Red Hat OpenShift

Virtualization
HCM City May 2025

Chung Nguyen
Ecosystem Solution Architect

1
 Hybrid Cloud Container Application Platform

Multicluster management Cluster security Global registry Cluster data management

Observability | Discovery | Policy | Compliance | Declarative security | Container vulnerability Image management | Security scanning | Geo- RWO, RWX, Object | Efficiency |
Configuration | Workloads management | Network segmentation | replication Mirroring | Image builds Performance | Security | Backup |
Threat detection and response DR Multicloud gateway

Manage workloads Build cloud-native apps Data-driven insights Developer productivity

Platform services Application services* Data services* Developer services
• Service mesh | Serverless • Languages and runtimes • Databases | Cache • Developer CLI | IDE
• Builds | CI/CD pipelines • API management • Data ingest and preparation • Plugins and extensions
• GitOps | Distributed Tracing • Integration • Data analytics • CodeReady workspaces
• Log management • Messaging • AI/ML • CodeReady containers
• Cost management • Process automation

Kubernetes cluster services

Install | Over-the-air updates | Networking | Ingress | Storage | Monitoring | Log forwarding | Registry | Authorization | Containers | VMs | Operators | Helm

Kubernetes (orchestration)

Linux (container host operating system)

Physical Virtual Private cloud Public cloud Edge

* Red Hat OpenShift® includes supported runtimes for popular languages/frameworks/databases. Additional capabilities listed are from the Red Hat Application Services and Red Hat Data Services portfolios.
** Disaster recovery, volume and multicloud encryption, key management service, and support for multiple clusters and off-cluster workloads requires OpenShift Data Foundation Advanced
 Red Hat has a long history with Virtualization
2020
2007 2012 OpenShift Virtualization
Introduction of KVM as a Red Hat OpenStack, also 2015 leveraging KVM and
robust, open-source KVM-based Kubernetes powered Kubevirt Generally
hypervisor in the Linux kernel OpenShift 3.0 Available

2008 2012 2016

Red Hat Virtualization OpenShift 1.0 Reaches Launch of KubeVirt to
(RHV) based on KVM General Availability enable VM management
on Kubernetes
The Rise of the Cloud Native Computing Foundation (CNCF)
All CNCF (2013 to 2023)
● Top contributions from Microsoft,
Google and Red Hat
● Robust, fast-growing and healthy
community
● Strong job market for professionals
with Kubernetes skill sets

4 Source: State of Cloud Native Development Report 2021

 The state of things

Virtualization is here to stay

But not as we know it today

5
Source: IDC Container Infrastructure Software Market Assessment: Container Deployment Forecast,
2022–2025 (IDC #US48670722, January 2022)
 What is OpenShift Virtualization?

● Unified platform for running VMs and Containers

● Included features of the OpenShift application platform
● Run VMs in OpenShift
● Performance, stability, scalability, and reliability of KVM, the Linux VMs Containers
kernel-based hypervisor
Red Hat OpenShift Container
● Manageability and ecosystem of OpenShift Platform

● Supports Microsoft Windows guests - Microsoft Server Red Hat Enterprise Linux CoreOS
Virtualization Validation Program (SVVP)
Physical machine

6
 Using VMs and Containers Together

● Virtual machines connected to pod

networks are accessible using
standard Kubernetes methods:
○ Service
○ Route
○ Ingress
● Network policies apply to VM pods
the same as application pods
● VM-to-pod, and vice-versa,
communication happens over SDN or
ingress depending on network
connectivity
7
 Dedicated Virtual Admin View
A dedicated, tailored console view for virtualization admins

8
 OpenShift Virtualization: Build Cloud-native VMs
Deploy VMs as Code with CI/CD

Container Virtual machine Application

GitOps Integrate legacy VMs with a modern GitOps
(Argo)
definition definition workload
framework
▸ Deploy different security zones to run both
- Create from Git
Pipelines
(Tekton)
- Triggered by “git push” composite applications of pods/VMs as
well as traditional VM workloads
▸ Deploy and automate Virtual Machines as
Code with GitOps
Zone 2
Workloads
Virtual
Container Virtual
Machine
Machine
Zone 1
9
 Fragmented ‘approach’ to VM provisioning
A process that can take weeks trapped in queues and iterations

Virtual Machine Execute workflow Execute workflow Execute workflow Execute workflow Execute workflow
▸ CPU: 4 vCPU, 1 core ▸ Review & approve ▸ Review & approve ▸ Review & approve ▸ Review & approve ▸ Review & approve
▸ Memory: 16GB ▸ Assign IP & hostname ▸ Allocate volumes ▸ Install JBoss 7.4u11 ▸ Install security tools ▸ Configure LB & DNS
▸ Disk: 30 GB ▸ Configure DNS (host) ▸ Whitelist source IP ▸ Configure MW ▸ VM hardening ▸ Configure FW
▸ OS: RHEL
Additional filesystems
▸ data: 500GB, disk
▸ logs: 100GB, partition
Application platform
▸ JBoss 7.4 Update 11 Networking Storage Platform Security Networking
Firewall rules team team team team team
▸ Ingress: SSH, HTTPS (1-3 days) (1-2 days) (1-2 days) (2-4 days) (2-7 days)
▸ Egress: *.redhat.com
DNS & LB
▸ api.service.org
▸ Healthcheck: HTTPS port
Execute workflow
▸ Review & approve
▸ Queue to networking & storage teams
▸ Create VM from virtualization template and custom parameters
▸ Add disks and partitions and re-configure OS with custom filesystems
▸ Install corporate tools and configure default users and permissions
▸ Queue to platform team VM Ready?
Request for a Virtualization ▸ Queue to security team
new Virtual team ▸ Queue to networking team
10
Machine (1-3 days)
▸ Hand over the VM: IP, credentials and metadata
 Next Gen approach to VM orchestration & management
Automated VM provisioning in minutes Physical network infrastructure
DNS, load balancers, and firewalls
Public/private cloud services
Hosted database services, hypervisors, and serverless functions
Software as a Service (SaaS)
ServiceNow ITSM, service catalogs, and other hosted apps
Security
Audits, incident response, and remediation
Infrastructure
Virtual Machine
▸ CPU: 4 vCPU, 1 core
orchestration
▸ Memory: 16GB VM template VM image cloud-init
▸ Disk: 30 GB
▸ OS: RHEL Network Security Storage
Additional filesystems
▸ data: 500GB, disk
▸ logs: 100GB, partition
Application platform
▸ JBoss 7.4 Update 11
OpenShift VM Ready!
Firewall rules Request for a
▸ Ingress: SSH, HTTPS new Virtual
▸ Egress: *.redhat.com Machine
DNS & LB
Execute workflow
▸ api.service.org
▸ Healthcheck: HTTPS port ▸ Validated network, storage, and security
against policies and permissions
▸ Provisioning of VM with corporate tools
from template and custom parameters
▸ Publish VM: IP, credentials and metadata
 De-Risking Your Virtualisation Technology Investment
Future-Proof Your Virtualization Strategy

New and modern applications will be built on

Rehosting by “shifting” virtual machine
containers. They provide new levels of agility and 1 workloads into OpenShift platform
empowers organisations to accelerate their digital
capabilities.

However, not all applications can or are ready to be Replatform by “upgrading” the application into
containerized and operated in microservices. 2 container-based architecture

In most organization, their journey will be multi-

phase approach, requiring IT operations to maintain
Refactor applications from monolithic into
and coexist workloads on both virtual machines and 3 microservices
containers in their IT landscape.

12
 OpenShift Virtualization: Modernize Applications Iteratively
OpenShift

Legacy Websphere Apache Database

virtualization Websphere Apache Virtual Machine Containers
Weblogic
System / OpenShift Project
SHIFT

OpenShift

Websphere Apache Database

Websphere Apache Virtual Machine Containers
Weblogic
System / OpenShift Project

MODERNIZE

OpenShift

Websphere Apache Database

Websphere Apache Virtual Machine Containers
JBoss
System / OpenShift Project

MODERNIZE

OpenShift

Websphere Apache Database

Websphere Apache Virtual Machine Containers
JBoss
System / OpenShift Project

13 MODERNIZE

VM CONTAINER
 Modernize at your own pace
Legacy Virtualization Infrastructure Modernization DevOps & Infrastructure
Apps in VMs Apps in VMs Modernization
Apps in VMs or Containers

Slow evolution Cloud elasticity + scalability Innovate at speed

Reduced cost
Increasing costs Migration
Higher annual revenue
Cloud
Toolkit Native
for VMs
Increase IT efficiency +
Developer toil reliability Increased developer output

Direct path to cloud native

Speed of Infrastructure Deployment

Speed of Application Development
 AI Models

OpenShift RHEL AI COTS / ISV Machine AI Platform & Tools, OpenShift AI

Learning and/or AI

Virtualization InstructLab Platforms Model Data & Model Model Model Distributed
Development Pipelines Serving Monitoring Workloads

for AI
OpenShift Virtualization VMs Containers

Passthrough Physical GPU

OR
GPU
OR
Acceleration
vGPU Time Slice MIG

AI Infrastructure

Hardware Accelerators

Physical Machine
15

CPU RAM Storage

Business Value Delivered to OpenShift Customers*
Key Performance Indicator Red Hat Customer Experience

Revenue Growth

Increase Development Velocity

(Applications/Features) Accelerated development using self-
Reduced application delivery time
Reduced time to market by 50% &
service with VMs and containers running improved scalability by replacing VM-
by 85%, from weeks to days
side by side based approach with containers

Cost Efficiency

Increase Developer and Operations Team

Productivity Maximized investment and avoided
Accelerated deployment
times for new projects
software costs

Reduced cost of Business operations Improved cost effectiveness and efficiency by enabling Utilized the Migration Toolkit for Virtualization
VM workloads to be run and managed alongside to consolidate multiple virtual platforms to
container workloads eventually be self-service

Risk Mitigation

Improve Security and Compliance Decreased system reliability incidents by

97% with active-active datacenter
configuration and improved scalability
16
 NEW: OpenShift Virtualization Engine (OVE)

● New offerings specifically for running Windows & non-RHEL VMs only:
○ Red Hat OpenShift Virtualization Engine
○ Red Hat Advanced Cluster Management for Virtualization (optional)
○ 70%++ lower than the OpenShift Container Platform bare metal price.
○ Important: RHEL VDC (unlimited RHEL guests) is not included. Unlimited
OpenShift is not included.

MW03815 Red Hat OpenShift Virtualization Engine (Bare Metal Node), Premium (1-2
sockets up to 128 cores)
17

MW04125 Red Hat Advanced Cluster Management for Virtualization (Bare Metal
Node), Premium (1-2 sockets up to 128 cores)

RH00001 Red Hat Enterprise Linux for Virtual Datacenters, Premium (optional, per
host, unlimited RHEL guests)
OPP: OCP+ ACM + ACS + QUAY + ODF
(Containers + VMs) ● All four offerings follow the same OpenShift
architecture and paradigms as before
OCP: K8s + Platform/Dev/App services
(Containers + VMs) ● OCP-Virt is a feature in all four offerings
that allow for VMs to run inside containers
on K8s

OVE: K8s ● OVE still allows for similar functionality to

(VM only) vSphere (VM cloning, snapshots, Live
Migration etc)
 OVE Cluster
Architecture Pattern
OVE sockets pair subscription

O{CP/PP} Cores band subscription add-on

RHEL
OCP OCP OCP OCP OCP OCP
or Bootstrap
VM VM VM VM VM VM VM VM VM VM VM VM VM RHEL
for Bastion
Node label Cluster1 Node label Cluster2 Node label Cluster3
VDC Mirror
Master / Infra / Worker /ACM (Add-on) Worker Worker Worker Worker Registry

RHCOS RHCOS RHCOS RHCOS RHCOS RHCOS RHCOS RHEL KVM

Bare Metal -
Bare Metal -1 Bare Metal -2 Bare Metal -3 Bare Metal -4 Bare Metal -5 Bare Metal -6 Bare Metal -8
7

FC/iSCSI ( CSI )

Localnet (VMs
OVN Kubernetes(Production Network) VLAN)

CONFIDENTIAL Designator
 Find the right opportunity
What kind of workloads
Profile of customer Profile of workload

Customer to have a VM footprint (>3 Generally all legacy applications are fine:
Hosts or > 30 VM) ● Application servers
Customer should be familiar and/or be ● Java applications
willing to adopt containers/new tech, from ● Windows applications
● DB
a skills perspective
Any workload that runs on KVM
Customer is also looking to purchase new Any application that has plan to be
hardware (tech refresh) or can re-purpose modernised into VM & Container to be
existing hardware considered.
Customer to have budget for bare metal Applications to avoid
hardware, subscriptions, and services, etc. ● Oracle DB RAC
● SAP
● Not supported on KVM
Customer to be not 100% reliant on
VMware suite and key technical features
 Helper Nodes Requirements
Helper nodes

● Using RHEL KVM as IPI provisioner node for OpenShift Virtualization cluster
● Hosting all these 3 VMs with RHEL KVM on a new bare metal server
● RHEL KVM with total 8 cores, 64GB, at least 1 TB SAS HDD disk and 2 x 10 Gbps NIC

4 vCPU / 16GiB / 100 GB

1. Bootstrap: Bootstrap
○ temporary node that creates a control plane for
launching the cluster
2. Bastion: 2 vCPU / 8GiB / 250 GB
Bastion
○ acts as a gateway for managing and accessing
other nodes within the cluster for administrative
purposes Mirror
3. Mirror Registry: 4 vCPU / 16GiB / 500 GB Registry
○ serves as a medium disconnected environment and
mirror the required container images for OpenShift
RHEL KVM
Container Platform release images and operator
images. Up to 1 TB per stream or more is
suggested
Bare Metal
21
 Complete the platform with your existing technology partners
Storage Backup / DR Networking Cloud Services

Products for OpenShift Products for OpenShift Virt Current public cloud
Virt using CSI (container Products for OpenShift using CNI (container providers offering OpenShift
storage interface) networking interface) virtualization

Compute

Products for OpenShift

22 * This is not an exhaustive list of ISV partners, with new partners being added all the time.
 HPE Offering

Option 1: Compact set Option 2: Small set

3 units of DL360 Gen11 w/ (2) Intel Xeon Silver 4516Y (2.2GHz, ● Master node: 3 units of DL320 Gen11 w/ Intel Xeon Silver
24c), No HW installation service 4514Y (2.0GHz, 16c)
● Worker node: 2 units of DL360 Gen11 w/ Intel Xeon Silver
● Optional : Storage & Network Switch
4516Y (2.2GHz, 24c)
○ Alletra Storage MP B10000 w/ Usable 28 TiB
● Alletra Storage MP B10000 w/ Usable 28 TiB
○ 2 units of 10/25Gb Network Switch
● 2 units of 10/25Gb Network Switch
○ All with 3-year 24x7 On-site support
● All with 3-year 24x7 On-site support
○ Installation service for Alletra & Network Switch
● Installation service for Server, Alletra & Network Switch
○ No management switch. The customer can use their
included
own 1Gb switch.
● No management switch. The customer can use their own
○ Temporary OCP installer node is optional.
1Gb switch.
● Temporary OCP installer node is optional.

HPE ProLiant DL360 Gen11 HPE Alletra Storage HPE ProLiant DL320 Gen11
 Dell Offering

Option 1: Compact set Option 2: Small set

3 units of Dell PowerEdge R660/ (2) Intel Xeon Gold 5418Y ● Master node: 3 units of Dell PowerEdge R660/ Intel Xeon
(2.0GHz, 24c), No HW installation service Gold 6426Y (2.5GHz, 16c)
● Worker node: 2 units of Dell PowerEdge R660/ Intel Xeon
● Optional : Storage & Network Switch
Gold 5418Y (2.0GHz, 24c)
○ Dell PowerStore 500T
● Dell PowerStore 500T
○ All with 3-year 24x7 On-site support
● All with 3-year 24x7 On-site support
○ Installation service for Dell Storage Array
● Installation service for Server, Dell Storage Array included
○ No management switch and Top of Rack switch. The
● No management switch and Top of Rack switch. The
customer can use their own 1Gb switch.
customer can use their own 1Gb switch.
○ Temporary OCP installer node is optional.
● Temporary OCP installer node is optional.

Dell PowerEdge R660 Dell PowerStore 500T Dell PowerEdge R660

 Migrate your
traditional virtual
machines

27
 Migration Toolkit for Virtualization

Main Features:
● Easy to use UI
● Mass migration of VMs from VMware,
Red Hat Virtualization, OpenStack to
OpenShift and between OpenShift
Clusters
● VM data pre-copied before shutdown
(Warm Migration) for VMware and Red
Hat Virtualization migrations
● VM validation service:
○ Runs checks on VM configuration
to avoid migration issues
● Parallelized VM Conversion
○ Maximize Throughput
● Migration Network Selection
○ Avoid impact on other running
workloads
 Customers have varying levels of investment in VMware

High
VMware Cloud Foundation (VCF)
Increased planning,
higher complexity Workloads requiring hypervisor certifications that KVM does not have
VMware Virtualization with NSX
Migration
Complexity
VMware vSphere Foundation (VVF) and/or VMware Cloud (VMC)
Rapid migration,
lower complexity vSphere Standard
vSphere Essentials
Low
 A bird's eye view into your Virtualization journey
A customizable approach based on your business needs and current environment

Strategy Foundation Expand Evolve

Virtualization Migration Virtualization Migration Virtualization Migration Optional

Assessment Proof of Value Factory App Modernization &
Automation

Capture current VM architecture, Deploy OpenShift cluster, enable Migrate workloads, validate and Modernize VM workloads,
analyze workload complexity, propose virtualization features, validate automate migration pattern, scale and containerize applications
a high-level design and roadmap integrations, migrate first workloads and complete migration
prepare for production

Plan to quickly and safely migrate Prove virtualization migration Achieve steady state migration Accelerate innovation
from legacy virtualization platform technology. Prepare to operate at Reduce legacy footprint Increase efficiency and reduce cost
scale

Training and Technical Account Management

 Thank you linkedin.com/company/red-hat

youtube.com/OpenShift

Red Hat is the world’s leading provider of

facebook.com/redhatinc
enterprise open source software solutions. Award-
winning support, training, and consulting services
make twitter.com/Openshift
Red Hat a trusted adviser to the Fortune 500.

31
 What we hear from customers …

“I want to modernize” “I need to migrate”

● Wants to modernize to containers, but ● Migrate off their current traditional
also run VMs in a more modern way virtualization platform completely, as
quickly and as safely as possible

● Stand up a secondary virtualization

● Modernization is subordinate to
platform for new workloads
migration; containers and Kubernetes are
implementation details
● Legacy and next-gen virtualization
platforms co-exist
● Willing to take calculated risk with their
production workloads
32
Virtualization with Red Hat

Solve Near-Term Challenges, Invest in Long-Term Value

Efficiently migrate VMs now to reduce operating costs and unlock additional value in the future

MAINTAIN MIGRATE MODERNIZE

vSphere Foundation OpenShift Virtualization Engine OpenShift OpenShift AI

Stay as-is Replace VMware Application Modernization New applications
Utilize Automation and Services Automation for Day 2 Ops
Dedicated VM Integrate containers AI/ML
Slow evolution
management and VMs Management

Increasing costs Reduce operating cost Faster time to market Increase revenue

Low developer Increase IT efficiency Higher developer

Reduce skill sprawl
productivity and reliability output