Hybrid Connectivity Options with the Microsoft CloudMichael Stephenson

https://twitter.com/michael_stephen

https://www.linkedin.com/in/michaelstephensonuk1

Who am I?Michael Stephenson

Azure and Integration Architecture AdvisorMicrosoft MVP for 7+ yearsPluralsight AuthorAzure Insider/AdvisorIntegration MondayWorked on 30+ projects that have leveraged Azure

Contact infoBlog: http://microsoftintegration.guruTwitter: @michael_StephenLinked In: http://www.linkedin.com/in/michaelstephensonuk1Email: michael@connectedsystemsconsulting.co.uk

TheAzureCoach.com

• Competition – Win Free Azure Workshop for your Team

• Next Public Event – Bradford 16th Dec 2015

Highlight Azure opportunitiesShare real world experiencesDiscuss integration challengesInform about hybrid connectivity options

Outcomes

The hybrid challengeTechnology OptionsAzure App Service + Hybrid

Agenda

The hybrid challenge

The hybrid enterprise

Partners

Applications

Integration

Integration

ApplicationsSaaS

Applications

Partners

Cloud platforms

Devices & things

Azure

On premise

What is this?How do we connect our capability in the cloud with our capability on premises?

Technology options

Connectivity options

Connect Cloud and On-premise

Express Route

Site to Site VPN

Point to Site VPN

Service Bus Relay

Service Bus Event

Hubs

Service Bus

Queues

Azure API Apps

BizTalk Adapter Service

BizTalk Hybrid

ConnectionAzure BizTalk Services

Azure Service Bus

Azure Networking

Site to Site VPN

Target scenarios Key benefits Constraints

• Infrastructure connectivity• VM VM• Cloud Service VM

• Network level access between on-premise and cloud resources

• Familiar to infrastructure teams

• Relatively easy to setup

• Needs cloud resource to be part of a virtual network in Azure

• Secured per server rather than per endpoint

• Lower latency and bandwidth then Express Route

Easily connect your Azure network to your on-premise network

VM in Azure IaaS

Active Directory

LOB servers

Database servers Mainframe

On-premise data centre Azure Network

VPN

BizTalk

IIS application servers

Azure Cloud

Azure API Management

API Management & VPNOn Premise Network

VPN

IIS application serversAzure Virtual Network

Express route

Target scenarios Key benefits Constraints

• Move lots of data between on-premises and cloud

• Connect Azure IaaS to on-premises (eg. Extended data centre)

• Shifting backup to cloud

• Low latency• High bandwidth• More secure

• Can be expensive• Network provider

constraints

Add Azure to your WAN with MPLS network

Miami data centre

Extended data centre

UK data centre Denmark data centre

Network provider MPLS network

Azure Virtual Network

Extended data centre

Sync’d Read only copy of ADActive Directory Active Directory

LOB servers

BizTalk

IIS application servers

Database servers Mainframe

BizTalk

LOB servers

IIS Application servers

Database servers

On-premise data centre Azure Network

Network provider MPLS network

Miami

SQL Business Intelligence in Azure

UK

SQL Server data warehouse

Azure Network

SQL ServerIntegration Services

Network provider MPLS network

Point to site VPN

Target scenarios Key benefits Constraints

• Solves some access restrictions from on -premise for RDP

• Tunnels RDP over SSTP to make firewall/proxy server friendly

• Can make VM not publically accessible

• Needs VM to be on a Virtual Network in Azure

Easily connect from desktop to a VM in Azure

Azure Development Lab

Difficult to access Cloud Dev Lab

Active Directory Dev Machine 1

Dev Machine N

Build server

UK Developers

USA Developers

Romanian near-shore team

India off-shore team

Use Point to Site VPN here

Azure Service Bus Relay

Target scenarios Key benefits Constraints

• Exposing on-premise WCF Services to the Cloud

• Expose WCF Service from one cloud provider to another

• Very simple• Can be very low cost

• Can only use WCF relay bindings

• Limited management and monitoring story

Firewall friendly bridge to expose WCF & REST endpoint via cloud.

“Imagine you have put a secure router in the cloud that can direct traffic to your on premise services”

Hybrid integration in a day

Denmark data centreAN-OTHER data centre

IBM websphere

WCF routing service

Azure

Azure Service Bus Relay

Partner ManagementApplication

Relay powered Hybrid SAP Integration

SharePoint Provider Hosted AppIn Azure Web App

Microservices Router

Service Bus Relay

Exposing SAP BAPI’s in 2 hours

Relay costs peanuts

Relay is pretty fast

No infrastructure costs to setup

Project up and running in a couple of days

API

SAP Microservices

Other Microservices

Linq To SAP

Azure Service Bus Messaging

Target scenarios Key benefits Constraints

• Asynchronous messaging• Durable messaging• Publish & subscribe

• Pretty simple• Can be very low cost• High volume• Different communication

patterns support

• You need to support one of below protocols• AMQP• REST• SB-Messaging

Cloud hosted PaaS Message Queue Platform

“Decoupled the sender and receiver”

Azure

Global API

Business 1 Business 2

API

Azure Service Bus

BizTalk Websphere

Event broadcasting

My data centre

Azure

BizTalk

Azure Service Bus

SQL Server

Azure Service Bus Event Hubs

Target scenarios Key benefits Constraints

• IoT scale event broadcast scenarios

• Application Telemetry data

• Low cost at massive scale• One stream read many times• Message replay support• Combine with other Azure

Services to create great solutions

• Need to consider how you will Process the data, there could be a lot of it

• Consider how to partition data

Cloud hosted PaaS massive scale event stream

Application Telemetry

On Premise Data Centre

WCF Routing Service

AzureAzure Service Bus Relay

Service Gateway

BizTalk

Azure BI Capability

Event Hubs

Stream Analytics Machine Learning

Power BI

Combines Azure Service Bus Relay + BizTalk Adapter Pack WCF Adapters + Management experience into a package to allow you to connect to common LOB applications from the cloud.

BizTalk Adapter Service

Target scenarios Key benefits Constraints

• Access SQL Server, SAP, Oracle etc. in a BizTalk adapter style fashion

• Similar experience to using BizTalk Adapter Pack from BizTalk Server

• Can be used by BizTalk Services

• Can be used by other applications as a WCF service

• Needs a BizTalk Services subscription

On-premise data centre

BizTalk Adapter ServiceOn-premise Agent

BizTalk Adapter PackLOB Adapters

Bridge to SAP

BizTalk ServicesEAI Bridge

BizTalk Adapter ServiceEndpoint

BizTalk Adapter ServiceManagement

Mobile device

BizTalk Hybrid Connections

Target scenarios Key benefits Constraints

• Access “anything you can access at port level”

• Azure Websites & Mobile Services simple access to on-premise resources

• Azure Website hosted API’s

• Simple to set up• Similar to Service Bus Relay

but wider scope of usage

• Needs a BizTalk Services Subscription

• Pricing is a consideration if you aren’t using other BizTalk Services features

• Currently supports Websites & Mobile Services

Install an Agent on premise and create a port level hybrid connection to on premise resources

On-premise data centre

Azure BizTalk Services

Hybrid Connection Agent

Hybrid ConnectionEndpoint

Hybrid ConnectionManagement

Azure Websites

Website

Bridge to Oracle Database

Website

What about the Azure App Service?

API App Connectors

Logic App

Example

Service Bus Relay

SAP API App

Logic App

Office 365 API App

BizTalk Hybrid ConnectionAgent

Web App

Hybrid Connectivity in App ServiceWeb Apps Mobile Apps Market

Place/OOB API Apps

Custom API Apps

Express Route

Site to Site VPN

Point to Site VPN Used to connect an app hosted on app service to an Azure Virtual Network

Service Bus Relay Use Relay under the hood

Service Bus MessagingService Bus Event Hubs

Coming soon?

BizTalk Adapter Service

Use API Apps Use API Apps This replaces BizTalk Adapter Service

N/A

Hybrid Connections

Supported but you would be likely to use other options

Supported but you would be likely to use other options

N/A – Uses SB Relay for use cases where hybrid connections were used previously

Supported but you would be likely to use other options

Notes: Logic Apps use API AppsRather than use Hybriddirectly

Demo – The Power of Hybrid

Minecraft Integration to LOB Apps

Example Scenarios Benefits Capabilities Required

• Can we protect a room in Minecraft so you can only enter it if you are authenticated against active directory?

• Can we query data from our line of business systems?

• Demo the agility cloud adds to hybrid connectivity

• Makes integration look cool• Quick feedback• Solid architecture which can be

built upon

• Implement API in the cloud• Reach through from the cloud to

on premise• Integrate into Active Directory

How can we expose our Services to a new world application via hybrid API?

Minecraft Hybrid Integration

On Premise Data Centre

Active Directory

Azure

Azure Service Bus Relay

Azure API Management

Service Virtualization

Authentication Service

Courses Service

Questions

Thank you