Azure VMware Solution

Run VMware Natively on Azure

Shannon Kuehn
Senior Cloud Advocate
Twitter: @shankuehn
LinkedIn: https://www.linkedin.com/in/shannonkuehn/
Introduction & Background
 Need for speed Cost and complexity People and processes
Software end of support Compliance and standards Impact of change management

Software & Hardware refresh Application refactoring Need for operational consistency

Urgent capacity needs Business continuity/downtime Update DR and Backup process

Datacenter contract expiry Project resourcing Need to grow cloud competency

 Summarizing cloud migration strategies

Rehost Refactor Rearchitect Rebuild

Description Redeploy as-is to cloud Minimally alter to take Materially alter/decompose New code written with
better advantage of cloud application to services cloud native approach

Drivers • App scale and agility

• Reduce Capex • Faster, shorter, updates • Accelerate innovation
• Free up datacenter space • Code portability • Easier adoption of new cloud • Build apps faster
• Quick cloud ROI • Greater cloud efficiency capabilities • Reduce operational cost
(resources, speed, cost) • Mix technology stacks

Technologies
IaaS Containers PaaS
and PaaS Serverless
Azure VMware Solution Microservices
Azure Dedicated
 Challenges with migration of existing app estate

29% 28% 31%

Risk of business Cloud skilling Refactoring

disruption gap complexity
 What is Azure VMware Solution?

It is a comprehensive VMware environment on dedicated Azure

infrastructure. Built by Microsoft and VMware.

It runs your VMware workloads natively on Azure, supported and

operated by Microsoft.

It allows you to manage, and secure applications across VMware On-Premises VMware
vSphere stack
environments and Microsoft Azure with a consistent operating
framework.
 Microsoft Azure
Infrastructure designed for every workload

Azure

AI Monitoring DevOps

Modern Business Dynamic and

Apps Critical Scalable for IBM Power
Dev and Test Backup Security

Azure native Purpose-built Azure for

Azure Services platform continuity
 Azure VMware Solution Availability

North Europe
Canada
UK South West Europe
Central East US
West US North Central US Japan East
South Central US

Southeast Asia

Australia
East
 Migrate and Extend
VMware workloads to the cloud

Azure VMware Solution

Built-in continuity, speed Use existing VMware Seamlessly modernize Unmatched pricing for
and scale with modern skills and tools apps over time with Azure Windows and SQL Server
infra

Accelerate your journey to the cloud

 Getting started with Azure VMware Solution

Plan & Manage &

Use cases Migrate Modernize
Deploy Operate

Microsoft + VMware
Datacenter expansion, Specialists, Programs, Partners
reduction, or retirement
Self-service elasticity & scale
Skilling
Industry certifications Azure Services

Speed and simplification Connect AVS and VMware on- High availability, DR and backup
of migration/hybrid Prem Low-latency ExpressRoute
cloud
Create and deploy AVS SDDC Use VMware HCX to quickly
environment from Azure portal Migrate VMs
in just a few hours Pilot/POC
Disaster recovery and Visualize VM resources in Azure, Build Modernize apps with seamless
business continuity continue to manage with landing connection to Azure Services
vSphere zone
VMware Cloud Foundation • Central API Management
• Native vSphere experience • Hybrid Hub and spoke
App and business Migration
modernization, dev and • vSAN for storage • Azure Security Center
execution
test • NSX-T networking • Azure Monitor
• HCX for migration • Storage Optimization
New and differentiated features
• Microsoft first party Azure service, cloud certified by VMware
• Seamless Azure experience, native integration Microsoft Azure
• Azure Hybrid Use Benefit for Windows and SQL server
Azure
• Free extended security updates for Windows/SQL Services

Server 2008/2008R2
VMware Environment
• Single Point of Support vSphere and vCenter

• Latest VMware technology updates NSX and

ESXi vSAN
HCX
HCX NSX ESXi vSAN
• HCX Enterprise Edition available
• High performance dedicated hosts Azure Dedicated
Certified Infrastructure

• Unified licensing and consumption

• Simplified NSX Interface On-Premises VMware

vSphere stack
Azure VMware Solution Software and Hardware Package

Software Specifications Hardware Specifications

ESXi – 6.7U3 Enterprise Plus Model – AV36 (36 cores)

vCenter – 6.7U3 Standard CPU- Intel Xeon Gold 6140 2.3 GHz
vSAN – 6.7 Enterprise Memory - 576 GB
NSX-T – Advanced Storage vSAN Caching - 2 × 1.6 TB NVMe
HCX – Advanced Storage vSAN Capacity - 8 × 1.92 TB SSD
Network - 2 - Dual Port 25 GbE
*HCX Enterprise available – monthly pricing
(public preview)

*Minimum 3 nodes per vSphere cluster

*Maximum 16 nodes per vSphere cluster
Maximum 96 nodes to an Azure Private Cloud instance
 Azure VMware Solution Features

Familiar VMware technology Integration with Azure High performance cloud infra

• Management and governance • Optimized elastic infrastructure

• Native vSphere support
• Security • Automated self-service
• Fully featured networking stack provisioning
• Low-latency connectivity to Azure
• vSphere management, vSAN, and • Dedicated, isolated, bare metal
• Leverage Azure ecosystem infrastructure
NSX-T
• Single point of support • Redundancy and placement
• HCX Enterprise now available to control
support migration • DevOps toolchain
• Security and encryption
 Azure pricing benefits for Azure VMware Solution
Hourly Pay as You Go (PAYG) billing

Reserved Instances Azure Hybrid Benefit Free Extended Security Updates

1 year or 3 years Reserved Bring Windows Server and SQL 3 years free security updates for

Instance discounts for Azure Server on-premises licenses with Windows Server 2008/2008R2

VMware Solution. Software Assurance to Azure SQL Server 2008/2008R2

Save 30-50% on the cost of

dedicated nodes with RIs
Deploy
Steps to deploying the SDDC through Azure

Deploy Private Cloud in Azure

Create a virtualized network (VNet)

Create an Azure Bastion & jump host

Create a gateway subnet & VNet gateway

Create auth key in VNet gateway

Connect AVS ExpressRoute to VNet gateway

©Microsoft Corporation
Azure
Connect VMware on-Premises and AVS

Connect to jump host behind Azure Bastion

Connect to vCenter

Connect to NSX-T

Enable Global Reach for on-premises access

Join domain & configure identity source

©Microsoft Corporation
Azure
Jump-Box VM with Azure Bastion

vCenter NSX Manager

Management Network
Network Architecture
Azure VMware Solution
AVS to VNET using VNET ER Gateway – Basic Interconnectivity

Customer
Edge Router

Microsoft Dedicated Enterprise

Edge routers (D-MSEE)
Microsoft Enterprise
Edge routers (MSEE)

ER
Gateway
AVS Network
Azure VNET Azure
Subscription(s)
Azure Services Azure Region
Azure VMware Solution
On Prem to SDDC using Global Reach – Full Interconnectivity

Customer
Edge Router

Dedicated Microsoft Enterprise

Edge routers (D-MSEE)

Microsoft Enterprise
Edge routers (MSEE)

Customer On- Premises

to AVS packet flow

Azure VNET AVS Network

Azure
Subscription(s)
Azure Region
Azure VMware Solution
On Prem to SDDC using VPN*

Customer
Edge Router

Microsoft Dedicated Enterprise

Edge routers (D-MSEE)

Supported for
pre-ExpressRoute testing
and environments that
do not need migration VPN
Gateway
ER
Gateway

SLAs Azure VNET AVS Network

Azure
Subscription(s)
Azure Region
Migrate
Pre-Migration steps and process
Solution Assessment
Assess VMware Identify workload(s) Define migration approach Identify steps to
environment to migrate HCX (Live, Bulk, Cold) full production

Testing and Validation

Initial workload Proof-of-Concept (PoC)
Create Private Cloud, Move few VM’s using preferred migration type

Transition to Production
At-scale migration & adoption
Use Microsoft FastTrack, support from certified Partners
Azure VMware Solution + Azure Migrate
Use VMware HCX to Migrate to Azure
Microsoft Azure

Simple
71% Fast
Azure portal and Azure Resource Manager

Azure native services

Less Staff
Azure Active Directory, storage, security, PaaS
Time
Economical
VMware Cloud Foundation
Management &
automation

• Live migration without the cost,

complexity or risk of refactoring
Network Compute Storage

• Minimal downtime
HCX Azure dedicated hardware

• Extend proven tools, skills, policies Third-party partner services

Backup, security, antivirus etc.

• Eliminate need and cost of reskilling

Using VMware HCX for Migration to Azure VMware Solution
• Large scale bulk migration using HCX

Microsoft Azure
• Replication Assisted vMotion
vSphere 6.7
• Any vSphere to vSphere migration

• HCX for site pairing and DR

Leveraging
HCX
• Parallel VM migration threads

• No change in IP, no NAT

• Secure proxy for vMotion and replication traffic

vSphere >5.0

VMware On-Premises
Management & Operations
 Azure VMware Solution - Managed IT

Policy management NSX-T secure workloads

Cost management Security Center
Advisory Sentinel and SIEM integration
Service Health Defender and Threat Protection
Identity setup

Update management, scripting Backup - MABS

automation, configuration DR-Site Recovery
Azure Site Recovery

App, infrastructure and network monitoring log analytics and diagnostics

Familiar and consistent VMware tools and technology

Create operational consistency for admins as

you continue to use VMware for resources
running on Azure infrastructure, including the
vSphere client and NSX-T Manager.

Access to vSphere, HCX, and NSX-T are

enabled during the Private Cloud deployment
process. Credentials are registered in Azure to
connect to the private cluster hosts.
Seamless management for Azure infrastructure resources
Easily scale infrastructure as your business needs it
through the Azure Portal.

Add new nodes as required to increase compute

and storage during peak times. And delete
nodes seasonally when infrastructure demands
are lower.

Add and delete new clusters as required:

• Min 3 nodes per cluster
• Max 16 nodes in a vSphere cluster
• Max 96 nodes to an Azure Private Cloud instance
 Life-Cycle
Deployment

Configuration
Physical Infrastructure
Control boundaries

Physical Security

Azure/AVS Portal

Hardware Failures

ESXi Host

Host Patching

NSX-T

Identity Management

vCenter

VSAN

Guest OS
Azure VMware Solution – Shared responsibility matrix

Applications

Virtual Machines
– Customer Responsibility
– Microsoft Responsibility
Azure VMware Solution Deployment

Customer
Edge Router

ExpressRoute Azure Region

ExpressRoute Using
Global Reach

Microsoft Dedicated Enterprise

Microsoft Enterprise
Edge routers (D-MSEE)
Edge routers (MSEE)

ER
Gateway
AVS Private Cloud
Azure VNET Azure
Subscription(s) vCenter, NSX-T, HCX, 3rd party
services
Azure Services
Manage Private Cloud

Access:
vSphere admin using “CloudAdmin”
AVS uses HCX for Hybrid and Lift and Shift
Integrations
Popular Azure VMware Solution Integrations

•Azure NetApp Files for file share

•Azure Blob Storage
•Azure Traffic Manager, Application Gateway
•Support for Hub and Spoke
•Azure Backup Server
•Azure Monitor
•Azure Security Center/Azure Sentinel
AVS Workload Integrations

Alerts

Azure Azure Update

Azure Security Center Azure Sentinel ITSM
Automation Management

Azure VMware Solution SDDC

VM1 VM2 Log Analytics

Monitor
Azure Defender Workplace
 Workload backup – Azure Backup

• Microsoft Azure Backup Server (MABS) can

be used to backup AVS running workloads

• MABS servers is deployed on Azure IaaS and

connects to AVS through the ExpressRoute
circuit
 Azure VMware Solution
with MABS For Backup
Azure Region

Azure VNET AVS Network

vCenter
Server 1

Azure MABS Virtual

Recovery Server Network
Services Vault Gateway Server 2
Available today
Support
 Microsoft support – single point of contact

Azure VMware Solution is validated, supported,

and certified by VMware and Microsoft. Built with VMware,
delivered by
Microsoft

Problem Management When VMware support is required

Microsoft is first contact and will make Microsoft coordinates with VMware
decision based on problem type. for product-specific support.

Azure-related issues are addressed by Microsoft continues to be central

Microsoft. point to resolution.
Resources
VMware Hands-On-Lab

http://hol.pub/avs
Azure VMware Solution Learn Module

https://aka.ms/learn-avs1
 Resources
 AVS Overview - https://azure.microsoft.com/services/azure-vmware/

 AVS Documentation - https://docs.microsoft.com/azure/azure-vmware/

 Azure VMware Solution Videos - https://tinyurl.com/yal7r33d

 VMware Ports and Protocols - https://ports.vmware.com/

 VMware HCX Documentation - http://www.vmw.re/hcxdocs

 VMware HCX Release Notes - http://www.vmw.re/hcxrn

 Azure Migrate Documentation - https://docs.microsoft.com/azure/migrate/migrate-services-overview

Demo
Thank you!