Cloud & DevOps Program Big Group. March 13, 2015 Friday 2:00-3:00 p.m. Science Center Hall A

Similar documents
Cloud & DevOps Program Vision and Strategy. Jason Snyder, Steve Martino, and Erica Bradshaw

Identity and Access Management PI-1 Demo. December 2, 2014 Tuesday 10:00 A.M. 6 Story Street

Storage and Disaster Recovery

How To Use Arcgis For Free On A Gdb (For A Gis Server) For A Small Business

Increased Security, Greater Agility, Lower Costs for AWS DELPHIX FOR AMAZON WEB SERVICES WHITE PAPER

Backing up to the Cloud

How to use Cloud Solutions by Swisscom for Disaster Recovery. Whitepaper. Fabian Haldimann Stefan Lengacher Thomas Gfeller

Backup and Recovery of SAP Systems on Windows / SQL Server

AVLOR SERVER CLOUD RECOVERY

Cloud Computing with Amazon Web Services and the DevOps Methodology.

ArcGIS for Server in the Amazon Cloud. Michele Lundeen Esri

Automate DR Testing with Zerto and OO

Leveraging Public Cloud for Affordable VMware Disaster Recovery & Business Continuity

Application Security Best Practices. Matt Tavis Principal Solutions Architect

Virtualization and Cloud Computing

Cloudify and OpenStack Heat

Migrating a running service to AWS

Deployment Options for Microsoft Hyper-V Server

ArcGIS 10.3 Server on Amazon Web Services

ur skills.com

Servers. Servers. NAT Public Subnet: /20. Internet Gateway. VPC Gateway VPC: /16

Understanding ArcGIS Deployments in Public and Private Cloud. Marwa Mabrouk

Microsoft SharePoint Architectural Models

SOLUTIONS CLOUD - DPS JEUDI 19 NOVEMBRE 2015

Every Silver Lining Has a Vault in the Cloud

OpenStack. Orgad Kimchi. Principal Software Engineer. Oracle ISV Engineering. 1 Copyright 2013, Oracle and/or its affiliates. All rights reserved.

WELKOM Cloud met Azure

Zerto Virtual Manager Administration Guide

Citrix Training. Course: Citrix Training. Duration: 40 hours. Mode of Training: Classroom (Instructor-Led)

Identity and Access Management Technical Oversight Committee

Leveraging Public Clouds to Ensure Data Availability

Tcl and Cloud Computing Automation

Identity and Access Management for the Cloud What You Need to Know About Managing Access to Your Clouds

Availability for the modern datacentre Veeam Availability Suite v8 & Sneakpreview v9

Data Center & Cloud Transition Service Models. February 4, 2013

vcloud Air Simone Brunozzi, VP and Chief Technologist, vcloud 2014 VMware Inc. All rights reserved.

Avoiding Pain Running MySQL in the Cloud

Web Application Deployment in the Cloud Using Amazon Web Services From Infancy to Maturity

Maginatics Cloud Storage Platform Feature Primer

Implementing Microsoft Azure Infrastructure Solutions

Grade Disaster Recovery with Azure Site

Cloud Computing. A new kind of developers? Presentation by. Nick Barcet nick.barcet@canonical.com

CloudCenter Full Lifecycle Management. An application-defined approach to deploying and managing applications in any datacenter or cloud environment

How To Manage A Cloud System

Building disaster-recovery solution using Azure Site Recovery (ASR) for Hyper-V (Part 1)

DISTRIBUTED SYSTEMS [COMP9243] Lecture 9a: Cloud Computing WHAT IS CLOUD COMPUTING? 2

The Virtualization Practice

Mark Bennett. Search and the Virtual Machine

Drobo How-To Guide. Cloud Storage Using Amazon Storage Gateway with Drobo iscsi SAN

Implementing Microsoft Windows Server Failover Clustering (WSFC) and SQL Server 2012 AlwaysOn Availability Groups in the AWS Cloud

Deploying Database clusters in the Cloud

Disaster Recovery As A Service Storage by CloudGrid and Zerto Virtual Replication Disaster Recovery and Business Continuity Platform

High-Availability in the Cloud Architectural Best Practices

Data Protection & Cloud. Corradino Milone PreSales Commvault Italia

StorReduce Technical White Paper Cloud-based Data Deduplication

Dimension Data Enabling the Journey to the Cloud

VMware System, Application and Data Availability With CA ARCserve High Availability

Oracle Applications and Cloud Computing - Future Direction

Using Hybrid Clouds For Strategic Agility, Protection and Scalability

How AWS Pricing Works

TECHNOLOGY WHITE PAPER Jan 2016

ArcGIS for Server: In the Cloud

Run SAP for Savings and Speed in the Cloud Presentation for ASUG, September 28, 2011

Solution Overview. Jesper Schneider Nordic Distribution Manager. 14 th May Copyright 2014 CA. All rights reserved.

TECHNOLOGY WHITE PAPER Jun 2012

5 ¾ THINGS WE LEARNED BROKERING CLOUDS: Why you should trust your Broker more than your Banker. Jon-Michael C. Brook, CISSP

CA ARCserve Replication and High Availability Deployment Options for Hyper-V

NCTA Cloud Operations

Cloud Platform Comparison: CloudStack, Eucalyptus, vcloud Director and OpenStack

Harnessing the Power of the Microsoft Cloud for Deep Data Analytics

OnCommand Cloud Manager 2.2 Storage System Management Guide

Microsoft Windows Server Failover Clustering (WSFC) and SQL Server AlwaysOn Availability Groups on the AWS Cloud: Quick Start Reference Deployment

How To Avoid Snowflakes

Automated Cloud Migration

How to Grow and Transform your Security Program into the Cloud

Managing Physical and Virtual Machines in Paragon Protect & Restore

Compatibility and Support Information Nasuni Corporation Natick, MA

MySQL Comes of Age. Robert Hodges Sr. Staff Engineer Percona Live London November 4, VMware Inc. All rights reserved.

Copyright 2013 enstratius, Inc.

Daymark DPS Enterprise - Agentless Cloud Backup and Recovery Software

Challenges in Deploying Public Clouds

Building your Server for High Availability and Disaster Recovery. Witt Mathot Danny Krouk

ANDREW HERTENSTEIN Manager Microsoft Modern Datacenter and Azure Solutions En Pointe Technologies Phone

Real-time Protection for Hyper-V

Amazon Elastic Beanstalk

McAfee Public Cloud Server Security Suite

New hybrid cloud scenarios with SQL Server Matt Smith 6/4/2014

CLOUDFORMS Open Hybrid Cloud

CompTIA Cloud+ 9318; 5 Days, Instructor-led

CA arcserve r16.5 Hybrid data protection

CompTIA Cloud+ Course Content. Length: 5 Days. Who Should Attend:

Easily Managing User Accounts on Your Cloud Servers. How modern IT and ops teams leverage their existing LDAP/Active Directory for their IaaS

Postgres Plus Cloud Database!

Migration and Building of Data Centers in IBM SoftLayer with the RackWare Management Module

PCI COMPLIANCE ON AWS: HOW TREND MICRO CAN HELP

Replication, Business Continuity and Restoration with Cloud Economics

Migration and Building of Data Centers in IBM SoftLayer with the RackWare Management Module

VIRTUAL PRIVATE CLOUD FOR ENTERPRISES

Transcription:

Cloud & DevOps Program Big Group March 13, 2015 Friday 2:00-3:00 p.m. Science Center Hall A

Agenda Program Update (10 min) General Accomplishments Wave 1 Overview Schedule Minimum Viable Product Cloud Patterns Update (30 min) Overview of Work Demo Outreach and How to Get Involved CloudEndure POC and BC/DR (10 min) BC/DR Business Requirements BC/DR POC: Test Criteria, Results, Cloud Support, Architecture BC/DR Next Steps Questions & Answers (10 min) 2

Program Update: General Accomplishments Formally announced as a HUIT program Feb. 5 Transitioned from part-time workgroup to full-time team located at 50 Church Street Completed first round of integrated planning to understand foundational work Created comprehensive administrative plan Wave 1 migration analysis and actions underway Program Increment 1 (six sprints) runs from March 9 to May 29 3

Program Update: Wave 1 Overview We are committed to moving 25 applications by the end of FY15. Apps were prioritized based on application team availability and technical patterns (Java/Tomcat, Apache/LAMP) Remaining ~50 apps will be evaluated after first 25 are migrated Group Applications Account App App Admin CAS Auth Engine Claim App Create/Manage ID IAM FindPerson API Harvard LDAP IdDB Identity Service API PIN2 Bridge SailPoint IIQ Shibboleth IdP Phonebook Public LDAP INF ATS LTS OID QlikView (7) ACE Muse OARS Course Catalog Cross Reg Winter Break FCOI Presto, Feedback DR Aleph (LTS) IAM PeopleSoft (POC) 4

Program Update: Schedule See the handout for the most recent schedule for PI-1 and PI-2. 5

Minimum Viable Product What does minimum viable product really mean? Establishing the initial features needed to fulfill the proper release of a particular product 6

Minimum Viable Product: CloudOps Monitoring Logging Backups 7

Minimum Viable Product: DevOps SP Framework/Application Patterns CDP Data Management Security VPC 8

Minimum Viable Product: Admin Tagging Documentation IAM (roles) AWS Account 9

Cloud Patterns Update Overview of Work Demonstration Outreach and How to Get Involved 10

What Are Cloud Patterns? Cloud patterns create application infrastructure in the cloud via a command-line interface from a library of standard patterns. 11

Cloud Patterns: Standard Pattern Encapsulates knowledge and best practices of infrastructure provisioning Reusable components wired together for specific use case of pattern Components parameterized such as minimum number of servers in autoscaling group, or a specific AMI to use for LaunchConfiguration 12

Cloud Patterns: Decorators Allows for more significant change or added behavior to standard patterns Example: Config decorator has been added to LaunchConfiguration to do additional configurations of instances after standard install, and DNS decorator sets the DNS name of the ELB 13

Cloud Patterns: Outside vs. Inside the Box We are discovering a sharp delineation: Structure outside the box is simpler and highly reusable More specifics inside the box this seems to require a pluggable framework: Configuration Management (SaltStack, Ansible, Puppet, etc.) Deployment (CodeDeploy, Capistrano, S3, etc.) Many of these tools are built for on-premise management models. How do we make these tools work well in the cloud with ephemeral resources? Framework goal: Make it easy for end users, but also support the switching out of tools 14

Cloud Patterns: Stackable Patterns The standard patterns have been built to allow one pattern to depend on another, enabling them to stack. Shared Infrastructure Application Services App 1 DB Inf SVC Net SVC VPC 15

Cloud Patterns: Stackable Patterns The standard patterns have been built to allow one pattern to depend on another, enabling them to stack. Shared Infrastructure Application Services App 1 DB App 2 DB Inf SVC Net SVC VPC 16

Cloud Patterns: Stackable Patterns The standard patterns have been built to allow one pattern to depend on another, enabling them to stack. Shared Infrastructure Application Services App 1 DB App 2 DB Inf SVC Net SVC VPC App 3 17

Cloud Patterns: Stackable Patterns The standard patterns have been built to allow one pattern to depend on another, enabling them to stack. Shared Infrastructure Application Services App 1 DB App 2 DB Inf SVC App 3 Net SVC VPC App 1 DB App 2 DB Inf SVC 18

Cloud Patterns: Stacks and Services Cloud Ops Base Stack AWS / Services Logging Messaging Monitoring / Alerting Search Backup Other... ELB Session Management Communication Default / Required Available Services Added Services App Cache Scheduling 19

Cloud Patterns: Complex Stack with Services Cloud Ops Base Stack AWS / Services Logging ELB Messaging Monitoring / Alerting Backup Other... Web ELB Search Session Management Communication Default / Required Available Services Added Services App DB Cache Scheduling 20

Cloud Patterns: Demo Application stack definition for HelloWorld Java/Tomcat Create stack for HelloWorld Java/Tomcat with app deployment Show created stack and running application 21

Cloud Patterns: Pattern Support Currently being developed: Java/Tomcat Python/GUnicorn Oracle/RDS Next set of patterns: Windows Java/Weblogic MySQL/RDS 22

Cloud Patterns: CLI Support Current: Mac OSX Being developed: Windows Linux Orchestration/CI: HUIT Cloud & DevOps Continuous Development Platform Jenkins AWS CodePipeline 23

Cloud Patterns: Outreach and How to Get Involved Want to contribute and need to use now? Weekly Cloud Application Pattern Design Workgroup for early adopters and cloud users One-on-one workshops on creating patterns Interested in learning more at your own pace? Wiki: https://wiki.harvard.edu/confluence/display/huitcloudpatterns Github: https://github.com/huit-cloud-services/huitcloudpatterns For any of the above, email us to get access or participate! 24

Cloud Patterns: Outreach and How to Get Involved Interested, but want someone to teach you? Cloud Technology Workshops in April Workshops targeted at specific roles and activities Email us to get access or participate! 25

Business Continuance and Disaster Recovery: Technical Recommendation Steve Martino

Agenda BC/DR Business Requirements Sue Walsh BC/DR Proof of Concept Test Criteria and Results Vendor Cloud Support Architectural Diagrams PeopleSoft & Aleph POC: High-Level Plan and Next Steps 27

BC/DR Business Requirements Goal: Solutions to withstand a range of incidents and disasters. Embed and build DR design into cloud architecture/migration Build new systems to incorporate DR needs Current: BC/DR for mission-critical services using SunGard Availability Services with some failover to 1 Summer St. Future: BC/DR embedded as required into cloud designs and SaaS offerings to meet business needs. For critical applications that may not migrate immediately, we are exploring a POC for replacing the current SunGard solution. Goal Sub-Goal Provide continuous data replication to geographically dispersed off-site data centers; Lower RTO and enhance RPO Replace Current BC/DR Solutions Support (and enhance) Harvard s cloud migration strategy Integrate with Harvard s network, security, server, and storage infrastructure Provide Future BC/DR Solutions for Harvard BC/DR 1.0 Provide on-prem to multi-cloud BC/DR capabilities (AWS, Azure, Google, etc.) Provide inter-cloud to cloud BC/DR capabilities (AWS regions) Provide cloud-to-cloud BC/DR capabilities (AWS to Azure, etc.) In FY15, provide BC/DR capabilities for PeopleSoft and Aleph (LTS) 28

BC/DR POC: Vendor Candidates The following vendor candidates were considered. Vendor Candidate VMWare/vCloudAir Cloud Velox CloudEndure Product Description A public cloud platform built on vsphere, compatible with on-premise data centers, that includes infrastructure, disaster recovery, and various applications as service offerings Key cloud migration and DR process are automated, reducing manual processes, costs, and risks for accelerated deployment, including physical and virtual app environments and data sets Disaster Recovery as a Service (DRaaS) to the cloud solves downtime without the ongoing high costs typically associated with DR; unlike snapshot-based solutions, CloudEndure enables consistent, real-time replication using continuous data protection 29

POC Test Criteria & Results: CloudEndure POC Environment OK? Notes 1. Initial POC with HUIT test/dev OS and disk configurations Windows 2003 and virtual disk Y Host is VMWare Virtual Server and disk Windows 2008 and virtual disk Y Host is VMWare Virtual Server and disk Windows 2012 and virtual disk Y Host is VMWare Virtual Server and disk Windows 2008 RDM disk Y Host is VMWare Virtual Server with physical disk Red Hat Linux 5, 6, 7 virtual disk Y Host is VMWare Virtual Server and disk Windows 2008 physical server (Dell R710 internal disk) Chaucer (Aleph Dev System) (33 LUNS) Y Y Physical server with physical internal disk Really big virtual server with physical disk Sun Microsystems n/a All three vendors tested do not support Sun OS 2. Create automated load balancer Y 3. Test Bluecoat proxy traversal Y NO SOC managed systems are directly connected to the Internet 4. Basic OS readiness (AWS replica) Y System will boot 5. App readiness (AWS replica) Y Shavlik (Dell R710 Above and Chaucer on CloudEndure 30

BC/DR POC: Vendor Cloud Support Public and Private Cloud Support (DR) On-Prem <--> VMWare VCloudAir AWS Region <--> AWS Region Tested On-Prem <--> AWS Tested AWS Region <--> Azure Not Tested On-Prem <--> Azure Not Tested AWS Region <--> OpenStack Not Tested On-Prem <--> Rackspace OpenStack Not Tested AWS Region <--> CloudStack Not Tested On-Prem <--> CloudStack Not Tested VMWare vcloudair <--> AWS Region Not Tested Public and Private Cloud Support (On-Prem --> Migration) On-Prem --> AWS Region Tested On-Prem --> CloudStack Not Tested On-Prem --> Azure Not Tested VMWare vcloudair --> AWS Region Not Tested On-Prem --> OpenStack Not Tested Public Cloud Support (Cross-Cloud <--> Migration) AWS Region <--> AWS Region (In-Cloud) Tested: Creates ELB, EC2, IAM, Security Groups, Storage, etc. AWS Region <--> Azure (Cross-Cloud) Not Tested Additional Features Tagging on Instance Creation Q2 Point-in-Time Recovery Tested 31

OS/DATA APP Poll Stack BLOCKS CloudEndure Architecture CloudEndure Replica3on Server - 1 APP Stack OS/DATA Poll BLOCKS Once Obtained, It Will Establish a ConnecOon Via Port The Agents CloudEndure CloudEndure 1500 AWS Communicate To ReadOnly Its Associated Management Management Stack IAM Account ReplicaOon Discovery StaOon Server Created InformaOon Spins Shows Server Up and The The Progress Agents Allows with the The CloudEndure the Of will The CloudEndure keep On- Prem polling Management Agents Data Management the StaOon Are Management SynchronizaOon Installed! to communicate StaOon AWS To StaOon ConOnuous console ApplicaOon via ReplicaOon BLOCK AWS API s to Stack create server(s) level Discovery Data CloudEndure Via The ReplicaOon ReplicaOon IniOates AWS API. Will Servers the Over AWS ReplicaOon Secure Port Servers. 443 Commence for The ReplicaOon Over The Server SSLVPN IP Address. Tunnel. 10 machines with single volumes 5 machines with dual volumes Amazon Linux M1- Small EBS - Gigabytes EC2 EBS EC2 EBS EC2 EBS Harvard Network VMWare Virtual Servers OS/DATA BLOCKS APP Poll Stack Physical Disk OS/DATA BLOCKS APP Stack Poll Poll APP Stack OS/DATA BLOCKS APP Stack OS/DATA Poll BLOCKS Inside'interface:'10.34.5.0/24 Proxy'IP:'10.34.5.254' Bluecoat Forward Proxy Outside'interface:' 128.103.38.177/32 CloudEndure AWS API Management AWS API Station Harvard Network <- - > SSLVPN <- - > Amazon VPC Validated with Jefferson that Direct Connect would work All data The synced ReplicaOon over From port 1500 AWS is Snapshots AES 256 bit Begins!!! encrypted!!! The ReplicaOon CloudEndure Servers Management Create AWS Console Snapshots Shows Of The Sync Synchronized Data And Progress. Use These Snapshots To Create The AWS Instances And Storage When A DR SituaOon Occurs. By SelecOng Create Replica For A ParOcular System, CloudEndure Creates EC2 Instances With EBS Storage Volumes With The Latest Data From On- Prem. BC/DR VPC CloudEndure Machine Converter M3 Medium CloudEndure Replica3on Server - 2 10 machines with single volumes 5 machines with dual volumes EC2 EBS Amazon Linux M1- Small EBS - Gigabytes EC2 EBS EC2 EBS EC2 EBS EC2 EBS EC2 EBS

Create Replica Options Specify existing or new subnet/vpc the replica will use Specify IP address that the replica server will use Specify instance type that the replica server will use Specify public IP (if necessary) that the replica server will use Specify storage type that the replica will use 33

Create Replica Options In addition to the most recent (Latest) state of the continuous sync, the following points are available: Once every 10 min for the past hour Once every hour for the past day Once every day for the past month Point in Time Recovery brings you back to the OS state, VPC configuration, subnets, security groups, etc., from that point. 34

PeopleSoft & Aleph POC: High-Level Plan & Next Steps 1. Perform initial POC with test/dev systems 2. Create AWS VPC network and security infrastructure for BC/DR 3. Work with PeopleSoft and Library business owners a. Identify core systems b. Identify on-prem supporting systems c. Identify network and security requirements in AWS 4. Create BC/DR test plan 5. Perform CloudEndure client installation 6. Perform PeopleSoft/Aleph DR test 7. Adjust BC/DR test plan for PeopleSoft and Aleph 35

Questions & Answers

Thank you!

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information