Kako uklopiti oblak u svoju postojeću infrastrukturu?

Tomica KaniškiCITUS d.o.o.

tomica@kaniski.info

Agenda

• Windows Azure Networking

• Windows Azure Virtual Machines

• Windows Azure Backup

• Windows Azure Hyper-V Recovery Manager

Windows Azure Pricing Calculator

• http://www.windowsazure.com/en-us/pricing/calculator/

Windows Azure Networking

Secure Site-to-Site Network Connectivity

Windows Azure Virtual Network

Windows Azure Hybrid and Connectivity Options

Data Synchronization

SQL Data Sync

Application-Layer Connectivity & Messaging

Service Bus

Secure Machine-to-Machine Network Connectivity

Windows Azure Connect

http://msdn.microsoft.com/en-us/library/windowsazure/jj156007.aspx

Windows Azure Virtual Network

• Your “virtual” branch office / datacenter in the cloud• Enables customers to extend their Enterprise

Networks into Windows Azure

• Networking on-ramp for migrating existing apps and services to Windows Azure

• Enables “hybrid” apps that span cloud/premises

• A protected private virtual network in the cloud

• Enables customers to setup secure private IPv4 networks fully contained within Windows Azure

• IP address persistence

Virtual Network Features

• Customer-managed private virtual networks within Windows Azure• “Bring your own IPv4 addresses”

• Control over placement of Windows Azure Roles within the network

• Stable IPv4 addresses for VMs

• Hosted VPN Gateway enables site-to-site connectivity• Automated provisioning & management

• Support existing on-premises VPN devices

• Use on-premise DNS servers for name resolution• Enables customers to use their on-premise DNS servers for name resolution

• Enables VMs running in Windows Azure to be joined to corporate domains running on-premise (use your on-premise Active Directory)

The „virtual” branch office

Example: Contoso’s Deployment

(10.0.0.0/16)

(10.2.0.0/16)

(10.1.0.0/16)

10.0.0.1010.0.0.11

131.57.23.120

10.2.2.0/24 10.2.3.0/24

10.2.2.0/24 10.2.3.0/24

65.52.249.22 10.1.0.4 10.1.1.4

Supported VPN Device List

• IKE v1

• AES 128, 256

• SHA1, SHA2

http://msdn.microsoft.com/en-us/library/windowsazure/jj156075.aspx

Gateway redundancy and availability

• Only single IPsec tunnel supported per Virtual Network

• Gateway tenant on Azure side has 2 instances (active-passive mode)

• Only one public IP(v4) address for tunnel establishment

• A pair of VPN devices can be a redundant pair using industry standard protocols• HSRP

• VRRP

DEMOWindows Azure Networking (Site-to-Site VPN)

Site-to-Site VPN with MikroTik… (yes, it works)

Windows Azure Virtual Machines

Cloud First Provisioning

>_

Supported Windows Server Applications

http://support.microsoft.com/kb/2721672

Virtual Machine Sizes

Compute Instance Name CPU Cores Memory Price per hour

Extra Small (A0) Shared 768 MB $0.02 (~$15/month)

Small (A1) 1 1.75 GB $0.09 (~$67/month)

Medium (A2) 2 3.5 GB $0.18 (~$134/month)

Large (A3) 4 7 GB $0.36 (~$268/month)

Extra Large (A4) 8 14 GB $0.72 (~$536/month)

$0.40 (~$298/month)

$0.80 (~$596/month)

$1.60 (~$1,192/month)

VM disk layout (1)

VM disk layout (2)

VM disk layout (3)

Some tips on BYO Images

• Sysprep and “Generalize” is expected

• Do NOT put unattend.xml on the disk

• Do NOT install the Windows Azure Integration Components!

DEMOWindows Azure Virtual Machines (Portal + App Controller)

Active Directory (on a VM) in Azure? (1)

• AD is Supported in Windows Azure Virtual Machines

• Capture/Imaging is not supported with DCs• To make a new DC provision a VM and run promote it to be a DC

Active Directory (on a VM) in Azure? (1)

Load BalancerPublic IP

Contoso.com Active Directory

AD Auth

Extranet Active Directory

Windows Azure Backup

Windows Azure Backup

• Peace of mind – your server is backing up to the cloud!

• Simple to manage• familiar backup tools in Windows Server 2012 R2, Windows Server 2012 R2 Essentials,

and the System Center 2012 R2 Data Protection Manager

• Efficient and flexible• incremental backups – only changes to files are transferred to the cloud

• efficient use of storage, reduced bandwidth usage, offers point-in-time recovery of multiple versions of data

• configurable data retention policies, data compression and data transfer throttling

• How-to („a bit out-of-date” )• http://blogs.msdn.com/b/mvpawardprogram/archive/2012/11/12/configuring-online-

backup-for-windows-server-2012.aspx?wa=wsignin1.0

DEMOWindows Azure Backup

Windows Azure Hyper-V Recovery Manager

Windows Azure Hyper-V Recovery Manager

• SaaS application

• Hybrid service that allows you to automate and orchestrate your DR solution

DEMOWindows Azure Hyper-V Recovery Manager

Agenda

• Windows Azure Networking

• Windows Azure Virtual Machines

• Windows Azure Backup

• Windows Azure Hyper-V Recovery Manager

Thank you!