Presentation is loading. Please wait.

Presentation is loading. Please wait.

Azure VM infrastructure innovation and automation

Published byClara Evans Modified over 7 years ago

Similar presentations

Presentation on theme: "Azure VM infrastructure innovation and automation"— Presentation transcript:

1 Azure VM infrastructure innovation and automation
6/24/2018 4:52 PM BRK3220 Azure VM infrastructure innovation and automation Guy Bowerman @gbowerman Kay Singh @singhkays Azure Compute PM team © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

2 Challenges of cloud workloads
6/24/2018 4:52 PM Challenges of cloud workloads Infrastructure – the right tool for the job Availability – everything fails Security – ubiquitous, simple, targeted Managing at scale – exponential increase in complexity © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

3 Agenda Infrastructure and Perf VM Availability Security
6/24/2018 4:52 PM Agenda Infrastructure and Perf VM Availability Security Manageability and Monitoring © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

4 VM sizes at last Ignite L K M A D Av2 Dv2 F G H LOWEST PRICE
LARGEST SCALE-UP

5 VM Sizes added since last Ignite
Nov ‘16 Sep ‘17 Jul ‘17 Jul ‘17 Mar ‘17 Dec ‘16 Dec ‘16 Jul ‘17 Av2 B Dv3 Ev3 L NC NV M A D Av2 Dv2 F G Av2 H More memory per vCPU and SSD local disk Burstable size for light and variable workloads Improved value standard memory size Improved value high memory size Optimized for No-SQL, Databases Optimized for GPU compute scenarios Optimized for GPU visualization scenarios Optimized for largest enterprise applications LOWEST PRICE LARGEST SCALE-UP Doubling the compute offerings since last Ignite!

6 Most powerful and scalable cloud for SAP HANA
Overview combination of VMs and purpose-built Large instances provides the largest scale and widest range for SAP HANA of any hyper scale cloud Large Instances RAM Virtual Machines CPU On-demand infrastructure with M Series up to 3.8TB memory Per-minute billing SAP certified Purpose-built infrastructure for SAP HANA Single node supports up to 20TB for OLTP, and 60TB OLAP in scale-out mode 99.99% SLA (High availability) M G

7 Larger disk sizes Support up to 4TBs in size
Max 1TB Max 4TB Larger disk sizes Support up to 4TBs in size Overview Easier management for high capacity storage Migrate workloads with larger disk size requirements Allow easier usage with Azure Site Recovery

8 Small disk sizes New sizes for flexibility and cost savings
PREMIUM STORAGE ACCOUNT 25 MB/ second 50 MB/ Small disk sizes New sizes for flexibility and cost savings Overview Smaller disk sizes - 32 GB and 64GB Single digit millisecond latency for most IO’s Consistency of provisioned performance Cost savings NEW

9 Nested Virtualization Increasing the density of your infrastructure
Overview Available on the new Dv3, Ev3 and M VM sizes Create multiple environments for testing within a VM Run Hyper-V containers Test multi-machine scenarios without needing individual hardware

10 Accelerated networking Increased network performance up to 30 Gbps
GA – Windows Public Preview - Linux Accelerated networking Increased network performance up to 30 Gbps Overview Direct communication with the network interface card using Single Root IO Virtualization (SR-IOV) in Supported VMs Significantly Reduced Latency Reduced Jitter Run the most performance-sensitive workloads on VMs and scale sets

11 Scaling Horizontally

12 Scaling out infrastructure Using scale sets for elastic scale
Overview Scale - Deploy identical resources: Easily Rapidly At scale.. 10s – 10,000s of cores Customization – PaaS-like ease of use with custom infrastructure Availability - Roll out updates without service interruption Low cost – Centralized infrastructure management Elasticity - Automatically scale to changing demand

13 Scale set model vs. VM model
VMSS Model Scale set model strengths Central model definition applied to all VMs -> easy capacity change and autoscale -> define once, apply everywhere Central model challenges -> VMs may require unique properties - E.g. Public IP, attach/detach disks Higher scale demands higher level manageability (e.g. central OS/patch/security management etc. VM Model

14 Demo: scale set create 6/24/2018 4:52 PM
© Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

15 Network parity for scale sets VMs in scale sets with full feature set
Overview Public IPv4 per VM​ Multi-IP address per NIC​ Multi-NIC per VM​ Accelerated networking​ Configurable DNS IPv6 load balancer support preview Vnet peering

16 Agenda Infrastructure and Perf VM Availability Security
6/24/2018 4:52 PM Agenda Infrastructure and Perf VM Availability Security Manageability and Monitoring © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

17 6/24/2018 4:52 PM What are Managed Disks? Managed by Azure OS Disk VHD Managed OS Disk Data Disk VHD Managed Data Disk Managed Storage Accounts Simple - Abstracts storage accounts from customers Granular access control – Top level ARM resource, apply Azure RBAC Storage account limits do not apply – Enables scaling free of storage account limitations Secure – No public access to the underlying blob Support VM level disk encryption – secure data at rest Better Storage Resiliency - Prevents single points of failure due to storage © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

18 Better Storage Resiliency with Managed Disks
VMs with unmanaged storage FD0 FD1 FD2 VM Availability Set Storage account 1 Storage account 2 Storage account 3 Storage FD0 VMs susceptible to single storage FD failures

19 Better Storage Resiliency with Managed Disks
VMs with unmanaged storage VMs with managed disks VS FD0 FD1 FD2 FD0 FD1 FD2 VM Availability Set VM Availability Set Managed Storage account 1 Managed Storage account 2 Managed Storage account 3 Storage account 1 Storage account 2 Storage account 3 Storage FD0 Storage FD0 Storage FD1 Storage FD2 VMs susceptible to single storage FD failures Disks on separate storage FDs & aligned with VM FDs

20 Easy migration from unmanaged ARM VMs
< 5 minutes Stop the VM Run the conversion command using PowerShell/CLI Automatic Reboot Supported within same storage type Standard unmanaged to Standard Managed Premium unmanaged to Premium Managed Unmanaged Disks in Storage accounts Managed Disks

21 Easy upgrade from Standard to Premium
< 5 minutes Stop the VM Update to Premium capable VM size Update storage type to Premium Reboot

22 Demo: Managed Disks 6/24/2018 4:52 PM
© Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

23 Scaling out with Managed Disks
Overview Managed disks means no more managing multiple storage accounts Massive scale Up to 1,000 VMs in a scale set Up to 300 custom image VMs in a set Parity with VMs Define attached data drives in VM scale set model What about attach/detach to individual VMs?

24 Demo: Attach/Detach disks
6/24/2018 4:52 PM Demo: Attach/Detach disks © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

25 Geography—Data Residency boundary
6/24/2018 4:52 PM Public Preview Availability Zones Part of Azure’s native HA/DR solutions, providing protection from datacenter failure b Geography—Data Residency boundary Region Region Region 1 Region 2 Zone 1 Zone 2 Zone 3 Zone 1 Zone 2 Zone 3 Achieve full resiliency with Data Residency Availability Zones and a paired region within the same data residency boundary provides high availability, disaster recovery, and backup. Protect against entire datacenter loss Each zone is physically separated with independent power, network, and cooling and logically separated through zone- isolated services. Run mission-critical apps with 99.99% SLA at GA High Availability supported with industry best SLA when VMs are running in two or more Availability Zones in the same region. See this Session: BRK2086 © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

26 Most Comprehensive Resiliency and Best SLA
6/24/2018 4:52 PM Most Comprehensive Resiliency and Best SLA INDUSTRY-LEADING HIGH AVAILABILITY SLA INDUSTRY-LEADING DISASTER RECOVERY INDUSTRY-ONLY VM SLA 99.9% VM SLA 99.95% VM SLA 99.99% at GA REGIONS 42 Region 1 Region 2 SINGLE VM Protection with Premium Storage AVAILABILITY SETS & SCALE SETS Protection against failures within datacenters AVAILABILITY ZONES Protection from entire datacenter failures REGION PAIRS Protection from disaster with Data Residency compliance © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

27 Availability Zones preview
Zone redundant Load Balancer VNet Assign VMs to specific zones Zone redundant load balancer Assign scale sets to specific zones Zone-redundant load balancer preview Public IP per VM Up to 1,0000 VMs per VMSS VM VM VM Zone 1 Zone 2 Zone 3 Zone redundant Load Balancer VNet VM scale set VM scale set VM scale set Zone 1 Zone 2 Zone 3

28 Scale out with zone -redundant scale sets Limited Preview
Sign up here: Zone redundant Load Balancer Single end point for VMs spread across zones Zone failure resilient Auto Scaling High level of isolation (FDs within zones) VNet VM scale set

29 Demo: Zonal scale sets 6/24/2018 4:52 PM
© Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

30 High availability and hardware failures Expectation vs Reality
Overview Hardware level telemetry on a massive scale Use machine learning to predict when hardware is going to fail Once hardware is predicted to fail, take one of the following actions Provide a scheduled event notification and move the VM to a healthy hardware Live migrate the VM to a neighboring node. Guest VM sees a 2-4 second blackout Avoid allocating new VMs to unhealthy hardware

31 Planned Maintenance Control when planned maintenance occurs
Overview Pre-emptive Window (30 days) Starts with a notification to the user Maintenance window is discoverable Discover which VMs are going to be impacted in this wave Allows you to self start maintainence Scheduled Maintenance Window

32 Top Cloud SLA Only cloud vendor to offer single instance SLA
Overview Single Instance: Azure will guarantee availability at 99.9% with only a single instance! Requires Premium Storage for all disks Availability Set SLA: Multiple VMs deployed in Availability Set will have 99.95% availability for at least one VM! Availability Zones SLA: Multiple VMs deployed in different Availability Zones will have industry leading 99.99% availability for at least one VM at Availability Zones GA! AVAILABILITY SET AVAILABILITY SET – 99.95% SLA SINGLE VM – 99.9% SLA

33 Backup Integration Azure backup integrated into compute blade
Overview Scheduled backups On-Demand backups Geo-redundant or Locally-redundant

34 Site Recovery Integration Azure Site Recovery integrated into compute blade
Overview Setup DR for your VM in a few steps! Keep your data safe, and apps/workloads running when planned and unplanned outages occur.

35 Agenda Infrastructure and Perf VM Availability Security
6/24/2018 4:52 PM Agenda Infrastructure and Perf VM Availability Security Manageability and Monitoring © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

36 Confidential Computing Encrypt your data while in use
Early Access Preview Confidential Computing Encrypt your data while in use Overview Data is protected inside a Trusted Execution Environment (TEE) Initial support for Intel SGX & Virtual Secure Mode (VSM) Protects the most sensitive data against Malicious insiders with admin privilege or direct access to hardware Hackers & malware exploiting bugs in OS, app or hypervisor

37 Managed Service Identity Keep credentials out of code
Overview Automatically creates an AD identity for the service instance Call local MSI endpoint to get an AD access token Use the AD access token to access any other Azure service that supports AD authentication

38 MSI Case study: CERN LHC Collision analysis
Integrating HTCondor with Azure infrastructure Elastic-scale/burst computing with VMSS Fast, easy scaling  - 10’s-1000’s cores Economy: Pay for what you use Solves large capacity and locality requirements using closest regional Azure Data Center VMs using MSI to get a ‘secure VM identity’ Opens up Azure as a bursting platform for over 170+ institutions that collaborate with CERN

39 Announcing Disk Encryption for Scale Sets
Azure storage Encryption extension Azure key vault integration Meet regulatory requirements Encryption at rest Auditable keys and policies Secure from storage a/c, offline disk compromise Supports key rotation Azure PowerShell, CLI, ARM Public preview, portal integration coming soon Note: Linux OS disk encryption not supported in Preview Upload Key Key Vault AAD token Host AAD Resource Manager Encryption Config ARM/PS/CLI

40 Agenda Infrastructure and Perf Security VM Availability
6/24/2018 4:52 PM Agenda Infrastructure and Perf Security VM Availability Manageability and Monitoring © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

41 Managing at scale Reducing costs and maintaining availability at massive scale
Deploy Upgrade Automate Challenges How do I deploy OS updates to 1,000s of VMs? …without affecting application downtime? I just want VMs, I don’t want to do OS maintenance

42 Announcing VM scale set rolling upgrades
Public Preview Announcing VM scale set rolling upgrades Overview Update your scale set model with a new version (or set to latest) Optionally configure: Upgrade batch size Instance health thresholds Set a load balancer probe for application health

43 Demo: Rolling upgrade 6/24/2018 4:52 PM
© Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

44 Announcing VMSS automatic OS upgrade
Public Preview Announcing VMSS automatic OS upgrade Compute Resource Provider Scale set model YES. Do OS upgrades Is image on scale set older? Overview Set it and forget it approach to OS management Optionally configure: Upgrade batch size Instance health thresholds Load balancer probe for application health Portal integration coming soon Automatic OS Upgrader Check OS upgrade applicability Get latest platform image for given SKU Regional Service Manager Platform Image Repository

45 Configuring automated OS upgrades
Public Preview Configuring automated OS upgrades Set scale set OS “version” to “latest” Set “mode” to “Rolling” Set “automaticOSUpgrade” to “true” Optionally set a load balancer probe for application health Supported OS images in initial preview: UbuntuServer LTS Windows Server 2012-R2-Datacenter Windows Server 2016-Datacenter

46 Instance Metadata Provide Azure context to the guest OS
Overview RESTful endpoint available to all ARM VMs Compute, networking, storage and scheduled events Available on IP address in VM curl -H Metadata:true " i-version= "

47 Operations integration Complete various operational tasks from Portal
Overview Keep track of missing updates on the VM Inventory of the software installed on the VM Track changes made to files, software, daemons, registry

48 Demo: Operations integration
6/24/2018 4:52 PM Demo: Operations integration © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

49 6/24/2018 4:52 PM Takeaways Infrastructure – Expanded VM & disk sizes to match your app needs, and provide massive vertical/horizontal scale. Availability – Use zone redundancy for high availability with easy configuration Security – Apply simple, targeted, effective security with confidential computing, MSI, and VMSS encryption Manageability – Information where it’s needed with Instance Metadata, automate OS lifecycle maintenance with VMSS rolling upgrade options © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

50 6/24/2018 4:52 PM See these features and more in action! BRK3247 – Today 2:00-2:45 Hyatt Regency Windermere W Deploy a 1,000-VM machine learning infrastructure from scratch! Update app/infra without downtime Use Azure CLI 2.0, Chef, and VSTS CI/CD No slides! Leave the room ready to build and manage your killer app! © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

51 Please evaluate this session
Tech Ready 15 6/24/2018 Please evaluate this session From your Please expand notes window at bottom of slide and read. Then Delete this text box. PC or tablet: visit MyIgnite Phone: download and use the Microsoft Ignite mobile app Your input is important! © 2012 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

52 Upcoming VM Sessions (Cont.)
THR3043: The new planned maintenance experience … Wednesday, September 27, 1:35 PM - 1:55 PM BRK2372: Azure Disks: Scale, performance, and ease of use Thursday, September 28, 10:45 AM - 12:00 PM BRK2210: Everything you need to know about Microsoft Azure security BRK3106: Application-aware disaster recovery for VMware, Hyper-V and Azure IaaS VMs with Azure Site Recovery

53 Upcoming VM Sessions (Cont.)
BRK3132: Protect your data with Microsoft Azure Backup Thursday, September 28, 2:15 PM - 3:30 PM BRK3279: Dive deep into the VM Marketplace in Azure Thursday, September 28, 4:00 PM - 5:15 PM BRK2199: Infrastructure as code: Leverage Ansible and Terraform Friday, September 29, 10:15 AM - 11:00 AM BRK3167: Tips and tricks with Azure Resource Manager Friday, September 29, 10:45 AM - 12:00 PM

54 Upcoming VM Sessions (Cont)
BRK3313: Plan, orchestrate, and tune large resource deployments on Azure IaaS Friday, September 29, 10:45 AM - 12:00 PM BRK2130: Getting % availability for my IaaS Service: Running highly available Azure VMs Friday, September 29,12:30 PM - 1:45 PM

55 Completed VM Sessions (Recordings)
BRK Azure Compute: New features and roadmap BRK2101 – Business continuity for your business running in IaaS THR3032: Migrating your IaaS infrastructure from ASM to ARM without downtime BRK3178: Cost savings with Azure Virtual Machines THR3016: Customer stories: Plan and orchestrate large … THR1018R: Virtual machine diagnostics on Microsoft Azure BRK3220: VM infrastructure innovation and automation

56 Please evaluate this session
Tech Ready 15 6/24/2018 Please evaluate this session From your Please expand notes window at bottom of slide and read. Then Delete this text box. PC or tablet: visit MyIgnite Phone: download and use the Microsoft Ignite mobile app Your input is important! © 2012 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

57 6/24/2018 4:52 PM © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

Download ppt "Azure VM infrastructure innovation and automation"

Similar presentations

Azure.

Azure.
Microsoft Azure Speed >> Economics Scale. Microsoft Azure Speed >> Economics Scale.

Microsoft Azure Speed >> Economics Scale. Microsoft Azure Speed >> Economics Scale.
Run Azure Services in your datacenter

Run Azure Services in your datacenter
Building ARM IaaS Application Environment

Building ARM IaaS Application Environment
Accelerate your DevOps with OpenShift by Red Hat

Accelerate your DevOps with OpenShift by Red Hat
Virtual desktops in the cloud: Experiences from the field

Virtual desktops in the cloud: Experiences from the field
Successfully migrate existing databases to Azure SQL Database

Successfully migrate existing databases to Azure SQL Database
Secure Hyperconnectivity with TeamViewer and Windows technologies

Secure Hyperconnectivity with TeamViewer and Windows technologies
Enterprise Security in Practice

Enterprise Security in Practice
From IT Pros to IT Heroes - with Azure DevTest Labs

From IT Pros to IT Heroes - with Azure DevTest Labs
5/21/2018 9:40 PM BRK3021 Learn about modern infrastructure roles in RDS: Next generation Windows desktop & app virtualization Clark Nicholson - Principal.

5/21/2018 9:40 PM BRK3021 Learn about modern infrastructure roles in RDS: Next generation Windows desktop & app virtualization Clark Nicholson - Principal.
5/22/2018 1:39 AM BRK2156 Power BI Report Server: Self-service BI and enterprise reporting on-premises Christopher Finlan Senior Program Manager © Microsoft.

5/22/2018 1:39 AM BRK2156 Power BI Report Server: Self-service BI and enterprise reporting on-premises Christopher Finlan Senior Program Manager © Microsoft.
Nested Virtualization: A game changer in Hyper-V and Azure

Nested Virtualization: A game changer in Hyper-V and Azure
Azure File Sync Setup, configuration and management

Azure File Sync Setup, configuration and management
Microsoft Operations Management Suite Insight and Analytics

Microsoft Operations Management Suite Insight and Analytics
Configure and Manage Your Hybrid Cloud Environment at Scale

Configure and Manage Your Hybrid Cloud Environment at Scale
6/10/2018 5:07 PM THR2218 Deploying Windows Defender AV and more with Intune and Configuration Manager Amitai Rottem @AmitaiTechie Senior Program Manager,

6/10/2018 5:07 PM THR2218 Deploying Windows Defender AV and more with Intune and Configuration Manager Amitai Senior Program Manager,
Microsoft Virtual Academy

Microsoft Virtual Academy
THR3052 Tips and tricks: Build, deploy, and manage web apps powered by containers Ahmed Elnably Program Manager II @ Microsoft @elnably ahmed.elnably@microsoft.com.

THR3052 Tips and tricks: Build, deploy, and manage web apps powered by containers Ahmed Elnably Program Manager
6/11/2018 8:14 AM THR2175 Building and deploying existing ASP.NET applications using VSTS and Docker on Windows Marcel de Vries CTO, Xpirit © Microsoft.

6/11/2018 8:14 AM THR2175 Building and deploying existing ASP.NET applications using VSTS and Docker on Windows Marcel de Vries CTO, Xpirit © Microsoft.

Similar presentations

Ads by Google