Download - Presentazione @ VMUGIT UserCon 2015
1 | © 2013 Infoblox Inc. All Rights Reserved. 1 | © 2015 Infoblox Inc. All Rights Reserved.
IPAM Automation for Cloud with VMware
vCloud Automation Center & Infoblox DDI
Giancarlo Palmieri – Systems Engineer SEUR
VMUG - 12 November 2015
2 | © 2013 Infoblox Inc. All Rights Reserved. 2 | © 2015 Infoblox Inc. All Rights Reserved.
Total Revenue (Fiscal Year Ending July 31)
35
56 62
102
133
169
225
250
306
$0
$50
$100
$150
$200
$250
$300
$350
FY07 FY08 FY09 FY10 FY11 FY12 FY13 FY14 FY 15
Infoblox Overview & Business Update
($MM)
Founded in 1999
Headquartered in Santa Clara, CA
with global operations in 25 countries
Market leadership
• Gartner “Strong Positive” rating
• 50%+ Market Share (DDI)
8,300+ customers
89,000+ systems shipped world wide
63 patents, 25 pending
IPO April 2012: NYSE BLOX
Leader in securing and automating
mission-critical network services
3 | © 2013 Infoblox Inc. All Rights Reserved. 3 | © 2015 Infoblox Inc. All Rights Reserved.
Infrastructure
Security
With Infoblox N
ET
WO
RK
INF
RA
ST
RU
CT
UR
E
FIREWALLS SWITCHES ROUTERS WEB PROXY LOAD BALANCERS
Historical / Real-time
Reporting & Control
AP
PS
&
EN
D-P
OIN
TS
END POINTS VIRTUAL MACHINES PRIVATE CLOUD APPLICATIONS
CO
NT
RO
L P
LA
NE
Infoblox GridTM
w/ Real-time
Network Database
4 | © 2013 Infoblox Inc. All Rights Reserved. 4 | © 2015 Infoblox Inc. All Rights Reserved.
The Infoblox Grid™
External DNS/DHCP
Grid Member
Virtual
Environment
DNS/DHCP
Grid Master Candidate
at Recovery Site
Reporting
Grid Members
Grid Master
Branch Offices
Internal
Grid Member
DNS/DHCP
Our Patented Grid™ technology delivers:
Core Network Services
Centralized Management
High Availability
On-Demand Scalability
3 Form Factors
Secure DNS and DHCP
Cloud Integration Readiness
5 | © 2013 Infoblox Inc. All Rights Reserved. 5 | © 2015 Infoblox Inc. All Rights Reserved.
Cloud Network
Automation
Management UI
Cloud Architecture – Where we play
The Cloud Computing Conceptual Reference Model (credit: NIST)
Compute Storage Network
Hypervisors
Cloud Orchestration Layer
Cloud Management Platform
Cloud Consumer
OpenSource: OpenStack
Commercial: VMware vRA, MS SC/VMM
Network Services:
Routing, switching,
firewalls, load-balancers
Infoblox Adaptors VMware / Microsoft / OpenStack
Infoblox DNS/DHCP/IPAM
Core Network Services
Automating the management, provisioning and de-provisioning of IP addresses and DNS services is a cloud best practice.
Alan Chabra, Lead Architect, BMC Cloud Center of Excellence “
”
For our cloud customers automating IP address and
DNS service provisioning is a must have. They tell us
repeatedly that they can’t rely on manual/high-risk solutions to run their next gen cloud infrastructure. Vikul Gupta, Director of Cloud Svcs Orchestration, HP
“
”
6 | © 2013 Infoblox Inc. All Rights Reserved. 6 | © 2015 Infoblox Inc. All Rights Reserved.
Cloud Deployment: Perception vs. Reality
• Perception
Fast spin up with automation
Measured in seconds or
minutes
• Reality
Slow with manual processes
Measured in hours, days or
weeks
Existing tools can’t handle
How long does it take deploy a new virtual instance?
7 | © 2013 Infoblox Inc. All Rights Reserved. 7 | © 2015 Infoblox Inc. All Rights Reserved.
Common “old” Approach for Provisioning
Manual
Traditional Approach
Provision Virtual
Instance
1
Request IP or Use
Allotment
2
Forward IP Data for Tracking
3
Update Database or Spreadsheet
4
Request DNS
Record
5
Allocate and Manually
Enter DNS
6
Clean Up When
De-provisioned
Automated
• No Automation
Slow with manual processes
Can take a very long time to complete
Possible human errors introduced
8 | © 2013 Infoblox Inc. All Rights Reserved. 8 | © 2015 Infoblox Inc. All Rights Reserved.
Operational Friction in Cloud Rollout
No visibility to IP address/DNS records for VM/network resources No reporting on lease history, DNS/IP associations
No central record for DDI across enterprise networks
Network provisioning is not agile for application delivery No Amazon-like capabilities: on-demand, self-service for Dev/QA
DevOps needs automated IP/DNS in network blueprints
Takes too much time and expense to deploy applications Manual IP address/DNS provisioning is slow and error-prone
Diverse/complex network configs are tough to manage: routed, NAT’ed etc.
Expensive to integrate IP/networks/zones for every acquisition/subsidiary
Private Cloud needs reliable DDI Stability of underlying network inhibits Cloud/Virtualization rollout
DDI functions don’t recover on failures
Need simplified upgrade process for code
9 | © 2013 Infoblox Inc. All Rights Reserved. 9 | © 2015 Infoblox Inc. All Rights Reserved.
Centralized DDI Management • Multiple data centers
• Multiple cloud platforms
• Multiple tenants, applications
• Legacy and cloud networks
Infoblox Cloud Solution Overview
Multi-vendor Cloud
Platform Integrations (VMware, MS, OpenStack, Cisco…)
IPAM/DNS Automation • Configurable workflows
• Add/delete IP addresses for VMs
• Update DNS records for VMs
• Provision overlapping IP address
• Configure DNS aliases for VMs
Visibility • Discover VMs, IP and DNS names
• DHCP leases for VMs
• History of IP address changes
• Extensible attributes/smart folders –
classify, organize, drive policy
Auditing/Compliance • Auditing of VM IP address/DNS names
• Reporting for compliance
• DHCP lease history for VMs
Operational Features (Grid) • High Availability
• Simplified upgrade process
• Backup
• Role-based access controls
10 | © 2013 Infoblox Inc. All Rights Reserved. 10 | © 2015 Infoblox Inc. All Rights Reserved.
vCAC/vRA Integration with Infoblox IPAM
Cloud
Consumer
Service
Blueprints
Request Approval Provision Manage Retire Archive
vCenter Orchestrator Plug-in
vCloud Automation Center/vRealize Automation
Allocates an IP Address
and creates a DNS Host Record
Removes an IP Address
and deletes a DNS Host Record
• Benefits
Reduce time to service for newly provisioned VMs
Reduce operational expenses
Enable higher scalability
11 | © 2013 Infoblox Inc. All Rights Reserved. 11 | © 2015 Infoblox Inc. All Rights Reserved.
Provisioning a VM using a Cloud Management Platform
with Infoblox Integration
Hypervisor
CMP/Orchestrator
Infoblox
Adapter
2 - CMP/Orchestrator calls the
Infoblox Adapter 1 - A cloud admin/user requests a VM to be created through
self service portal
6 - VM starts up
either with
injected static IP
or IP allocated via
DHCP Request to
Member (Fixed
Address)
5 – CMP/Orchestrator
Spins up VM on
Hypervisor
Infoblox Grid Member
DNS/DHCP
3 - Infoblox Adapter
contacts NIOS via WAPI
for Next Available IP and
creates DNS Records
for VM
End User
7 - End User accesses
VM using DNS FQDN
Infoblox Grid Master
4 - GM synchronizes
Host record or Fixed
Address/ +
A/AAAA/PTR with Grid
Member
12 | © 2013 Infoblox Inc. All Rights Reserved. 12 | © 2015 Infoblox Inc. All Rights Reserved.
IPAM Plugin Feature Set
• Tight integration with vCAC/vRA 5.x and 6.x vCAC/vRA Network Profile is no longer needed. All network data is provided by Infoblox DDI.
• Support for meta data (i.e. Infoblox Extensible Attributes) Ability to allocate an IP address and a DNS host record to a VM based on specific meta data
associated with a network.
• Support for overlapping IP and DNS name spaces
• Support for DNS records - A/AAAA/PTR Flexibility to add individual record types
• New and improved workflows Added support for DDI services restart, support for fixed and reserved IP addresses, and much
more!
• Improved error handling and logging Robust workflows with improved logging to quickly debug and resolve any potential problem
• Enhanced integration with vCloud Director 5.1 & 5.5 Support for vApp recomposition (i.e. the ability to add/remove a VM to a vAPP, or add/remove a
vNIC to a VM)
12
13 | © 2013 Infoblox Inc. All Rights Reserved. 13 | © 2015 Infoblox Inc. All Rights Reserved.
Tight integration with vCAC/vRA 5.x and 6.x
• A vRA network profile is no longer
needed
• All network data (ex: router IP,
Domain name, etc.) is provided by
Infoblox DDI
Simplified and centralized network configuration
14 | © 2013 Infoblox Inc. All Rights Reserved. 14 | © 2015 Infoblox Inc. All Rights Reserved.
Support for Meta Data
• With support for Infoblox Extensible Attributes (EA), the IPAM plug-in can
allocate an IP address and a DNS host record to a VM based on specific meta
data associated with a network
• For example, allocate an IP address to a VM from a network located in the USA
Enable search by EA
Set EA name = Country
Set EA value = USA
Infoblox DDI - EA Country = USA
Automate VM assignment to networks using business data
15 | © 2013 Infoblox Inc. All Rights Reserved. 15 | © 2015 Infoblox Inc. All Rights Reserved.
Support for overlapping IP and
DNS name spaces
• Infoblox DNS views provide the ability to serve one version of DNS data to one
set of clients and another version to another set of clients
• Infoblox Network views support overlapping address spaces enabling the use of
duplicate IP addresses without impacting network integrity
DNS View = External
Network View = NetView3
Infoblox DDI Network View = NetView3
Increased flexibility for network deployments
16 | © 2013 Infoblox Inc. All Rights Reserved. 16 | © 2015 Infoblox Inc. All Rights Reserved.
IPAM Plug-in Integration with vCAC/vRA
http://www.infoblox.com/community/resources/ipam-plug-in-for-vmware
https://www.infoblox.com/downloads/software/vmware-cloud-adapter
17 | © 2013 Infoblox Inc. All Rights Reserved. 17 | © 2015 Infoblox Inc. All Rights Reserved.
Infoblox Hands On Labs
http://labs.hol.vmware.com
Click on “Partner Labs”, scroll down and click on “Enroll”
under the Infoblox section
NEW- Lab Overview – HOL-SDC-1632 (HOL-PRT-1468)
Automating Your Cloud with vCAC/vRealize Automation 6.0
and the Infoblox vCO IPAM Plug-in
18 | © 2013 Infoblox Inc. All Rights Reserved. 18 | © 2015 Infoblox Inc. All Rights Reserved.
IPAM Plug-in for VMware
• Automates IP address and DNS name provisioning
Provision IP addresses and DNS names automatically to new VMs
Reclaim addresses and names when VMs are destroyed
Centralized view of multiple VMware environments
Audit trail for all VM movements and changes
• Assigns IP addresses based on Extended Attributes - Give me 500 IPs in New York and 300 in Hong Kong
- Move the DR network from Chicago to Milan
- Give me 50 DNS names in Building 3
• Sync to Microsoft DNS/DHCP
19 | © 2013 Infoblox Inc. All Rights Reserved. 19 | © 2015 Infoblox Inc. All Rights Reserved.
Summary
• Industry leader in network automation, also for Cloud
• Only solution providing broad centralized management visibility
across legacy and public/private cloud
• Comprehensive IP address and DNS record management
• Automate and accelerate your private cloud deployments!
http://www.infoblox.com/products/ip-address-management/vmware
20 | © 2013 Infoblox Inc. All Rights Reserved. 20 | © 2015 Infoblox Inc. All Rights Reserved.
Q&A
Thank You!
Email: [email protected]
Phone: +39 335 789 3463
For more information
www.infoblox.com
21 | © 2013 Infoblox Inc. All Rights Reserved. 21 | © 2015 Infoblox Inc. All Rights Reserved.