Scribd
Upload
6 views54 pages

Brkaci 2591

Uploaded by

zanyah
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
6 views54 pages

Brkaci 2591

Uploaded by

zanyah
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 54

#CiscoLive

Data Center journey to


Multi-Cloud using Automation
and ACI Anywhere

Peter Charpentier, Sr Solution Architect DataCenter


Morten Skriver, Sr Solution Architect DataCenter
BRKACI-2591

#CiscoLive
Agenda
• Introduction
• The Challenges of Multi-Cloud
• Optimization of workloads for the Cloud
• Consistent policies across OnPrem/Cloud
• Reality Check: Does this really work?
• Conclusion

#CiscoLive BRKACI-2591 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 3
Expectations
• This presentation is mainly focusing on how one can move to a
multi-cloud solution including OnPrem
• It will not cover how to actually migrate workloads to the cloud
• All screenshots are taken from real systems, but cannot be showed
lived due to the setup of this session

#CiscoLive BRKACI-2591 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 4
The Challenges
of Multi-Cloud
Challenges going to Multi-Cloud

How to extend my network properly

Transforming or not transforming

Securing the communication and workloads

All or nothing, or just some?

#CiscoLive BRKACI-2591 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 6
Starting the journey Security

Refactoring Production
Ready
Cloud
Migration
Replatforming
Technical
Solution

Requirements
Lift & Shift Organization

Network
Ideas

Which Cloud?

#CiscoLive BRKACI-2591 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 7
Cloud Journey in steps

Deploying
Defining Cloud Workload Defining
Workloads
Strategy & Optimization Network
and Network
Migration and Sizing Policies
Policies

#CiscoLive BRKACI-2591 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 8
How to migrate Workloads to the cloud (or not)
Rehosting Repurchase

Migrating an exact copy of a Drop existing and buy


workload from A to B replacement solution (SaaS)

Replatforming Refactoring

Reshape the application for Completely re-architecture


the cloud without changing its your applications to better suit
core architecture. the new cloud environment.
DB moved to Cloud based DB Move to Code to Serverless.

Retain / Retire

Do not migrate or Decommission

#CiscoLive BRKACI-2591 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 9
Cloud Migration Methodology

#CiscoLive BRKACI-2591 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 10
Discovery
• Use Cisco IWO to discover VM inventory
• Identify the sizing
• Identify if something should not be moved as well

#CiscoLive BRKACI-2591 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 11
Strategy
• How to get from A to B.
• Define what type of migration:
• Lift and Shift
• Big-Bang Approach
• Smaller Move Groups
• Agile or Waterfall Approach

#CiscoLive BRKACI-2591 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 12
Risk and Mitigation
• What can go wrong?
• What could go wrong?
• What will go wrong?

Let’s plan and mitigate for it.

#CiscoLive BRKACI-2591 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 13
Detailed Plan
• Which tool to use to migrate
• Lift and Shift Execution
• Refactor or Replatforming
• How to execute and move the workload to the Cloud.

#CiscoLive BRKACI-2591 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 14
Execution
• Implement Automation where possible
• Execute the detailed plan

#CiscoLive BRKACI-2591 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 15
Post / Validation / Testing
• Verify and Validate:
• Communications
• Functionality
• Resilience if applicable
• Security
• Verify that it was a success, using test automation

#CiscoLive BRKACI-2591 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 16
Optimization of
workloads for
the Cloud
Cloud Journey in steps

Deploying
Defining Cloud Workload Defining
Workloads
Strategy & Optimization Network
and Network
Migration and Sizing Policies
Policies

#CiscoLive BRKACI-2591 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 18
Intersight Workload Optimizer

#CiscoLive BRKACI-2591 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 19
Combined Workload view with IWO
Hybrid OnPrem Cloud(s)

#CiscoLive BRKACI-2591 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 20
Workload Discovery and Optimization

#CiscoLive BRKACI-2591 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 21
Workload Discovery and Optimization

#CiscoLive BRKACI-2591 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 22
Workload Discovery and Optimization

#CiscoLive BRKACI-2591 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 23
Workload Discovery and Optimization

#CiscoLive BRKACI-2591 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 24
Workload Discovery and Optimization

#CiscoLive BRKACI-2591 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 25
Workload Discovery and Optimization

#CiscoLive BRKACI-2591 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 26
Planning the Migration to Cloud

#CiscoLive BRKACI-2591 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 27
Benefits illustrated for the planning

#CiscoLive BRKACI-2591 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 28
Consistent
policies across
OnPrem/Cloud
Cloud Journey in steps

Deploying
Defining Cloud Workload Defining
Workloads
Strategy & Optimization Network
and Network
Migration and Sizing Policies
Policies

#CiscoLive BRKACI-2591 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 30
Network Challenges in a Multi-Cloud Environment

Need for Automated Diverse Visibility &


and Secure Troubleshooting Learning
Interconnects Capabilities Curve
associated
Multiple Panes of Inconsistent with each
Glass for Management Segmentation Cloud
/ Monitoring Capabilities

#CiscoLive BRKACI-2591 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 31
How can ACI Anywhere Help?

Consistent Operations, Automated and Secure


Visibility, and Control Interconnects

Common Policy
Abstraction, and
Compliance
Single Pane of Glass Multi-Cloud Workload
Migration
#CiscoLive BRKACI-2591 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 32
Network Policy Abstraction
Multi-Site Orchestrator

Common Policy Model

OnPrem Colocation DC Public Cloud


#CiscoLive BRKACI-2591 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 33
Network Policy Abstraction
Multi-Site Orchestrator (MSO)

App EPG

DB EPG Web EPG

OnPrem Colocation DC Public Cloud


#CiscoLive BRKACI-2591 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 34
Reality Check:
Does this really
work?
Cloud Journey in steps

Deploying
Defining Cloud Workload Defining
Workloads
Strategy & Optimization Network
and Network
Migration and Sizing Policies
Policies

#CiscoLive BRKACI-2591 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 36
Multi-Cloud Setup: On-Prem, AWS, Azure

OnPrem

Azure

AWS

#CiscoLive BRKACI-2591 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 37
A 3-tier application in a multi-cloud environment

Web Frontend / Proxy

Application

Database

#CiscoLive BRKACI-2591 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 38
Right Sizing the Workloads to Cloud

#CiscoLive BRKACI-2591 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 39
Multi-Cloud Network Modeled in ACI MSO
VRF
User-to-Front Contract

Front-to-App Contract

App-to-DB Contract
Frontend EPG App EPG Database EPG

Database BD

Consistent Policies
#CiscoLive BRKACI-2591 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 40
Multi-Cloud Network Modeled in ACI MSO
VRF
User-to-Front Contract

App-to-DB Contract
Front-to-App Contract
Frontend EPG App EPG Database EPG

Database BD

#CiscoLive BRKACI-2591 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 41
Frontend Tier Network (Azure)
User Resource Group Infra Resource Group

Virtual Network Routing Table Virtual Network

Subnet (AZ1) App/Network Security Group

Subnet (AZ2) Inbound/Outbound Rules


Inbound/Output Rules
Inbound/Output Rules
Subnet (AZ3) VNET
Peering

Virtual machine

#CiscoLive BRKACI-2591 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 42
Frontend Tier Network (Azure)
User Resource Group Infra Resource Group

Virtual Network Routing Table Virtual Network

Subnet (AZ1) App/Network Security Group

Subnet (AZ2) Inbound/Outbound Rules


Inbound/Output Rules
Inbound/Output Rules
Subnet (AZ3) VNET
Peering

Virtual machine

Configured automatically by MSO


#CiscoLive BRKACI-2591 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 43
Multi-Cloud Network Modeled in ACI MSO
VRF
User-to-Front Contract

Front-to-App Contract

App-to-DB Contract
Frontend EPG App EPG Database EPG

Database BD

#CiscoLive BRKACI-2591 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 44
Application Tier Network (AWS)
User Account Infra Account

VPC Routing Table VPC

VPC Subnet (AZ1) Security Group

VPC Subnet (AZ2) Security Group Rules


Security Group Rules
Security Group Rules
Transit
VPC Subnet (AZ3)
Gateway

EC2 Instance

#CiscoLive BRKACI-2591 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 45
Application Tier Network (AWS)
User Account Infra Account

VPC Routing Table VPC

VPC Subnet (AZ1) Security Group

VPC Subnet (AZ2) Security Group Rules


Security Group Rules
Security Group Rules
Transit
VPC Subnet (AZ3)
Gateway

EC2 Instance

Configured automatically by MSO


#CiscoLive BRKACI-2591 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 46
Multi-Cloud Network Modeled in ACI MSO
VRF
User-to-Front Contract

Front-to-App Contract

App-to-DB Contract
Frontend EPG App EPG Database EPG

Database BD

#CiscoLive BRKACI-2591 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 47
Database Tier Network (On-Prem)
ACI Tenant

VRF App-to-DB
Contract

Application
Profile

Database BD
Database
EPG

#CiscoLive BRKACI-2591 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 48
Database Tier Network (On-Prem)
ACI Tenant

VRF App-to-DB
Contract

Application
Profile

Database BD
Database
EPG

Configured automatically by MSO


#CiscoLive BRKACI-2591 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 49
Multi-Cloud Application Deployment

Web Frontend / Proxy

Automated &
Application Consistent
Network Policies

Database

#CiscoLive BRKACI-2591 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 50
Conclusion
Conclusion

Always follow a methodology

Cisco IWO to help sizing and discovery

Consistent Multi-Cloud Policies using ACI

Define a roadmap with tangible steps

#CiscoLive BRKACI-2591 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 52
Thank you

#CiscoLive
#CiscoLive

You might also like

pFad - Phonifier reborn

Pfad - The Proxy pFad of © 2024 Garber Painting. All rights reserved.

Note: This service is not intended for secure transactions such as banking, social media, email, or purchasing. Use at your own risk. We assume no liability whatsoever for broken pages.


Alternative Proxies:

Alternative Proxy

pFad Proxy

pFad v3 Proxy

pFad v4 Proxy