual SCSI HBA type
        5. Virtual NICs
        6. Virtual GPUs
        7. VMware vSphere Flash Read Cache
        8. Guest operating system considerations
        9. VMware Tools
        10. Templates
          1. Templates and multiple sites
        11. Snapshot management
        12. Virtual machine security considerations
      16. Encryption and security certificates
      17. Monitoring and management design practices
      18. Time synchronization
      19. Syslog logging
      20. Performance monitoring
        1. Virtual machine backup and restore
      21. VM-to-VM affinity rules
      22. Backup and recovery - embedded deployment model
        1. Backup and recovery - external deployment model
      23. Migration architecture design
        1. Migration process flow
      24. Migration scheduling
      25. Migration execution
      26. Migration validation
      27. Customer business objectives
      28. Migrated virtual machine framework
        1. Responsibility matrix
        2. Design risks
      29. IaaS migration portal logical design
      30. VMware CMP physical design
        1. VMware Converter Linux migration process
        2. VMware Converter agent
        3.  Network/security changes
        4. Port requirements
        5. Operational readiness for migration
      31. Pre-migration activities
      32. P2V migration options
        1. Hot clone - full outage
        2. Hot clone – post-synchronisation
      33. V2V migration options
        1. V2V conversion
        2. V2V requirements
        3. CMP migration process
      34. Timing estimate (P2V/V2V timing)
      35. Post-migration activities
    2. Summary
  11. Designing Software-Defined Storage Services
    1. Software-defined storage overview
      1. Purpose and applicability to the SDDC solution
      2. Business requirements
      3. Requirements and dependencies
    2. Architecture overview
      1. Conceptual design
      2. Logical design
      3. Virtual SAN (vSAN)
        1. vSAN design workflow
        2. Design parameters/considerations for vSAN
        3. Hardware considerations
        4. Comparing hybrid and all-flash designs
        5. SSDs
        6. Magnetic hard disk drives
        7. I/O controllers
        8. Host memory requirements
        9. Host CPU overhead
        10. Hardware design decisions
      4. Network design
        1. vSAN network port group
        2. Network speed requirements
        3. Type of virtual switch
        4. Jumbo frames
        5. VLANs
        6. Multicast requirements
        7. Networking failover, load balancing, and teaming considerations
        8. Network design decisions
      5. vSAN cluster and datastore design
        1. vSAN disk format
        2. Disk groups
        3. Failures to tolerate policy
        4. Fault domains
        5. Hosts per cluster
        6. Deduplication, compression, and RAID 5/RAID 6 erasure coding
        7. Datastore sizing
          1. Virtual SAN TCO and Sizing Calculator
        8. vSAN cluster and datastore design decisions
      6. vSAN design assumptions
        1. vSAN policy design
      7. Application demand assessment
      8. Policy design decisions
      9. vSAN monitoring design
        1. General monitoring practices
        2. Virtual SAN Health Check Plug-in
        3. Virtual SAN Observer
      10. vRealize Operations Manager monitoring
      11. Monitoring design
      12. Scalability limits of vSAN
    3. Product documentation and tools
      1. VMware product documentation
      2. Supporting documentation
      3. Tools
    4. Summary
  12. VMware Cloud Assess, Design, and Deploy Services
    1. VMware Cloud (SDDC) assessment, design, and deploy service solution overview
      1. Virtualization conceptual design
    2. Logical design
      1. Virtualization logical design
      2. Cloud tenant design
        1. Comparison of single tenant and multi-tenant deployments
          1. Single tenant deployment
          2. Multitenant deployment
          3. Cloud automation IaaS design
      3. vSphere infrastructure
      4. Infrastructure source endpoints
      5. vRealize Operations Manager
        1. Application architecture overview
      6. vRealize Infrastructure Navigator
        1. Application architecture overview
        2. Security
          1. Authentication
          2. Communication
        3. Licensing
      7. vRealize Hyperic
        1. Application architecture overview
      8. vRealize Log Insight
        1. Application architecture overview
      9. Deployment architecture
        1. Scalability
      10. Security and authentication
        1. Communication
    3. Integration with different cloud components
      1. vSphere integration
      2. vRealize Operations Manager integration
    4. VMware vRealize Business Manager
      1. Conceptual design
      2. vRealize Business Standard architecture
        1. Data collection service
        2. Data Transformation Service
        3. FactsRepo inventory service
        4. Server
        5. Reference database
        6. External interfaces
        7. vRealize Business Standard appliance role
        8. Supported product integrations
          1. VMware vSphere
          2. VMware vCloud Director
          3. VMware vRealize Business Advanced and Enterprise
          4. VMware vRealize Operations Manager
          5. VMware vRealize Automation
        9. Integrating vRealize Business with public clouds
          1. Solution logical design
          2. Service orientation principle
    5. VMware vRealize Operations Manager
      1. Business scenario
      2. Interoperability requirements
      3. Integration with vRealize Operations Manager
    6. Integration between vRealize Operations Manager and vRealize Automation
      1. Business objective
      2. Integration requirements
        1. Credentials
        2. Firewall rules
        3. Specific configuration with specific objects to be created and consumed
    7. Application release automation with Zero Touch Deployment
    8. Summary
  13. Transforming Your Network Architecture
    1. Assumptions, risks, constraints, and use cases
    2. Design guidelines
      1. Networking and distributed firewalling best practices
      2. Network virtualization
      3. NSX for vSphere components
        1. NSX for vSphere platform
        2. NSX Manager
        3. Distributed firewall
        4. Service composer
        5. NSX for vSphere system requirements
    3. Micro-segmentation conceptual design
    4. Network virtualization logical design
      1. NSX for vSphere component placement
      2. High Availability of NSX for vSphere components
      3. Scalability of NSX for vSphere Components
      4. Firewall logical design
        1. Distributed firewall
        2. Security groups and policies
      5. NSX Manager design
    5. Network virtualization platform management
      1. Consumption layer
      2. NSX for vSphere logging environment
        1. NSX for vSphere management layer
        2. NSX for vSphere deployed components
          1. Distributed firewall logs
          2. Distributed firewall monitoring
      3. Backup and recovery – backing up the NSX Manager data
        1. Backing up the vSphere Distributed Switch
      4. Monitoring and troubleshooting
        1. Flow monitoring
        2. Activity monitoring
        3. vSphere Distributed Switch monitoring
        4. Port mirroring
        5. vSphere Distributed Switch alerts
        6. vSphere Distributed Switch network health check
        7. SNMP
        8. NetFlow/Internet Protocol Flow Information Export (IPFIX)
      5. Performance and scalability
        1. Scalability considerations
      6. VXLAN
        1. MTU on the transport network
        2. NSX Controller
        3. IGMP usage
          1. Hybrid mode
      7. Brownfield migration
        1. Migration inside the same hardware infrastructure
        2. Migration to a new hardware infrastructure
    6. NSX for vSphere port and protocol requirements
    7. Reference documents
    8. Summary
  14. Dealing with Data Sovereignty
    1. Security
      1. Securing ESXi hosts
        1. Lockdown mode
      2. Securing vCenter Server
    2. Encryption and security certificates
      1. Virtual network security considerations
        1. Network firewalls and vCenter Server
        2. Securing virtual machines with vLANs
        3. Securing virtual switch ports
      2. Securing iSCSI storage connectivity
      3. Securing NFS storage connectivity
      4. Virtual machine security considerations
        1. Security design decisions
      5. Micro-segmentation – how to define security on east-west traffic
      6. PAN security – integrating NSX with Palo Alto
      7. Application modeling for micro-segmentation – protecting your apps from east-west traffic in a data center
    3. VMware vRealize Configuration Manager architecture design
      1. Backup and restore
      2. General use cases of customers
      3. vRealize Configuration Manager logical architecture overview
      4. VCM platform
    4. Summary
  15. Designing Effective Compliance Regulations to Fix Violations
    1. Best practices to follow for compliance regulations
      1. Data collection
      2. Data analysis
      3. Report generation and data integration
      4. Standard use cases
        1. Network virtualization
        2. NSX Edge Gateway Firewall and Trust Groups
    2. VMware vCloud Hybrid Manager
      1. Phase 1 – Planning
      2. Phase 2 – Kickoff
      3. Phase 3 – Solution overview
      4. Phase 4 – Assess
      5. Phase 5 – Design
      6. Conceptual design
      7. Logical design
      8. VMware vRealize Configuration Manager platform
      9. vRealize Configuration Manager guest OS compliance
    3. Summary
  16. Lower TCO and Greater ROI with Maximum Agility
    1. Operational readiness for the cloud
      1. Phase 1 – Cost Center
      2. Phase 2 – Service Provider
      3. Phase 3 – Business Partner
    2. Contrasting approaches to building a private cloud
    3. VMware Cloud Foundation
      1. VMware Cloud Foundation infrastructure management
    4. A traditional 3-tier architecture-based private cloud
    5. Cost comparison methodology and approach
    6. Hardware and software cost analysis
      1. Cost comparison results - upfront costs for hardware, software, and support
    7. Comparing the key technical capabilities and business benefits
      1. Integrated provisioning and life-cycle management
      2. Support experience
    8. Comparison of the key technical and business value attributes
    9. OpEx costs savings analysis
      1. Virtualization First Policy
    10. Summary
  17. VMware Pricing and Licensing for a Cross-Cloud Model
    1. Transforming a data center with Cloud Foundation
    2. VMware pricing and licensing in AWS Cloud
    3. Summary
  18. The Economics of Cross-Cloud Services
    1. Total cost of ownership with cost categories
    2. Summary
  19. Other Books You May Enjoy
    1. Leave a review - let other readers know what you think