Windows Azure Virtual Machines And Virtual Networks

1

Who am I? Kristof Rennen

Technical Architect at Vanbreda Risk & Benefits Microsoft Extended Experts Team Member Crew Member of Azug, the Belgian Windows Azure

User Group

@kristofrennen contact@kristofrennen.be

Windows Azure Virtual MachinesIT Pro experience

Support for key server applications

Easy storage manageability

High availability features

Advanced networking

Integration with compute PaaS

If it requires a developer, it’s not IaaS

VM Role Virtual Machine

Storage Non-Persistent Storage Persistent StorageEasily add additional storage

Deployment Build VHD offsite and upload to storage.

Build VHD directly in the cloud or build the VHD offsite and upload

Networking Internal and Input Endpoints configured through service model.

Internal Endpoints are open by default.Access control with firewall on guest OS. Input endpoints controlled through portal, service model or API/Script.

Primary Use Deploying applications with long or complex installation requirements into stateless PaaS applications

Applications that require persistent storage to easily run in Windows Azure.

Virtual Machine vs VM Role

Images Available at PreviewWindows Server 2008 R2

Windows Server 2008 R2 with SQL Server 2012 Evaluation

Windows Server 2012

OpenSUSE 12.1

CentOS 6.2

Ubuntu 12.04

SUSE Linux Enterprise Server SP2

Windows Azure Storage

VM with persistent drive

Virtual Machines

DEMO

Base OS image for new Virtual Machines

Sys-Prepped/Generalized/Read Only

Created by uploading or by capture

Writable Disks for Virtual Machines

Created during VM creation or during upload of existing VHDs.

Disks and ImagesOS Images

MicrosoftPartner User

Disks

OS Disks Data Disks

Virtual Machine Sizes

Each Persistent Data Disk Can be up to 1 TB

VM Size CPU Cores Memory Bandwidth # Data Disks

Extra Small Shared 768 MB 5 (Mbps) 1

Small 1 1.75 GB 100 (Mbps) 2

Medium 2 3.5 GB 200 (Mbps) 4

Large 4 7 GB 400 (Mbps) 8

Extra Large 8 14 GB 800 (Mbps) 16

Virtual Machine Disks

DEMO

Picture placeholder

Virtual Machines And Cloud Services

CLOUD SERVICE

Cloud Services, Roles and InstancesCloud Service is a management, configuration, security, networking and service model boundary

VM1 VM2 VM3

VM4 VM5 VM…

INS

TA

NC

ES

RO

LES

Virtual MachinesVirtual Machines are roles with exactly one instance

VM

Cloud Services with Virtual MachinesMultiple Virtual Machines can be hosted within the same cloud service

VM VM

Virtual Machines and Cloud Service

DEMO

Picture placeholder

Virtual Machine Availability

Service Level Agreements

99.9% for single role instances8.75 hours of downtime per year

What’s includedCompute Hardware failure (disk, cpu, memory)Datacenter failures - Network failure, power failureHardware upgrades, Software maintenance – Host OS UpdatesPlanned downtime – 6 day notice, 6 hour window, 25 minute downtime

What is not includedVM Container crashes, Guest OS Updates

99.95% for multiple role instances4.38 hours of downtime per year

How Does this Relate to SLA?

SQL Server

SLA 99.9 SLA 99.95

SQL Server

Primary

SQL Server

Secondary

Availability set

Fault and Update Domains

Fault DomainsRepresent groups of resources anticipated to fail togetheri.e. Same rack, same serverFabric spreads instances across fault at least 2 fault domains

Update DomainsRepresents groups of resources that will be updated togetherHost OS updates honour service update domainsSpecified in service definitionDefault of 5 (up to 20)

Fabric spreads role instances across Update Domains and Fault Domains

Rack

Fault and Update Domains

Rack

UD #1

UD #1

UD #2

UD #2

Virtual Machine Availability SetsUpdate Domains are honored by host OS updates

RackRack

Virtual Machine Availability

DEMO

Picture placeholder

Windows Azure Networking

Virtual Machine Names and DNS

Bring your own DNS serverUse your on-premise DNS serversDeploy a DNS server in Windows AzureUse public DNS services

Windows Azure provided DNS Resolves VMs by name within the same cloud serviceMachine names are modeled explicitly and registered in the DNS service

Full control over machine names

Protocols and Endpoints

Port Forwarded EndpointsDirect communication to multiple VMs in the same cloud app

Support for All IP-Based Protocols (VM to VM)Instance-to-instance communicationTCP, UDP and ICMP, dynamic ports

UDP Traffic Supported in WALoad-balanced incoming traffic and allows outbound traffic

Custom Load Balancer Health ProbesHealth check with probe timeoutsHTTP based probing, allowing granular control of health checks

EndpointPublic PortLocal PortProtocol (TCP/UDP)Name

Port Forwarding Input Endpoints

Cloud App/Hosted Service

Single Public IP Per Cloud Service

Port Forwarding and RDP

DEMO

Load Balanced Sets

Endpoint SetPublic PortLocal PortProtocol (TCP/UDP)Name

Cloud App

Load Balanced Sets

DEMO

Cross-premise Connectivity

CLOUD ENTERPRISE

Data SynchronizationSQL Azure Data Sync

Application-layer Connectivity &

Messaging Service Bus

Secure Machine-to-Machine Network

ConnectivityWindows Azure Connect

Secure Site-to-Site Network Connectivity

Windows Azure Virtual Network

IP-Level Connectivity

OPTION 1

Windows Azure Virtual Network

Your “virtual” branch office/datacenter in the cloudEnables customers to extend their Enterprise Networks into AzureNetworking on-ramp for migrating existing apps and services to Windows AzureEnables “hybrid” apps that span cloud and their premises

A protected private virtual network in the cloudEnables customers to setup secure private IPv4 networks fully contained within Windows AzureIP address persistenceInter-service DIP-to-DIP communication

Subnet 2Subnet 1

Connecting Cloud Services with VNET

Protect virtual machines from the open Internet

Windows Azure provided DNS does not span cloud services

Direct Access

via VNET

SQLSubnet (10.1.0.0/16)

Load Balancer

80

IIS Virtual Machines

Cloud Service1

Cloud Service 2

SQL Mirror

ContosoVNet (10.0.0.0/8)

FrontEndSubnet (10.0.0.0/16)

Production

Hybrid Applications

S2S VPN tunnels

File Servers Local AD SQL VMs

SharePoint PaaS Roles

On Premises

S2S VPN Device

IIS Servers

AD / DNS

SQL Farm

Exchange

IaaS and PaaS – Better Together

Physical Virtual SaaSIaaS PaaS

The Benefits of PaaS

PaaS is cheaperReason: There’s less admin and management work to doBenefit: Organizations spend less supporting applications

PaaS is fasterReason: There’s less work for developers to doBenefit: Applications can go from idea to availability more quickly

PaaS is lower riskReason: The platform does more, leaving fewer opportunities for errorBenefit: Creating and running applications gets more reliable

IaaS and PaaS Side by Side

Mixed Mode: VM and PaaS Roles in the Same Cloud ServiceSimple, secure and highly efficient method of using IaaS and PaaS side-by-side

Direct Connectivity Using Virtual NetworkingFor advanced connectivity scenarios such as Active Directory or DCOM

Connect Cloud Apps via VIPsEasily compose services by connecting public endpoints

Mixed Mode: PaaS/IaaS in the Same Cloud ServiceStrengthsWindows Azure Provided DNS

Low latency connectivity

Single deployment, updateand management unit

WeaknessesNo VIP Swap (coming in the future)

WA Web Role

Virtual Machine

Load Balance

r

80

Cloud Service

Coming in the future

Full PaaS

DEMO

Windows Azure Virtual MachinesIT Pro experience

Support for key server applications

Easy storage manageability

High availability features

Advanced networking

Integration with compute PaaS

If it requires a developer, it’s not IaaS

Track Resources

Meetwindowsazure.com

@WindowsAzure

DOWNLOAD Windows Azure

Windowsazure.com

Hands-On Labs

Resources

41

Connect. Share. Discuss.

http://northamerica.msteched.com

Learning

Microsoft Certification & Training Resources

www.microsoft.com/learning

TechNet

Resources for IT Professionals

http://microsoft.com/technet

Resources for Developers

http://microsoft.com/msdn

© 2012 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries.The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to

be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS

PRESENTATION.