1. Walter Pitrof Technology Solution Professional Microsoft Switzerland

2. Virtualization in the Industry Windows Server 2008 Server Core Windows Server 2008 Hyper-V Architecture Why is there a parent partition? Hyper-V Isolation Virtualization Demo High Availability & Quick Migration Hyper-V Networking Licensing 3rd party integration and support Virtualization Solution System Center Virtual Machine Manager Roadmap

4. Computerworld “Although virtualization has been the buzz among technology providers, only 6% of enterprises have actually deployed virtualization on their networks, said Levine, citing a TWP Research report. That makes the other 94% a wide-open market.” The Rise of the Virtual Machine and the Real Impact It Will Have “We calculate that roughly 6% of new servers sold last year were virtualized and project that 7% of those sold this year will be virtualized and believe that less than 4% of the X86 server installed base has been virtualized to date.

5. Information Week Oct. 2007 “The [virtualization field] is nowhere near saturated. IDC estimates that only 17% of the worldwide server market will be virtualized by 2010, up from 5% in 2005.”

6. Production Use Virtual Server in heavy use for 18+ months 2,100+ virtual machines ~100 new VMs per month Consolidation Ratios 8 servers to 1 server Test/Development Savings: Test/Development Use Virtual Server in heavy use for 18+ months 500+ virtual machines Consolidation Ratios 16 servers to 1 server ItemPhysical System CostVirtual Server Build CostSavings Number of servers required477 systems @ a cost of $5k each Total $2.3 million 16 physical host systems @ $20k each Total: $320 thousand Just under 2 million dollars Hard drive space19 terabytes8 terabytes11 terabytes Rack space30 racks2 racks28 racks

8. Minimal installation option Low surface area Command line interface Limited set of server roles Server Core Server Roles Server Core Security, TCP/IP, File Systems, RPC, Clustering, BitLocker, plus other Core Server Sub-Systems DNSDHCPFileAD Server With WinFx, Shell, Tools, etc. TSIAS Web Server Share Point Etc… Server, Server Roles (for example only) GUI, CLR, Shell, IE, Media, OE, etc. WSV IIS*

9. Fewer Patches Server Core reduces # of patches by ~60% Based on all Windows 2000 patches Servicing burden is reduced by removing components that are most often serviced More Secure, Reliable and Less Management Removal of non-value add legacy & client components from server

11. Notepad Task Manager TM's new Services tab Regedit vbscript Driver Verifier Pnputil (installs drivers) Chewable cud Plus the usual command line stuff, and some new stuff dnscmd wevtutil ocsetup installs roles Heck, it's even got edlin

13. Description Hypervisor based virtualization platform Windows Server 2008 x64 Edition technology Standard, Enterprise and Datacenter Editions Hardware Requirements x64 server with hardware assisted virtualization AMD AMD-V or Intel VT Hardware enabled Data Execution Prevention (DEP) required AMD (NX no execute bit) Intel (XD execute disable) Note: Enabling these BIOS features requires powering down (not rebooting) the server to take effect

15. Monolithic hypervisor Simpler than a modern kernel, but still complex Contains its own drivers model Micro-kernelized hypervisor Simple partitioning functionality Increase reliability and minimize TCB No third-party code Drivers run within guests Hypervisor VM 1 (Admin) VM 2VM 3 Hardware Hypervisor VM 2 (“Child”) VM 3 (“Child”) Virtualization Stack VM 1 (“Parent”) Drivers

16. Windows Server 2008 VSP Windows Kernel Applications Non- Hypervisor Aware OS Windows Server 2003, 2008 Windows Kernel VSC VMBus Emulation “Designed for Windows” Server Hardware Windows hypervisor Xen-Enabled Linux Kernel Linux VSC Hypercall Adapter Parent Partition Child Partitions VM Service WMI Provider VM Worker Processes OS ISV / IHV / OEM Microsoft Hyper-V Microsoft / XenSource User Mode Kernel Mode Provided by: Ring -1 IHV Drivers VMBus Applications

17. No defense in depth Entire hypervisor running in the most privileged mode of the system Scheduler Memory Management Storage Stack Network Stack VM State Machine Virtualized Devices Binary Translators Drivers Management API Hardware Ring -1 User Mode Kernel Mode User Mode Kernel Mode User Mode Kernel Mode Ring 0 Ring 3 Virtual Machine Virtual Machine Virtual Machine

18. Defense in depth Using hardware to protect Hyper-V doesn’t use binary translation Further reduces the attack surface Scheduler Memory Management Hardware VM State Machine Virtualized Devices Management API Ring -1 Storage Stack Network Stack Drivers User Mode Kernel Mode User Mode Kernel Mode Ring 0 Ring 3 Parent Partition Virtual Machine Virtual Machine

19. Capabilities 32-bit (x86) & 64-bit (x64) VMs Large memory support (64 GB) per VM SMP VMs (up to 4 cores) Integrated cluster support for HA & Quick Migration Live Backup: Volume Shadow Service integration Pass-through disk access for VMs Virtual Machine snapshots New hardware sharing architecture (VSP/VSC/VMBus) Disk, networking, input, video Robust networking: VLANs and NLB DMTF standard for WMI management interface Support for Full or Server Core installations

20. Isolation No sharing of virtualized devices Separate VMBus per vm to the parent No sharing of memory Each has its own address space VMs cannot communicate with each other, except through traditional networking Guests can’t perform DMA attacks because they’re never mapped to physical devices Guests cannot write to the hypervisor Parent partition cannot write to the hypervisor

23. Traditional Non-Virtualized Environment Downtime is bad, but affects only one workload Virtualized Environment Value of the physical server goes up Downtime is far worse because multiple workloads are affected Virtualization and High-Availability Go Hand in Hand

24. Providing solutions for both planned and unplanned downtime Planned downtime Quickly move virtualized workloads to service underlying hardware More common than unplanned Unplanned downtime Automatic failover to other nodes (hardware or power failure) Not as common and more difficult

25. 1.Save state a)Save entire vm state 2.Move virtual machine a)Move storage connectivity from origin to destination host 3.Restore state and Run a)Restore vm and run b)DoneVHDs Network Connectivity SAN Storage

26. Quite Fast!

28. Don’t forget the parent is a VM Two physical network adapters at minimum One for management One (or more) for VM networking Dedicated NIC(s) for iSCSI Connect parent to back- end management network Only expose guests to internet traffic

29. Example 1: Physical Server has 4 network adapters NIC 1: Assigned to parent partition for management NICs 2/3/4: Assigned to virtual switches for virtual machine networking Storage is non-iSCSI such as: Direct attach SAS or Fibre Channel

33. Windows Server 2008 VM 2VM 1 “Designed for Windows” Server Hardware Windows hypervisor VM 3 Parent Partition Child Partitions User Mode Kernel Mode Ring -1 Mgmt NIC 1 Mgmt NIC 1 VSwitch 1 NIC 2 VSwitch 1 NIC 2 VS P VSwitch 2 NIC 3 VSwitch 2 NIC 3 VSwitch 3 NIC 4 VSwitch 3 NIC 4 Applications VM Service WMI Provider VM Worker Processes Windows Kernel VSC Windows Kernel VSC Linux Kernel VSC VMBus

34. Example 2: Server has 4 physical network adapters NIC 1: Assigned to parent partition for management NIC 2: Assigned to parent partition for iSCSI NICs 3/4: Assigned to virtual switches for virtual machine networking

35. Windows Server 2008 VM 2VM 1 “Designed for Windows” Server Hardware Windows hypervisor VM 3 Parent Partition Child Partitions User Mode Kernel Mode Ring -1 Mgmt NIC 1 Mgmt NIC 1 iSCSI NIC 2 VS P VSwitch 1 NIC 3 VSwitch 1 NIC 3 VSwitch 2 NIC 4 VSwitch 2 NIC 4 Applications VM Service WMI Provider VM Worker Processes Windows Kernel VSC Windows Kernel VSC Linux Kernel VSC VMBus

42. Microsoft and XenSource to develop Interoperable Virtualization Solutions Microsoft and XenSource will cooperate on the development of technology that will provide interoperability between Xen-enabled Linux and Microsoft’s hypervisor-based Windows Server virtualization By supporting heterogeneous environments, Microsoft is continuing its commitment to make Windows Server the most flexible virtualization solution

43. Mutual collaboration on software “shims” that translates APIs between respective virtualization technologies Novell developing an adapter that enables Windows Server 2008 to interface with SUSE Linux Enterprise Server using Xen Microsoft delivering adapter that enables SUSE Linux Enterprise Server to interface with Windows Server Virtualization Guest Kernel VMM / Hypervisor Server Hardware Guest Applications VM Adapter API

45. Hardware Virtualization Layer Windows Windows WindowsWindows http://www.microsoft.com/windowsserver2008/en/us/licensing-datacenter.aspx Unlimited virtualized instances of Windows Server 2008 (or previous version) Standard, Enterprise, and Datacenter Virtual Server 2005 Hyper-V VMWare Xen licensed by processor plus Windows Server Client Access Licenses (CALs) Processors

47. Management Server Virtualization Desktop Virtualization Application Virtualization Presentation Virtualization

48. Server consolidation via virtual migration VM provisioning and configuration Server health monitoring & management Performance reporting and analysis Patch management & software upgrades VM backup and recovery Disaster recovery

50. A new System Center product that allows you to manage your virtualized environment Manage Virtual Server 2005 R2 - V1 Manage Windows Server Virtualization (Hyper-V) – R2 Feature set includes centralized: Host Configuration Virtual Machine Creation Virtual Machine Placement and Deployment Server Consolidation Tools Image Library Management Monitoring and Reporting Rapid Recovery

51. Hardware (Single Physical Server) Microsoft SQL Server 2005 Express Edition Centralized Library Windows ® PowerShell Administrator Console Web-Based Delegated Provisioning UI VMM Agent Guest OS Guest OS Guest OS Windows ® PowerShell Administrator Console Web-based Delegated Provisioning UI Library Server Virtual Machine Hosts

52. London Windows ® PowerShell Administrator Console Web-based Delegated Provisioning UI External Network (DMZ) Singapore Virtual Machine Hosts Remote Library Server

54. Live Thumbnail Host Groups Centralized Library VM Views Context Sensitive Actions

56. Virtual Machine Management Agent Deployed Virtual Machines Placed on Optimal Host Physical Machines Retired or Repurposed Performance Data Collected to Identify Consolidation Candidates Prioritized Report of Consolidation Candidates Intelligent Placement Physical Machines Converted to Virtual Machines Virtual Machine Hosts Physical Infrastructure Existing Physical Infrastructure Virtual Machine Manager Introduced Virtual Machine Hosts Identified Performance Data Collected for Intelligent Placement

57. P2V is a core feature of System Center Virtual Machine Manager (SC VMM), no additional costs per conversion VMM P2V includes the ability to create images of physical hard disks, prepare them for use in a virtual machine, and create the final virtual machine for an end-to-end P2V solution Support for Windows® 2000 Server, Windows XP, Windows Server 2003, and Windows Server 2003 R2 No additional infrastructure is required; no need for PXE or ADS as in VSMT Simple wizard integrated in the main SC VMM user interface is used to perform the conversions P2V process is also completely scriptable via Windows PowerShell and can be done in stages (imaging, fix-up, virtual machine creation)

58. Integrated into the VMM UI and the Command Line Interface Convert (Offline) either a VMWare disk or the whole VM to the analogous VS vhd\vm representation Fix up (making OS bootable) for Win2K, Win2K3 Oses Support of four “vmdk” types (flat\sparse – full\2gb split) $vmxmc = $c | new-VMXMachineConfig -VMXPath \\server1\vmx\My_Virtual_Machine.vmx $c | copy-VMDK -VMDKPath \\server1\vmx\My_Virtual_Machine.vmdk -VmHost $vmhost -Path F:\VMX\ $c | new-V2V -Name vmx1 -VMXPath \\server1\vmx\My_Virtual_Machine.vmx -VmHost $vmhost -Path F:\VMX\ V2V PowerShell syntax: $mc = $c | new-MachineConfig -SourceComputerName compName -credential $cred copy-HardDisk -Server $c -MachineConfig $mc -VMHost $vmhost -Path f:\ -VolumeDeviceID "C" -Dynamic -DiskAdd 1024 -Credential $cred new-p2v -Server $c -MachineConfig $mc -VMHost $vmhost -Path f:\ -Name vm_name -Memory 128 -Credential $cred P2V PowerShell syntax:

60. The next version of VMM will be available in Q3 of 2008 This version will feature a series of new features and improvements to the VMM program We are developing features that will allow customers to use the next version of VMM to manage not only Windows-based virtual machines, but also VMware-based virtual machines, with Xen-based virtual machines in the version after. Using the next version of VMM, administrators can also manage VMware-based virtual machines so they can truly have a common management platform for physical and virtual assets, from the desktop to the datacenter, across multiple virtualization platforms.

62. 2008 Windows Server Virtualization BETA with Windows Server 2008 RTM System Center Virtual Machine Manager RTM Support for Virtual Server System Center Operations Manager RTM System Center Configuration Manager RTM System Center Data Protection Manager RTM Virtual Server R2 SP1 RTM Windows ® Server Hyper-V RC Delivered through Windows Update Windows ® Server RTM Hyper-V Release Within 180 days of Windows Server 2008 RTM System Center Virtual Machine Manager “Next” Adds support for managing Hyper-V Adds support for managing VMware Now

63. © 2008 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

64. Virtual Server COM Interface http://msdn2.microsoft.com/en- us/library/bb309134(VS.85).aspx Virtual Hard Disk Format http://www.microsoft.com/windowsserversystem/virtualser ver/techinfo/vhdspec.mspx Beta Hyper-V WMI Provider APIs http://msdn2.microsoft.com/en- us/library/cc136992(VS.85).aspx Beta Hyper-V Hypercall Interface http://www.microsoft.com/downloads/details.aspx?FamilyI d=91E2E518-C62C-4FF2-8E50- 3A37EA4100F5&displaylang=en

65. Microsoft Virtualization Home: http://www.microsoft.com/virtualization Windows Server Virtualization Blog Site: http://blogs.technet.com/virtualization/default.aspx Windows Server Virtualization TechNet Site: http://technet2.microsoft.com/windowsserver2008/en/servermanager/virtualization.mspx Windows Server 2008 with Hyper-V Beta: http://www.microsoft.com/downloads/details.aspx?FamilyId=8F22F69E-D1AF-49F0-8236- 2B742B354919&displaylang=en Windows Hyper-V Beta Installation Guide: http://www.microsoft.com/windowsserver2008/virtualization/install.mspx