1

Virtualising the Dynamic Datacentre

Simon HaylerPrincipal Field TechnologistSun Northern EuropeVISIT US AT STAND 710

1

2

• Increased management complexity• Addition of hypervisor doesn’t negate the need to manage hardware and OS• Management solutions arecustom-constructed using multiple tools• Performance overhead can limit possible cost savings• New security challenges• Virtualisation is the last resort

Virtualisation Challenges

3

What is Important?

Understand the Application -One Size Does Not Fit All

Management of These Environments is Key

4

The role of the application...

+

passenger vehicle

... or in our terms: application + technology

5

The role of the application...

+

passenger vehicle

... or in our terms: application + technology

6

OSVirtualisation

Hypervisors/Domains

Solaris ContainersSolaris 8/9 Containers

Solaris ContainersSolaris 8/9 Containers

Logical Domains Dynamic Domains

Management Framework

Understanding Your Application

T-Series M-Series

Solaris Containers

xVM HypervisorVirtualBox

VMwareESXMS Hyper-VOracle VM

Citrix XenServer

X-Series

Application

7

Different Usage Scenarios

• Retire legacy systems –eco consolidation• Many small (legacy) applicationson different OSes• Protect Web facing applications• Adapt application resources/locationto business changes• Consolidate vertically scaling applications – databases

8

• Virtualisation allows the move to newer more efficient systems> SPARC: Solaris 8 and 9 Containers

• Lower the power/cooling/space/support cost on running these applications

Solaris 10

Solaris 9Container

Solaris 8Container

Solaris 8 Solaris 9

Webserver

Webserver

Webserver

Management Framework

Eco Consolidation with the OS

9

Many Small (Legacy) Applicationson Different OSes

• A hypervisor allows the consolidation of many small apps> SPARC: Logical Domains, Dynamic Domains> X86: VirtualBox, xVM Hypervisor, Oracle VM, VMware ESX, MS

Hyper-V & Citrix XenServer• Each VM can have their own patch level

Management Framework

10

Secure Internet Facing Applications

• Many companies want a Web-presence• Web-facing applications often need to be dynamic• These applications are often new and untested

• Hackers can de-face website or steal data• Hackers can gain access to the corporate network

• Use Solaris Containers or Trusted Extensions to “lock down” the application environment

Problem

Risk

Solution

11

Web Facing Applications

• A locked down environment can protect > x86 and SPARC: Solaris Containers

• Control the content from outside Container• Totally isolate the internet network from LAN

Fire

wal

l

Solaris 10

Read/Write Read Only

PublicInternetPrivate

LAN

/shared

Webzone129.152.1.200

Datazone10.0.0.200

An Example Configuration to Prevent Web Page Hijacking

12

Secure one time browser

PrivateLAN

Using VirtualBox with online banking

Dodgy sites

Browser doing Facebook, etc.

Virtual Machine

Browser running

Online-Banking

This browser can be different app or

version from host browser

Bank

Revert to known “clean” snapshot

after use

Secure guest environments

13

Adjust to Business Changes

AM/Day/Week

PM/Night/Weekend

Re-Size the Resources to Fit the Changes on Demand

14

Adjust to Business Changes

AM/Day/Week

PM/Night/ Weekend

Migrate the Applications onto Fewer System: Turn Unneeded Systems Off to Save Power

15

The Iceberg View

• Business view is one server (Production)• Underneath

> UAT> Dev x n> Test> Pre Production> DR (BCP)

16

Combating the Iceberg View BAU

CMT Server A

Prod 2 50%Prod 1 50%

Control Dom

ain

IO Dom

ain

CMT Server B

Control Dom

ain

IO Dom

ain

DR UAT Dev Test

10% 30% 30% 30%

CMT Server C

Control Dom

ain

IO Dom

ain

DR UAT Dev Test

10% 60% 20% 10%

17

Combating the Iceberg View DR

CMT Server A

Prod 2 50%

Prod 1 50%

Control Dom

ain

IO Dom

ain

CMT Server B

Control Dom

ain

IO Dom

ain

DR UAT Dev Test

Prod 1 50% 20% 10%20%

CMT Server C

Control Dom

ain

IO Dom

ain

DR UAT Dev Test

Prod 2 50% 10%30% 10%

18

Large Database Consolidation

• Insurance agency with many field offices

• The databases need many threads (CPUs) to perform• The field offices only get ~20 inquiries per day

• Consolidate the databases using OS containment• Compress the costs of 40 databases into that of ~2!

Example

Problem

Result

Solution

• The systems and database licenses are very low utilised

19

Server Virtualisation Strengths

SolarisContainers

LogicalDomains

xVM HypervisorOracle VM

VMWare ESXMS Hyper-V

High performance network and I/OConsolidated old Solaris versionsLimit the security breach of your web applicationConsolidate very dynamic applications

Migrate VMs to fit business changesMost of the hypervisor built into the chip – very little overheadRedundant I/O paths

Run any x86 OS on shared infrastructureMigrate VMs to fit business changesMove old OSes onto newer share/more efficient hardware

True hardware isolationHA solution for high end systemsImproved granularity

Dynamic Domains

20

Virtualising the Desktop

Your Desktop Anywhere

As You Move between Devices, Your Desktop Follows You

My Desktop on a PC My Desktop on a Mac My Desktop on a Sun Ray Client

21

Everyone is Talking About Clouds

Database as a Service

Utility Computing

Virtualisation

Application Hosting

Infrastructure as a Service

Grid Computing

Platform as a Service Storage as a Service

Software as a Service

22

Our View

Many Clouds

Public and Private

Open and Compatible

23

Datacentre Management Framework

Desktop to Datacentre VirtualisationUnifying Virtualisation and Management Across the Infrastructure

Open StorageSolaris ContainersSun xVM Hypervisor

Logical DomainsDynamic Domains

Sun Virtual DesktopInfrastructure

Sun VirtualBox

STORAGEVIRTUALISATION

DESKTOPVIRTUALISATION

SERVERVIRTUALISATION

NETWORKVIRTUALISATION

Open Networking

24

Virtualising the Dynamic Datacentre

Simon HaylerPrincipal Field TechnologistSun Northern EuropeVISIT US AT STAND 710

24