Carsten Langerbein, Sr. Systems Engineer
F5 MissionDelivering app-centric services wherever your apps “Go”
PRIVATE CLOUD PUBLIC CLOUD
HYBRID CLOUD
On premises Off premises
ADC FirewallApplication Security
Identity and Access
DDoSProtection
Local LoadBalancing
Application Performance
Secure Web Gateway
COMPUTE NETWORKING STORAGE
MANUAL ADMINISTRATION
COMPUTE NETWORKING STORAGE
AUTOMATION & ORCHESTRATION SYSTEM
CONTROLLER
TRADITIONAL DATA CENTER PRIVATE CLOUD DATA CENTER
Manual administration of Compute, Networking and Storage
Automation and Orchestration systems driving Compute, Networking and Storage
via Controllers
METERING
COMPUTE NETWORKING STORAGE
CLOUD AUTOMATION, ORCHESTRATION & MANAGEMENT
Automating & Orchestrating L4-L7 Application Services
Automation and Orchestration systems driving Compute, Networking
and Storage via Controllers
CONTROLLER
Cloud Management & Orchestration ToolsOpenStack, VMWare vRO/vRA, CliQr, Windows Azure Stack, Puppet, Chef, Ansible
SDN ControllersCisco APIC, VMware NSX, Nuage Networks, Contrail
BIG-IP iSeries
(1) (2)
(1) L4-L7 service configuration via SDN controller(2) L4-L7 service configuration via Cloud Mgmt & Orchestration Tools
L4-L7 Application Services
Private Cloud
ADC & Security
Application
Data
Application
Data
ADC & Security AWS Tools
ADC & Security Azure Tools
How about migrating/scaling or adding new apps to a public cloud provider to get the benefits of public cloud : cost, time to market and scale ?
Application
Data
Public Internet
Time to MarketLow initial costs (Pay per use)
Flexible & unlimited capacity growth
• Security: private keys, policy, sensitive data• Storage: cost, data to/from the cloud• Cloud lock-in: policy, data transfer cost• Performance: Higher latency C
ON
S
Private Cloud
ADC & Security
Application
Data
ADC & Security AWS Tools
ADC & Security Azure Tools
Application
Data
PRO
S
New Green App to Azure
Application
Data
Migrate/Scale out Orange App to AWS
Public Internet
• Security: private keys, policy, sensitive data• Storage: cost, data to/from the cloud• Cloud lock-in: policy, data transfer cost• Performance: Higher latency C
ON
S
ADC & Security AWS Tools
ADC & Security Azure Tools
Unifying your L4-L7 application services and policies across your Private and Public Cloud
deployments (BYOL, Utility Billing)
Private Cloud
ADC & Security
Application
Data
Application
Data
Application
Data
Public Internet
PRO
S
Securing and automating app delivery in public cloud
• F5 Solution for Private–Public Cloud inter-connect• Secure reverse tunnel between Private–Public cloud (SSL keys on BIG-IP in Private Cloud/DC)• Public cloud resources auto-discovered and managed by BIG-IP in Private Cloud/DC
Application Connector
Private Cloud
ADC & Security
App Connector
App Connector
AC
AC
Private keys
Application
Data
Application
Data
Public Internet
Application
Data Secure Reverse Tunnel
• Security: private keys, sensitive data• Storage: cost, data to/from the cloud• Cloud lock-in: data transfer cost• Performance: Higher latency C
ON
SPrivate keys stored in Private CloudApp front-end via BIG-IP in Private CloudAuto-discovery of Public Cloud resourcesAll resources managed from Private Cloud
Private Cloud
ADC & Security
App Connector
App Connector
AC
AC
Private keys
Application
Data
Application
Data
Public Internet
Application
Data
PRO
S
Secure Reverse Tunnel
Private Cloud
ADC & Security
AC
AC
Application
Storage
ADC & Security
• Security: sensitive data• Storage: cost, data to/from the cloud• Cloud lock-in: data transfer cost• Performance: Higher latency C
ON
SSensitive data securely stored in ColoColo brings app closer to end usersMoving data in/out colo at low cost
Low latency towards all public cloud providers
Application
Data
Application
Data
Application
Data
App Connector
App Connector
Public Internet
Colo Facility
Public CloudXChangePrivate
Interconnect
Extend your Private Cloud into Colo Facility
PRO
S
Secure Reverse Tunnel
Private Cloud
ADC & Security
AC
AC
Application
Storage
ADC & Security
Application
Data
Application
Data
Application
Data
App Connector
App Connector
Public Internet
Colo Facility
Public CloudXChangePrivate
Interconnect
Extend your Private Cloud into Colo Facility
Secure Reverse Tunnel
SilverlineServices