+ All Categories
Home > Technology > AWS re:Invent 2016: VMware and AWS Together - VMware Cloud on AWS (ENT317)

AWS re:Invent 2016: VMware and AWS Together - VMware Cloud on AWS (ENT317)

Date post: 07-Jan-2017
Category:
Upload: amazon-web-services
View: 295 times
Download: 0 times
Share this document with a friend
37
© 2016, Amazon Web Services, Inc. or its Affiliates. All rights reserved. Paul BockelmanSr. Solutions Architect WWPS, Amazon Web Services Matt DreyerProduct Management, CPBU Cloud Services, VMware Inc. December 1, 2016 ENT317 VMware and AWS Together VMware Cloud on AWS
Transcript
Page 1: AWS re:Invent 2016: VMware and AWS Together - VMware Cloud on AWS (ENT317)

copy 2016 Amazon Web Services Inc or its Affiliates All rights reserved

Paul BockelmanmdashSr Solutions Architect WWPS Amazon Web Services

Matt DreyermdashProduct Management CPBU Cloud Services VMware Inc

December 1 2016

ENT317

VMware and AWS TogetherVMware Cloud on AWS

What to expect from the session

bull Overview of the VMware and AWS partnership

bull Introduction to VMware Cloud on AWS

bull Solution summarymdashcomponents and processes

bull Technical drilldownmdashhow this thing works

bull Illustrated use cases for an integrated VMwareAWS

ecosystem

bull Product demonstration

Partnering to deliver a game-changing solution

Leading private compute storage and

network virtualization capabilities

Support for broad range of workloads

De facto standard for the on-premises

enterprise

Global scale and reach

Flexible consumption economics

Broadest set of cloud services

Elastic infrastructure on demand

Uniting the leaders in private and public cloud services

+

VMware Cloud on AWS enables faster hybrid cloud adoption by removing these barriers

Common challenges with hybrid cloud adoption

Incongruent networks

Operational inconsistencies

Multiple monitoring amp

control mechanisms

Multiple virtual machine formats

Differing security baselines

Introducing VMware Cloud on AWS

Customer data

center

Management

(vCenter Server) VMware Cloud on AWS

AWS global infrastructureAWS global infrastructure

vRealize Suite PowerCLI

Access to all AWS services

Amazon

EC2

Amazon

S3

Amazon

RDS

AWS Direct

ConnectAWS Identity amp Access

Management (IAM)

Amazon

Redshift

hellip

hellip

hellip

hellip

AWS CloudFormation CLI SDK

vCenter Server

VMware Cloud on AWS is a VMware service

VMware Cloud on AWS

AWS global infrastructure

Service is sold delivered operated and supported directly by VMware

What is vSphere

VMware Cloud on AWS

AWS global infrastructure

bull Industry leading private

compute virtualization platform

bull ESXi 65 on bare-metal hosts

bull Fully featured

vMotion

DRS

HA

vSphere

bull ESXi on dedicated hardware

bull Support for containers and VMs

What is VSAN

VMware Cloud on AWS

AWS global infrastructure

bull Industry leading private storage

virtualization platform

bull Flash SSD on bare-metal hosts

bull Fully featured

Deduplication

Compression

Erasure coding

bull VSAN on flash storage and EBS

bull Replication and DR orchestration

VSAN

What is NSX

VMware Cloud on AWS

AWS global infrastructure

bull Industry leading private SDDC

network virtualization platform

bull 10 Gbps+ NICs on bare-metal

bull Fully Featured

Switching

Routing

Firewalling

Load balancing

VPN

bull NSX spanning on-prem and cloud

bull Advanced networksecurity services

NSX

Customer decides on and places workloads between on-premises DC and AWS

Common scenarios and use cases

Scenario 1

Maintain and expand

ExpandMaintain

Geo expansion

Disaster recovery and

backup

Scenario 3

Workload flexibility

Prod dev test lab and training

Burst capacity

Flex as needed

Scenario 2

Consolidate and migrate

MigrateConsolidate

Data center consolidation

Application migration

Solution overview

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a servicersquo from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

1 Service console and API endpoint

Administrative interfaces for provisioning and billing

bull httpsvmcvmwarecom

bull My VMware Authentication

bull Responsive HTML5 interface

including support for mobile

bull REST API for

ndash Provisioning

ndash Scaling

ndash Billing

Overview

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

2 VMware Cloud on AWS

VMware

operated

supported and

maintained

Gateway Gateway hellip

Fully configured VMware software stack

running on state of the art infrastructure

provisioned on-demand in minutes

Latest software

bull VCSA ESXi NSX VSAN H5 client

Dynamic capacity

bull DRSHA compute cluster (intel x86)

bull VSAN storage cluster (SSD)

bull NSX network virtualization (10 Gbps++)

Flexible topology

bull Standalone cloud cluster

bull Hybrid connectivity to on-premises

bull Cloud to cloud connectivity

Overview

vCenter

Server

NSX

Manager

hellip

hellip

hellip

ESXi

ESXi

ESXi

hellipESXi

hellipESXi

hellipESXi

VMware Cloud

Single tenant (dedicated) bare metal

Amazon EC2 hardware

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

3 AWS Cloud integration

AWS global infrastructure

VMware Cloud on AWS Access to all native AWS Services

Amazon

EC2

Amazon

S3

Amazon

RDS

AWS Direct

ConnectIAMAWS IoT

hellip

hellip

hellip

hellip

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

4 Delivered as a service from VMware

The fully configured VMware Cloud software

stack running will be provisioned operated and

maintained directly by VMware

Provisioning

bull Automated account creation and environment

provisioning by using the API

bull Automated interconnection created between

VMware and AWS customer accounts

Operations

bull Support provided by VMware directly

bull Ongoing infrastructure monitoring

Maintenance

bull Ongoing stack maintenance managed

directly by VMware

Overview

Technical drilldown

Account structure

bull VMware Cloud VPC account

bull A new AWS solution account is created for each customer

bull Is owned operated and paid directly by the VMware

bull Each solution account is single tenant for all ESXi hosts

bull Solution account is linked to a VMware Master-Payor account

bull AWS customer VPC account

bull Is owned operated and paid directly by the customer

bull Has full access to VMware Cloud endpoints within the VPC

bull VMware Cloud endpoints are automatically deployed into the

customer VPC with customer consent

bull Has full access to the entire catalog of native AWS services within

the AWS Region of deployment

Existing customer environment

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

No NSX in your current VMware environment

Deploy a standalone NSX Edge appliance into

your existing vSphere environment to extend

the VMware Cloud on AWS environment to your

premises

No problemhellip

Provision VMware Cloud VPC

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

VMware Cloud VPC

ESXi

Amazon EC2

The full VMware Cloud on AWS

stack will be auto-provisioned

and configured at launch into a

single tenant AWS account

(owned and operated by

VMware)

Build customer VPC

Customer Data Center

Customer VPC

VPC subnet VPC subnet

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

VMware Cloud VPC

ESXi

Amazon EC2

A customer-owned AWS

account is created andor

assigned to interoperate with

the VMware Cloud VPC

Connect data center to customer VPC

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Customer VPC

VPC subnet VPC subnet

AWS Direct

Connect

Private

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Private connectivity is

established from the

customer data center to

the customer VPC

Link VMware Cloud VPC and customer VPC

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Private

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Link the VMware Cloud

VPC and the Customer

VPC using private VPC

endpoints

Deploy and consume native AWS services

Customer VPC VMware Cloud VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

ESXi

Amazon EC2

Internet

Private

VIF

Public

VIF

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem examples

bull Use X-vMotion to migrate a virtual machine from a customer data

center to VMware Cloud on AWS

bull Copy an object from a virtual machine in VMware Cloud to an

Amazon S3 bucket

bull Connect a virtual machine in VMware Cloud to an Amazon

Redshift cluster

bull Connect web server hosted on a virtual machine in VMware Cloud

using public Internet access

Operating in the hybrid ecosystem X-vMotion

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

vMotion from site to VMware Cloud

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon S3

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Copy an

object from

virtual

machine to

S3 Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon Redshift

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect

virtual

machine to

Amazon

Redshift Regional AWS Services

AWS

Lambda

Amazon

S3

CloudFront Etchellip

Operating in the hybrid ecosystem VM internet access

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect to

a virtual

machine

from the

Internet

Assign

Elastic

IP

Configure

NAT

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Security and governance

bull VMware Cloud transit endpoints rest within the customer-owned VPC

bull Customers maintain access security control of the transit path using

standard AWS security practices (security groups NACL flow logs and so

on)

bull vMotion traffic is encrypted (new in 65)

bull VM-level encryption (new in 65)

bull Audit-quality logging (new in 65)

bull Fully managed offering delivered by VMware

bull VMware manages the infrastructure patching and upgrades of the VMware

Cloud environment

Demo

Thank you

Remember to complete

your evaluations

Page 2: AWS re:Invent 2016: VMware and AWS Together - VMware Cloud on AWS (ENT317)

What to expect from the session

bull Overview of the VMware and AWS partnership

bull Introduction to VMware Cloud on AWS

bull Solution summarymdashcomponents and processes

bull Technical drilldownmdashhow this thing works

bull Illustrated use cases for an integrated VMwareAWS

ecosystem

bull Product demonstration

Partnering to deliver a game-changing solution

Leading private compute storage and

network virtualization capabilities

Support for broad range of workloads

De facto standard for the on-premises

enterprise

Global scale and reach

Flexible consumption economics

Broadest set of cloud services

Elastic infrastructure on demand

Uniting the leaders in private and public cloud services

+

VMware Cloud on AWS enables faster hybrid cloud adoption by removing these barriers

Common challenges with hybrid cloud adoption

Incongruent networks

Operational inconsistencies

Multiple monitoring amp

control mechanisms

Multiple virtual machine formats

Differing security baselines

Introducing VMware Cloud on AWS

Customer data

center

Management

(vCenter Server) VMware Cloud on AWS

AWS global infrastructureAWS global infrastructure

vRealize Suite PowerCLI

Access to all AWS services

Amazon

EC2

Amazon

S3

Amazon

RDS

AWS Direct

ConnectAWS Identity amp Access

Management (IAM)

Amazon

Redshift

hellip

hellip

hellip

hellip

AWS CloudFormation CLI SDK

vCenter Server

VMware Cloud on AWS is a VMware service

VMware Cloud on AWS

AWS global infrastructure

Service is sold delivered operated and supported directly by VMware

What is vSphere

VMware Cloud on AWS

AWS global infrastructure

bull Industry leading private

compute virtualization platform

bull ESXi 65 on bare-metal hosts

bull Fully featured

vMotion

DRS

HA

vSphere

bull ESXi on dedicated hardware

bull Support for containers and VMs

What is VSAN

VMware Cloud on AWS

AWS global infrastructure

bull Industry leading private storage

virtualization platform

bull Flash SSD on bare-metal hosts

bull Fully featured

Deduplication

Compression

Erasure coding

bull VSAN on flash storage and EBS

bull Replication and DR orchestration

VSAN

What is NSX

VMware Cloud on AWS

AWS global infrastructure

bull Industry leading private SDDC

network virtualization platform

bull 10 Gbps+ NICs on bare-metal

bull Fully Featured

Switching

Routing

Firewalling

Load balancing

VPN

bull NSX spanning on-prem and cloud

bull Advanced networksecurity services

NSX

Customer decides on and places workloads between on-premises DC and AWS

Common scenarios and use cases

Scenario 1

Maintain and expand

ExpandMaintain

Geo expansion

Disaster recovery and

backup

Scenario 3

Workload flexibility

Prod dev test lab and training

Burst capacity

Flex as needed

Scenario 2

Consolidate and migrate

MigrateConsolidate

Data center consolidation

Application migration

Solution overview

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a servicersquo from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

1 Service console and API endpoint

Administrative interfaces for provisioning and billing

bull httpsvmcvmwarecom

bull My VMware Authentication

bull Responsive HTML5 interface

including support for mobile

bull REST API for

ndash Provisioning

ndash Scaling

ndash Billing

Overview

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

2 VMware Cloud on AWS

VMware

operated

supported and

maintained

Gateway Gateway hellip

Fully configured VMware software stack

running on state of the art infrastructure

provisioned on-demand in minutes

Latest software

bull VCSA ESXi NSX VSAN H5 client

Dynamic capacity

bull DRSHA compute cluster (intel x86)

bull VSAN storage cluster (SSD)

bull NSX network virtualization (10 Gbps++)

Flexible topology

bull Standalone cloud cluster

bull Hybrid connectivity to on-premises

bull Cloud to cloud connectivity

Overview

vCenter

Server

NSX

Manager

hellip

hellip

hellip

ESXi

ESXi

ESXi

hellipESXi

hellipESXi

hellipESXi

VMware Cloud

Single tenant (dedicated) bare metal

Amazon EC2 hardware

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

3 AWS Cloud integration

AWS global infrastructure

VMware Cloud on AWS Access to all native AWS Services

Amazon

EC2

Amazon

S3

Amazon

RDS

AWS Direct

ConnectIAMAWS IoT

hellip

hellip

hellip

hellip

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

4 Delivered as a service from VMware

The fully configured VMware Cloud software

stack running will be provisioned operated and

maintained directly by VMware

Provisioning

bull Automated account creation and environment

provisioning by using the API

bull Automated interconnection created between

VMware and AWS customer accounts

Operations

bull Support provided by VMware directly

bull Ongoing infrastructure monitoring

Maintenance

bull Ongoing stack maintenance managed

directly by VMware

Overview

Technical drilldown

Account structure

bull VMware Cloud VPC account

bull A new AWS solution account is created for each customer

bull Is owned operated and paid directly by the VMware

bull Each solution account is single tenant for all ESXi hosts

bull Solution account is linked to a VMware Master-Payor account

bull AWS customer VPC account

bull Is owned operated and paid directly by the customer

bull Has full access to VMware Cloud endpoints within the VPC

bull VMware Cloud endpoints are automatically deployed into the

customer VPC with customer consent

bull Has full access to the entire catalog of native AWS services within

the AWS Region of deployment

Existing customer environment

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

No NSX in your current VMware environment

Deploy a standalone NSX Edge appliance into

your existing vSphere environment to extend

the VMware Cloud on AWS environment to your

premises

No problemhellip

Provision VMware Cloud VPC

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

VMware Cloud VPC

ESXi

Amazon EC2

The full VMware Cloud on AWS

stack will be auto-provisioned

and configured at launch into a

single tenant AWS account

(owned and operated by

VMware)

Build customer VPC

Customer Data Center

Customer VPC

VPC subnet VPC subnet

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

VMware Cloud VPC

ESXi

Amazon EC2

A customer-owned AWS

account is created andor

assigned to interoperate with

the VMware Cloud VPC

Connect data center to customer VPC

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Customer VPC

VPC subnet VPC subnet

AWS Direct

Connect

Private

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Private connectivity is

established from the

customer data center to

the customer VPC

Link VMware Cloud VPC and customer VPC

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Private

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Link the VMware Cloud

VPC and the Customer

VPC using private VPC

endpoints

Deploy and consume native AWS services

Customer VPC VMware Cloud VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

ESXi

Amazon EC2

Internet

Private

VIF

Public

VIF

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem examples

bull Use X-vMotion to migrate a virtual machine from a customer data

center to VMware Cloud on AWS

bull Copy an object from a virtual machine in VMware Cloud to an

Amazon S3 bucket

bull Connect a virtual machine in VMware Cloud to an Amazon

Redshift cluster

bull Connect web server hosted on a virtual machine in VMware Cloud

using public Internet access

Operating in the hybrid ecosystem X-vMotion

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

vMotion from site to VMware Cloud

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon S3

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Copy an

object from

virtual

machine to

S3 Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon Redshift

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect

virtual

machine to

Amazon

Redshift Regional AWS Services

AWS

Lambda

Amazon

S3

CloudFront Etchellip

Operating in the hybrid ecosystem VM internet access

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect to

a virtual

machine

from the

Internet

Assign

Elastic

IP

Configure

NAT

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Security and governance

bull VMware Cloud transit endpoints rest within the customer-owned VPC

bull Customers maintain access security control of the transit path using

standard AWS security practices (security groups NACL flow logs and so

on)

bull vMotion traffic is encrypted (new in 65)

bull VM-level encryption (new in 65)

bull Audit-quality logging (new in 65)

bull Fully managed offering delivered by VMware

bull VMware manages the infrastructure patching and upgrades of the VMware

Cloud environment

Demo

Thank you

Remember to complete

your evaluations

Page 3: AWS re:Invent 2016: VMware and AWS Together - VMware Cloud on AWS (ENT317)

Partnering to deliver a game-changing solution

Leading private compute storage and

network virtualization capabilities

Support for broad range of workloads

De facto standard for the on-premises

enterprise

Global scale and reach

Flexible consumption economics

Broadest set of cloud services

Elastic infrastructure on demand

Uniting the leaders in private and public cloud services

+

VMware Cloud on AWS enables faster hybrid cloud adoption by removing these barriers

Common challenges with hybrid cloud adoption

Incongruent networks

Operational inconsistencies

Multiple monitoring amp

control mechanisms

Multiple virtual machine formats

Differing security baselines

Introducing VMware Cloud on AWS

Customer data

center

Management

(vCenter Server) VMware Cloud on AWS

AWS global infrastructureAWS global infrastructure

vRealize Suite PowerCLI

Access to all AWS services

Amazon

EC2

Amazon

S3

Amazon

RDS

AWS Direct

ConnectAWS Identity amp Access

Management (IAM)

Amazon

Redshift

hellip

hellip

hellip

hellip

AWS CloudFormation CLI SDK

vCenter Server

VMware Cloud on AWS is a VMware service

VMware Cloud on AWS

AWS global infrastructure

Service is sold delivered operated and supported directly by VMware

What is vSphere

VMware Cloud on AWS

AWS global infrastructure

bull Industry leading private

compute virtualization platform

bull ESXi 65 on bare-metal hosts

bull Fully featured

vMotion

DRS

HA

vSphere

bull ESXi on dedicated hardware

bull Support for containers and VMs

What is VSAN

VMware Cloud on AWS

AWS global infrastructure

bull Industry leading private storage

virtualization platform

bull Flash SSD on bare-metal hosts

bull Fully featured

Deduplication

Compression

Erasure coding

bull VSAN on flash storage and EBS

bull Replication and DR orchestration

VSAN

What is NSX

VMware Cloud on AWS

AWS global infrastructure

bull Industry leading private SDDC

network virtualization platform

bull 10 Gbps+ NICs on bare-metal

bull Fully Featured

Switching

Routing

Firewalling

Load balancing

VPN

bull NSX spanning on-prem and cloud

bull Advanced networksecurity services

NSX

Customer decides on and places workloads between on-premises DC and AWS

Common scenarios and use cases

Scenario 1

Maintain and expand

ExpandMaintain

Geo expansion

Disaster recovery and

backup

Scenario 3

Workload flexibility

Prod dev test lab and training

Burst capacity

Flex as needed

Scenario 2

Consolidate and migrate

MigrateConsolidate

Data center consolidation

Application migration

Solution overview

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a servicersquo from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

1 Service console and API endpoint

Administrative interfaces for provisioning and billing

bull httpsvmcvmwarecom

bull My VMware Authentication

bull Responsive HTML5 interface

including support for mobile

bull REST API for

ndash Provisioning

ndash Scaling

ndash Billing

Overview

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

2 VMware Cloud on AWS

VMware

operated

supported and

maintained

Gateway Gateway hellip

Fully configured VMware software stack

running on state of the art infrastructure

provisioned on-demand in minutes

Latest software

bull VCSA ESXi NSX VSAN H5 client

Dynamic capacity

bull DRSHA compute cluster (intel x86)

bull VSAN storage cluster (SSD)

bull NSX network virtualization (10 Gbps++)

Flexible topology

bull Standalone cloud cluster

bull Hybrid connectivity to on-premises

bull Cloud to cloud connectivity

Overview

vCenter

Server

NSX

Manager

hellip

hellip

hellip

ESXi

ESXi

ESXi

hellipESXi

hellipESXi

hellipESXi

VMware Cloud

Single tenant (dedicated) bare metal

Amazon EC2 hardware

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

3 AWS Cloud integration

AWS global infrastructure

VMware Cloud on AWS Access to all native AWS Services

Amazon

EC2

Amazon

S3

Amazon

RDS

AWS Direct

ConnectIAMAWS IoT

hellip

hellip

hellip

hellip

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

4 Delivered as a service from VMware

The fully configured VMware Cloud software

stack running will be provisioned operated and

maintained directly by VMware

Provisioning

bull Automated account creation and environment

provisioning by using the API

bull Automated interconnection created between

VMware and AWS customer accounts

Operations

bull Support provided by VMware directly

bull Ongoing infrastructure monitoring

Maintenance

bull Ongoing stack maintenance managed

directly by VMware

Overview

Technical drilldown

Account structure

bull VMware Cloud VPC account

bull A new AWS solution account is created for each customer

bull Is owned operated and paid directly by the VMware

bull Each solution account is single tenant for all ESXi hosts

bull Solution account is linked to a VMware Master-Payor account

bull AWS customer VPC account

bull Is owned operated and paid directly by the customer

bull Has full access to VMware Cloud endpoints within the VPC

bull VMware Cloud endpoints are automatically deployed into the

customer VPC with customer consent

bull Has full access to the entire catalog of native AWS services within

the AWS Region of deployment

Existing customer environment

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

No NSX in your current VMware environment

Deploy a standalone NSX Edge appliance into

your existing vSphere environment to extend

the VMware Cloud on AWS environment to your

premises

No problemhellip

Provision VMware Cloud VPC

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

VMware Cloud VPC

ESXi

Amazon EC2

The full VMware Cloud on AWS

stack will be auto-provisioned

and configured at launch into a

single tenant AWS account

(owned and operated by

VMware)

Build customer VPC

Customer Data Center

Customer VPC

VPC subnet VPC subnet

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

VMware Cloud VPC

ESXi

Amazon EC2

A customer-owned AWS

account is created andor

assigned to interoperate with

the VMware Cloud VPC

Connect data center to customer VPC

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Customer VPC

VPC subnet VPC subnet

AWS Direct

Connect

Private

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Private connectivity is

established from the

customer data center to

the customer VPC

Link VMware Cloud VPC and customer VPC

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Private

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Link the VMware Cloud

VPC and the Customer

VPC using private VPC

endpoints

Deploy and consume native AWS services

Customer VPC VMware Cloud VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

ESXi

Amazon EC2

Internet

Private

VIF

Public

VIF

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem examples

bull Use X-vMotion to migrate a virtual machine from a customer data

center to VMware Cloud on AWS

bull Copy an object from a virtual machine in VMware Cloud to an

Amazon S3 bucket

bull Connect a virtual machine in VMware Cloud to an Amazon

Redshift cluster

bull Connect web server hosted on a virtual machine in VMware Cloud

using public Internet access

Operating in the hybrid ecosystem X-vMotion

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

vMotion from site to VMware Cloud

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon S3

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Copy an

object from

virtual

machine to

S3 Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon Redshift

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect

virtual

machine to

Amazon

Redshift Regional AWS Services

AWS

Lambda

Amazon

S3

CloudFront Etchellip

Operating in the hybrid ecosystem VM internet access

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect to

a virtual

machine

from the

Internet

Assign

Elastic

IP

Configure

NAT

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Security and governance

bull VMware Cloud transit endpoints rest within the customer-owned VPC

bull Customers maintain access security control of the transit path using

standard AWS security practices (security groups NACL flow logs and so

on)

bull vMotion traffic is encrypted (new in 65)

bull VM-level encryption (new in 65)

bull Audit-quality logging (new in 65)

bull Fully managed offering delivered by VMware

bull VMware manages the infrastructure patching and upgrades of the VMware

Cloud environment

Demo

Thank you

Remember to complete

your evaluations

Page 4: AWS re:Invent 2016: VMware and AWS Together - VMware Cloud on AWS (ENT317)

VMware Cloud on AWS enables faster hybrid cloud adoption by removing these barriers

Common challenges with hybrid cloud adoption

Incongruent networks

Operational inconsistencies

Multiple monitoring amp

control mechanisms

Multiple virtual machine formats

Differing security baselines

Introducing VMware Cloud on AWS

Customer data

center

Management

(vCenter Server) VMware Cloud on AWS

AWS global infrastructureAWS global infrastructure

vRealize Suite PowerCLI

Access to all AWS services

Amazon

EC2

Amazon

S3

Amazon

RDS

AWS Direct

ConnectAWS Identity amp Access

Management (IAM)

Amazon

Redshift

hellip

hellip

hellip

hellip

AWS CloudFormation CLI SDK

vCenter Server

VMware Cloud on AWS is a VMware service

VMware Cloud on AWS

AWS global infrastructure

Service is sold delivered operated and supported directly by VMware

What is vSphere

VMware Cloud on AWS

AWS global infrastructure

bull Industry leading private

compute virtualization platform

bull ESXi 65 on bare-metal hosts

bull Fully featured

vMotion

DRS

HA

vSphere

bull ESXi on dedicated hardware

bull Support for containers and VMs

What is VSAN

VMware Cloud on AWS

AWS global infrastructure

bull Industry leading private storage

virtualization platform

bull Flash SSD on bare-metal hosts

bull Fully featured

Deduplication

Compression

Erasure coding

bull VSAN on flash storage and EBS

bull Replication and DR orchestration

VSAN

What is NSX

VMware Cloud on AWS

AWS global infrastructure

bull Industry leading private SDDC

network virtualization platform

bull 10 Gbps+ NICs on bare-metal

bull Fully Featured

Switching

Routing

Firewalling

Load balancing

VPN

bull NSX spanning on-prem and cloud

bull Advanced networksecurity services

NSX

Customer decides on and places workloads between on-premises DC and AWS

Common scenarios and use cases

Scenario 1

Maintain and expand

ExpandMaintain

Geo expansion

Disaster recovery and

backup

Scenario 3

Workload flexibility

Prod dev test lab and training

Burst capacity

Flex as needed

Scenario 2

Consolidate and migrate

MigrateConsolidate

Data center consolidation

Application migration

Solution overview

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a servicersquo from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

1 Service console and API endpoint

Administrative interfaces for provisioning and billing

bull httpsvmcvmwarecom

bull My VMware Authentication

bull Responsive HTML5 interface

including support for mobile

bull REST API for

ndash Provisioning

ndash Scaling

ndash Billing

Overview

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

2 VMware Cloud on AWS

VMware

operated

supported and

maintained

Gateway Gateway hellip

Fully configured VMware software stack

running on state of the art infrastructure

provisioned on-demand in minutes

Latest software

bull VCSA ESXi NSX VSAN H5 client

Dynamic capacity

bull DRSHA compute cluster (intel x86)

bull VSAN storage cluster (SSD)

bull NSX network virtualization (10 Gbps++)

Flexible topology

bull Standalone cloud cluster

bull Hybrid connectivity to on-premises

bull Cloud to cloud connectivity

Overview

vCenter

Server

NSX

Manager

hellip

hellip

hellip

ESXi

ESXi

ESXi

hellipESXi

hellipESXi

hellipESXi

VMware Cloud

Single tenant (dedicated) bare metal

Amazon EC2 hardware

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

3 AWS Cloud integration

AWS global infrastructure

VMware Cloud on AWS Access to all native AWS Services

Amazon

EC2

Amazon

S3

Amazon

RDS

AWS Direct

ConnectIAMAWS IoT

hellip

hellip

hellip

hellip

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

4 Delivered as a service from VMware

The fully configured VMware Cloud software

stack running will be provisioned operated and

maintained directly by VMware

Provisioning

bull Automated account creation and environment

provisioning by using the API

bull Automated interconnection created between

VMware and AWS customer accounts

Operations

bull Support provided by VMware directly

bull Ongoing infrastructure monitoring

Maintenance

bull Ongoing stack maintenance managed

directly by VMware

Overview

Technical drilldown

Account structure

bull VMware Cloud VPC account

bull A new AWS solution account is created for each customer

bull Is owned operated and paid directly by the VMware

bull Each solution account is single tenant for all ESXi hosts

bull Solution account is linked to a VMware Master-Payor account

bull AWS customer VPC account

bull Is owned operated and paid directly by the customer

bull Has full access to VMware Cloud endpoints within the VPC

bull VMware Cloud endpoints are automatically deployed into the

customer VPC with customer consent

bull Has full access to the entire catalog of native AWS services within

the AWS Region of deployment

Existing customer environment

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

No NSX in your current VMware environment

Deploy a standalone NSX Edge appliance into

your existing vSphere environment to extend

the VMware Cloud on AWS environment to your

premises

No problemhellip

Provision VMware Cloud VPC

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

VMware Cloud VPC

ESXi

Amazon EC2

The full VMware Cloud on AWS

stack will be auto-provisioned

and configured at launch into a

single tenant AWS account

(owned and operated by

VMware)

Build customer VPC

Customer Data Center

Customer VPC

VPC subnet VPC subnet

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

VMware Cloud VPC

ESXi

Amazon EC2

A customer-owned AWS

account is created andor

assigned to interoperate with

the VMware Cloud VPC

Connect data center to customer VPC

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Customer VPC

VPC subnet VPC subnet

AWS Direct

Connect

Private

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Private connectivity is

established from the

customer data center to

the customer VPC

Link VMware Cloud VPC and customer VPC

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Private

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Link the VMware Cloud

VPC and the Customer

VPC using private VPC

endpoints

Deploy and consume native AWS services

Customer VPC VMware Cloud VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

ESXi

Amazon EC2

Internet

Private

VIF

Public

VIF

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem examples

bull Use X-vMotion to migrate a virtual machine from a customer data

center to VMware Cloud on AWS

bull Copy an object from a virtual machine in VMware Cloud to an

Amazon S3 bucket

bull Connect a virtual machine in VMware Cloud to an Amazon

Redshift cluster

bull Connect web server hosted on a virtual machine in VMware Cloud

using public Internet access

Operating in the hybrid ecosystem X-vMotion

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

vMotion from site to VMware Cloud

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon S3

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Copy an

object from

virtual

machine to

S3 Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon Redshift

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect

virtual

machine to

Amazon

Redshift Regional AWS Services

AWS

Lambda

Amazon

S3

CloudFront Etchellip

Operating in the hybrid ecosystem VM internet access

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect to

a virtual

machine

from the

Internet

Assign

Elastic

IP

Configure

NAT

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Security and governance

bull VMware Cloud transit endpoints rest within the customer-owned VPC

bull Customers maintain access security control of the transit path using

standard AWS security practices (security groups NACL flow logs and so

on)

bull vMotion traffic is encrypted (new in 65)

bull VM-level encryption (new in 65)

bull Audit-quality logging (new in 65)

bull Fully managed offering delivered by VMware

bull VMware manages the infrastructure patching and upgrades of the VMware

Cloud environment

Demo

Thank you

Remember to complete

your evaluations

Page 5: AWS re:Invent 2016: VMware and AWS Together - VMware Cloud on AWS (ENT317)

Introducing VMware Cloud on AWS

Customer data

center

Management

(vCenter Server) VMware Cloud on AWS

AWS global infrastructureAWS global infrastructure

vRealize Suite PowerCLI

Access to all AWS services

Amazon

EC2

Amazon

S3

Amazon

RDS

AWS Direct

ConnectAWS Identity amp Access

Management (IAM)

Amazon

Redshift

hellip

hellip

hellip

hellip

AWS CloudFormation CLI SDK

vCenter Server

VMware Cloud on AWS is a VMware service

VMware Cloud on AWS

AWS global infrastructure

Service is sold delivered operated and supported directly by VMware

What is vSphere

VMware Cloud on AWS

AWS global infrastructure

bull Industry leading private

compute virtualization platform

bull ESXi 65 on bare-metal hosts

bull Fully featured

vMotion

DRS

HA

vSphere

bull ESXi on dedicated hardware

bull Support for containers and VMs

What is VSAN

VMware Cloud on AWS

AWS global infrastructure

bull Industry leading private storage

virtualization platform

bull Flash SSD on bare-metal hosts

bull Fully featured

Deduplication

Compression

Erasure coding

bull VSAN on flash storage and EBS

bull Replication and DR orchestration

VSAN

What is NSX

VMware Cloud on AWS

AWS global infrastructure

bull Industry leading private SDDC

network virtualization platform

bull 10 Gbps+ NICs on bare-metal

bull Fully Featured

Switching

Routing

Firewalling

Load balancing

VPN

bull NSX spanning on-prem and cloud

bull Advanced networksecurity services

NSX

Customer decides on and places workloads between on-premises DC and AWS

Common scenarios and use cases

Scenario 1

Maintain and expand

ExpandMaintain

Geo expansion

Disaster recovery and

backup

Scenario 3

Workload flexibility

Prod dev test lab and training

Burst capacity

Flex as needed

Scenario 2

Consolidate and migrate

MigrateConsolidate

Data center consolidation

Application migration

Solution overview

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a servicersquo from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

1 Service console and API endpoint

Administrative interfaces for provisioning and billing

bull httpsvmcvmwarecom

bull My VMware Authentication

bull Responsive HTML5 interface

including support for mobile

bull REST API for

ndash Provisioning

ndash Scaling

ndash Billing

Overview

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

2 VMware Cloud on AWS

VMware

operated

supported and

maintained

Gateway Gateway hellip

Fully configured VMware software stack

running on state of the art infrastructure

provisioned on-demand in minutes

Latest software

bull VCSA ESXi NSX VSAN H5 client

Dynamic capacity

bull DRSHA compute cluster (intel x86)

bull VSAN storage cluster (SSD)

bull NSX network virtualization (10 Gbps++)

Flexible topology

bull Standalone cloud cluster

bull Hybrid connectivity to on-premises

bull Cloud to cloud connectivity

Overview

vCenter

Server

NSX

Manager

hellip

hellip

hellip

ESXi

ESXi

ESXi

hellipESXi

hellipESXi

hellipESXi

VMware Cloud

Single tenant (dedicated) bare metal

Amazon EC2 hardware

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

3 AWS Cloud integration

AWS global infrastructure

VMware Cloud on AWS Access to all native AWS Services

Amazon

EC2

Amazon

S3

Amazon

RDS

AWS Direct

ConnectIAMAWS IoT

hellip

hellip

hellip

hellip

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

4 Delivered as a service from VMware

The fully configured VMware Cloud software

stack running will be provisioned operated and

maintained directly by VMware

Provisioning

bull Automated account creation and environment

provisioning by using the API

bull Automated interconnection created between

VMware and AWS customer accounts

Operations

bull Support provided by VMware directly

bull Ongoing infrastructure monitoring

Maintenance

bull Ongoing stack maintenance managed

directly by VMware

Overview

Technical drilldown

Account structure

bull VMware Cloud VPC account

bull A new AWS solution account is created for each customer

bull Is owned operated and paid directly by the VMware

bull Each solution account is single tenant for all ESXi hosts

bull Solution account is linked to a VMware Master-Payor account

bull AWS customer VPC account

bull Is owned operated and paid directly by the customer

bull Has full access to VMware Cloud endpoints within the VPC

bull VMware Cloud endpoints are automatically deployed into the

customer VPC with customer consent

bull Has full access to the entire catalog of native AWS services within

the AWS Region of deployment

Existing customer environment

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

No NSX in your current VMware environment

Deploy a standalone NSX Edge appliance into

your existing vSphere environment to extend

the VMware Cloud on AWS environment to your

premises

No problemhellip

Provision VMware Cloud VPC

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

VMware Cloud VPC

ESXi

Amazon EC2

The full VMware Cloud on AWS

stack will be auto-provisioned

and configured at launch into a

single tenant AWS account

(owned and operated by

VMware)

Build customer VPC

Customer Data Center

Customer VPC

VPC subnet VPC subnet

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

VMware Cloud VPC

ESXi

Amazon EC2

A customer-owned AWS

account is created andor

assigned to interoperate with

the VMware Cloud VPC

Connect data center to customer VPC

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Customer VPC

VPC subnet VPC subnet

AWS Direct

Connect

Private

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Private connectivity is

established from the

customer data center to

the customer VPC

Link VMware Cloud VPC and customer VPC

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Private

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Link the VMware Cloud

VPC and the Customer

VPC using private VPC

endpoints

Deploy and consume native AWS services

Customer VPC VMware Cloud VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

ESXi

Amazon EC2

Internet

Private

VIF

Public

VIF

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem examples

bull Use X-vMotion to migrate a virtual machine from a customer data

center to VMware Cloud on AWS

bull Copy an object from a virtual machine in VMware Cloud to an

Amazon S3 bucket

bull Connect a virtual machine in VMware Cloud to an Amazon

Redshift cluster

bull Connect web server hosted on a virtual machine in VMware Cloud

using public Internet access

Operating in the hybrid ecosystem X-vMotion

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

vMotion from site to VMware Cloud

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon S3

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Copy an

object from

virtual

machine to

S3 Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon Redshift

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect

virtual

machine to

Amazon

Redshift Regional AWS Services

AWS

Lambda

Amazon

S3

CloudFront Etchellip

Operating in the hybrid ecosystem VM internet access

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect to

a virtual

machine

from the

Internet

Assign

Elastic

IP

Configure

NAT

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Security and governance

bull VMware Cloud transit endpoints rest within the customer-owned VPC

bull Customers maintain access security control of the transit path using

standard AWS security practices (security groups NACL flow logs and so

on)

bull vMotion traffic is encrypted (new in 65)

bull VM-level encryption (new in 65)

bull Audit-quality logging (new in 65)

bull Fully managed offering delivered by VMware

bull VMware manages the infrastructure patching and upgrades of the VMware

Cloud environment

Demo

Thank you

Remember to complete

your evaluations

Page 6: AWS re:Invent 2016: VMware and AWS Together - VMware Cloud on AWS (ENT317)

VMware Cloud on AWS is a VMware service

VMware Cloud on AWS

AWS global infrastructure

Service is sold delivered operated and supported directly by VMware

What is vSphere

VMware Cloud on AWS

AWS global infrastructure

bull Industry leading private

compute virtualization platform

bull ESXi 65 on bare-metal hosts

bull Fully featured

vMotion

DRS

HA

vSphere

bull ESXi on dedicated hardware

bull Support for containers and VMs

What is VSAN

VMware Cloud on AWS

AWS global infrastructure

bull Industry leading private storage

virtualization platform

bull Flash SSD on bare-metal hosts

bull Fully featured

Deduplication

Compression

Erasure coding

bull VSAN on flash storage and EBS

bull Replication and DR orchestration

VSAN

What is NSX

VMware Cloud on AWS

AWS global infrastructure

bull Industry leading private SDDC

network virtualization platform

bull 10 Gbps+ NICs on bare-metal

bull Fully Featured

Switching

Routing

Firewalling

Load balancing

VPN

bull NSX spanning on-prem and cloud

bull Advanced networksecurity services

NSX

Customer decides on and places workloads between on-premises DC and AWS

Common scenarios and use cases

Scenario 1

Maintain and expand

ExpandMaintain

Geo expansion

Disaster recovery and

backup

Scenario 3

Workload flexibility

Prod dev test lab and training

Burst capacity

Flex as needed

Scenario 2

Consolidate and migrate

MigrateConsolidate

Data center consolidation

Application migration

Solution overview

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a servicersquo from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

1 Service console and API endpoint

Administrative interfaces for provisioning and billing

bull httpsvmcvmwarecom

bull My VMware Authentication

bull Responsive HTML5 interface

including support for mobile

bull REST API for

ndash Provisioning

ndash Scaling

ndash Billing

Overview

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

2 VMware Cloud on AWS

VMware

operated

supported and

maintained

Gateway Gateway hellip

Fully configured VMware software stack

running on state of the art infrastructure

provisioned on-demand in minutes

Latest software

bull VCSA ESXi NSX VSAN H5 client

Dynamic capacity

bull DRSHA compute cluster (intel x86)

bull VSAN storage cluster (SSD)

bull NSX network virtualization (10 Gbps++)

Flexible topology

bull Standalone cloud cluster

bull Hybrid connectivity to on-premises

bull Cloud to cloud connectivity

Overview

vCenter

Server

NSX

Manager

hellip

hellip

hellip

ESXi

ESXi

ESXi

hellipESXi

hellipESXi

hellipESXi

VMware Cloud

Single tenant (dedicated) bare metal

Amazon EC2 hardware

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

3 AWS Cloud integration

AWS global infrastructure

VMware Cloud on AWS Access to all native AWS Services

Amazon

EC2

Amazon

S3

Amazon

RDS

AWS Direct

ConnectIAMAWS IoT

hellip

hellip

hellip

hellip

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

4 Delivered as a service from VMware

The fully configured VMware Cloud software

stack running will be provisioned operated and

maintained directly by VMware

Provisioning

bull Automated account creation and environment

provisioning by using the API

bull Automated interconnection created between

VMware and AWS customer accounts

Operations

bull Support provided by VMware directly

bull Ongoing infrastructure monitoring

Maintenance

bull Ongoing stack maintenance managed

directly by VMware

Overview

Technical drilldown

Account structure

bull VMware Cloud VPC account

bull A new AWS solution account is created for each customer

bull Is owned operated and paid directly by the VMware

bull Each solution account is single tenant for all ESXi hosts

bull Solution account is linked to a VMware Master-Payor account

bull AWS customer VPC account

bull Is owned operated and paid directly by the customer

bull Has full access to VMware Cloud endpoints within the VPC

bull VMware Cloud endpoints are automatically deployed into the

customer VPC with customer consent

bull Has full access to the entire catalog of native AWS services within

the AWS Region of deployment

Existing customer environment

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

No NSX in your current VMware environment

Deploy a standalone NSX Edge appliance into

your existing vSphere environment to extend

the VMware Cloud on AWS environment to your

premises

No problemhellip

Provision VMware Cloud VPC

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

VMware Cloud VPC

ESXi

Amazon EC2

The full VMware Cloud on AWS

stack will be auto-provisioned

and configured at launch into a

single tenant AWS account

(owned and operated by

VMware)

Build customer VPC

Customer Data Center

Customer VPC

VPC subnet VPC subnet

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

VMware Cloud VPC

ESXi

Amazon EC2

A customer-owned AWS

account is created andor

assigned to interoperate with

the VMware Cloud VPC

Connect data center to customer VPC

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Customer VPC

VPC subnet VPC subnet

AWS Direct

Connect

Private

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Private connectivity is

established from the

customer data center to

the customer VPC

Link VMware Cloud VPC and customer VPC

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Private

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Link the VMware Cloud

VPC and the Customer

VPC using private VPC

endpoints

Deploy and consume native AWS services

Customer VPC VMware Cloud VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

ESXi

Amazon EC2

Internet

Private

VIF

Public

VIF

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem examples

bull Use X-vMotion to migrate a virtual machine from a customer data

center to VMware Cloud on AWS

bull Copy an object from a virtual machine in VMware Cloud to an

Amazon S3 bucket

bull Connect a virtual machine in VMware Cloud to an Amazon

Redshift cluster

bull Connect web server hosted on a virtual machine in VMware Cloud

using public Internet access

Operating in the hybrid ecosystem X-vMotion

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

vMotion from site to VMware Cloud

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon S3

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Copy an

object from

virtual

machine to

S3 Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon Redshift

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect

virtual

machine to

Amazon

Redshift Regional AWS Services

AWS

Lambda

Amazon

S3

CloudFront Etchellip

Operating in the hybrid ecosystem VM internet access

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect to

a virtual

machine

from the

Internet

Assign

Elastic

IP

Configure

NAT

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Security and governance

bull VMware Cloud transit endpoints rest within the customer-owned VPC

bull Customers maintain access security control of the transit path using

standard AWS security practices (security groups NACL flow logs and so

on)

bull vMotion traffic is encrypted (new in 65)

bull VM-level encryption (new in 65)

bull Audit-quality logging (new in 65)

bull Fully managed offering delivered by VMware

bull VMware manages the infrastructure patching and upgrades of the VMware

Cloud environment

Demo

Thank you

Remember to complete

your evaluations

Page 7: AWS re:Invent 2016: VMware and AWS Together - VMware Cloud on AWS (ENT317)

What is vSphere

VMware Cloud on AWS

AWS global infrastructure

bull Industry leading private

compute virtualization platform

bull ESXi 65 on bare-metal hosts

bull Fully featured

vMotion

DRS

HA

vSphere

bull ESXi on dedicated hardware

bull Support for containers and VMs

What is VSAN

VMware Cloud on AWS

AWS global infrastructure

bull Industry leading private storage

virtualization platform

bull Flash SSD on bare-metal hosts

bull Fully featured

Deduplication

Compression

Erasure coding

bull VSAN on flash storage and EBS

bull Replication and DR orchestration

VSAN

What is NSX

VMware Cloud on AWS

AWS global infrastructure

bull Industry leading private SDDC

network virtualization platform

bull 10 Gbps+ NICs on bare-metal

bull Fully Featured

Switching

Routing

Firewalling

Load balancing

VPN

bull NSX spanning on-prem and cloud

bull Advanced networksecurity services

NSX

Customer decides on and places workloads between on-premises DC and AWS

Common scenarios and use cases

Scenario 1

Maintain and expand

ExpandMaintain

Geo expansion

Disaster recovery and

backup

Scenario 3

Workload flexibility

Prod dev test lab and training

Burst capacity

Flex as needed

Scenario 2

Consolidate and migrate

MigrateConsolidate

Data center consolidation

Application migration

Solution overview

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a servicersquo from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

1 Service console and API endpoint

Administrative interfaces for provisioning and billing

bull httpsvmcvmwarecom

bull My VMware Authentication

bull Responsive HTML5 interface

including support for mobile

bull REST API for

ndash Provisioning

ndash Scaling

ndash Billing

Overview

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

2 VMware Cloud on AWS

VMware

operated

supported and

maintained

Gateway Gateway hellip

Fully configured VMware software stack

running on state of the art infrastructure

provisioned on-demand in minutes

Latest software

bull VCSA ESXi NSX VSAN H5 client

Dynamic capacity

bull DRSHA compute cluster (intel x86)

bull VSAN storage cluster (SSD)

bull NSX network virtualization (10 Gbps++)

Flexible topology

bull Standalone cloud cluster

bull Hybrid connectivity to on-premises

bull Cloud to cloud connectivity

Overview

vCenter

Server

NSX

Manager

hellip

hellip

hellip

ESXi

ESXi

ESXi

hellipESXi

hellipESXi

hellipESXi

VMware Cloud

Single tenant (dedicated) bare metal

Amazon EC2 hardware

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

3 AWS Cloud integration

AWS global infrastructure

VMware Cloud on AWS Access to all native AWS Services

Amazon

EC2

Amazon

S3

Amazon

RDS

AWS Direct

ConnectIAMAWS IoT

hellip

hellip

hellip

hellip

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

4 Delivered as a service from VMware

The fully configured VMware Cloud software

stack running will be provisioned operated and

maintained directly by VMware

Provisioning

bull Automated account creation and environment

provisioning by using the API

bull Automated interconnection created between

VMware and AWS customer accounts

Operations

bull Support provided by VMware directly

bull Ongoing infrastructure monitoring

Maintenance

bull Ongoing stack maintenance managed

directly by VMware

Overview

Technical drilldown

Account structure

bull VMware Cloud VPC account

bull A new AWS solution account is created for each customer

bull Is owned operated and paid directly by the VMware

bull Each solution account is single tenant for all ESXi hosts

bull Solution account is linked to a VMware Master-Payor account

bull AWS customer VPC account

bull Is owned operated and paid directly by the customer

bull Has full access to VMware Cloud endpoints within the VPC

bull VMware Cloud endpoints are automatically deployed into the

customer VPC with customer consent

bull Has full access to the entire catalog of native AWS services within

the AWS Region of deployment

Existing customer environment

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

No NSX in your current VMware environment

Deploy a standalone NSX Edge appliance into

your existing vSphere environment to extend

the VMware Cloud on AWS environment to your

premises

No problemhellip

Provision VMware Cloud VPC

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

VMware Cloud VPC

ESXi

Amazon EC2

The full VMware Cloud on AWS

stack will be auto-provisioned

and configured at launch into a

single tenant AWS account

(owned and operated by

VMware)

Build customer VPC

Customer Data Center

Customer VPC

VPC subnet VPC subnet

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

VMware Cloud VPC

ESXi

Amazon EC2

A customer-owned AWS

account is created andor

assigned to interoperate with

the VMware Cloud VPC

Connect data center to customer VPC

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Customer VPC

VPC subnet VPC subnet

AWS Direct

Connect

Private

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Private connectivity is

established from the

customer data center to

the customer VPC

Link VMware Cloud VPC and customer VPC

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Private

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Link the VMware Cloud

VPC and the Customer

VPC using private VPC

endpoints

Deploy and consume native AWS services

Customer VPC VMware Cloud VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

ESXi

Amazon EC2

Internet

Private

VIF

Public

VIF

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem examples

bull Use X-vMotion to migrate a virtual machine from a customer data

center to VMware Cloud on AWS

bull Copy an object from a virtual machine in VMware Cloud to an

Amazon S3 bucket

bull Connect a virtual machine in VMware Cloud to an Amazon

Redshift cluster

bull Connect web server hosted on a virtual machine in VMware Cloud

using public Internet access

Operating in the hybrid ecosystem X-vMotion

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

vMotion from site to VMware Cloud

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon S3

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Copy an

object from

virtual

machine to

S3 Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon Redshift

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect

virtual

machine to

Amazon

Redshift Regional AWS Services

AWS

Lambda

Amazon

S3

CloudFront Etchellip

Operating in the hybrid ecosystem VM internet access

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect to

a virtual

machine

from the

Internet

Assign

Elastic

IP

Configure

NAT

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Security and governance

bull VMware Cloud transit endpoints rest within the customer-owned VPC

bull Customers maintain access security control of the transit path using

standard AWS security practices (security groups NACL flow logs and so

on)

bull vMotion traffic is encrypted (new in 65)

bull VM-level encryption (new in 65)

bull Audit-quality logging (new in 65)

bull Fully managed offering delivered by VMware

bull VMware manages the infrastructure patching and upgrades of the VMware

Cloud environment

Demo

Thank you

Remember to complete

your evaluations

Page 8: AWS re:Invent 2016: VMware and AWS Together - VMware Cloud on AWS (ENT317)

What is VSAN

VMware Cloud on AWS

AWS global infrastructure

bull Industry leading private storage

virtualization platform

bull Flash SSD on bare-metal hosts

bull Fully featured

Deduplication

Compression

Erasure coding

bull VSAN on flash storage and EBS

bull Replication and DR orchestration

VSAN

What is NSX

VMware Cloud on AWS

AWS global infrastructure

bull Industry leading private SDDC

network virtualization platform

bull 10 Gbps+ NICs on bare-metal

bull Fully Featured

Switching

Routing

Firewalling

Load balancing

VPN

bull NSX spanning on-prem and cloud

bull Advanced networksecurity services

NSX

Customer decides on and places workloads between on-premises DC and AWS

Common scenarios and use cases

Scenario 1

Maintain and expand

ExpandMaintain

Geo expansion

Disaster recovery and

backup

Scenario 3

Workload flexibility

Prod dev test lab and training

Burst capacity

Flex as needed

Scenario 2

Consolidate and migrate

MigrateConsolidate

Data center consolidation

Application migration

Solution overview

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a servicersquo from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

1 Service console and API endpoint

Administrative interfaces for provisioning and billing

bull httpsvmcvmwarecom

bull My VMware Authentication

bull Responsive HTML5 interface

including support for mobile

bull REST API for

ndash Provisioning

ndash Scaling

ndash Billing

Overview

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

2 VMware Cloud on AWS

VMware

operated

supported and

maintained

Gateway Gateway hellip

Fully configured VMware software stack

running on state of the art infrastructure

provisioned on-demand in minutes

Latest software

bull VCSA ESXi NSX VSAN H5 client

Dynamic capacity

bull DRSHA compute cluster (intel x86)

bull VSAN storage cluster (SSD)

bull NSX network virtualization (10 Gbps++)

Flexible topology

bull Standalone cloud cluster

bull Hybrid connectivity to on-premises

bull Cloud to cloud connectivity

Overview

vCenter

Server

NSX

Manager

hellip

hellip

hellip

ESXi

ESXi

ESXi

hellipESXi

hellipESXi

hellipESXi

VMware Cloud

Single tenant (dedicated) bare metal

Amazon EC2 hardware

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

3 AWS Cloud integration

AWS global infrastructure

VMware Cloud on AWS Access to all native AWS Services

Amazon

EC2

Amazon

S3

Amazon

RDS

AWS Direct

ConnectIAMAWS IoT

hellip

hellip

hellip

hellip

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

4 Delivered as a service from VMware

The fully configured VMware Cloud software

stack running will be provisioned operated and

maintained directly by VMware

Provisioning

bull Automated account creation and environment

provisioning by using the API

bull Automated interconnection created between

VMware and AWS customer accounts

Operations

bull Support provided by VMware directly

bull Ongoing infrastructure monitoring

Maintenance

bull Ongoing stack maintenance managed

directly by VMware

Overview

Technical drilldown

Account structure

bull VMware Cloud VPC account

bull A new AWS solution account is created for each customer

bull Is owned operated and paid directly by the VMware

bull Each solution account is single tenant for all ESXi hosts

bull Solution account is linked to a VMware Master-Payor account

bull AWS customer VPC account

bull Is owned operated and paid directly by the customer

bull Has full access to VMware Cloud endpoints within the VPC

bull VMware Cloud endpoints are automatically deployed into the

customer VPC with customer consent

bull Has full access to the entire catalog of native AWS services within

the AWS Region of deployment

Existing customer environment

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

No NSX in your current VMware environment

Deploy a standalone NSX Edge appliance into

your existing vSphere environment to extend

the VMware Cloud on AWS environment to your

premises

No problemhellip

Provision VMware Cloud VPC

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

VMware Cloud VPC

ESXi

Amazon EC2

The full VMware Cloud on AWS

stack will be auto-provisioned

and configured at launch into a

single tenant AWS account

(owned and operated by

VMware)

Build customer VPC

Customer Data Center

Customer VPC

VPC subnet VPC subnet

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

VMware Cloud VPC

ESXi

Amazon EC2

A customer-owned AWS

account is created andor

assigned to interoperate with

the VMware Cloud VPC

Connect data center to customer VPC

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Customer VPC

VPC subnet VPC subnet

AWS Direct

Connect

Private

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Private connectivity is

established from the

customer data center to

the customer VPC

Link VMware Cloud VPC and customer VPC

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Private

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Link the VMware Cloud

VPC and the Customer

VPC using private VPC

endpoints

Deploy and consume native AWS services

Customer VPC VMware Cloud VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

ESXi

Amazon EC2

Internet

Private

VIF

Public

VIF

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem examples

bull Use X-vMotion to migrate a virtual machine from a customer data

center to VMware Cloud on AWS

bull Copy an object from a virtual machine in VMware Cloud to an

Amazon S3 bucket

bull Connect a virtual machine in VMware Cloud to an Amazon

Redshift cluster

bull Connect web server hosted on a virtual machine in VMware Cloud

using public Internet access

Operating in the hybrid ecosystem X-vMotion

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

vMotion from site to VMware Cloud

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon S3

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Copy an

object from

virtual

machine to

S3 Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon Redshift

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect

virtual

machine to

Amazon

Redshift Regional AWS Services

AWS

Lambda

Amazon

S3

CloudFront Etchellip

Operating in the hybrid ecosystem VM internet access

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect to

a virtual

machine

from the

Internet

Assign

Elastic

IP

Configure

NAT

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Security and governance

bull VMware Cloud transit endpoints rest within the customer-owned VPC

bull Customers maintain access security control of the transit path using

standard AWS security practices (security groups NACL flow logs and so

on)

bull vMotion traffic is encrypted (new in 65)

bull VM-level encryption (new in 65)

bull Audit-quality logging (new in 65)

bull Fully managed offering delivered by VMware

bull VMware manages the infrastructure patching and upgrades of the VMware

Cloud environment

Demo

Thank you

Remember to complete

your evaluations

Page 9: AWS re:Invent 2016: VMware and AWS Together - VMware Cloud on AWS (ENT317)

What is NSX

VMware Cloud on AWS

AWS global infrastructure

bull Industry leading private SDDC

network virtualization platform

bull 10 Gbps+ NICs on bare-metal

bull Fully Featured

Switching

Routing

Firewalling

Load balancing

VPN

bull NSX spanning on-prem and cloud

bull Advanced networksecurity services

NSX

Customer decides on and places workloads between on-premises DC and AWS

Common scenarios and use cases

Scenario 1

Maintain and expand

ExpandMaintain

Geo expansion

Disaster recovery and

backup

Scenario 3

Workload flexibility

Prod dev test lab and training

Burst capacity

Flex as needed

Scenario 2

Consolidate and migrate

MigrateConsolidate

Data center consolidation

Application migration

Solution overview

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a servicersquo from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

1 Service console and API endpoint

Administrative interfaces for provisioning and billing

bull httpsvmcvmwarecom

bull My VMware Authentication

bull Responsive HTML5 interface

including support for mobile

bull REST API for

ndash Provisioning

ndash Scaling

ndash Billing

Overview

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

2 VMware Cloud on AWS

VMware

operated

supported and

maintained

Gateway Gateway hellip

Fully configured VMware software stack

running on state of the art infrastructure

provisioned on-demand in minutes

Latest software

bull VCSA ESXi NSX VSAN H5 client

Dynamic capacity

bull DRSHA compute cluster (intel x86)

bull VSAN storage cluster (SSD)

bull NSX network virtualization (10 Gbps++)

Flexible topology

bull Standalone cloud cluster

bull Hybrid connectivity to on-premises

bull Cloud to cloud connectivity

Overview

vCenter

Server

NSX

Manager

hellip

hellip

hellip

ESXi

ESXi

ESXi

hellipESXi

hellipESXi

hellipESXi

VMware Cloud

Single tenant (dedicated) bare metal

Amazon EC2 hardware

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

3 AWS Cloud integration

AWS global infrastructure

VMware Cloud on AWS Access to all native AWS Services

Amazon

EC2

Amazon

S3

Amazon

RDS

AWS Direct

ConnectIAMAWS IoT

hellip

hellip

hellip

hellip

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

4 Delivered as a service from VMware

The fully configured VMware Cloud software

stack running will be provisioned operated and

maintained directly by VMware

Provisioning

bull Automated account creation and environment

provisioning by using the API

bull Automated interconnection created between

VMware and AWS customer accounts

Operations

bull Support provided by VMware directly

bull Ongoing infrastructure monitoring

Maintenance

bull Ongoing stack maintenance managed

directly by VMware

Overview

Technical drilldown

Account structure

bull VMware Cloud VPC account

bull A new AWS solution account is created for each customer

bull Is owned operated and paid directly by the VMware

bull Each solution account is single tenant for all ESXi hosts

bull Solution account is linked to a VMware Master-Payor account

bull AWS customer VPC account

bull Is owned operated and paid directly by the customer

bull Has full access to VMware Cloud endpoints within the VPC

bull VMware Cloud endpoints are automatically deployed into the

customer VPC with customer consent

bull Has full access to the entire catalog of native AWS services within

the AWS Region of deployment

Existing customer environment

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

No NSX in your current VMware environment

Deploy a standalone NSX Edge appliance into

your existing vSphere environment to extend

the VMware Cloud on AWS environment to your

premises

No problemhellip

Provision VMware Cloud VPC

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

VMware Cloud VPC

ESXi

Amazon EC2

The full VMware Cloud on AWS

stack will be auto-provisioned

and configured at launch into a

single tenant AWS account

(owned and operated by

VMware)

Build customer VPC

Customer Data Center

Customer VPC

VPC subnet VPC subnet

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

VMware Cloud VPC

ESXi

Amazon EC2

A customer-owned AWS

account is created andor

assigned to interoperate with

the VMware Cloud VPC

Connect data center to customer VPC

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Customer VPC

VPC subnet VPC subnet

AWS Direct

Connect

Private

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Private connectivity is

established from the

customer data center to

the customer VPC

Link VMware Cloud VPC and customer VPC

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Private

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Link the VMware Cloud

VPC and the Customer

VPC using private VPC

endpoints

Deploy and consume native AWS services

Customer VPC VMware Cloud VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

ESXi

Amazon EC2

Internet

Private

VIF

Public

VIF

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem examples

bull Use X-vMotion to migrate a virtual machine from a customer data

center to VMware Cloud on AWS

bull Copy an object from a virtual machine in VMware Cloud to an

Amazon S3 bucket

bull Connect a virtual machine in VMware Cloud to an Amazon

Redshift cluster

bull Connect web server hosted on a virtual machine in VMware Cloud

using public Internet access

Operating in the hybrid ecosystem X-vMotion

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

vMotion from site to VMware Cloud

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon S3

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Copy an

object from

virtual

machine to

S3 Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon Redshift

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect

virtual

machine to

Amazon

Redshift Regional AWS Services

AWS

Lambda

Amazon

S3

CloudFront Etchellip

Operating in the hybrid ecosystem VM internet access

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect to

a virtual

machine

from the

Internet

Assign

Elastic

IP

Configure

NAT

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Security and governance

bull VMware Cloud transit endpoints rest within the customer-owned VPC

bull Customers maintain access security control of the transit path using

standard AWS security practices (security groups NACL flow logs and so

on)

bull vMotion traffic is encrypted (new in 65)

bull VM-level encryption (new in 65)

bull Audit-quality logging (new in 65)

bull Fully managed offering delivered by VMware

bull VMware manages the infrastructure patching and upgrades of the VMware

Cloud environment

Demo

Thank you

Remember to complete

your evaluations

Page 10: AWS re:Invent 2016: VMware and AWS Together - VMware Cloud on AWS (ENT317)

Customer decides on and places workloads between on-premises DC and AWS

Common scenarios and use cases

Scenario 1

Maintain and expand

ExpandMaintain

Geo expansion

Disaster recovery and

backup

Scenario 3

Workload flexibility

Prod dev test lab and training

Burst capacity

Flex as needed

Scenario 2

Consolidate and migrate

MigrateConsolidate

Data center consolidation

Application migration

Solution overview

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a servicersquo from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

1 Service console and API endpoint

Administrative interfaces for provisioning and billing

bull httpsvmcvmwarecom

bull My VMware Authentication

bull Responsive HTML5 interface

including support for mobile

bull REST API for

ndash Provisioning

ndash Scaling

ndash Billing

Overview

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

2 VMware Cloud on AWS

VMware

operated

supported and

maintained

Gateway Gateway hellip

Fully configured VMware software stack

running on state of the art infrastructure

provisioned on-demand in minutes

Latest software

bull VCSA ESXi NSX VSAN H5 client

Dynamic capacity

bull DRSHA compute cluster (intel x86)

bull VSAN storage cluster (SSD)

bull NSX network virtualization (10 Gbps++)

Flexible topology

bull Standalone cloud cluster

bull Hybrid connectivity to on-premises

bull Cloud to cloud connectivity

Overview

vCenter

Server

NSX

Manager

hellip

hellip

hellip

ESXi

ESXi

ESXi

hellipESXi

hellipESXi

hellipESXi

VMware Cloud

Single tenant (dedicated) bare metal

Amazon EC2 hardware

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

3 AWS Cloud integration

AWS global infrastructure

VMware Cloud on AWS Access to all native AWS Services

Amazon

EC2

Amazon

S3

Amazon

RDS

AWS Direct

ConnectIAMAWS IoT

hellip

hellip

hellip

hellip

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

4 Delivered as a service from VMware

The fully configured VMware Cloud software

stack running will be provisioned operated and

maintained directly by VMware

Provisioning

bull Automated account creation and environment

provisioning by using the API

bull Automated interconnection created between

VMware and AWS customer accounts

Operations

bull Support provided by VMware directly

bull Ongoing infrastructure monitoring

Maintenance

bull Ongoing stack maintenance managed

directly by VMware

Overview

Technical drilldown

Account structure

bull VMware Cloud VPC account

bull A new AWS solution account is created for each customer

bull Is owned operated and paid directly by the VMware

bull Each solution account is single tenant for all ESXi hosts

bull Solution account is linked to a VMware Master-Payor account

bull AWS customer VPC account

bull Is owned operated and paid directly by the customer

bull Has full access to VMware Cloud endpoints within the VPC

bull VMware Cloud endpoints are automatically deployed into the

customer VPC with customer consent

bull Has full access to the entire catalog of native AWS services within

the AWS Region of deployment

Existing customer environment

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

No NSX in your current VMware environment

Deploy a standalone NSX Edge appliance into

your existing vSphere environment to extend

the VMware Cloud on AWS environment to your

premises

No problemhellip

Provision VMware Cloud VPC

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

VMware Cloud VPC

ESXi

Amazon EC2

The full VMware Cloud on AWS

stack will be auto-provisioned

and configured at launch into a

single tenant AWS account

(owned and operated by

VMware)

Build customer VPC

Customer Data Center

Customer VPC

VPC subnet VPC subnet

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

VMware Cloud VPC

ESXi

Amazon EC2

A customer-owned AWS

account is created andor

assigned to interoperate with

the VMware Cloud VPC

Connect data center to customer VPC

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Customer VPC

VPC subnet VPC subnet

AWS Direct

Connect

Private

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Private connectivity is

established from the

customer data center to

the customer VPC

Link VMware Cloud VPC and customer VPC

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Private

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Link the VMware Cloud

VPC and the Customer

VPC using private VPC

endpoints

Deploy and consume native AWS services

Customer VPC VMware Cloud VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

ESXi

Amazon EC2

Internet

Private

VIF

Public

VIF

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem examples

bull Use X-vMotion to migrate a virtual machine from a customer data

center to VMware Cloud on AWS

bull Copy an object from a virtual machine in VMware Cloud to an

Amazon S3 bucket

bull Connect a virtual machine in VMware Cloud to an Amazon

Redshift cluster

bull Connect web server hosted on a virtual machine in VMware Cloud

using public Internet access

Operating in the hybrid ecosystem X-vMotion

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

vMotion from site to VMware Cloud

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon S3

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Copy an

object from

virtual

machine to

S3 Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon Redshift

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect

virtual

machine to

Amazon

Redshift Regional AWS Services

AWS

Lambda

Amazon

S3

CloudFront Etchellip

Operating in the hybrid ecosystem VM internet access

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect to

a virtual

machine

from the

Internet

Assign

Elastic

IP

Configure

NAT

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Security and governance

bull VMware Cloud transit endpoints rest within the customer-owned VPC

bull Customers maintain access security control of the transit path using

standard AWS security practices (security groups NACL flow logs and so

on)

bull vMotion traffic is encrypted (new in 65)

bull VM-level encryption (new in 65)

bull Audit-quality logging (new in 65)

bull Fully managed offering delivered by VMware

bull VMware manages the infrastructure patching and upgrades of the VMware

Cloud environment

Demo

Thank you

Remember to complete

your evaluations

Page 11: AWS re:Invent 2016: VMware and AWS Together - VMware Cloud on AWS (ENT317)

Solution overview

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a servicersquo from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

1 Service console and API endpoint

Administrative interfaces for provisioning and billing

bull httpsvmcvmwarecom

bull My VMware Authentication

bull Responsive HTML5 interface

including support for mobile

bull REST API for

ndash Provisioning

ndash Scaling

ndash Billing

Overview

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

2 VMware Cloud on AWS

VMware

operated

supported and

maintained

Gateway Gateway hellip

Fully configured VMware software stack

running on state of the art infrastructure

provisioned on-demand in minutes

Latest software

bull VCSA ESXi NSX VSAN H5 client

Dynamic capacity

bull DRSHA compute cluster (intel x86)

bull VSAN storage cluster (SSD)

bull NSX network virtualization (10 Gbps++)

Flexible topology

bull Standalone cloud cluster

bull Hybrid connectivity to on-premises

bull Cloud to cloud connectivity

Overview

vCenter

Server

NSX

Manager

hellip

hellip

hellip

ESXi

ESXi

ESXi

hellipESXi

hellipESXi

hellipESXi

VMware Cloud

Single tenant (dedicated) bare metal

Amazon EC2 hardware

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

3 AWS Cloud integration

AWS global infrastructure

VMware Cloud on AWS Access to all native AWS Services

Amazon

EC2

Amazon

S3

Amazon

RDS

AWS Direct

ConnectIAMAWS IoT

hellip

hellip

hellip

hellip

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

4 Delivered as a service from VMware

The fully configured VMware Cloud software

stack running will be provisioned operated and

maintained directly by VMware

Provisioning

bull Automated account creation and environment

provisioning by using the API

bull Automated interconnection created between

VMware and AWS customer accounts

Operations

bull Support provided by VMware directly

bull Ongoing infrastructure monitoring

Maintenance

bull Ongoing stack maintenance managed

directly by VMware

Overview

Technical drilldown

Account structure

bull VMware Cloud VPC account

bull A new AWS solution account is created for each customer

bull Is owned operated and paid directly by the VMware

bull Each solution account is single tenant for all ESXi hosts

bull Solution account is linked to a VMware Master-Payor account

bull AWS customer VPC account

bull Is owned operated and paid directly by the customer

bull Has full access to VMware Cloud endpoints within the VPC

bull VMware Cloud endpoints are automatically deployed into the

customer VPC with customer consent

bull Has full access to the entire catalog of native AWS services within

the AWS Region of deployment

Existing customer environment

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

No NSX in your current VMware environment

Deploy a standalone NSX Edge appliance into

your existing vSphere environment to extend

the VMware Cloud on AWS environment to your

premises

No problemhellip

Provision VMware Cloud VPC

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

VMware Cloud VPC

ESXi

Amazon EC2

The full VMware Cloud on AWS

stack will be auto-provisioned

and configured at launch into a

single tenant AWS account

(owned and operated by

VMware)

Build customer VPC

Customer Data Center

Customer VPC

VPC subnet VPC subnet

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

VMware Cloud VPC

ESXi

Amazon EC2

A customer-owned AWS

account is created andor

assigned to interoperate with

the VMware Cloud VPC

Connect data center to customer VPC

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Customer VPC

VPC subnet VPC subnet

AWS Direct

Connect

Private

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Private connectivity is

established from the

customer data center to

the customer VPC

Link VMware Cloud VPC and customer VPC

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Private

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Link the VMware Cloud

VPC and the Customer

VPC using private VPC

endpoints

Deploy and consume native AWS services

Customer VPC VMware Cloud VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

ESXi

Amazon EC2

Internet

Private

VIF

Public

VIF

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem examples

bull Use X-vMotion to migrate a virtual machine from a customer data

center to VMware Cloud on AWS

bull Copy an object from a virtual machine in VMware Cloud to an

Amazon S3 bucket

bull Connect a virtual machine in VMware Cloud to an Amazon

Redshift cluster

bull Connect web server hosted on a virtual machine in VMware Cloud

using public Internet access

Operating in the hybrid ecosystem X-vMotion

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

vMotion from site to VMware Cloud

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon S3

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Copy an

object from

virtual

machine to

S3 Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon Redshift

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect

virtual

machine to

Amazon

Redshift Regional AWS Services

AWS

Lambda

Amazon

S3

CloudFront Etchellip

Operating in the hybrid ecosystem VM internet access

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect to

a virtual

machine

from the

Internet

Assign

Elastic

IP

Configure

NAT

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Security and governance

bull VMware Cloud transit endpoints rest within the customer-owned VPC

bull Customers maintain access security control of the transit path using

standard AWS security practices (security groups NACL flow logs and so

on)

bull vMotion traffic is encrypted (new in 65)

bull VM-level encryption (new in 65)

bull Audit-quality logging (new in 65)

bull Fully managed offering delivered by VMware

bull VMware manages the infrastructure patching and upgrades of the VMware

Cloud environment

Demo

Thank you

Remember to complete

your evaluations

Page 12: AWS re:Invent 2016: VMware and AWS Together - VMware Cloud on AWS (ENT317)

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a servicersquo from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

1 Service console and API endpoint

Administrative interfaces for provisioning and billing

bull httpsvmcvmwarecom

bull My VMware Authentication

bull Responsive HTML5 interface

including support for mobile

bull REST API for

ndash Provisioning

ndash Scaling

ndash Billing

Overview

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

2 VMware Cloud on AWS

VMware

operated

supported and

maintained

Gateway Gateway hellip

Fully configured VMware software stack

running on state of the art infrastructure

provisioned on-demand in minutes

Latest software

bull VCSA ESXi NSX VSAN H5 client

Dynamic capacity

bull DRSHA compute cluster (intel x86)

bull VSAN storage cluster (SSD)

bull NSX network virtualization (10 Gbps++)

Flexible topology

bull Standalone cloud cluster

bull Hybrid connectivity to on-premises

bull Cloud to cloud connectivity

Overview

vCenter

Server

NSX

Manager

hellip

hellip

hellip

ESXi

ESXi

ESXi

hellipESXi

hellipESXi

hellipESXi

VMware Cloud

Single tenant (dedicated) bare metal

Amazon EC2 hardware

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

3 AWS Cloud integration

AWS global infrastructure

VMware Cloud on AWS Access to all native AWS Services

Amazon

EC2

Amazon

S3

Amazon

RDS

AWS Direct

ConnectIAMAWS IoT

hellip

hellip

hellip

hellip

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

4 Delivered as a service from VMware

The fully configured VMware Cloud software

stack running will be provisioned operated and

maintained directly by VMware

Provisioning

bull Automated account creation and environment

provisioning by using the API

bull Automated interconnection created between

VMware and AWS customer accounts

Operations

bull Support provided by VMware directly

bull Ongoing infrastructure monitoring

Maintenance

bull Ongoing stack maintenance managed

directly by VMware

Overview

Technical drilldown

Account structure

bull VMware Cloud VPC account

bull A new AWS solution account is created for each customer

bull Is owned operated and paid directly by the VMware

bull Each solution account is single tenant for all ESXi hosts

bull Solution account is linked to a VMware Master-Payor account

bull AWS customer VPC account

bull Is owned operated and paid directly by the customer

bull Has full access to VMware Cloud endpoints within the VPC

bull VMware Cloud endpoints are automatically deployed into the

customer VPC with customer consent

bull Has full access to the entire catalog of native AWS services within

the AWS Region of deployment

Existing customer environment

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

No NSX in your current VMware environment

Deploy a standalone NSX Edge appliance into

your existing vSphere environment to extend

the VMware Cloud on AWS environment to your

premises

No problemhellip

Provision VMware Cloud VPC

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

VMware Cloud VPC

ESXi

Amazon EC2

The full VMware Cloud on AWS

stack will be auto-provisioned

and configured at launch into a

single tenant AWS account

(owned and operated by

VMware)

Build customer VPC

Customer Data Center

Customer VPC

VPC subnet VPC subnet

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

VMware Cloud VPC

ESXi

Amazon EC2

A customer-owned AWS

account is created andor

assigned to interoperate with

the VMware Cloud VPC

Connect data center to customer VPC

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Customer VPC

VPC subnet VPC subnet

AWS Direct

Connect

Private

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Private connectivity is

established from the

customer data center to

the customer VPC

Link VMware Cloud VPC and customer VPC

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Private

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Link the VMware Cloud

VPC and the Customer

VPC using private VPC

endpoints

Deploy and consume native AWS services

Customer VPC VMware Cloud VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

ESXi

Amazon EC2

Internet

Private

VIF

Public

VIF

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem examples

bull Use X-vMotion to migrate a virtual machine from a customer data

center to VMware Cloud on AWS

bull Copy an object from a virtual machine in VMware Cloud to an

Amazon S3 bucket

bull Connect a virtual machine in VMware Cloud to an Amazon

Redshift cluster

bull Connect web server hosted on a virtual machine in VMware Cloud

using public Internet access

Operating in the hybrid ecosystem X-vMotion

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

vMotion from site to VMware Cloud

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon S3

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Copy an

object from

virtual

machine to

S3 Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon Redshift

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect

virtual

machine to

Amazon

Redshift Regional AWS Services

AWS

Lambda

Amazon

S3

CloudFront Etchellip

Operating in the hybrid ecosystem VM internet access

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect to

a virtual

machine

from the

Internet

Assign

Elastic

IP

Configure

NAT

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Security and governance

bull VMware Cloud transit endpoints rest within the customer-owned VPC

bull Customers maintain access security control of the transit path using

standard AWS security practices (security groups NACL flow logs and so

on)

bull vMotion traffic is encrypted (new in 65)

bull VM-level encryption (new in 65)

bull Audit-quality logging (new in 65)

bull Fully managed offering delivered by VMware

bull VMware manages the infrastructure patching and upgrades of the VMware

Cloud environment

Demo

Thank you

Remember to complete

your evaluations

Page 13: AWS re:Invent 2016: VMware and AWS Together - VMware Cloud on AWS (ENT317)

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a servicersquo from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

1 Service console and API endpoint

Administrative interfaces for provisioning and billing

bull httpsvmcvmwarecom

bull My VMware Authentication

bull Responsive HTML5 interface

including support for mobile

bull REST API for

ndash Provisioning

ndash Scaling

ndash Billing

Overview

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

2 VMware Cloud on AWS

VMware

operated

supported and

maintained

Gateway Gateway hellip

Fully configured VMware software stack

running on state of the art infrastructure

provisioned on-demand in minutes

Latest software

bull VCSA ESXi NSX VSAN H5 client

Dynamic capacity

bull DRSHA compute cluster (intel x86)

bull VSAN storage cluster (SSD)

bull NSX network virtualization (10 Gbps++)

Flexible topology

bull Standalone cloud cluster

bull Hybrid connectivity to on-premises

bull Cloud to cloud connectivity

Overview

vCenter

Server

NSX

Manager

hellip

hellip

hellip

ESXi

ESXi

ESXi

hellipESXi

hellipESXi

hellipESXi

VMware Cloud

Single tenant (dedicated) bare metal

Amazon EC2 hardware

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

3 AWS Cloud integration

AWS global infrastructure

VMware Cloud on AWS Access to all native AWS Services

Amazon

EC2

Amazon

S3

Amazon

RDS

AWS Direct

ConnectIAMAWS IoT

hellip

hellip

hellip

hellip

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

4 Delivered as a service from VMware

The fully configured VMware Cloud software

stack running will be provisioned operated and

maintained directly by VMware

Provisioning

bull Automated account creation and environment

provisioning by using the API

bull Automated interconnection created between

VMware and AWS customer accounts

Operations

bull Support provided by VMware directly

bull Ongoing infrastructure monitoring

Maintenance

bull Ongoing stack maintenance managed

directly by VMware

Overview

Technical drilldown

Account structure

bull VMware Cloud VPC account

bull A new AWS solution account is created for each customer

bull Is owned operated and paid directly by the VMware

bull Each solution account is single tenant for all ESXi hosts

bull Solution account is linked to a VMware Master-Payor account

bull AWS customer VPC account

bull Is owned operated and paid directly by the customer

bull Has full access to VMware Cloud endpoints within the VPC

bull VMware Cloud endpoints are automatically deployed into the

customer VPC with customer consent

bull Has full access to the entire catalog of native AWS services within

the AWS Region of deployment

Existing customer environment

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

No NSX in your current VMware environment

Deploy a standalone NSX Edge appliance into

your existing vSphere environment to extend

the VMware Cloud on AWS environment to your

premises

No problemhellip

Provision VMware Cloud VPC

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

VMware Cloud VPC

ESXi

Amazon EC2

The full VMware Cloud on AWS

stack will be auto-provisioned

and configured at launch into a

single tenant AWS account

(owned and operated by

VMware)

Build customer VPC

Customer Data Center

Customer VPC

VPC subnet VPC subnet

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

VMware Cloud VPC

ESXi

Amazon EC2

A customer-owned AWS

account is created andor

assigned to interoperate with

the VMware Cloud VPC

Connect data center to customer VPC

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Customer VPC

VPC subnet VPC subnet

AWS Direct

Connect

Private

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Private connectivity is

established from the

customer data center to

the customer VPC

Link VMware Cloud VPC and customer VPC

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Private

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Link the VMware Cloud

VPC and the Customer

VPC using private VPC

endpoints

Deploy and consume native AWS services

Customer VPC VMware Cloud VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

ESXi

Amazon EC2

Internet

Private

VIF

Public

VIF

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem examples

bull Use X-vMotion to migrate a virtual machine from a customer data

center to VMware Cloud on AWS

bull Copy an object from a virtual machine in VMware Cloud to an

Amazon S3 bucket

bull Connect a virtual machine in VMware Cloud to an Amazon

Redshift cluster

bull Connect web server hosted on a virtual machine in VMware Cloud

using public Internet access

Operating in the hybrid ecosystem X-vMotion

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

vMotion from site to VMware Cloud

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon S3

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Copy an

object from

virtual

machine to

S3 Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon Redshift

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect

virtual

machine to

Amazon

Redshift Regional AWS Services

AWS

Lambda

Amazon

S3

CloudFront Etchellip

Operating in the hybrid ecosystem VM internet access

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect to

a virtual

machine

from the

Internet

Assign

Elastic

IP

Configure

NAT

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Security and governance

bull VMware Cloud transit endpoints rest within the customer-owned VPC

bull Customers maintain access security control of the transit path using

standard AWS security practices (security groups NACL flow logs and so

on)

bull vMotion traffic is encrypted (new in 65)

bull VM-level encryption (new in 65)

bull Audit-quality logging (new in 65)

bull Fully managed offering delivered by VMware

bull VMware manages the infrastructure patching and upgrades of the VMware

Cloud environment

Demo

Thank you

Remember to complete

your evaluations

Page 14: AWS re:Invent 2016: VMware and AWS Together - VMware Cloud on AWS (ENT317)

1 Service console and API endpoint

Administrative interfaces for provisioning and billing

bull httpsvmcvmwarecom

bull My VMware Authentication

bull Responsive HTML5 interface

including support for mobile

bull REST API for

ndash Provisioning

ndash Scaling

ndash Billing

Overview

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

2 VMware Cloud on AWS

VMware

operated

supported and

maintained

Gateway Gateway hellip

Fully configured VMware software stack

running on state of the art infrastructure

provisioned on-demand in minutes

Latest software

bull VCSA ESXi NSX VSAN H5 client

Dynamic capacity

bull DRSHA compute cluster (intel x86)

bull VSAN storage cluster (SSD)

bull NSX network virtualization (10 Gbps++)

Flexible topology

bull Standalone cloud cluster

bull Hybrid connectivity to on-premises

bull Cloud to cloud connectivity

Overview

vCenter

Server

NSX

Manager

hellip

hellip

hellip

ESXi

ESXi

ESXi

hellipESXi

hellipESXi

hellipESXi

VMware Cloud

Single tenant (dedicated) bare metal

Amazon EC2 hardware

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

3 AWS Cloud integration

AWS global infrastructure

VMware Cloud on AWS Access to all native AWS Services

Amazon

EC2

Amazon

S3

Amazon

RDS

AWS Direct

ConnectIAMAWS IoT

hellip

hellip

hellip

hellip

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

4 Delivered as a service from VMware

The fully configured VMware Cloud software

stack running will be provisioned operated and

maintained directly by VMware

Provisioning

bull Automated account creation and environment

provisioning by using the API

bull Automated interconnection created between

VMware and AWS customer accounts

Operations

bull Support provided by VMware directly

bull Ongoing infrastructure monitoring

Maintenance

bull Ongoing stack maintenance managed

directly by VMware

Overview

Technical drilldown

Account structure

bull VMware Cloud VPC account

bull A new AWS solution account is created for each customer

bull Is owned operated and paid directly by the VMware

bull Each solution account is single tenant for all ESXi hosts

bull Solution account is linked to a VMware Master-Payor account

bull AWS customer VPC account

bull Is owned operated and paid directly by the customer

bull Has full access to VMware Cloud endpoints within the VPC

bull VMware Cloud endpoints are automatically deployed into the

customer VPC with customer consent

bull Has full access to the entire catalog of native AWS services within

the AWS Region of deployment

Existing customer environment

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

No NSX in your current VMware environment

Deploy a standalone NSX Edge appliance into

your existing vSphere environment to extend

the VMware Cloud on AWS environment to your

premises

No problemhellip

Provision VMware Cloud VPC

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

VMware Cloud VPC

ESXi

Amazon EC2

The full VMware Cloud on AWS

stack will be auto-provisioned

and configured at launch into a

single tenant AWS account

(owned and operated by

VMware)

Build customer VPC

Customer Data Center

Customer VPC

VPC subnet VPC subnet

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

VMware Cloud VPC

ESXi

Amazon EC2

A customer-owned AWS

account is created andor

assigned to interoperate with

the VMware Cloud VPC

Connect data center to customer VPC

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Customer VPC

VPC subnet VPC subnet

AWS Direct

Connect

Private

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Private connectivity is

established from the

customer data center to

the customer VPC

Link VMware Cloud VPC and customer VPC

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Private

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Link the VMware Cloud

VPC and the Customer

VPC using private VPC

endpoints

Deploy and consume native AWS services

Customer VPC VMware Cloud VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

ESXi

Amazon EC2

Internet

Private

VIF

Public

VIF

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem examples

bull Use X-vMotion to migrate a virtual machine from a customer data

center to VMware Cloud on AWS

bull Copy an object from a virtual machine in VMware Cloud to an

Amazon S3 bucket

bull Connect a virtual machine in VMware Cloud to an Amazon

Redshift cluster

bull Connect web server hosted on a virtual machine in VMware Cloud

using public Internet access

Operating in the hybrid ecosystem X-vMotion

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

vMotion from site to VMware Cloud

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon S3

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Copy an

object from

virtual

machine to

S3 Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon Redshift

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect

virtual

machine to

Amazon

Redshift Regional AWS Services

AWS

Lambda

Amazon

S3

CloudFront Etchellip

Operating in the hybrid ecosystem VM internet access

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect to

a virtual

machine

from the

Internet

Assign

Elastic

IP

Configure

NAT

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Security and governance

bull VMware Cloud transit endpoints rest within the customer-owned VPC

bull Customers maintain access security control of the transit path using

standard AWS security practices (security groups NACL flow logs and so

on)

bull vMotion traffic is encrypted (new in 65)

bull VM-level encryption (new in 65)

bull Audit-quality logging (new in 65)

bull Fully managed offering delivered by VMware

bull VMware manages the infrastructure patching and upgrades of the VMware

Cloud environment

Demo

Thank you

Remember to complete

your evaluations

Page 15: AWS re:Invent 2016: VMware and AWS Together - VMware Cloud on AWS (ENT317)

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

2 VMware Cloud on AWS

VMware

operated

supported and

maintained

Gateway Gateway hellip

Fully configured VMware software stack

running on state of the art infrastructure

provisioned on-demand in minutes

Latest software

bull VCSA ESXi NSX VSAN H5 client

Dynamic capacity

bull DRSHA compute cluster (intel x86)

bull VSAN storage cluster (SSD)

bull NSX network virtualization (10 Gbps++)

Flexible topology

bull Standalone cloud cluster

bull Hybrid connectivity to on-premises

bull Cloud to cloud connectivity

Overview

vCenter

Server

NSX

Manager

hellip

hellip

hellip

ESXi

ESXi

ESXi

hellipESXi

hellipESXi

hellipESXi

VMware Cloud

Single tenant (dedicated) bare metal

Amazon EC2 hardware

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

3 AWS Cloud integration

AWS global infrastructure

VMware Cloud on AWS Access to all native AWS Services

Amazon

EC2

Amazon

S3

Amazon

RDS

AWS Direct

ConnectIAMAWS IoT

hellip

hellip

hellip

hellip

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

4 Delivered as a service from VMware

The fully configured VMware Cloud software

stack running will be provisioned operated and

maintained directly by VMware

Provisioning

bull Automated account creation and environment

provisioning by using the API

bull Automated interconnection created between

VMware and AWS customer accounts

Operations

bull Support provided by VMware directly

bull Ongoing infrastructure monitoring

Maintenance

bull Ongoing stack maintenance managed

directly by VMware

Overview

Technical drilldown

Account structure

bull VMware Cloud VPC account

bull A new AWS solution account is created for each customer

bull Is owned operated and paid directly by the VMware

bull Each solution account is single tenant for all ESXi hosts

bull Solution account is linked to a VMware Master-Payor account

bull AWS customer VPC account

bull Is owned operated and paid directly by the customer

bull Has full access to VMware Cloud endpoints within the VPC

bull VMware Cloud endpoints are automatically deployed into the

customer VPC with customer consent

bull Has full access to the entire catalog of native AWS services within

the AWS Region of deployment

Existing customer environment

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

No NSX in your current VMware environment

Deploy a standalone NSX Edge appliance into

your existing vSphere environment to extend

the VMware Cloud on AWS environment to your

premises

No problemhellip

Provision VMware Cloud VPC

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

VMware Cloud VPC

ESXi

Amazon EC2

The full VMware Cloud on AWS

stack will be auto-provisioned

and configured at launch into a

single tenant AWS account

(owned and operated by

VMware)

Build customer VPC

Customer Data Center

Customer VPC

VPC subnet VPC subnet

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

VMware Cloud VPC

ESXi

Amazon EC2

A customer-owned AWS

account is created andor

assigned to interoperate with

the VMware Cloud VPC

Connect data center to customer VPC

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Customer VPC

VPC subnet VPC subnet

AWS Direct

Connect

Private

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Private connectivity is

established from the

customer data center to

the customer VPC

Link VMware Cloud VPC and customer VPC

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Private

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Link the VMware Cloud

VPC and the Customer

VPC using private VPC

endpoints

Deploy and consume native AWS services

Customer VPC VMware Cloud VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

ESXi

Amazon EC2

Internet

Private

VIF

Public

VIF

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem examples

bull Use X-vMotion to migrate a virtual machine from a customer data

center to VMware Cloud on AWS

bull Copy an object from a virtual machine in VMware Cloud to an

Amazon S3 bucket

bull Connect a virtual machine in VMware Cloud to an Amazon

Redshift cluster

bull Connect web server hosted on a virtual machine in VMware Cloud

using public Internet access

Operating in the hybrid ecosystem X-vMotion

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

vMotion from site to VMware Cloud

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon S3

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Copy an

object from

virtual

machine to

S3 Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon Redshift

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect

virtual

machine to

Amazon

Redshift Regional AWS Services

AWS

Lambda

Amazon

S3

CloudFront Etchellip

Operating in the hybrid ecosystem VM internet access

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect to

a virtual

machine

from the

Internet

Assign

Elastic

IP

Configure

NAT

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Security and governance

bull VMware Cloud transit endpoints rest within the customer-owned VPC

bull Customers maintain access security control of the transit path using

standard AWS security practices (security groups NACL flow logs and so

on)

bull vMotion traffic is encrypted (new in 65)

bull VM-level encryption (new in 65)

bull Audit-quality logging (new in 65)

bull Fully managed offering delivered by VMware

bull VMware manages the infrastructure patching and upgrades of the VMware

Cloud environment

Demo

Thank you

Remember to complete

your evaluations

Page 16: AWS re:Invent 2016: VMware and AWS Together - VMware Cloud on AWS (ENT317)

2 VMware Cloud on AWS

VMware

operated

supported and

maintained

Gateway Gateway hellip

Fully configured VMware software stack

running on state of the art infrastructure

provisioned on-demand in minutes

Latest software

bull VCSA ESXi NSX VSAN H5 client

Dynamic capacity

bull DRSHA compute cluster (intel x86)

bull VSAN storage cluster (SSD)

bull NSX network virtualization (10 Gbps++)

Flexible topology

bull Standalone cloud cluster

bull Hybrid connectivity to on-premises

bull Cloud to cloud connectivity

Overview

vCenter

Server

NSX

Manager

hellip

hellip

hellip

ESXi

ESXi

ESXi

hellipESXi

hellipESXi

hellipESXi

VMware Cloud

Single tenant (dedicated) bare metal

Amazon EC2 hardware

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

3 AWS Cloud integration

AWS global infrastructure

VMware Cloud on AWS Access to all native AWS Services

Amazon

EC2

Amazon

S3

Amazon

RDS

AWS Direct

ConnectIAMAWS IoT

hellip

hellip

hellip

hellip

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

4 Delivered as a service from VMware

The fully configured VMware Cloud software

stack running will be provisioned operated and

maintained directly by VMware

Provisioning

bull Automated account creation and environment

provisioning by using the API

bull Automated interconnection created between

VMware and AWS customer accounts

Operations

bull Support provided by VMware directly

bull Ongoing infrastructure monitoring

Maintenance

bull Ongoing stack maintenance managed

directly by VMware

Overview

Technical drilldown

Account structure

bull VMware Cloud VPC account

bull A new AWS solution account is created for each customer

bull Is owned operated and paid directly by the VMware

bull Each solution account is single tenant for all ESXi hosts

bull Solution account is linked to a VMware Master-Payor account

bull AWS customer VPC account

bull Is owned operated and paid directly by the customer

bull Has full access to VMware Cloud endpoints within the VPC

bull VMware Cloud endpoints are automatically deployed into the

customer VPC with customer consent

bull Has full access to the entire catalog of native AWS services within

the AWS Region of deployment

Existing customer environment

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

No NSX in your current VMware environment

Deploy a standalone NSX Edge appliance into

your existing vSphere environment to extend

the VMware Cloud on AWS environment to your

premises

No problemhellip

Provision VMware Cloud VPC

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

VMware Cloud VPC

ESXi

Amazon EC2

The full VMware Cloud on AWS

stack will be auto-provisioned

and configured at launch into a

single tenant AWS account

(owned and operated by

VMware)

Build customer VPC

Customer Data Center

Customer VPC

VPC subnet VPC subnet

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

VMware Cloud VPC

ESXi

Amazon EC2

A customer-owned AWS

account is created andor

assigned to interoperate with

the VMware Cloud VPC

Connect data center to customer VPC

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Customer VPC

VPC subnet VPC subnet

AWS Direct

Connect

Private

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Private connectivity is

established from the

customer data center to

the customer VPC

Link VMware Cloud VPC and customer VPC

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Private

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Link the VMware Cloud

VPC and the Customer

VPC using private VPC

endpoints

Deploy and consume native AWS services

Customer VPC VMware Cloud VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

ESXi

Amazon EC2

Internet

Private

VIF

Public

VIF

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem examples

bull Use X-vMotion to migrate a virtual machine from a customer data

center to VMware Cloud on AWS

bull Copy an object from a virtual machine in VMware Cloud to an

Amazon S3 bucket

bull Connect a virtual machine in VMware Cloud to an Amazon

Redshift cluster

bull Connect web server hosted on a virtual machine in VMware Cloud

using public Internet access

Operating in the hybrid ecosystem X-vMotion

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

vMotion from site to VMware Cloud

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon S3

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Copy an

object from

virtual

machine to

S3 Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon Redshift

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect

virtual

machine to

Amazon

Redshift Regional AWS Services

AWS

Lambda

Amazon

S3

CloudFront Etchellip

Operating in the hybrid ecosystem VM internet access

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect to

a virtual

machine

from the

Internet

Assign

Elastic

IP

Configure

NAT

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Security and governance

bull VMware Cloud transit endpoints rest within the customer-owned VPC

bull Customers maintain access security control of the transit path using

standard AWS security practices (security groups NACL flow logs and so

on)

bull vMotion traffic is encrypted (new in 65)

bull VM-level encryption (new in 65)

bull Audit-quality logging (new in 65)

bull Fully managed offering delivered by VMware

bull VMware manages the infrastructure patching and upgrades of the VMware

Cloud environment

Demo

Thank you

Remember to complete

your evaluations

Page 17: AWS re:Invent 2016: VMware and AWS Together - VMware Cloud on AWS (ENT317)

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

3 AWS Cloud integration

AWS global infrastructure

VMware Cloud on AWS Access to all native AWS Services

Amazon

EC2

Amazon

S3

Amazon

RDS

AWS Direct

ConnectIAMAWS IoT

hellip

hellip

hellip

hellip

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

4 Delivered as a service from VMware

The fully configured VMware Cloud software

stack running will be provisioned operated and

maintained directly by VMware

Provisioning

bull Automated account creation and environment

provisioning by using the API

bull Automated interconnection created between

VMware and AWS customer accounts

Operations

bull Support provided by VMware directly

bull Ongoing infrastructure monitoring

Maintenance

bull Ongoing stack maintenance managed

directly by VMware

Overview

Technical drilldown

Account structure

bull VMware Cloud VPC account

bull A new AWS solution account is created for each customer

bull Is owned operated and paid directly by the VMware

bull Each solution account is single tenant for all ESXi hosts

bull Solution account is linked to a VMware Master-Payor account

bull AWS customer VPC account

bull Is owned operated and paid directly by the customer

bull Has full access to VMware Cloud endpoints within the VPC

bull VMware Cloud endpoints are automatically deployed into the

customer VPC with customer consent

bull Has full access to the entire catalog of native AWS services within

the AWS Region of deployment

Existing customer environment

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

No NSX in your current VMware environment

Deploy a standalone NSX Edge appliance into

your existing vSphere environment to extend

the VMware Cloud on AWS environment to your

premises

No problemhellip

Provision VMware Cloud VPC

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

VMware Cloud VPC

ESXi

Amazon EC2

The full VMware Cloud on AWS

stack will be auto-provisioned

and configured at launch into a

single tenant AWS account

(owned and operated by

VMware)

Build customer VPC

Customer Data Center

Customer VPC

VPC subnet VPC subnet

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

VMware Cloud VPC

ESXi

Amazon EC2

A customer-owned AWS

account is created andor

assigned to interoperate with

the VMware Cloud VPC

Connect data center to customer VPC

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Customer VPC

VPC subnet VPC subnet

AWS Direct

Connect

Private

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Private connectivity is

established from the

customer data center to

the customer VPC

Link VMware Cloud VPC and customer VPC

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Private

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Link the VMware Cloud

VPC and the Customer

VPC using private VPC

endpoints

Deploy and consume native AWS services

Customer VPC VMware Cloud VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

ESXi

Amazon EC2

Internet

Private

VIF

Public

VIF

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem examples

bull Use X-vMotion to migrate a virtual machine from a customer data

center to VMware Cloud on AWS

bull Copy an object from a virtual machine in VMware Cloud to an

Amazon S3 bucket

bull Connect a virtual machine in VMware Cloud to an Amazon

Redshift cluster

bull Connect web server hosted on a virtual machine in VMware Cloud

using public Internet access

Operating in the hybrid ecosystem X-vMotion

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

vMotion from site to VMware Cloud

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon S3

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Copy an

object from

virtual

machine to

S3 Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon Redshift

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect

virtual

machine to

Amazon

Redshift Regional AWS Services

AWS

Lambda

Amazon

S3

CloudFront Etchellip

Operating in the hybrid ecosystem VM internet access

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect to

a virtual

machine

from the

Internet

Assign

Elastic

IP

Configure

NAT

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Security and governance

bull VMware Cloud transit endpoints rest within the customer-owned VPC

bull Customers maintain access security control of the transit path using

standard AWS security practices (security groups NACL flow logs and so

on)

bull vMotion traffic is encrypted (new in 65)

bull VM-level encryption (new in 65)

bull Audit-quality logging (new in 65)

bull Fully managed offering delivered by VMware

bull VMware manages the infrastructure patching and upgrades of the VMware

Cloud environment

Demo

Thank you

Remember to complete

your evaluations

Page 18: AWS re:Invent 2016: VMware and AWS Together - VMware Cloud on AWS (ENT317)

3 AWS Cloud integration

AWS global infrastructure

VMware Cloud on AWS Access to all native AWS Services

Amazon

EC2

Amazon

S3

Amazon

RDS

AWS Direct

ConnectIAMAWS IoT

hellip

hellip

hellip

hellip

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

4 Delivered as a service from VMware

The fully configured VMware Cloud software

stack running will be provisioned operated and

maintained directly by VMware

Provisioning

bull Automated account creation and environment

provisioning by using the API

bull Automated interconnection created between

VMware and AWS customer accounts

Operations

bull Support provided by VMware directly

bull Ongoing infrastructure monitoring

Maintenance

bull Ongoing stack maintenance managed

directly by VMware

Overview

Technical drilldown

Account structure

bull VMware Cloud VPC account

bull A new AWS solution account is created for each customer

bull Is owned operated and paid directly by the VMware

bull Each solution account is single tenant for all ESXi hosts

bull Solution account is linked to a VMware Master-Payor account

bull AWS customer VPC account

bull Is owned operated and paid directly by the customer

bull Has full access to VMware Cloud endpoints within the VPC

bull VMware Cloud endpoints are automatically deployed into the

customer VPC with customer consent

bull Has full access to the entire catalog of native AWS services within

the AWS Region of deployment

Existing customer environment

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

No NSX in your current VMware environment

Deploy a standalone NSX Edge appliance into

your existing vSphere environment to extend

the VMware Cloud on AWS environment to your

premises

No problemhellip

Provision VMware Cloud VPC

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

VMware Cloud VPC

ESXi

Amazon EC2

The full VMware Cloud on AWS

stack will be auto-provisioned

and configured at launch into a

single tenant AWS account

(owned and operated by

VMware)

Build customer VPC

Customer Data Center

Customer VPC

VPC subnet VPC subnet

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

VMware Cloud VPC

ESXi

Amazon EC2

A customer-owned AWS

account is created andor

assigned to interoperate with

the VMware Cloud VPC

Connect data center to customer VPC

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Customer VPC

VPC subnet VPC subnet

AWS Direct

Connect

Private

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Private connectivity is

established from the

customer data center to

the customer VPC

Link VMware Cloud VPC and customer VPC

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Private

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Link the VMware Cloud

VPC and the Customer

VPC using private VPC

endpoints

Deploy and consume native AWS services

Customer VPC VMware Cloud VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

ESXi

Amazon EC2

Internet

Private

VIF

Public

VIF

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem examples

bull Use X-vMotion to migrate a virtual machine from a customer data

center to VMware Cloud on AWS

bull Copy an object from a virtual machine in VMware Cloud to an

Amazon S3 bucket

bull Connect a virtual machine in VMware Cloud to an Amazon

Redshift cluster

bull Connect web server hosted on a virtual machine in VMware Cloud

using public Internet access

Operating in the hybrid ecosystem X-vMotion

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

vMotion from site to VMware Cloud

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon S3

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Copy an

object from

virtual

machine to

S3 Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon Redshift

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect

virtual

machine to

Amazon

Redshift Regional AWS Services

AWS

Lambda

Amazon

S3

CloudFront Etchellip

Operating in the hybrid ecosystem VM internet access

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect to

a virtual

machine

from the

Internet

Assign

Elastic

IP

Configure

NAT

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Security and governance

bull VMware Cloud transit endpoints rest within the customer-owned VPC

bull Customers maintain access security control of the transit path using

standard AWS security practices (security groups NACL flow logs and so

on)

bull vMotion traffic is encrypted (new in 65)

bull VM-level encryption (new in 65)

bull Audit-quality logging (new in 65)

bull Fully managed offering delivered by VMware

bull VMware manages the infrastructure patching and upgrades of the VMware

Cloud environment

Demo

Thank you

Remember to complete

your evaluations

Page 19: AWS re:Invent 2016: VMware and AWS Together - VMware Cloud on AWS (ENT317)

2 VMware Cloud on AWS

bull Fully configured VMware software stack running on AWS hardware

bull Direct access to your dedicated vCenter Server PSC and NSX Manager

ESXi

NSX VSAN

HW

AWS Cloud integration3

bull Leverage state of the art compute storage and networking

bull Single all inclusive bill (SW+HW) from VMware

Delivered as a service from VMware4

Service console1

bull Provision scale and manage capacity globally

bull Sign up deploy and access your data center in minutes

vmcvmwarecom

4 Delivered as a service from VMware

The fully configured VMware Cloud software

stack running will be provisioned operated and

maintained directly by VMware

Provisioning

bull Automated account creation and environment

provisioning by using the API

bull Automated interconnection created between

VMware and AWS customer accounts

Operations

bull Support provided by VMware directly

bull Ongoing infrastructure monitoring

Maintenance

bull Ongoing stack maintenance managed

directly by VMware

Overview

Technical drilldown

Account structure

bull VMware Cloud VPC account

bull A new AWS solution account is created for each customer

bull Is owned operated and paid directly by the VMware

bull Each solution account is single tenant for all ESXi hosts

bull Solution account is linked to a VMware Master-Payor account

bull AWS customer VPC account

bull Is owned operated and paid directly by the customer

bull Has full access to VMware Cloud endpoints within the VPC

bull VMware Cloud endpoints are automatically deployed into the

customer VPC with customer consent

bull Has full access to the entire catalog of native AWS services within

the AWS Region of deployment

Existing customer environment

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

No NSX in your current VMware environment

Deploy a standalone NSX Edge appliance into

your existing vSphere environment to extend

the VMware Cloud on AWS environment to your

premises

No problemhellip

Provision VMware Cloud VPC

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

VMware Cloud VPC

ESXi

Amazon EC2

The full VMware Cloud on AWS

stack will be auto-provisioned

and configured at launch into a

single tenant AWS account

(owned and operated by

VMware)

Build customer VPC

Customer Data Center

Customer VPC

VPC subnet VPC subnet

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

VMware Cloud VPC

ESXi

Amazon EC2

A customer-owned AWS

account is created andor

assigned to interoperate with

the VMware Cloud VPC

Connect data center to customer VPC

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Customer VPC

VPC subnet VPC subnet

AWS Direct

Connect

Private

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Private connectivity is

established from the

customer data center to

the customer VPC

Link VMware Cloud VPC and customer VPC

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Private

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Link the VMware Cloud

VPC and the Customer

VPC using private VPC

endpoints

Deploy and consume native AWS services

Customer VPC VMware Cloud VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

ESXi

Amazon EC2

Internet

Private

VIF

Public

VIF

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem examples

bull Use X-vMotion to migrate a virtual machine from a customer data

center to VMware Cloud on AWS

bull Copy an object from a virtual machine in VMware Cloud to an

Amazon S3 bucket

bull Connect a virtual machine in VMware Cloud to an Amazon

Redshift cluster

bull Connect web server hosted on a virtual machine in VMware Cloud

using public Internet access

Operating in the hybrid ecosystem X-vMotion

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

vMotion from site to VMware Cloud

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon S3

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Copy an

object from

virtual

machine to

S3 Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon Redshift

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect

virtual

machine to

Amazon

Redshift Regional AWS Services

AWS

Lambda

Amazon

S3

CloudFront Etchellip

Operating in the hybrid ecosystem VM internet access

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect to

a virtual

machine

from the

Internet

Assign

Elastic

IP

Configure

NAT

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Security and governance

bull VMware Cloud transit endpoints rest within the customer-owned VPC

bull Customers maintain access security control of the transit path using

standard AWS security practices (security groups NACL flow logs and so

on)

bull vMotion traffic is encrypted (new in 65)

bull VM-level encryption (new in 65)

bull Audit-quality logging (new in 65)

bull Fully managed offering delivered by VMware

bull VMware manages the infrastructure patching and upgrades of the VMware

Cloud environment

Demo

Thank you

Remember to complete

your evaluations

Page 20: AWS re:Invent 2016: VMware and AWS Together - VMware Cloud on AWS (ENT317)

4 Delivered as a service from VMware

The fully configured VMware Cloud software

stack running will be provisioned operated and

maintained directly by VMware

Provisioning

bull Automated account creation and environment

provisioning by using the API

bull Automated interconnection created between

VMware and AWS customer accounts

Operations

bull Support provided by VMware directly

bull Ongoing infrastructure monitoring

Maintenance

bull Ongoing stack maintenance managed

directly by VMware

Overview

Technical drilldown

Account structure

bull VMware Cloud VPC account

bull A new AWS solution account is created for each customer

bull Is owned operated and paid directly by the VMware

bull Each solution account is single tenant for all ESXi hosts

bull Solution account is linked to a VMware Master-Payor account

bull AWS customer VPC account

bull Is owned operated and paid directly by the customer

bull Has full access to VMware Cloud endpoints within the VPC

bull VMware Cloud endpoints are automatically deployed into the

customer VPC with customer consent

bull Has full access to the entire catalog of native AWS services within

the AWS Region of deployment

Existing customer environment

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

No NSX in your current VMware environment

Deploy a standalone NSX Edge appliance into

your existing vSphere environment to extend

the VMware Cloud on AWS environment to your

premises

No problemhellip

Provision VMware Cloud VPC

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

VMware Cloud VPC

ESXi

Amazon EC2

The full VMware Cloud on AWS

stack will be auto-provisioned

and configured at launch into a

single tenant AWS account

(owned and operated by

VMware)

Build customer VPC

Customer Data Center

Customer VPC

VPC subnet VPC subnet

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

VMware Cloud VPC

ESXi

Amazon EC2

A customer-owned AWS

account is created andor

assigned to interoperate with

the VMware Cloud VPC

Connect data center to customer VPC

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Customer VPC

VPC subnet VPC subnet

AWS Direct

Connect

Private

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Private connectivity is

established from the

customer data center to

the customer VPC

Link VMware Cloud VPC and customer VPC

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Private

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Link the VMware Cloud

VPC and the Customer

VPC using private VPC

endpoints

Deploy and consume native AWS services

Customer VPC VMware Cloud VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

ESXi

Amazon EC2

Internet

Private

VIF

Public

VIF

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem examples

bull Use X-vMotion to migrate a virtual machine from a customer data

center to VMware Cloud on AWS

bull Copy an object from a virtual machine in VMware Cloud to an

Amazon S3 bucket

bull Connect a virtual machine in VMware Cloud to an Amazon

Redshift cluster

bull Connect web server hosted on a virtual machine in VMware Cloud

using public Internet access

Operating in the hybrid ecosystem X-vMotion

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

vMotion from site to VMware Cloud

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon S3

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Copy an

object from

virtual

machine to

S3 Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon Redshift

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect

virtual

machine to

Amazon

Redshift Regional AWS Services

AWS

Lambda

Amazon

S3

CloudFront Etchellip

Operating in the hybrid ecosystem VM internet access

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect to

a virtual

machine

from the

Internet

Assign

Elastic

IP

Configure

NAT

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Security and governance

bull VMware Cloud transit endpoints rest within the customer-owned VPC

bull Customers maintain access security control of the transit path using

standard AWS security practices (security groups NACL flow logs and so

on)

bull vMotion traffic is encrypted (new in 65)

bull VM-level encryption (new in 65)

bull Audit-quality logging (new in 65)

bull Fully managed offering delivered by VMware

bull VMware manages the infrastructure patching and upgrades of the VMware

Cloud environment

Demo

Thank you

Remember to complete

your evaluations

Page 21: AWS re:Invent 2016: VMware and AWS Together - VMware Cloud on AWS (ENT317)

Technical drilldown

Account structure

bull VMware Cloud VPC account

bull A new AWS solution account is created for each customer

bull Is owned operated and paid directly by the VMware

bull Each solution account is single tenant for all ESXi hosts

bull Solution account is linked to a VMware Master-Payor account

bull AWS customer VPC account

bull Is owned operated and paid directly by the customer

bull Has full access to VMware Cloud endpoints within the VPC

bull VMware Cloud endpoints are automatically deployed into the

customer VPC with customer consent

bull Has full access to the entire catalog of native AWS services within

the AWS Region of deployment

Existing customer environment

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

No NSX in your current VMware environment

Deploy a standalone NSX Edge appliance into

your existing vSphere environment to extend

the VMware Cloud on AWS environment to your

premises

No problemhellip

Provision VMware Cloud VPC

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

VMware Cloud VPC

ESXi

Amazon EC2

The full VMware Cloud on AWS

stack will be auto-provisioned

and configured at launch into a

single tenant AWS account

(owned and operated by

VMware)

Build customer VPC

Customer Data Center

Customer VPC

VPC subnet VPC subnet

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

VMware Cloud VPC

ESXi

Amazon EC2

A customer-owned AWS

account is created andor

assigned to interoperate with

the VMware Cloud VPC

Connect data center to customer VPC

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Customer VPC

VPC subnet VPC subnet

AWS Direct

Connect

Private

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Private connectivity is

established from the

customer data center to

the customer VPC

Link VMware Cloud VPC and customer VPC

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Private

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Link the VMware Cloud

VPC and the Customer

VPC using private VPC

endpoints

Deploy and consume native AWS services

Customer VPC VMware Cloud VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

ESXi

Amazon EC2

Internet

Private

VIF

Public

VIF

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem examples

bull Use X-vMotion to migrate a virtual machine from a customer data

center to VMware Cloud on AWS

bull Copy an object from a virtual machine in VMware Cloud to an

Amazon S3 bucket

bull Connect a virtual machine in VMware Cloud to an Amazon

Redshift cluster

bull Connect web server hosted on a virtual machine in VMware Cloud

using public Internet access

Operating in the hybrid ecosystem X-vMotion

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

vMotion from site to VMware Cloud

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon S3

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Copy an

object from

virtual

machine to

S3 Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon Redshift

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect

virtual

machine to

Amazon

Redshift Regional AWS Services

AWS

Lambda

Amazon

S3

CloudFront Etchellip

Operating in the hybrid ecosystem VM internet access

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect to

a virtual

machine

from the

Internet

Assign

Elastic

IP

Configure

NAT

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Security and governance

bull VMware Cloud transit endpoints rest within the customer-owned VPC

bull Customers maintain access security control of the transit path using

standard AWS security practices (security groups NACL flow logs and so

on)

bull vMotion traffic is encrypted (new in 65)

bull VM-level encryption (new in 65)

bull Audit-quality logging (new in 65)

bull Fully managed offering delivered by VMware

bull VMware manages the infrastructure patching and upgrades of the VMware

Cloud environment

Demo

Thank you

Remember to complete

your evaluations

Page 22: AWS re:Invent 2016: VMware and AWS Together - VMware Cloud on AWS (ENT317)

Account structure

bull VMware Cloud VPC account

bull A new AWS solution account is created for each customer

bull Is owned operated and paid directly by the VMware

bull Each solution account is single tenant for all ESXi hosts

bull Solution account is linked to a VMware Master-Payor account

bull AWS customer VPC account

bull Is owned operated and paid directly by the customer

bull Has full access to VMware Cloud endpoints within the VPC

bull VMware Cloud endpoints are automatically deployed into the

customer VPC with customer consent

bull Has full access to the entire catalog of native AWS services within

the AWS Region of deployment

Existing customer environment

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

No NSX in your current VMware environment

Deploy a standalone NSX Edge appliance into

your existing vSphere environment to extend

the VMware Cloud on AWS environment to your

premises

No problemhellip

Provision VMware Cloud VPC

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

VMware Cloud VPC

ESXi

Amazon EC2

The full VMware Cloud on AWS

stack will be auto-provisioned

and configured at launch into a

single tenant AWS account

(owned and operated by

VMware)

Build customer VPC

Customer Data Center

Customer VPC

VPC subnet VPC subnet

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

VMware Cloud VPC

ESXi

Amazon EC2

A customer-owned AWS

account is created andor

assigned to interoperate with

the VMware Cloud VPC

Connect data center to customer VPC

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Customer VPC

VPC subnet VPC subnet

AWS Direct

Connect

Private

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Private connectivity is

established from the

customer data center to

the customer VPC

Link VMware Cloud VPC and customer VPC

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Private

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Link the VMware Cloud

VPC and the Customer

VPC using private VPC

endpoints

Deploy and consume native AWS services

Customer VPC VMware Cloud VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

ESXi

Amazon EC2

Internet

Private

VIF

Public

VIF

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem examples

bull Use X-vMotion to migrate a virtual machine from a customer data

center to VMware Cloud on AWS

bull Copy an object from a virtual machine in VMware Cloud to an

Amazon S3 bucket

bull Connect a virtual machine in VMware Cloud to an Amazon

Redshift cluster

bull Connect web server hosted on a virtual machine in VMware Cloud

using public Internet access

Operating in the hybrid ecosystem X-vMotion

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

vMotion from site to VMware Cloud

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon S3

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Copy an

object from

virtual

machine to

S3 Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon Redshift

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect

virtual

machine to

Amazon

Redshift Regional AWS Services

AWS

Lambda

Amazon

S3

CloudFront Etchellip

Operating in the hybrid ecosystem VM internet access

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect to

a virtual

machine

from the

Internet

Assign

Elastic

IP

Configure

NAT

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Security and governance

bull VMware Cloud transit endpoints rest within the customer-owned VPC

bull Customers maintain access security control of the transit path using

standard AWS security practices (security groups NACL flow logs and so

on)

bull vMotion traffic is encrypted (new in 65)

bull VM-level encryption (new in 65)

bull Audit-quality logging (new in 65)

bull Fully managed offering delivered by VMware

bull VMware manages the infrastructure patching and upgrades of the VMware

Cloud environment

Demo

Thank you

Remember to complete

your evaluations

Page 23: AWS re:Invent 2016: VMware and AWS Together - VMware Cloud on AWS (ENT317)

Existing customer environment

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

No NSX in your current VMware environment

Deploy a standalone NSX Edge appliance into

your existing vSphere environment to extend

the VMware Cloud on AWS environment to your

premises

No problemhellip

Provision VMware Cloud VPC

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

VMware Cloud VPC

ESXi

Amazon EC2

The full VMware Cloud on AWS

stack will be auto-provisioned

and configured at launch into a

single tenant AWS account

(owned and operated by

VMware)

Build customer VPC

Customer Data Center

Customer VPC

VPC subnet VPC subnet

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

VMware Cloud VPC

ESXi

Amazon EC2

A customer-owned AWS

account is created andor

assigned to interoperate with

the VMware Cloud VPC

Connect data center to customer VPC

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Customer VPC

VPC subnet VPC subnet

AWS Direct

Connect

Private

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Private connectivity is

established from the

customer data center to

the customer VPC

Link VMware Cloud VPC and customer VPC

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Private

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Link the VMware Cloud

VPC and the Customer

VPC using private VPC

endpoints

Deploy and consume native AWS services

Customer VPC VMware Cloud VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

ESXi

Amazon EC2

Internet

Private

VIF

Public

VIF

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem examples

bull Use X-vMotion to migrate a virtual machine from a customer data

center to VMware Cloud on AWS

bull Copy an object from a virtual machine in VMware Cloud to an

Amazon S3 bucket

bull Connect a virtual machine in VMware Cloud to an Amazon

Redshift cluster

bull Connect web server hosted on a virtual machine in VMware Cloud

using public Internet access

Operating in the hybrid ecosystem X-vMotion

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

vMotion from site to VMware Cloud

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon S3

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Copy an

object from

virtual

machine to

S3 Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon Redshift

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect

virtual

machine to

Amazon

Redshift Regional AWS Services

AWS

Lambda

Amazon

S3

CloudFront Etchellip

Operating in the hybrid ecosystem VM internet access

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect to

a virtual

machine

from the

Internet

Assign

Elastic

IP

Configure

NAT

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Security and governance

bull VMware Cloud transit endpoints rest within the customer-owned VPC

bull Customers maintain access security control of the transit path using

standard AWS security practices (security groups NACL flow logs and so

on)

bull vMotion traffic is encrypted (new in 65)

bull VM-level encryption (new in 65)

bull Audit-quality logging (new in 65)

bull Fully managed offering delivered by VMware

bull VMware manages the infrastructure patching and upgrades of the VMware

Cloud environment

Demo

Thank you

Remember to complete

your evaluations

Page 24: AWS re:Invent 2016: VMware and AWS Together - VMware Cloud on AWS (ENT317)

Provision VMware Cloud VPC

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

VMware Cloud VPC

ESXi

Amazon EC2

The full VMware Cloud on AWS

stack will be auto-provisioned

and configured at launch into a

single tenant AWS account

(owned and operated by

VMware)

Build customer VPC

Customer Data Center

Customer VPC

VPC subnet VPC subnet

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

VMware Cloud VPC

ESXi

Amazon EC2

A customer-owned AWS

account is created andor

assigned to interoperate with

the VMware Cloud VPC

Connect data center to customer VPC

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Customer VPC

VPC subnet VPC subnet

AWS Direct

Connect

Private

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Private connectivity is

established from the

customer data center to

the customer VPC

Link VMware Cloud VPC and customer VPC

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Private

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Link the VMware Cloud

VPC and the Customer

VPC using private VPC

endpoints

Deploy and consume native AWS services

Customer VPC VMware Cloud VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

ESXi

Amazon EC2

Internet

Private

VIF

Public

VIF

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem examples

bull Use X-vMotion to migrate a virtual machine from a customer data

center to VMware Cloud on AWS

bull Copy an object from a virtual machine in VMware Cloud to an

Amazon S3 bucket

bull Connect a virtual machine in VMware Cloud to an Amazon

Redshift cluster

bull Connect web server hosted on a virtual machine in VMware Cloud

using public Internet access

Operating in the hybrid ecosystem X-vMotion

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

vMotion from site to VMware Cloud

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon S3

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Copy an

object from

virtual

machine to

S3 Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon Redshift

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect

virtual

machine to

Amazon

Redshift Regional AWS Services

AWS

Lambda

Amazon

S3

CloudFront Etchellip

Operating in the hybrid ecosystem VM internet access

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect to

a virtual

machine

from the

Internet

Assign

Elastic

IP

Configure

NAT

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Security and governance

bull VMware Cloud transit endpoints rest within the customer-owned VPC

bull Customers maintain access security control of the transit path using

standard AWS security practices (security groups NACL flow logs and so

on)

bull vMotion traffic is encrypted (new in 65)

bull VM-level encryption (new in 65)

bull Audit-quality logging (new in 65)

bull Fully managed offering delivered by VMware

bull VMware manages the infrastructure patching and upgrades of the VMware

Cloud environment

Demo

Thank you

Remember to complete

your evaluations

Page 25: AWS re:Invent 2016: VMware and AWS Together - VMware Cloud on AWS (ENT317)

Build customer VPC

Customer Data Center

Customer VPC

VPC subnet VPC subnet

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

VMware Cloud VPC

ESXi

Amazon EC2

A customer-owned AWS

account is created andor

assigned to interoperate with

the VMware Cloud VPC

Connect data center to customer VPC

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Customer VPC

VPC subnet VPC subnet

AWS Direct

Connect

Private

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Private connectivity is

established from the

customer data center to

the customer VPC

Link VMware Cloud VPC and customer VPC

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Private

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Link the VMware Cloud

VPC and the Customer

VPC using private VPC

endpoints

Deploy and consume native AWS services

Customer VPC VMware Cloud VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

ESXi

Amazon EC2

Internet

Private

VIF

Public

VIF

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem examples

bull Use X-vMotion to migrate a virtual machine from a customer data

center to VMware Cloud on AWS

bull Copy an object from a virtual machine in VMware Cloud to an

Amazon S3 bucket

bull Connect a virtual machine in VMware Cloud to an Amazon

Redshift cluster

bull Connect web server hosted on a virtual machine in VMware Cloud

using public Internet access

Operating in the hybrid ecosystem X-vMotion

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

vMotion from site to VMware Cloud

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon S3

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Copy an

object from

virtual

machine to

S3 Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon Redshift

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect

virtual

machine to

Amazon

Redshift Regional AWS Services

AWS

Lambda

Amazon

S3

CloudFront Etchellip

Operating in the hybrid ecosystem VM internet access

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect to

a virtual

machine

from the

Internet

Assign

Elastic

IP

Configure

NAT

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Security and governance

bull VMware Cloud transit endpoints rest within the customer-owned VPC

bull Customers maintain access security control of the transit path using

standard AWS security practices (security groups NACL flow logs and so

on)

bull vMotion traffic is encrypted (new in 65)

bull VM-level encryption (new in 65)

bull Audit-quality logging (new in 65)

bull Fully managed offering delivered by VMware

bull VMware manages the infrastructure patching and upgrades of the VMware

Cloud environment

Demo

Thank you

Remember to complete

your evaluations

Page 26: AWS re:Invent 2016: VMware and AWS Together - VMware Cloud on AWS (ENT317)

Connect data center to customer VPC

Customer Data Center

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Customer VPC

VPC subnet VPC subnet

AWS Direct

Connect

Private

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Private connectivity is

established from the

customer data center to

the customer VPC

Link VMware Cloud VPC and customer VPC

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Private

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Link the VMware Cloud

VPC and the Customer

VPC using private VPC

endpoints

Deploy and consume native AWS services

Customer VPC VMware Cloud VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

ESXi

Amazon EC2

Internet

Private

VIF

Public

VIF

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem examples

bull Use X-vMotion to migrate a virtual machine from a customer data

center to VMware Cloud on AWS

bull Copy an object from a virtual machine in VMware Cloud to an

Amazon S3 bucket

bull Connect a virtual machine in VMware Cloud to an Amazon

Redshift cluster

bull Connect web server hosted on a virtual machine in VMware Cloud

using public Internet access

Operating in the hybrid ecosystem X-vMotion

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

vMotion from site to VMware Cloud

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon S3

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Copy an

object from

virtual

machine to

S3 Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon Redshift

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect

virtual

machine to

Amazon

Redshift Regional AWS Services

AWS

Lambda

Amazon

S3

CloudFront Etchellip

Operating in the hybrid ecosystem VM internet access

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect to

a virtual

machine

from the

Internet

Assign

Elastic

IP

Configure

NAT

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Security and governance

bull VMware Cloud transit endpoints rest within the customer-owned VPC

bull Customers maintain access security control of the transit path using

standard AWS security practices (security groups NACL flow logs and so

on)

bull vMotion traffic is encrypted (new in 65)

bull VM-level encryption (new in 65)

bull Audit-quality logging (new in 65)

bull Fully managed offering delivered by VMware

bull VMware manages the infrastructure patching and upgrades of the VMware

Cloud environment

Demo

Thank you

Remember to complete

your evaluations

Page 27: AWS re:Invent 2016: VMware and AWS Together - VMware Cloud on AWS (ENT317)

Link VMware Cloud VPC and customer VPC

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Private

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Link the VMware Cloud

VPC and the Customer

VPC using private VPC

endpoints

Deploy and consume native AWS services

Customer VPC VMware Cloud VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

ESXi

Amazon EC2

Internet

Private

VIF

Public

VIF

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem examples

bull Use X-vMotion to migrate a virtual machine from a customer data

center to VMware Cloud on AWS

bull Copy an object from a virtual machine in VMware Cloud to an

Amazon S3 bucket

bull Connect a virtual machine in VMware Cloud to an Amazon

Redshift cluster

bull Connect web server hosted on a virtual machine in VMware Cloud

using public Internet access

Operating in the hybrid ecosystem X-vMotion

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

vMotion from site to VMware Cloud

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon S3

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Copy an

object from

virtual

machine to

S3 Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon Redshift

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect

virtual

machine to

Amazon

Redshift Regional AWS Services

AWS

Lambda

Amazon

S3

CloudFront Etchellip

Operating in the hybrid ecosystem VM internet access

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect to

a virtual

machine

from the

Internet

Assign

Elastic

IP

Configure

NAT

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Security and governance

bull VMware Cloud transit endpoints rest within the customer-owned VPC

bull Customers maintain access security control of the transit path using

standard AWS security practices (security groups NACL flow logs and so

on)

bull vMotion traffic is encrypted (new in 65)

bull VM-level encryption (new in 65)

bull Audit-quality logging (new in 65)

bull Fully managed offering delivered by VMware

bull VMware manages the infrastructure patching and upgrades of the VMware

Cloud environment

Demo

Thank you

Remember to complete

your evaluations

Page 28: AWS re:Invent 2016: VMware and AWS Together - VMware Cloud on AWS (ENT317)

Deploy and consume native AWS services

Customer VPC VMware Cloud VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

ESXi

Amazon EC2

Internet

Private

VIF

Public

VIF

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem examples

bull Use X-vMotion to migrate a virtual machine from a customer data

center to VMware Cloud on AWS

bull Copy an object from a virtual machine in VMware Cloud to an

Amazon S3 bucket

bull Connect a virtual machine in VMware Cloud to an Amazon

Redshift cluster

bull Connect web server hosted on a virtual machine in VMware Cloud

using public Internet access

Operating in the hybrid ecosystem X-vMotion

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

vMotion from site to VMware Cloud

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon S3

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Copy an

object from

virtual

machine to

S3 Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon Redshift

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect

virtual

machine to

Amazon

Redshift Regional AWS Services

AWS

Lambda

Amazon

S3

CloudFront Etchellip

Operating in the hybrid ecosystem VM internet access

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect to

a virtual

machine

from the

Internet

Assign

Elastic

IP

Configure

NAT

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Security and governance

bull VMware Cloud transit endpoints rest within the customer-owned VPC

bull Customers maintain access security control of the transit path using

standard AWS security practices (security groups NACL flow logs and so

on)

bull vMotion traffic is encrypted (new in 65)

bull VM-level encryption (new in 65)

bull Audit-quality logging (new in 65)

bull Fully managed offering delivered by VMware

bull VMware manages the infrastructure patching and upgrades of the VMware

Cloud environment

Demo

Thank you

Remember to complete

your evaluations

Page 29: AWS re:Invent 2016: VMware and AWS Together - VMware Cloud on AWS (ENT317)

Operating in the hybrid ecosystem examples

bull Use X-vMotion to migrate a virtual machine from a customer data

center to VMware Cloud on AWS

bull Copy an object from a virtual machine in VMware Cloud to an

Amazon S3 bucket

bull Connect a virtual machine in VMware Cloud to an Amazon

Redshift cluster

bull Connect web server hosted on a virtual machine in VMware Cloud

using public Internet access

Operating in the hybrid ecosystem X-vMotion

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

vMotion from site to VMware Cloud

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon S3

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Copy an

object from

virtual

machine to

S3 Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon Redshift

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect

virtual

machine to

Amazon

Redshift Regional AWS Services

AWS

Lambda

Amazon

S3

CloudFront Etchellip

Operating in the hybrid ecosystem VM internet access

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect to

a virtual

machine

from the

Internet

Assign

Elastic

IP

Configure

NAT

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Security and governance

bull VMware Cloud transit endpoints rest within the customer-owned VPC

bull Customers maintain access security control of the transit path using

standard AWS security practices (security groups NACL flow logs and so

on)

bull vMotion traffic is encrypted (new in 65)

bull VM-level encryption (new in 65)

bull Audit-quality logging (new in 65)

bull Fully managed offering delivered by VMware

bull VMware manages the infrastructure patching and upgrades of the VMware

Cloud environment

Demo

Thank you

Remember to complete

your evaluations

Page 30: AWS re:Invent 2016: VMware and AWS Together - VMware Cloud on AWS (ENT317)

Operating in the hybrid ecosystem X-vMotion

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

vMotion from site to VMware Cloud

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon S3

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Copy an

object from

virtual

machine to

S3 Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon Redshift

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect

virtual

machine to

Amazon

Redshift Regional AWS Services

AWS

Lambda

Amazon

S3

CloudFront Etchellip

Operating in the hybrid ecosystem VM internet access

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect to

a virtual

machine

from the

Internet

Assign

Elastic

IP

Configure

NAT

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Security and governance

bull VMware Cloud transit endpoints rest within the customer-owned VPC

bull Customers maintain access security control of the transit path using

standard AWS security practices (security groups NACL flow logs and so

on)

bull vMotion traffic is encrypted (new in 65)

bull VM-level encryption (new in 65)

bull Audit-quality logging (new in 65)

bull Fully managed offering delivered by VMware

bull VMware manages the infrastructure patching and upgrades of the VMware

Cloud environment

Demo

Thank you

Remember to complete

your evaluations

Page 31: AWS re:Invent 2016: VMware and AWS Together - VMware Cloud on AWS (ENT317)

Operating in the hybrid ecosystem Amazon S3

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Copy an

object from

virtual

machine to

S3 Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Operating in the hybrid ecosystem Amazon Redshift

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect

virtual

machine to

Amazon

Redshift Regional AWS Services

AWS

Lambda

Amazon

S3

CloudFront Etchellip

Operating in the hybrid ecosystem VM internet access

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect to

a virtual

machine

from the

Internet

Assign

Elastic

IP

Configure

NAT

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Security and governance

bull VMware Cloud transit endpoints rest within the customer-owned VPC

bull Customers maintain access security control of the transit path using

standard AWS security practices (security groups NACL flow logs and so

on)

bull vMotion traffic is encrypted (new in 65)

bull VM-level encryption (new in 65)

bull Audit-quality logging (new in 65)

bull Fully managed offering delivered by VMware

bull VMware manages the infrastructure patching and upgrades of the VMware

Cloud environment

Demo

Thank you

Remember to complete

your evaluations

Page 32: AWS re:Invent 2016: VMware and AWS Together - VMware Cloud on AWS (ENT317)

Operating in the hybrid ecosystem Amazon Redshift

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect

virtual

machine to

Amazon

Redshift Regional AWS Services

AWS

Lambda

Amazon

S3

CloudFront Etchellip

Operating in the hybrid ecosystem VM internet access

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect to

a virtual

machine

from the

Internet

Assign

Elastic

IP

Configure

NAT

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Security and governance

bull VMware Cloud transit endpoints rest within the customer-owned VPC

bull Customers maintain access security control of the transit path using

standard AWS security practices (security groups NACL flow logs and so

on)

bull vMotion traffic is encrypted (new in 65)

bull VM-level encryption (new in 65)

bull Audit-quality logging (new in 65)

bull Fully managed offering delivered by VMware

bull VMware manages the infrastructure patching and upgrades of the VMware

Cloud environment

Demo

Thank you

Remember to complete

your evaluations

Page 33: AWS re:Invent 2016: VMware and AWS Together - VMware Cloud on AWS (ENT317)

Operating in the hybrid ecosystem VM internet access

Customer VPC

Customer Data Center

AWS Direct

Connect

VMware Cloud

Endpoints

VPC subnet VPC subnet

VPC subnet

Private Managed

AWS ServicesCustomer Instances

vSphere Environment

VMware

Endpoints

Non-vSphere Environment

ESXi

Internet

Private

VIF

Public

VIF

VMware Cloud VPC

ESXi

Amazon EC2

Connect to

a virtual

machine

from the

Internet

Assign

Elastic

IP

Configure

NAT

Regional AWS Services

AWS

Lambda

Amazon

S3

Amazon

CloudFront

Etchellip

Security and governance

bull VMware Cloud transit endpoints rest within the customer-owned VPC

bull Customers maintain access security control of the transit path using

standard AWS security practices (security groups NACL flow logs and so

on)

bull vMotion traffic is encrypted (new in 65)

bull VM-level encryption (new in 65)

bull Audit-quality logging (new in 65)

bull Fully managed offering delivered by VMware

bull VMware manages the infrastructure patching and upgrades of the VMware

Cloud environment

Demo

Thank you

Remember to complete

your evaluations

Page 34: AWS re:Invent 2016: VMware and AWS Together - VMware Cloud on AWS (ENT317)

Security and governance

bull VMware Cloud transit endpoints rest within the customer-owned VPC

bull Customers maintain access security control of the transit path using

standard AWS security practices (security groups NACL flow logs and so

on)

bull vMotion traffic is encrypted (new in 65)

bull VM-level encryption (new in 65)

bull Audit-quality logging (new in 65)

bull Fully managed offering delivered by VMware

bull VMware manages the infrastructure patching and upgrades of the VMware

Cloud environment

Demo

Thank you

Remember to complete

your evaluations

Page 35: AWS re:Invent 2016: VMware and AWS Together - VMware Cloud on AWS (ENT317)

Demo

Thank you

Remember to complete

your evaluations

Page 36: AWS re:Invent 2016: VMware and AWS Together - VMware Cloud on AWS (ENT317)

Thank you

Remember to complete

your evaluations

Page 37: AWS re:Invent 2016: VMware and AWS Together - VMware Cloud on AWS (ENT317)

Remember to complete

your evaluations


Recommended