50
Directions in Virtualization: From the Hypervisor to the Virtual Datacentre Operating System Liam Farrell Senior Systems Engineer [email protected]
| Date post: | 01-Oct-2015 |
| Category: |
Documents |
| Upload: | karthikrajdg |
| View: | 229 times |
| Download: | 0 times |
Directions in Virtualization: From the Hypervisor to theVirtual Datacentre Operating SystemLiam FarrellSenior Systems Engineer [email protected]
*
VMware: Who We Are Founded 1998, IPO August 2007100,000+ customers worldwideAll sizes and industries; 100% of Fortune 100 Vision: Transform computing through virtualizationProducts: reliable, award-winning, most-deployedHeadquarters in Palo Alto, CA, with 40+ offices worldwideWorlds leading provider of virtualization solutions
*
*Source: IDC and VMware TAM programThe VMware Effect: Customer Breakthroughs60% Reduction in Cost23x Gain in Productivity
*
The Driving Forces in our marketInternal CloudScale Outside the FirewallPeople & Info-centricDesktop Dilemma
*
The Driving ForcesVirtual DatacentreOSvCloud InitiativevClient InitiativeThe Driving Forces in our market
*
Virtual Datacenter OSvCloud InitiativevClient InitiativeVirtual DatacentreOS
*
Challenges with Traditional x86 Operating SystemsApplication ChallengesComplexSilo-edInefficientInfrastructure ChallengesApps are tightly bound to platform and H/WCan be hard to secure or change
*
Key Industry Trends
*
What We Believe Customers Want AvailabilityScalabilitySecurity
*
What Customers Have Been Waiting For
*
What Customers Have Been Waiting For
*
New Software Platform Required
The virtual datacentre OS from VMwarevCloudvCenterOn-premise InfrastructureVDC-OS is to the datacenter what Windows and Linux are to a single server
The virtual datacenter OS from VMwareOff-premise CloudvCenterOn-premise Infrastructure
New Application vServices for the best place to run all applications CURRENTNEWVMware Fault Tolerance
vCenter Data Recovery
VMware VMsafe
IBM, McAfee, Checkpoint, Radware announce VMsafe productsHot add of virtual CPU, memory and devicesVery large virtual machines with 8-virtual CPUs and 256 GB of RAMHA, VMotion, Storage VMotion, NIC/HBA teaming provide resiliency to downtime
ESXi 32 MB of code, locked down interfaces, no general purpose OS dependence
DRS shares and reservations allow apps to shrink and grow based on priority
*
VMware Solutions Maximize UptimePerformancePlanned DowntimeUnplanned DowntimeVirtual MachinesServerStorageInterconnectSite Recovery Manager
*
New Solutions for Reduced DowntimeServerStorageZero downtime, zero data loss continuous availabilityFault ToleranceIntegrated backup and recovery applianceData Recovery
*
XXZero downtime, zero data lossNo complex clustering or specialized hardware requiredSingle common mechanism for all applications and OS-esSingle identical VMs running in lockstep on separate hostsWorks with any ApplicationIntegrated with VMware HA/DRSVMware Fault ToleranceFTHAHA2009
*
Hardware Failure ToleranceUNPROTECTEDApplication CoverageAUTOMATEDRESTARTCONTINUOUS0%10%100%with VMware HATransforming Availability Service Levels
*
VirtualCenter
VirtualCenter
Copyright 2005 VMware, Inc. All rights reserved.vCenter Data Recovery
Copyright 2005 VMware, Inc. All rights reserved.Agent-less, disk-based backup and recovery of your VMs VM or file level restoreIncremental backups and data de-dupe to save disk spaceQuick, simple and complete data protection for your VMs Centralized Management through VirtualCenter Cost Effective Storage Management 20091. Backup2. RestoreVM goes downSelect VM images/files to recoverRestoreVM running in secondsSchedule backups via VCSnapshots takenData de-duped and storedDe-duplicatedStorage
*
The Hypervisor is the FoundationPartitions a server into virtual machinesReduces hardware, power, and cooling with the performance and features of ESX
Plug-and-PlayMinimal configuration. Run VMs in minutesIntegrated in server hardware
OS-Independent, thin, 32MB architectureUnparalleled security and reliabilityESXi is the next generation of the market-leading ESX hypervisorVirtual Machines
*
VMware VMsafeAPI that enables protection of VMs by inspection of virtual components in conjunction with hypervisor Isolation of protection engine from malwareBroad ranging coverage of virtual machine CPU, memory, storage and network
*
Ecosystem Enablement with VMware VMsafe2009Multi-function Security ApplianceSecurity VMvNetwork Distributed SwitchSecurity VMIntegrated, more effective security solutions within the virtual infrastructure
Agent-less deployment of partner security servicesSingle security VM for multiple security services AV, Firewall, IPSSecurity policy and state moves with virtual machine
*
Scale Out Applications for Assured QoSZero downtime scale out of virtual machinesScalable virtual machinesHot add ofCPUMemoryPCIe devices2009
*
New Application vServices for the best place to run all applications CURRENTNEWVMware Fault Tolerance
vCenter Data Recovery
VMware VMsafe
IBM, McAfee, Checkpoint, Radware announce VMsafe productsHot add of virtual CPU, memory and devicesVery large virtual machines with 8-virtual CPUs and 256 GB of RAMHA, VMotion, Storage VMotion, NIC/HBA teaming provide resiliency to downtime
ESXi 32 MB of code, locked down interfaces, no general purpose OS dependence
DRS shares and reservations allow apps to shrink and grow based on priority
The virtual datacenter OS from VMwareOff-premise CloudvCenterOn-premise Infrastructure
Infrastructure vServices and Cloud vServicesvStorage Thin Provisioning and Linked clones
vNetwork Distributed SwitchThird party virtual switchesCPU/Memory optimizationDRSVMware vCloudNetwork VMotionVMDirectPath
Paravirt SCSIvStorage VMFSvNetwork Offload technologiesVMotion Storage VMotion
CURRENTNEWLowest TCO through maximum efficiency
*
2009StorageNetworkingVirtual MachinesCPU Memory Highest Single Server Resource EfficiencyVirtual hardware scale out Virtual hardware scale out
*
% of ApplicationsApplications Performance RequirementsIOPSNetworkMemoryCPU95% of applications< 100 at peak < 300 KB/s < 4 MB at peak1 to 2 CPUs1. Source: VMware Capacity Planner assessmentsVery Large VMs, Powerful Performance
*
Aggregated view of virtual networkingDatacenter level networking (versus host level)Historical statistics follow the VMA unified infrastructure for networking services (monitoring, filtering, mgmt via PVLANs)Simplified setup and change; seamless addition of capacityEasy troubleshooting, monitoring and debuggingEnables 3rd party development2009vNetwork Distributed Switch
*
Enterprise networking vendors can provide proprietary networking features in a VMware environmentEnables networking solutions to monitor, control and manage virtual networksNetworking/security solutions can understand/ be aware of mobile, dynamic virtual infrastructureSimplicity and transparency for network administratorsUnified management framework for physical and virtual networksEcosystem Enablement2009
*
vStorage Technologies and InterfacesVMware Infrastructure virtual datacenter OS from VMwareVMFSLinked ClonesThin ProvisioningStorage VMotionStorage PartnersStorage operationsStorage managementStorage Virtual AppliancesvStorage APIs
*
Significantly improve storage utilizationEliminate need to over-provision virtual disksReduce storage costs by up to 50%Virtual machine disks consume only the amount of physical space in useVirtual machine sees full logical disk size at all timesFull reporting and alerting on allocation and consumptionvStorage Thin Provisioning Physical StorageVirtual Disks10GB20GB40GB100GB20GB40GBESX30GB70GB
*
vStorage linked clones Multiple virtual machines share common base diskEach virtual machine has own disk that stores its writes to diskPatches applies to base disk are seen by all linked clonesReduce storage costs for Virtual Desktop Infrastructure by up to 90%Improve storage utilizationSimplify patch processBase Disk
*
Delivers storage capabilities as virtual appliancesValidated by VMware Ready Virtual Appliance certification programvStorage Virtual Appliances Simplify deployment and administrationReduce obstacles to delivering full virtualization experienceEasy transition to hardware-based functionality as environment grows
*
vStorage APIs Provide storage management tools with visibility to virtual machines use of storageLeverage array capabilities at per-VM levelAPIs for storage multipathing, backup, deployment, de-dupe, ..Simplify storage management for virtual environmentVWware InfrastructurePartner Storage and Management
*
Infrastructure vServices and Cloud vServicesvStorage Thin Provisioning and Linked clones
vNetwork Distributed SwitchThird party virtual switchesCPU/Memory optimizationDRSVMware vCloudNetwork VMotionVMDirectPath
Paravirt SCSIvStorage VMFSvNetwork Offload technologiesVMotion Storage VMotion
CURRENTNEWLowest TCO through maximum efficiency
*
vApp New Model for Describing and Deploying ApplicationsAvailability = 99.99%
Security = High
Performance = 500 msecSLA DefinitionsVMware Infrastructure -> virtual datacenter OSApplication vServicesScalabilitySecurityAvailabilityAllows management of multi-tier applications as a single entity Utilizes industry standard OVF to provide instructions on how to deployTemplates, Clone and other operations execute at the vService levelSimpler, application centric view of managementEasier portability of applicationsApplications can now be written to monitor and scale themselves
*
The virtual datacenter OS from VMwareOff-premise CloudvCenterOn-premise Infrastructure
*
Proactive ManagementVirtual DataCentre OS Management Platform: vCentervCenter
*
Multi-VC MonitorView combined set of hosts and VMs through filters such as objects with pending alarmsSummary information for each host, VM, datacenter, etc. Launch VI Client in context Federated VirtualCenterInventory and core configuration data available globally via LDAP backboneStandard VI Client can access inventory across entire environment Hosts can be re-mastered to alternate nodes with no loss of identity if one VC Server failsReplicated inventory and configuration dataManaging with multiple VC Servers
*
Non-Virtualized End-to-End Integrated Management
*
Simple, Proactive Management Whats NewQuality of Service Management for ApplicationsvCenter AppSpeed: real-time performance monitoring and remediation guarantee service levelsProactive Management of Virtual InfrastructurevCenter Orchestrator automates repetitive IT processes with a robust workflow enginevCenter CapacityIQ provides proactive capacity planning for VMs, clusters and entire VI environmentvCenter Chargeback automates chargeback modeling for greater visibility and control of IT costsvCenter ConfigControl automates discovery and tracking of configuration items for better visibility, compliance and remediationHost Profiles simplify setup and ensure standardization
*
Policies (SLA)Quality of Service99.9% UptimeFault ProtectionEncryption EnabledMonitor and Control QoS with vCenter AppSpeedMonitor application performance from end-user perspectiveCollect and correlate across tiers and in VIAutomated SLA managementEnables proactive detection of end user performance issuesIntegration with VI enables root cause and remediation
*
VMware Ready Management SolutionsVMware ReadyvCentervCenter ExtensibilityvCenter foundation for Application Management & Infrastructure Management
vCenter Extensibility APIs and UI plug-in architecture to enable 3rd party integration
VMware Ready Management Solutions
*
virtual datacenter OS from VMwareOff-premise CloudvCenterOn-premise Infrastructure
*
vCenter: An Extensible Management PlatformApplication ManagementInfrastructure Management
*
*
vCloudVirtual Datacenter OSvCloud InitiativevClient Initiative
*
How Do We Define The Cloud? Cloud Computing according to VMwareLightweight entry/exit service acquisition modelConsumption based pricingAccessible over the internetScalable and elasticImproved economics due to shared infrastructure and elasticity
*
100+ Service Provider PartnersBroad Compatibility Built on vAppsApplication and Infrastructure VMsvCloud Initiative
**VMware was founded in 1998 to bring the concept of virtualization to industry standard x86 systems. The concept of virtualization had been known since the 60ies mainframe world but for a long time n o one was able to crack the code for bringing this concept to x86 systems. The VMware founding team was the first to bring the concept of virtualization to x86 systems.Since then we have come a long way. Today VMware is proud to count more than 100K organizations including all the Fortune 100 companies as customers. It is also fair to say that VMware has generated one of the most loyal and satisfied customer bases in the history of the IT industry. Our products set the bar in the software industry for innovation, quality, stability and robustness. VMware has an impressive track record of bringing to market industry firsts- the first hypervisor, the first live migration capability. In an industry where customers are alas used to software products not working, VMware customers often say VMware just works.Since we are platform company, one way we measure our success is the size and commitment of the ecosystem that has developed around VMware. Today we have more than 550 technology and consulting partners, more than 13,000 Indirect Channel Partners, and 20,000+ VMware Certified Professionals.
****
Supporting data:. Before VMware, IDC claims an average of about 30 servers per admin. After virtualization, they typically see the number increase 3x.
Virtualisation is a technology can has potential to address major problem in many areas of IT
For the last 10 years weve focused on turning the datacenter to turn it in to an internal cloud of compute poolEasily re configuredTurning datacentre to an internal cloud
Killer app has been server consolidation :drain the server swamp.
the next logic step for VMware is to help customers federate multiple datacenters (internal or external)
he ongoing management of corporate desktops is a one of the biggest headaches for any IT department.
To address these 3 major opportunities, VMware has three major corporate initiatives:VDC-OSvCloud InitiativevClient Initiative. To address these 3 major opportunities, VMware has three major corporate indicatives:VDC-OSvCloud InitiativevClient Initiative. as well as inexorable pressure to reduce cost. Traditional x86 operating systems are tightly bound to discrete single servers resulting in;Difficult to scaling the infrastructure can take months - for example provisioning a new server often takes 6-8 weeks companies have reacted by massively over-provisioning, and exacerbating server sprawl.
Availability, security and QoS for applications is a complex task, custom to every application because of the interdependencies of application, OS and hardwareServer sprawl and gross resource underutilization typical server is utilized only 5% of the time. A negative side effect of server sprawl has been the energy crisis in the datacenter-In addition to the challenges with the existing computing model, some important trends create new opportunities and threats for customers:x86 hardware becoming more prevalent multi-core processors, very large systems with hundreds of processors, lots of memory etc - x86 hardware becoming more capable than ever all at a decreasing real cost. As a result, x86 systems can support bigger and bigger applications and the share, importance and relevance of x86 systems is on the rise. Innovation and experimentation with application architectures/stacks. SOA , web 2, changing Application stacks =hard to predict what app arch will be prevalent SOA, web 2.0 multi element, mixed OS applications are becoming more prevalent. Massive cloud datacenters being built by SaaS, cloud, traditional hosting providers such as Google or Amazon. These massive datacenters can provide capacity on-demand very cheaply. However, today to take advantage of this cheap capacity, enterprise applications have to undergo a great deal of customization/porting. Also, customers have to make the difficult choice of either doing things the old way or completely recreating applications to run off-premise.
What customers really want is to be able to provision an application when needed and enable service levels for that application at the click of a button. They want to set the availability parameter, the security parameter, the performance scaling parameter and then provision it to the place that has the lowest TCO. If thats the on premise data center then the app gets provisioned on-premise. However, if the off premise datacenter or cloud has a more available capacity, or better economics, then it is simple to just move the app over therealong with the same service level parameters as before, or maybe with changed ones.
What customers really want is to be able to provision an application when needed and enable service levels for that application at the click of a button. They want to set the availability parameter, the security parameter, the performance scaling parameter and then provision it to the place that has the lowest TCO. If thats the on premise data center then the app gets provisioned on-premise. However, if the off premise datacenter or cloud has a more available capacity, or better economics, then it is simple to just move the app over therealong with the same service level parameters as before, or maybe with changed ones.
What customers really want is to be able to provision an application when needed and enable service levels for that application at the click of a button. They want to set the availability parameter, the security parameter, the performance scaling parameter and then provision it to the place that has the lowest TCO. If thats the on premise data center then the app gets provisioned on-premise. However, if the off premise datacenter or cloud has a more available capacity, or better economics, then it is simple to just move the app over therealong with the same service level parameters as before, or maybe with changed ones.Enabling this new computing model in the datacenter required a new software platform an elastic, self-managing and self-healing software platform that:abstracts and aggregates all elements of the hardware servers, storage and networkProvides services to all applications. Cataegorypp The VDC-OS aggregates on-premise servers, storage and network into an internal cloud
Management of the underlying hardware Hardware & location independence.a distributed OS that aggregates pools of industry standard hardware and presents is as a single computer to application. applications completely independent of the location where they run. All the core application services such as security, availability, performance needed by an application are built in the virtual datacenter OS and are enabled for all appplications in a uniform manner without the need for complex customization.The virtual datacenter OS consists of A set of infrastructure vServices to seamlessly aggregate on-premise servers, storage and networkA set of cloud vServices to federate the on-premise infrastructure with third party cloud infrastructureA set of application vServices to guarantee the right levels of availability, security and scalability to all applications independent of hardware and location. A set of management vServices that allow to proactively manage the virtual datacenter OS and the applications running on it.Unlike a traditional OS, which is optimized for a single server, the virtual datacenter OS serves as the OS for the entire datacenter. Datacenters of cloud providers and SaaS companies - all on cheap commodity hardware.
Application vServices to recap, are services provided by our platform to applications uniformly, enabled by simple point and click in most cases.Lets review the current application vServices provided by VMware and new vServices in 2009This is a quick summary of everything I am going to cover in this section. Current capabilities are in green and new capabilities are in orange.Today VMware provides a variety of solutions that shield applications from infrastructure downtime. VMotion protects applications from planned server downtime, HA provides the first line of defense against unplanned server downtime.Storage VMotion protects applications against planned storage downtime, while Consolidated backup provides a framework to protect against data corruption or data lossAt the interconnect layer, NIC & HBA teaming provide resilience to unplanned component failuresAt the virtual machine level, VM failure monitoring provides the automated restart in the case of virtual machine failuresBeyond individual sets of servers/storage, if the entire set goes down, Site Recovery Manager provides the orchestration of recovery from downtime and can be used for planned site downtime/migration as well.*In 2009, we introduce two new solutions that take downtime management with VMware to a whole new level.**VMware Fault Tolerance creates virtual machine pairs that run in lock step - essentially mirroring the execution state of a VM. To the external world they appear as one instance (one IP address, one application) but they are fully redundant instances.In theThis technology will also work across any application & any OS without modifications, without scripting, and provides a much more cost-effective way of running mission critical workloads than fault-tolerant hardware dedicated entirely to individual applications.
Limitations of FT initially: dependent on shared storage, Uniprocessor VMs only, mirroring of VMs limited to 2-nodes. Additional overhead also associated with this type of solution. Overall performance impact still TBD, but you can expect more CPU & memory resources will be required to run the 2nd VM, and applications may experience small amounts of added latency.In spite of initial limitations, longer term trends are in our favor: FT will take advantage of hardware assisted virtualization in CPUs, more and more CPU cores becoming available to offload overhead, and high-speed network improvements like 10gigE to reduce latencies**Workloads that were protected with automated restart against hardware failures were similarly less than 10% of all workloads because of the cost and complexity of clustering. With HA, we extended automated restarts to ALL workloads in the datacenter , making first level failure protection very very easy and accessible. The workloads that are protected CONTINUOUSLY today against hardware failures are a very small fraction of all workloads, because the cost and complexity of solutions that provide the continuous levels of availability is very high.We expect that with FT, we will have a similar effect where many critical workloads that are only protected by HA or not protected against physical failures at all are able to gain FT protection. **vCenter Data Recovery is a new tool f - Its a disk-based solution thats easy to use and fast to backup and restore. - Its built on the VCB API and is fully integrated with vCenter management to enable centralized and efficient scheduling of backup jobs using an intuitive workflow.
Step 1: Backing up your virtual machines is a snap - First you schedule your backups directly through the vCenter interface.
- Snapshots are taken at your scheduled intervals and written to near-line storage (local or shared). - After the first full VM backup, subsequent backups are incremental to save time and disk space. - vCenter Data Recovery also uses disk de-duplication to further reduce the disk space required for backup storage.
Step 2: The toughest part of the backup process is recovering your apps and data. vCenter Data Recovery makes this process quick and easy - When a VM goes down, you go to vCenter and quickly access the directory of backup VMs and files.
- Select which ones you want to recover (individual files or complete VM) and restore in seconds/minutes - Your applications and data are back up and running!
One important aspect of security is the size of the virtualization layer footprint. ESXi with its 32MB of code, locked down interfaces and independence from a general purpose operating system already provides the most secure way to virtualize.**VMware VMSafe announced earlier in 2008, is a set of APIs that enable protection of VMs by a protection engine that :Works with the hypervisor to inspect a VMs mem, cpu and storage from a higher privilege pointIs isolated from the malwareCovers all aspects of security not limited to network or host.
MORE DETAIL
Security solutions have an inherent problem. Protection engines are running in the same context as the malware they are protecting against and as a result, malware is able to subvert these engines by simply using the same hooks into the system as the protection engine. Worse, with Longhorn and Vista, Microsoft has enabled Patchguard, effectively eliminating the kernel hooks available to both the security solutions and the malware. While this helps, it doesnt change the fact that malware and rootkits still exist and can run in those environments. The context that these security solutions need to protect against is also not limited to one set of interactions (e.g. attacks from the network and from spyware and from rootkits). Even those solutions that are in a safe context (outside the OS), they cant see information from other contexts (e.g. network protection has no host visibility).
Security APIs built into the hypervisor allow for 2 key advantages:Better Context Provide protection from outside the OS, from a trusted contextNew Capabilities now they can view all interactions and contexts
Now, new security solutions can be developed and integrated within the VMware virtual infrastructure and we can protect the VM by inspection of virtual components (CPU, Memory, Network and Storage). Provides complete integration with VMotion, Storage VMotion, HA, etc. for any new security solution using the APIs. The end-result is an unprecedented level of security for VMs thats better than the physical infrastructure. These APIs are already being made available to the security ISVs ecosystem.
We utilize VC for role-based privileges to assign protection to any single VM and VMware certifies the solutions developed by our partners to ensure the security VM is created by a real security ISV and not a malicious hacker.
Some potential use cases:An AV virtual appliance that intercepts all storage IO and is able to scan files as they are read/written from disk. This can be done without loading an AV agent on each machine.
Inline Network Security for each ESX host. Now you can ensure that ALL network IO traffic is inspected by an inline appliance, regardless of your virtual networking setup. This includes even inter-VM traffic and allows state to be transferred from host to host during VMotion so that the security protection is never lost.
*Partner solutions that utilize VMsafe have the following advantages over existing security mechanisms:
They can protect VMs without needing to install agents inside each VM They can perform a multitude of tasks that protect a VM holistically ( monitor VM components on the host, nw traffic through the distributed switch) AV, Firewall, IPS can all be in one appliance.They can do all these tasks efficiently in a dynamic environment where the virtual machine moves from host to host. For e.g. if a VM is being monitored on a particular host, it carries its security state with it to the next host where another appliance starts monitoring it. ***Think of the physical world today where scaling an app means a complex task involving detailed sizing, procuring hardware, application downtime, then moving the application over to new hardware etc.
Virtualization already made this process easier with hardware independent movement of apps but with hot add, now applications can be provisioned in a future proof manner. As apps grow, as they get more and more intense over time and need more compute, memory or network/storage resources, admins can now scale them up dynamically no disruption, no complex porting , on the fly.
This is a quick summary of everything I am going to cover in this section. Current capabilities are in green and new capabilities are in orange.Infrastructure vServices use industry standard server , storage and network components to create a unified efficient and shared platform. Not only do they abstract away from the underlying hardware, they also aggregate this hardware and present a unified set of resources, which can them be logically carved up and provided to applications in a dynamic fashion, based on business requirements and priorities.
This is a quick summary of everything covered in the infrastructure vServices section.At the highest level new vCompute vServices further reduce overhead and deliver the most efficient way to virtualize.New storage vServices deliver the most efficient way to use storage in virtual environmentsNew network vServices deliver the most optimal way to integrate networking in virtual environments
***We now introduce VMDirect technology that allows a VM direct access to underlying devices for the workloads that need constant access to the underlying hardware, this enables low CPU overhead by allowing the VM direct access to the device.Para virtualized SCSI devices optimize access to storage for the workloads that require very frequent access to storage by making the virtual storage devices virtualization aware, and thereby reducing access times.ESX scales now to support 128 cores and 512GB of physical RAM so you can virtualize very large scaled out servers and run them with the most efficiencyVirtual machines themselves can now scale to be very large we covered this before.
*In terms of absolute numbers, with 3.5, we address the performance requirements of a large section of workloads today. In 2009, we now allow the small fraction of workloads that are intense enough to require upto 200,000 iops or 8 virtual CPUs.Peak means peak hours: 7 am 7 PM **vNetwork is a collection of networking technologies VMDirectPath, NetQueue,and Distributed Switch for optimally integrating networking and I/O functionality into VMware Infrastructure. vNetwork Distributed Switch enables the network to be treated as an aggregated resource much like what we do with compute and storage already todayDVS moves away from single host virtual switch management, and moves management up to the datacenter level. With DVS, no longer will you be configuring virtual switches on every host. Instead, with DVS, youll be managing a single global entity, with a single namespace and globally assured configuration, and youll be attaching VMs only to that cluster or datacenter-wide entity. DVS is a new type of virtual switch which spans the entire Virtual Infrastructureanalogous in many ways to a stacked switch.Today, when virtual machines migrate from one host to another, Network statistics dont follow the VM after it migratesValue-added services like inline filtering, failover teaming, etc. may not follow the VMBy creating DVS, a single cluster-wide global virtual switch, we lay the foundation for a new generation of properly mobile, networking services.
**VMware is enabling third party partners to create virtual switches; in actual fact, they will be able to create distributed virtual switches.Cisco , for example , is announcing a product to be delivered in 2009 which uses our vNetwork Distributed Switch framework to plug into VMware virtual environments. Through this new virtual switch, Cisco will be able to extend the same qos assurance , security assurance that they provide in physical environments to virtual environments at a VM granularity. Network admins will now gain visibility and control into VMware environments, and server admins can be assured of networking services on a per VM basis.
vStorage also includes important APIs and interfaces that enable VMware and storage partners to integrate and optimize their storage partner technologies with the VMware platform:Storage Virtual Appliances extend the capabilities of the VMware Datacenter OS with technologies from storage partners in the form of VMware Ready virtual appliances. vStorage APIs make it easy for customers to directly leverage the advanced capabilities of their storage infrastructure with virtual machines. By leveraging these APIs, partners can deliver seamless integration of their tools and technologies with the virtual environment.
vStorage Thin Provisioning *Another important new capability that maximizes storage utilization by virtual machines is the vStorage linked clone technology. This technology will reduce duplicate storage of virtual machines data, transparent to the virtual machine, by allowing multiple virtual machines to share common data in a single base disk while maintaining separate storage for the data written by each virtual machine. This technology will also enable simplified patchingpatches that affect just the base disk can be applied once to the base disk and seen by each virtual machine without needing to be applied individually to each virtual machine.
This technology will first be leveraged by the new VMware View Composer product to significantly reduce storage costs for VDI deployments, allowing similar virtual machines to share a common base configuration disk while still maintaining their individual configurations and data. *Storage virtual appliances deliver key storage functions from storage partners in the form of virtual appliances. Storage Virtual Appliances make it easy for small environmentssuch as SMB, remote office, and branch office deploymentsto obtain the benefits of technologies that could include shared storage, data protection, data deduplication and others that were previously not possible for them to deploy. They accomplish this by simplifying deployment and configuration through pre-configured virtual appliances and by eliminating the need for external hardware for this functionality. As these deployments grow, customers have an easy migration to partners physical hardware that provides the same capabilities for larger and more demanding environments.
The VMware Ready program provides validation for key types of storage virtual appliances so that customers can be assured that they can confidently deploy storage hardware and storage virtual appliances that have been tested and validated for the VMware Infrastructure platform.
*vStorage APIs are a set of new and existing APIs that enable storage ecosystem partners to integrate and optimize their products with VMware Infrastructure. These APIs enable storage vendors products to understand and optimize for the virtual environment. They simplify and automate the manual handoffs and processes between the virtual environment and the storage infrastructure to deliver simple, coordinated management of virtual infrastructure and storage infrastructure.
The vStorage APIs include the following:vStorage APIs for array integrations are new integration APIs for VMware Infrastructure that will provide customers the ability to fully leverage the advanced capabilities of their storage systems with virtual machines at a far more granular level than before. These integrations will enable customers to leverage array-based capabilities, such as snapshots, provisioning, replication and restore with individual virtual machines in conjunction with the clustering and pooling capabilities of VMware Infrastructure. vStorage APIs for multipathing will provide customers the ability to integrate advanced load balancing capabilities provided by leading partners multi-pathing software with their virtual environment. vStorage APIs for Site Recovery Manager currently provide customers with tight integration between VMware Site Recovery Manager and array-based replication, enabling customers to define a custom recovery process and automate the restart of their virtual machines after disasters without having to worry about correctly coordinating the virtual environment failover with storage replication failover. vStorage APIs for Consolidated Backup enable customers to automate and streamline non-disruptive virtual machine backups using standard backup software products. vStorage APIs for storage management include current and future interfaces to VMware Infrastructure that enable integrated management of storage hardware platforms and the virtual environment through management tools from VMware and storage partners, eliminating the complex coordination and manual processes previously required to manage storage within a virtualized environment. Examples include integration of storage management tools via VirtualCenter plug-ins and VI SDK interfaces that storage management tools use to understand the use of storage by the virtual environment.
*This is a quick summary of everything covered in the infrastructure vServices section.At the highest level new vCompute vServices further reduce overhead and deliver the most efficient way to virtualize.New storage vServices deliver the most efficient way to use storage in virtual environmentsNew network vServices deliver the most optimal way to integrate networking in virtual environments
vApp is the UPC barcode that specifies policies for applications running on the VDC OS Anyone using VMware Infrastructure can use the vApp to encapsulate a multi-virtual machine application ISVs can use VMware Studio to create vApps that can be automatically updated and maintained by VMware Infrastructure
vApp turns new and existing application into self-describing and self-managing entities. vApp leverages OVF, an open industry standard, to specify and encapsulate all components of a multi-tier application as well the operational the policies and service levels associated with it. Just like the UPC bar code contains all information about a product, the vApp gives application owners a standard way to describe operational policies for an application which the VDC-OS can automatically interpret and execute.
The dynamic fluid environment created by the virtual datacenter OS requires management capabilities that are:Aware that resources are inherently shared.Aware of the mobility of applications within and across locations.Aware of the service level contracts between apps and the infrastructure.
The Role of VirtualCenterVI is a distributed architecture with VirtualCenter as the cluster masterProvides resource management and workload mobility across the virtualized environment to aggregate resources into a consolidated shared infrastructureVC represents an abstraction layer for acting on and managing this shared infrastructure
VC is the foundation for VMwares other management solutions providing:enterprise readiness foundation (scalability, availability etc.) shared services (workflow engine, event bus, policy mgmt, etc.)integration (APIs, GUI extensions, etc.)
VC is a partner-extensible platform for managing the virtual infrastructurePartner management tools can register management capabilities with VC consolePartner tools can use VC as execution engine for VMware environment*First a word about VC scalability. Enhancing the scalability and the client-visible performance at scale are one of the top priorities of the VC team. While there is no one big bang, there will be considerable improvement in this area over the coming releases.
At the same time, there will always be scenarios when running multiple VC Servers is appropriate, either because of very large environments that continue to challenge the scale of a single server, or because organizational or other reasons that just make it natural to deploy multiple VC instances.
There are two projects underway aimed at environments with multiple VC Servers.
The Multi-VC Monitor is a simple Web interface that rolls up views of the key objects hosts, VMs, datacenters, etc. from across multiple VC instances. The focus is on filtered views, such as all VMs with a red alarm. In addition, it will be possible to launch the VI Client in context of a particular VM or host connected to the appropriate VC instance.
Federated VirtualCenter is based on the idea of that core inventory and configuration information hosts, VMs, their relationships to each other, custom fields, etc. should be placed in a directory-based infrastructure similar to Active Directory or another LDAP database, and globally replicated. The point is that this core information now exists independent of any particular VC instance. This makes it possible for a client to grab the global inventory all at once and connect to individual VC instances as needed to get details or perform actions. It also means that a if one VC fails, a host that is managed by that VC instance can be picked up by another VC instance without it being viewed as a new host. vCenter delivers comprehensive infrastructure management capabilities for virtual environments and also provides extensibility interfaces to enable it to plug into broader physical + virtual datacenter management frameworksVMware vCenter integrates with industry-leading systems management solutions for enterprise-wide system management. Whats new?The VMware Ready Management solution program provides customers with validated partner solutions that further simplify end-to-end physical and virtual management with assurance of interoperability and consistent support and documentation. This enables customers to more quickly deploy management solutions and drive new levels of agility and automation in the datacenter.
* -Application Service Level Management with Bhive Conductor renamed to vCenter AppSpeed-New capabilities on Virtual Infrastructure Management include ( see list above)-End to End Physical and virtual management through seamless integration with leading systems management vendors
*vCenter AppSpeed used Bhive Conductor technology to deliver proactive monitoring and remediation of application performance from the end user perspective.vCenter AppSpeed collects data across various tiers of an application and tracks it for deviation from SLAs. It is integrated with VMware Infrastructure features such as DRS to help remediation of issues for eg: it can adjust DRS allocations to a VM, if it appears that the VM performance is suffereing due to lack of a particular resource.vCenter is an extensible platform with numerous interfaces to enable partners to plug into vCenter environments. In 2008 VMware Ready Management Solutions will highlight partner integrations with vCenter that interoperate easily and work out of the box with vCenter.For every vService in VMware, there is a corresponding API - The VMware Ready program is the umbrella initiative that highlights partners that have value added integrations with VMware Ready environments and that provide these integrations themselves.
Core VMware virtual datacenter OS (VDC-OS) platform Servers I/O and ComponentsNetworkingStorageApplication SecurityCloud Solutions Virtual Application and Infrastructure Management
This slide demonstrates the width and variety of the VMware partner ecosystem that have excellent integrations with vCenter APIs*To address these 3 major opportunities, VMware has three major corporate initiatives:VDC-OSvCloud InitiativevClient Initiative. **Cloud Computing is the next disruptive trend in how IT will consume and manage their infrastructure and applications. As the industry continues to morph, vendors, analysts and press will arrive at their own versions of what cloud computing is and how it will affect IT professionals. In talking with many of our customers, we feel that cloud computing is the ability to:acquire elastic computing capacity on demand in a pay per usage model.Although there are cloud computing providers out there today, IT organizations still have challenges with how these providers will handle critical production level applications- and have been slow to adopt it for those uses. Instead these clouds are populated by developers and startups looking for quick and cheap infrastructure. In order for enterprises and SMBs to adopt the cloud for production level uses, these limitations need to be addressed. These limitations include the inability to move an application from a provider in the event of something like poor SLAs, or to simply move applications between on and off premise to accommodate things like Disaster Recovery.The inability to provision capacity or services on demandAnd the incompatibility of applications that need to be written for a cloud environment, vs what would be used in-house.
*See previous slides notes. Right Side should reference center box in previous slidevisually.
