Upload
amazon-web-services
View
200
Download
0
Tags:
Embed Size (px)
DESCRIPTION
One of the key principles at Amazon is that we start with customers and work backwards. Increased agility, elasticity, focus on core business, optimized costs, and better security are all good outcomes when it comes to working with AWS. But, for an enterprise with many existing complex applications, integrated operations, and sophisticated teams, this integration and transition requires thought and planning. Within this session, we will start with a typical enterprise customer and work backwards step by step to show how an extreme IT makeover it possible with reusable examples; demonstrating that an application doesn’t have to be written for cloud to realize cloud’s benefits. Many large-scale shops are already leveraging AWS without sacrificing what they are good at, and we will explain the framework for kicking off this initiative within your own organization
Citation preview
IT Extreme Makeover with Hybrid Scenarios
Extending the Enterprise Data Center
Yinal Ozkan, AWS Principal Solutions Architect
Today
Observations:• We start with customers and work backwards. • Our customers leverage increased agility, elasticity, focus on core business, optimized
costs, and better security• Enterprises with complex applications, integrated operations, and sophisticated teams, this
integration and transition require deeper thought and planning.
Action Items:• Start a typical enterprise customer and work backwards step by step• Discuss path for kicking off cloud initiative within your own organization.• Discuss how an extreme IT makeover is possible with reusable examples• Validate that application do not need to be rewritten • Extending existing good practices into AWS
You Have a Great Data Center
But some off-premise options may be better
here there
???
Image Copyright: Alan Stark https://www.flickr.com/photos/squeaks2569/3538446880
Hybrid Deployments Made Easy
Capabilities• Integrated Networking
– Amazon Virtual Private Cloud (Amazon VPC)– Amazon Direct Connect
• Integrated Cloud Storage– AWS Storage Gateway– Amazon Glacier– Amazon Simple Storage Service (Amazon S3)
• Integrated Access Control• Integrated Resource Management and Workload Migration
http://aws.amazon.com/enterprise/hybrid/
You have a lot to think about
Compute NetworkingStorage & CDN
Database App Services Management
Amazon EC2Amazon EMRAmazon ELB
Amazon Route 53Amazon VPCAWS Direct Connect
Amazon S3Amazon GlacierAmazon EBSAWS Import/ExpAmazon CloudFront
Amazon RDSAmazon DynamoDBAmazon ElasticacheAmazon RedShift
Amazon CloudSearchAmazon SWFAmazon SQSAmazon SNSAmazon SESAmazon Elastic TranscoderMobile PushAmazon WorkSpacesAmazon KinesisAmazon AppStream
AWS IAMAmazon CloudWatchAWS Elastic BeanstalkAWS CloudformationAWS Data PipelineAWS OpsWorksAWS CloudHSMAWS Trusted AdvisorAWS MarketplaceAWS CloudTrail
AWS Premium Support
AWS Professional Services
AWS Training
Corporate Data
Center
Private Network in AWS
Image Copyright: Alan Stark https://www.flickr.com/photos/squeaks2569/3538446880
Corporate Data Center
Extend the Corporate DC
Availability Zone Availability Zone
VPC Customer
10.0.0.5 10.0.0.6
10.0.1.8
10.0.1.9
Virtual Private Cloud (VPC)
Private Subnet
VPN
Internal facing systemsAccessible only over VPN – access to
internet over corporate connection
Public Subnet
www
Internet facing systemsAssert control over networking layer
PublicSubnet
www
Private Subnet
NAT
VPN
Getting connected
Cloud Datacenter
Image Copyright: Alan Stark https://www.flickr.com/photos/squeaks2569/3700355684/
Over Internet
Data center AWS Cloud
www
VPN
Data center AWS Cloud
wwwrouterrouter
Direct Connect
AWS CloudData center
AWS Direct Connect Location
Maximizing reliability
Data center AWS Cloud
www
router router
Now you’re connected…
Integrating AWS with Your Existing On-Premises Infrastructure
Active Directory
Network Configuration
Encryption
Back-up Appliances
Users & Access Rules
Your Private Network
Built-in Encryption
Cloud back-ups
AWS Direct Connect
Your On-Premise Apps
Your Cloud AppsCorporate Data
Centers
Painting the picture of a customer in transition
First cloud use cases
• Collapse | Copy Code• public int CurrentPage• {• get• {• // Look for current page in ViewState• object o = ViewState["CurrentPage"];• if (o == null) return 1; // default page index of 1• return (int) o;• }• set { ViewState["CurrentPage"] = value; }
Development & Test
Development &Test
Developers&
OperationsInternal
GitCI Server
Pre-commit Hook
Testing Environment Subnet
CI Workers
Dev Environment VPC Subnet
DEV WEB ELB
Dev StackTier 1
Dev StackTier 2
Dev MySQL
DB Instance
DEV APP ELB
VPN TUNNEL
VPN facing VPC Subnet
Virtual Private
Gateway
Monitoring
Dev Admin Instance
NAT Instance
AmazonDynamoDB
Amazon SQS
Amazon S3
Backup
Corporate Data Center
Elastic DataCenter
AWS Storage Gateway
Backup - Storage Gateway
Disaster Recovery
Image Copyright: Loco Steve https://www.flickr.com/photos/locosteve/4349003896/
Corporate Data Center
Elastic DataCenter
Synchronization of key datasets
Disaster Recovery
Corporate Data Center
Elastic DataCenter
Disaster Recovery
Corporate Data Center
Elastic DataCenter
Promotion of stopped instances
to live
Disaster Recovery
Big Data & Analytics
Corporate Data Center
Elastic DataCenter
Analytics
Corporate Data Center
Elastic DataCenter
Application data and logs for
analysis pushed to S3
Analytics
Corporate Data Center
Elastic DataCenter
Amazon Elastic Map Reduce name node to
control analysis
N
Analytics
Corporate Data Center
Elastic DataCenter
Hadoop cluster started by Elastic
Map Reduce
N
Analytics
Corporate Data Center
Elastic DataCenter
N
Adding many hundreds or thousands of
nodes
Analytics
Corporate Data Center
Elastic DataCenter
N
Disposed of when job completes
Analytics
Architecture of a financial services grid computing
Business Apps
CustomerData Centers
VPN or Direct Connect
Secure connectivity
between datacentre & AWS
Virtual Private Cloud
Hybrid HANA Deployment – Customer Data Centre & AWS
DEV QAS
ECC
BW
ECC
BWBW
ECC
SRM
PRD
SAP production landscape runs in customer’s own datacentre
SAP development & quality assurance landscape runs on AWS
SAP HANA Appliance(s)
HANADB
HANADB
AWS region
Active Directory + DNS in the VPC
Public FacingWeb App
InternalCorporateApp
VPN Connection
Corporate Data center
corp.example.comAD Controller
Domain Controller
+ DNS
example.comDNS
AD Replication
Domain Join + DNS Queries
DNS Forward Requests
New Instance:friendly-vpc-123.corp.example.com
SharePoint Reference Implementation
RemoteAdmin
AWS Region
Availability Zone 2
Private Subnet
Availability Zone 1
Public Subnet Private Subnet Private Subnet Private Subnet
Private Subnet Private Subnet Private Subnet Private Subnet
Public Subnet
NAT
RDGW
RDGW
Primary DC/DNS
Active Directory
Active DirectoryDatabase Tier
Database Tier
Primary DBSQL Server
Mirror DB
Witness
Application TierWeb Tier
Application TierWeb Tier
Central Admin &SharePoint Services
Central Admin &SharePoint Services
IIS & SharePointWeb Front End
ELB
NAT
Backup DC/DNS
InternetGateway
Users
IIS & SharePointWeb Front End
AWS Marketplace & Partners Can Help• Customer can find, research,
buy software• Simple pricing, aligns with
EC2 usage model • Launch in minutes• Marketplace billing integrated
into your AWS account• 1300+ products across 20+
categories
Learn more at: aws.amazon.com/marketplace
Test Drive Major Workloads at No Cost
Ready to use preconfigured test workloads for fast PoC:
SAP Microsoft Oracle Red Hat Many others
Find out more
• aws.amazon.com/vpc• aws.amazon.com/directconnet• aws.amazon.com/storagegateway
• aws.amazon.com/whitepapers– Development and Test– VPC networking– Backup & archive
• Contact me: [email protected] @source_nat