OpenStack® and the EnterpriseMark InterranteSenior Vice President, Cloud EngineeringHPE Helion
The next-generation cloud is based on open source
OpenStack has become mainstream
All workloads are in play, cloud native, high performance
computing, NFV
Ready for traditional enterprise
workloads/pets
Integration with existing infrastructure
TelcoFinancial and
Healthcare
Government and
Defense
Migrating current workloads
Entire datacenter
OpenStack deployments in production grew from 16% to 67%
OpenStack has become mainstream
Helion OpenStack – across all verticals
What customers tell usNeed help to move 10K poorly utilized apps to a modern hybrid infrastructure
30% Retired or
Replaced with SaaS
10,000+ apps
PrivateClouds
ManagedClouds
Global PublicClouds
Traditional IT
10% Of apps won’t change: “Don’t change the app,Just make it cheaper.”
45%Of apps should have:
“Agility of cloud, with the control of private.”
15%Of apps should: “Move to
public cloud, where it makes sense.”
“…and give me Common Services across existing & new apps:”• Integrated chargeback and billing• Security and compliance auditing• Application patching and management
HPE Multi-Cloud StrategyOpen approach to meet customers where they are
AWSGoogle
Hybrid Management
HPE Helion OpenStack
®Azure Stack
HPE /Other Hardware
Azure
Public Cloud MicrosoftPublic Cloud4: Private or managed clouds in customer or HPE
datacenters
HPE Helion/Partner Professional Services
Container Platforms
(Mesosphere, Docker)
Service Providers
Cloud 28+
(EMEA)
HPEPartners
Traditional Workload Orchestration Cloud Native Orchestration
vSphere
BUSINESS CONTINUITY
HA for Control Plane Services
Live Migration
Rolling upgrades without downtime for both the control plane and the compute nodes
SECURITY AND COMPLIANCE
Certifications such as PCI, STIG and HIPAA
Reduce the risk of breaches and attacks
TCO/SCALE
Delivering Monasca, Elasticsearch, Logstash, Kibanna (ELK), and Ceilometer
Richer operations platform based on intelligent monitoring
WORKLOAD DIVERSITY
Support vast majority of workloads driven use cases for customers
From scale out workloads,
VM or container based to traditional, large workloads running on BaremetalHYBRID IT
SDN integrationout of the box
Multi region/hypervisor
INTEGRATION
Interop with datacenter hardware and software- networking, compute, storage, IP management
How did we get here?Together we made our customers successful
Enterprises need us to step up
Identity federation based on Keystone
Consistent policy framework and distributed routing capabilities in Neutron
Monasca needs to continue to scale without impact on control plane, across regions and converge with ELK
PUSH FOR MORE SCALE
OPERATIONAL EXCELLENCE
Lifecycle management for containerized control plane
On par with legacy virtualization TCO
Multi-cloud monitoring BUSINESS CONTINUITY
Backup recovery for ALL control plane services with Freezer
Back up/recovery for VM volumes
Multi-site disaster recovery
NFV workloads VM High Availability with Masakari
CONNECT
Augmenting third party vendors add-ons
SDN controllers and firewalls
BURA LIVE MIGRATION HA
SECURITY
Multi tenant Ironic
Containers on bare metal
HYBRID IT
Multi hypervisor live migration
9
OpenStack journey around securityFirst- we had to meet the standard to be production readyThen we had to land security requirements by vertical and implement them into our stack- Regulatory compliance standards exist today for several verticals and across the globe
- Financial, Healthcare, Federal, Service Provider etc.- Examples
- PCI for financial, HIPAA for healthcare, NIST STIG for defense, FedRAMP for federal- SOX , ISO 27001 for service provider, UK Data Protection Act, EU General Data Protection Regulation etc.
- These standards have - Existed for many years to address traditional IT security needs- Recently updated (in the last few years) to address cloud security
- Cloud security includes requirements to address virtualized IT (security around VMs, monitoring, patching)- A few are addressing API security
There is more to do- But none are addressing open source-based multi-cloud (IaaS/PaaS) security
- OpenStack services, REST APIs, Container security, cloud native workloads, operational cloud security- Secure Development Lifecycle best practices
HPE-IT second generation private cloud quick facts
2 Sites
6 AZs
Propel
CLOUD SELECTOR
FULL OPENSTACK API SUPPORT
2 Stacks
Helion OpenStack
CSA
PHYSICAL COMPARTME
NT ISOLATION
HelionIaaS / PaaS / Services Commercia
l Private Cloud
24X7X365 SUPPORT CLOUD PLATFORM
LBaaSFWaaS
DNSaaS BaaSSNAPSHOTSSTREAMING
ContainersIsolated
Infrastructure Management
Platform
17K+VMs
HIGHLY AVAILABLE
IT & USER VM IMAGES
8000+
CORES
5 PBSTORAGE
156 TB
RAM
Global Support & Monitoring across multiple countries – follow the sun
CHARGEBACK / SHOWBACK
PRIVATE NETWORK
ISOLATION & POLICIES
HPE Portfolio is based on open technologies
Helion OpenStack: Enterprise-grade OpenStack
cloud to configure a fully open cloud platform
Helion Stackato:
Open, cloud application platform, built on Cloud Foundry®
supporting a variety of runtimes, frameworks and services. Works
on top of any IaaS or with a multi-IaaS environment.
Helion Carrier Grade: Enables telecommunications
operators to use Commercial-off-the-shelf (COTS) hardware to manage Virtualized Network
Functions (VNF) within a carrier grade NFV architecture.
Helion CloudSystem:Comprehensive hardware and
software solution for private and hybrid cloud, delivering hosting, automation, and orchestration of
traditional and cloud native workloads
Helion Cloud Suite: A new software suite enabling
customers to deliver and manage their full spectrum of applications
-- from traditional, virtualized, cloud native and containers --
across a broad range of infrastructure environments
Thank [email protected]@interrante