Container Networking Today Guido Appenzeller Chief Technology Strategy

Database Internal App Internet Internal App Website Container networking today Internal network Port 80

Tech preview: Containers with VMware NSX provides segmentation, visibility, and integration Internal network Internet

Benefits of NSX and containers Microsegmentation • • • Micro-segmentation to establish clear boundaries

Docker Volume Driver for VMware v. Sphere and Virtual SAN Container v. Sphere Volume

Cloud-Native Apps Overview Line of Business (Developers, Dev. Ops, etc. ) Cloud-Native Framework Management

v. Sphere Integrated Containers How It Works Traditional App Guest OS Virtual Container Host

Photon Platform How It Works cf push cf scale Create CF cluster Create Kubernetes

Thank You! @cloudnativeapps #vmwcna http: //www. vmware. com/cloudnative http: //blogs. vmware. com/cloudnative vmware. github.

Slides: 9

Download presentation

Container Networking Today Guido Appenzeller Chief Technology Strategy Officer, NSBU at VMware

Database Internal App Internet Internal App Website Container networking today Internal network Port 80 2

Tech preview: Containers with VMware NSX provides segmentation, visibility, and integration Internal network Internet Microsegmentation Alert Connection to data center Physical network infrastructure Data center Database Internal App Website HONEY POT VULNERABILITY SCANNER 3

Benefits of NSX and containers Microsegmentation • • • Micro-segmentation to establish clear boundaries Stop compromises at container or application level Central visibility into connectivity across the data center • Per-flow tracking Alerts for suspicious behavior Virtual taps at a percontainer level Connection to data center Alert • • • Integration with the rest of your IT infrastructure Monitoring, incident response, forensics Access to databases, backup, system updates 4

Docker Volume Driver for VMware v. Sphere and Virtual SAN Container v. Sphere Volume Driver Virtual Machine Simple Plug-and-play, persistent docker volumes Programmable Self-service, API-based delivers storage as code Feature Rich Proven storage services from HCI software leader Photon Machine v. Sphere Persistent v. Sphere Datastore (Virtual SAN, VMFS, NFS) https: //github. com/vmware/docker-volume-vsphere 5

Cloud-Native Apps Overview Line of Business (Developers, Dev. Ops, etc. ) Cloud-Native Framework Management Cloud-Native Infrastructure Paa. S: Cloud Foundry Container Orchestration: Kubernetes, Marathon, Swarm Middleware: Data Analytics: Kafka, Rabbit. MQ Hadoop, Spark Databases: Enterprise. DB, Mongo. DB Photon OS v. Sphere SDDC Photon Platform 3 rd-Party Clouds (AWS, Azure, GCE) Existing IT Environments Greenfield Cloud-Native Photon OS v. Sphere Integrated Containers IT Ops Team

v. Sphere Integrated Containers How It Works Traditional App Guest OS Virtual Container Host @cloudnativeapps Container Pico VMs Image Cache Fast boot #vmwcna 7

Photon Platform How It Works cf push cf scale Create CF cluster Create Kubernetes cluster kubectl create kubectl get pods Photon API Photon Controller #1 Docker Swarm Photon Controller #2 Photon Controller #3 Photon. OS Photon Machine Combination of local and/or shared ESX datastores. Photon Controller: Clustered design delivers massive scale and highavailability. Photon Machine: Combination of core ESX with Photon. OS 8

Thank You! @cloudnativeapps #vmwcna http: //www. vmware. com/cloudnative http: //blogs. vmware. com/cloudnative vmware. github. io