Presentation is loading. Please wait.

Presentation is loading. Please wait.

Hibridni oblak: Osnove infrastrukture kot storitve (IaaS)

Published byShonda Terry Modified over 6 years ago

Similar presentations

Presentation on theme: "Hibridni oblak: Osnove infrastrukture kot storitve (IaaS)"— Presentation transcript:

1

2 Hibridni oblak: Osnove infrastrukture kot storitve (IaaS)
Tomaž Čebul, Microsoft Peter Zdovc, Microsoft Robert Potočnik, Microsoft Gorazd Šemrov, Microsoft

3 What’s New About IaaS v2 v1: Service Management APIs v2: ARM APIs
Not fully integrated: no RBAC, tagging, templates Challenging network modelling v2: ARM APIs Fully integrated into Resource Manager Tags and RBAC at granular levels More asynchronous operations - massive and parallel deployment of VMs Dependencies Network resource types are separate from compute 3 Fault Domains in Availability Sets Part of Azure-consistent private cloud. Deploy same JSON template in Azure or Azure Stack Limited support for PaaS

4 Cloud is a Shared Responsibility
On-Premises IaaS PaaS SaaS Applications Data Runtime Middleware O/S Virtualization Servers Storage Networking Customer Microsoft

5 5/20/ :12 PM Azure Compute © 2014 Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

6 Cloud Services / Service Fabric
Build 2014 5/20/2018 VM Compute Continuum IaaS PaaS VMs VM Extensions Cloud Services / Service Fabric App Services / Media Services Corey Ultimate Control Rapid Development © 2014 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

7 VM Size Options SSD Storage Faster CPUs Most Memory Fastest CPUs
Highest Value A0 – A7: Original VM Sizes in Azure. Currently the highest value although limited in overall CPU performance. Note: A8, A9, A10 and A11 are a slight exception to the above rule because the CPUs are faster than other A-Series VMs and the A8/A9 are premium priced VMs due to the RDMA NICs A8 – A11 are SandyBridge CPUs while the A0 – A7 are older CPUs or newer CPUs that are throttled down D1 – D14: Sandy Bridge CPUs with local SSD for ephemeral disks SSD Performance: 3,000 IOPS per core, 48 MB/s read bandwidth and 24 MB/s write bandwidth Available as normal D<N> and DS<N> where the ‘S’ version supports premium storage G1 – G5: Haswell CPUs with large amount of local SSD and RAM The G-Series of VMs are the latest and largest VM sizes available in Azure. 14 GB of RAM per core; >200GB of local SSD per core Note: A8 – A11 may be faster for some workloads because A8-A11 run a 2.9GHz Sandy Bridge while G- Series use 2.0 GHz Haswell CPU: AMD or Intel Disk: HDD CPU: Intel Sandy Bridge Disk: SSD CPU: Intel Haswell Disk: SSD Highest Value Largest Scale-up © 2014 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

8 Virtual Machine Storage Architecture
Azure Virtual Machine C:\ OS Disk D:\ Temporary Disk E:\, F:\, etc. Data Disks Disk Cache Azure Blob

9 Availability Sets Availability set
An Availability Set is required for SLA Availability set Virtual Machine Virtual Machine SQL Server Primary SQL Server Secondary SLA 99.95

10 Virtual machine building blocks
OS & data disk images Windows base OSs Linux base OSs Pre-installed application Community images VM Extensions Security Deployment Configuration Others Visual Studio debuggers Diagnostics agents Monitoring agents Access recovery Docker extension Backup helper

11 5/20/ :12 PM Azure Storage © 2014 Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

12 Storage Options Premium storage Standard storage Premium
Optimized for low latency or high bandwidth Up to 64,000 IOPS and 64Gbps per storage account Billing based on provisioned size (not actual writes) Blobs only (at least for now) Premium Standard storage Optimized for general purpose storage Up to 20,000 IOPS and 20Gbps per storage account Billing based on actual bytes written to storage Blobs, Files, Tables and Queues support Standard

13 Azure Storage Concepts
5/20/ :12 PM Azure Storage Concepts © 2014 Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

14 Redundancy Locally Redundant Storage (LRS) Geo Redundant Storage (GRS)
Read Access Geo Redundant Storage (RA-GRS) Zone Redundant Storage (ZRS)

15 5/20/ :12 PM Blob Storage © 2014 Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

16 5/20/ :12 PM File Storage © 2014 Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

17 Storage Account Keys Never use the Primary Key for access
Use the Secondary Key for your applications Never, never regenerate the Storage Access Key when you have running VMs in that Storage Account

18 Azure Files Premium Storage gives up to 80000 IOPS
Standard Storage gives up to 20000 Premium Storage offers up to 35 TB per Storage Account Standard Storage offers up to 500 TB per Storage Account Premium Storage offers up to 10 TB Snapshot capacity per Storage Account Compute Storage: 8K 300 IOPS per disk for Basic compute. 8K 500 IOPS per Stanadrd Compute Storage Spaces can be used in Windows VM to increase single Volume IOPS Premium Storage offers up to 5000 IOPS

19 Azure Networking 5/20/2018 11:12 PM
© 2014 Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

20 Azure Virtual Networks
5/20/ :12 PM Azure Virtual Networks On Premises 10.0/16 Virtual Networks are the primary building block for Azure networking Scenarios: Bring your own network Create subnets with your private or public IP addresses Bring your own DNS or use Azure-provided DNS Secure with Network Security Groups ACLs Control traffic flow with User Defined Routes Internet VPN & ExpressRoute Direct Internet Connectivity Azure VPN GW Backend 10.3/16 Mid-tier 10.2/16 Frontend 10.1/16 AD / DNS Virtual Network © 2014 Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

21 Network Security Groups
Enables network segmentation & DMZ scenarios Access Control List Filter conditions with allow/deny Individual addresses, address prefixes, wildcards Associate with VMs or subnets ACLs can be updated independent of VMs On Premises 10.0/16 Internet Internet S2S VPNs VPN GW Backend 10.3/16 Mid-tier 10.2/16 Frontend 10.1/16 Virtual Network

22 Network Security Group
Rules have priorities too – ensure you plan this properly so you don’t have to reconfigure existing rules when creating new NSG can help you to secure your PaaS resources as well as IaaS – provides infra services such as DNS, DHCP and Health Monitoring – owned by Microsoft Use NSG to separate traffic between front-end and back-end of workload For ARM template deployments, use reference to use existing NSG

23 Gateways No Encryption option PFS Support for IKE Operations Logs
5/20/ :12 PM Gateways High Performance Gateway Better throughput More S2S tunnels Pricing Data transfer & VNet traffic rates unchanged No Encryption option Better throughput for Vnet-to-Vnet within Azure Intra-/Inter-region Vnet-to-Vnet traffic stays within Microsoft networks, not Internet PFS Support for IKE Compliance requirements & better security Operations Logs Visibility into critical gateway events Gateway SKU ExpressRoute Throughput* S2S Throughput* Max Tunnels ExpressRoute and VPN Co-exist Basic / Default 500 Mbps 100 Mbps 10 No Standard 1000 Mbps Yes Performance 2000 Mbps 200 Mbps 30 © 2014 Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

24 Point-to-Site VPN Connectivity
SMSG Readiness 5/20/2018 Point-to-Site VPN Connectivity Connect from anywhere securely No software installation required Easy to setup and use Ideal for prototyping, development, demos P2S and S2S coexist © 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

25 Site-to-Site VPN Connectivity
Build 2012 5/20/2018 Site-to-Site VPN Connectivity Extend your premises to the cloud securely On-ramp for migrating services to the cloud Use your on-premises resources in Azure (monitoring, AD, …) Microsoft Azure Virtual Network <subnet 1> <subnet 2> <subnet 3> DNS Server Site-to-Site VPN On-premises VPN Gateway HA VPN Gateway Hardware VPN or Windows RRAS Your datacenter © 2012 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

26 ExpressRoute and Microsoft Clouds
5/20/ :12 PM ExpressRoute and Microsoft Clouds Partner Edge Customer’s connection Microsoft Edge Customer’s network Traffic to Office 365 Services Traffic to public IP addresses in Azure Traffic to Virtual Networks © 2014 Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

27 Vprašanja in odgovori 5/20/2018 11:12 PM
© 2014 Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

28 Izpolnite anketo! Vam je bilo predavanje všeč?
Ste se naučili kaj novega? Vaše mnenje nam veliko pomeni! Da bo NT konferenca prihodnje leto še boljša, vas prosimo, da izpolnite anketo o zadovoljstvu, ki jo najdete v svojem NTK spletnem profilu.

29 5/20/ :12 PM © 2014 Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

Download ppt "Hibridni oblak: Osnove infrastrukture kot storitve (IaaS)"

Similar presentations

The spring release of Windows Azure Infrastructure as a Service introduces new functionality that allows full control and management of virtual machines.

The spring release of Windows Azure Infrastructure as a Service introduces new functionality that allows full control and management of virtual machines.
Windows Azure Migrating SQL Server Workloads Speaker Title Organization.

Windows Azure Migrating SQL Server Workloads Speaker Title Organization.
Windows Azure Networking & Active Directory Nasir (Muhammad Nasiruddin) Developer Evangelist - Azure Microsoft Corporation

Windows Azure Networking & Active Directory Nasir (Muhammad Nasiruddin) Developer Evangelist - Azure Microsoft Corporation
Windows Azure Networking & Active Directory Nasir (Muhammad Nasiruddin) Developer Evangelist - Azure Microsoft Corporation

Windows Azure Networking & Active Directory Nasir (Muhammad Nasiruddin) Developer Evangelist - Azure Microsoft Corporation
Azure IAAS Overview & What’s New Steve Letford & Stu Fox M318.

Azure IAAS Overview & What’s New Steve Letford & Stu Fox M318.
Windows Azure Migrating Applications and Workloads Speaker Title Organization.

Windows Azure Migrating Applications and Workloads Speaker Title Organization.
What's New in Azure IaaS… A Server Huggers Perspective Rick

What's New in Azure IaaS… A Server Huggers Perspective Rick
#InnovateIT. Azure VM families >80,000 IOPs Premium Storage GPU-enabled virtual machines N New generation of D family VMs DV2 SSD Storage Fast.

#InnovateIT. Azure VM families >80,000 IOPs Premium Storage GPU-enabled virtual machines N New generation of D family VMs DV2 SSD Storage Fast.
Tweak Performance and Improve Availability of your Microsoft Azure VMs Rick

Tweak Performance and Improve Availability of your Microsoft Azure VMs Rick
Rick Claus Architect like a PRO for Performance and Availability of your Microsoft Azure VMs ARC43 6.

Rick Claus Architect like a PRO for Performance and Availability of your Microsoft Azure VMs ARC43 6.
Kurt Jung – Sr. Research Analyst KEMP Technologies

Kurt Jung – Sr. Research Analyst KEMP Technologies
Azure.

Azure.
Dr. Authentication Or, How I Learned To Stop Worrying And Love The Azure MFA

Dr. Authentication Or, How I Learned To Stop Worrying And Love The Azure MFA
Mastering Azure Connectivity to the Microsoft Cloud

Mastering Azure Connectivity to the Microsoft Cloud
Microsoft Azure networking: Sve što trebate znati

Microsoft Azure networking: Sve što trebate znati
Microsoft Virtual Academy

Microsoft Virtual Academy
Microsoft Azure Speed >> Economics Scale. Microsoft Azure Speed >> Economics Scale.

Microsoft Azure Speed >> Economics Scale. Microsoft Azure Speed >> Economics Scale.
IT Operations Management

IT Operations Management
Dev and Test Solution reference architecture.

Dev and Test Solution reference architecture.
Run Azure Services in your datacenter

Run Azure Services in your datacenter

Similar presentations

Ads by Google