Presentazione @ VMUGIT UserCon 2015

1 | © 2013 Infoblox Inc. All Rights Reserved. 1 | © 2015 Infoblox Inc. All Rights Reserved.

IPAM Automation for Cloud with VMware

vCloud Automation Center & Infoblox DDI

Giancarlo Palmieri – Systems Engineer SEUR

VMUG - 12 November 2015


Total Revenue (Fiscal Year Ending July 31)

35

56 62

102

133

169

225

250

306

$0

$50

$100

$150

$200

$250

$300

$350

FY07 FY08 FY09 FY10 FY11 FY12 FY13 FY14 FY 15

Infoblox Overview & Business Update

($MM)

Founded in 1999

Headquartered in Santa Clara, CA

with global operations in 25 countries

Market leadership

• Gartner “Strong Positive” rating

• 50%+ Market Share (DDI)

8,300+ customers

89,000+ systems shipped world wide

63 patents, 25 pending

IPO April 2012: NYSE BLOX

Leader in securing and automating

mission-critical network services


Infrastructure

Security

With Infoblox N

ET

WO

RK

INF

RA

ST

RU

CT

UR

E

FIREWALLS SWITCHES ROUTERS WEB PROXY LOAD BALANCERS

Historical / Real-time

Reporting & Control

AP

PS

&

EN

D-P

OIN

TS

END POINTS VIRTUAL MACHINES PRIVATE CLOUD APPLICATIONS

CO

NT

RO

L P

LA

NE

Infoblox GridTM

w/ Real-time

Network Database


The Infoblox Grid™

External DNS/DHCP

Grid Member

Virtual

Environment

DNS/DHCP

Grid Master Candidate

at Recovery Site

Reporting

Grid Members

Grid Master

Branch Offices

Internal

Grid Member

DNS/DHCP

Our Patented Grid™ technology delivers:

Core Network Services

Centralized Management

High Availability

On-Demand Scalability

3 Form Factors

Secure DNS and DHCP

Cloud Integration Readiness


Cloud Network

Automation

Management UI

Cloud Architecture – Where we play

The Cloud Computing Conceptual Reference Model (credit: NIST)

Compute Storage Network

Hypervisors

Cloud Orchestration Layer

Cloud Management Platform

Cloud Consumer

OpenSource: OpenStack

Commercial: VMware vRA, MS SC/VMM

Network Services:

Routing, switching,

firewalls, load-balancers

Infoblox Adaptors VMware / Microsoft / OpenStack

Infoblox DNS/DHCP/IPAM

Core Network Services

Automating the management, provisioning and de-provisioning of IP addresses and DNS services is a cloud best practice.

Alan Chabra, Lead Architect, BMC Cloud Center of Excellence “

”

For our cloud customers automating IP address and

DNS service provisioning is a must have. They tell us

repeatedly that they can’t rely on manual/high-risk solutions to run their next gen cloud infrastructure. Vikul Gupta, Director of Cloud Svcs Orchestration, HP

“

”


Cloud Deployment: Perception vs. Reality

• Perception

Fast spin up with automation

Measured in seconds or

minutes

• Reality

Slow with manual processes

Measured in hours, days or

weeks

Existing tools can’t handle

How long does it take deploy a new virtual instance?


Common “old” Approach for Provisioning

Manual

Traditional Approach

Provision Virtual

Instance

1

Request IP or Use

Allotment

2

Forward IP Data for Tracking

3

Update Database or Spreadsheet

4

Request DNS

Record

5

Allocate and Manually

Enter DNS

6

Clean Up When

De-provisioned

Automated

• No Automation

Slow with manual processes

Can take a very long time to complete

Possible human errors introduced


Operational Friction in Cloud Rollout

No visibility to IP address/DNS records for VM/network resources No reporting on lease history, DNS/IP associations

No central record for DDI across enterprise networks

Network provisioning is not agile for application delivery No Amazon-like capabilities: on-demand, self-service for Dev/QA

DevOps needs automated IP/DNS in network blueprints

Takes too much time and expense to deploy applications Manual IP address/DNS provisioning is slow and error-prone

Diverse/complex network configs are tough to manage: routed, NAT’ed etc.

Expensive to integrate IP/networks/zones for every acquisition/subsidiary

Private Cloud needs reliable DDI Stability of underlying network inhibits Cloud/Virtualization rollout

DDI functions don’t recover on failures

Need simplified upgrade process for code


Centralized DDI Management • Multiple data centers

• Multiple cloud platforms

• Multiple tenants, applications

• Legacy and cloud networks

Infoblox Cloud Solution Overview

Multi-vendor Cloud

Platform Integrations (VMware, MS, OpenStack, Cisco…)

IPAM/DNS Automation • Configurable workflows

• Add/delete IP addresses for VMs

• Update DNS records for VMs

• Provision overlapping IP address

• Configure DNS aliases for VMs

Visibility • Discover VMs, IP and DNS names

• DHCP leases for VMs

• History of IP address changes

• Extensible attributes/smart folders –

classify, organize, drive policy

Auditing/Compliance • Auditing of VM IP address/DNS names

• Reporting for compliance

• DHCP lease history for VMs

Operational Features (Grid) • High Availability

• Simplified upgrade process

• Backup

• Role-based access controls


vCAC/vRA Integration with Infoblox IPAM

Cloud

Consumer

Service

Blueprints

Request Approval Provision Manage Retire Archive

vCenter Orchestrator Plug-in

vCloud Automation Center/vRealize Automation

Allocates an IP Address

and creates a DNS Host Record

Removes an IP Address

and deletes a DNS Host Record

• Benefits

Reduce time to service for newly provisioned VMs

Reduce operational expenses

Enable higher scalability


Provisioning a VM using a Cloud Management Platform

with Infoblox Integration

Hypervisor

CMP/Orchestrator

Infoblox

Adapter

2 - CMP/Orchestrator calls the

Infoblox Adapter 1 - A cloud admin/user requests a VM to be created through

self service portal

6 - VM starts up

either with

injected static IP

or IP allocated via

DHCP Request to

Member (Fixed

Address)

5 – CMP/Orchestrator

Spins up VM on

Hypervisor

Infoblox Grid Member

DNS/DHCP

3 - Infoblox Adapter

contacts NIOS via WAPI

for Next Available IP and

creates DNS Records

for VM

End User

7 - End User accesses

VM using DNS FQDN

Infoblox Grid Master

4 - GM synchronizes

Host record or Fixed

Address/ +

A/AAAA/PTR with Grid

Member


IPAM Plugin Feature Set

• Tight integration with vCAC/vRA 5.x and 6.x vCAC/vRA Network Profile is no longer needed. All network data is provided by Infoblox DDI.

• Support for meta data (i.e. Infoblox Extensible Attributes) Ability to allocate an IP address and a DNS host record to a VM based on specific meta data

associated with a network.

• Support for overlapping IP and DNS name spaces

• Support for DNS records - A/AAAA/PTR Flexibility to add individual record types

• New and improved workflows Added support for DDI services restart, support for fixed and reserved IP addresses, and much

more!

• Improved error handling and logging Robust workflows with improved logging to quickly debug and resolve any potential problem

• Enhanced integration with vCloud Director 5.1 & 5.5 Support for vApp recomposition (i.e. the ability to add/remove a VM to a vAPP, or add/remove a

vNIC to a VM)

12


Tight integration with vCAC/vRA 5.x and 6.x

• A vRA network profile is no longer

needed

• All network data (ex: router IP,

Domain name, etc.) is provided by

Infoblox DDI

Simplified and centralized network configuration


Support for Meta Data

• With support for Infoblox Extensible Attributes (EA), the IPAM plug-in can

allocate an IP address and a DNS host record to a VM based on specific meta

data associated with a network

• For example, allocate an IP address to a VM from a network located in the USA

Enable search by EA

Set EA name = Country

Set EA value = USA

Infoblox DDI - EA Country = USA

Automate VM assignment to networks using business data


Support for overlapping IP and

DNS name spaces

• Infoblox DNS views provide the ability to serve one version of DNS data to one

set of clients and another version to another set of clients

• Infoblox Network views support overlapping address spaces enabling the use of

duplicate IP addresses without impacting network integrity

DNS View = External

Network View = NetView3

Infoblox DDI Network View = NetView3

Increased flexibility for network deployments


IPAM Plug-in Integration with vCAC/vRA

http://www.infoblox.com/community/resources/ipam-plug-in-for-vmware

https://www.infoblox.com/downloads/software/vmware-cloud-adapter
















Infoblox Hands On Labs

http://labs.hol.vmware.com

Click on “Partner Labs”, scroll down and click on “Enroll”

under the Infoblox section

NEW- Lab Overview – HOL-SDC-1632 (HOL-PRT-1468)

Automating Your Cloud with vCAC/vRealize Automation 6.0

and the Infoblox vCO IPAM Plug-in

http://labs.hol.vmware.com/


IPAM Plug-in for VMware

• Automates IP address and DNS name provisioning

Provision IP addresses and DNS names automatically to new VMs

Reclaim addresses and names when VMs are destroyed

Centralized view of multiple VMware environments

Audit trail for all VM movements and changes

• Assigns IP addresses based on Extended Attributes - Give me 500 IPs in New York and 300 in Hong Kong

- Move the DR network from Chicago to Milan

- Give me 50 DNS names in Building 3

• Sync to Microsoft DNS/DHCP


Summary

• Industry leader in network automation, also for Cloud

• Only solution providing broad centralized management visibility

across legacy and public/private cloud

• Comprehensive IP address and DNS record management

• Automate and accelerate your private cloud deployments!

http://www.infoblox.com/products/ip-address-management/vmware








Q&A

Thank You!

Email: [email protected]

Phone: +39 335 789 3463

For more information

www.infoblox.com


Technology

Presentazione @ VMUGIT UserCon 2015