Inside the Azure Region Connecting Azure Regions Security

Inside the Azure Region Connecting Azure Regions Security Servers Geographic Reach and Internet Ecosystem National Clouds Optical Networks CDN Performance Backbone in 100+ i. XP Load Balancing Software Defined WAN Advanced MPLS Services 3500+ peerings with ISPs Express. Route in 35 locations Virtual Networks Cross-premises connectivity Long-Haul Optical Network Private cloud connectivity Internet Exchange Provider

Front end subnet Back end subnet

Azure Region Network Infrastructure Customer VNet

vi e Pr ew

A G

• • • primary

A G MAC 1 MAC 2

vi e Pr ew Enables new virtual appliance scenarios

vi e Pr ew primary

A G AG AG AG SQL VM

A G

A G

DMZ App subnet Back end subnet Mgmt subnet Services NVA subnet

NBCUniversal: The Largest Broadcasting and Largest Cable Television Company in the World by Revenue

Rio 2016 Olympic Games Were Delivered Live with Record-set Streaming from Azure Services Azure delivered record setting Olympic Game contents this Summer ! A record 3. 3 billion total streaming minutes 2. 71 billion minutes of Olympic coverage NBC Olympics digital coverage amassed 100 million unique users A new record for live event coverage Nearly doubles the combined live streamed minutes of ALL prior Games (1. 48 billion) 29 percent more than the 2012 London Olympics Over 50 simultaneous Olympics events A 40 percent increase compared with the Sochi Winter Games

Cloud Adoption Business Drivers Business Ready Cloud (BRC) Strategy Project A Value Discovery & Value Realization Two (2) Po. Cs: B Public & Private Cloud C Next Phases & Planning Business Technology Groups: Maximize Productivity & Accelerate Business Value A. More Agile B. Faster Time to Market C. More Scalable D. New Business / Technology Models Technology Teams: Create Business Values through Tech Innovations A. More Portable B. Better Dev. Ops C. More Productive and New Service Model D. Be the Service Broker

Solution Service Broker NBCUniversal Hybrid Cloud Solution Operations Model (Azure Active Directory) Connectivity (Express. Route) Shared Services BU BU Park Identity Management / SSO Film Shared Services Private Cloud BU BU Park Film Public Cloud N N N Operations N N NModel N N GRCp Model C C Network to / In Cloud S S Network S S Sto /SIn Cloud S S C C C Model C C GRCp C

Execution Approach “Crawl” Core Essentials 1. 2. 3. “Run” “Walk” Public Cloud: Non. Prod People Process Technology 1 Managed Adoption 1. 2. 3. Public Cloud: Production People Process Technology 2 Service Optimization 1. 2. 3. Public Cloud: Optimization People Process Technology Hybrid Cloud: People, Process and Technology 1. 2. 3. Private Cloud: Non. Prod People Process Technology 1. 2. 3. Private Cloud: Production People Process Technology 1. 2. 3. Private Cloud: Optimization People Process Technology Program Management and Change Management

NBCUniversal Solution: High Level Organization inside Azure Tenant NBCUniversal Account Business Units (As DR) 0. Shared Services US Central 8. BU 7. BU 6. BU US East 5. BU US West * 4. BU Azure Regions 3. BU 1. Film 2. Park Subscription Shared Services EU

1 8 Business Unit Subscriptions + 1 0. Shared Services 8. BU 7. BU 6. BU 5. BU 4. BU 3. BU 2. Park 1. Film 2 One of Many Highlight : VNET Peering – Lead to Substantial Saving Each Business Unit Subscription VNET 1. 1…. 8. 1 N Web Servers VNET 1. 2 …. 8. 2 M App/DB Servers The Shared Service Subscription VNET 0. 1 2 External Firewalls 2 Load Balancers VNET 0. 2 2 Internal Firewalls 2 Load Balancers 3 With VNET Peering, We will require 4 firewalls and 4 load balancers. 4 Business Unit Subscriptions External Users VNET 1. 1. . 8. 1 2 External Facing Firewalls 2 Load Balancer N Web Servers VNET 1. 2 … 8. 2 2 Internal Facing Firewalls 2 Load Balancer M App / DB Servers Without VNET Peering, we will require 54 firewalls and 32 load balancers. End Results: With “VNET Peering” through sharing of firewalls / load balancers, we can obtain costs saving YOY for each region deployments

Summary ü ü ü Business Ready Cloud Strategy More Agile Shorter Time to Market More Scalable Cheaper New Business / Technology Models NBCU Hybrid Cloud Roadmap Value Discovery & A Value Realization 1 Two (2) Po. Cs: B Public & Private Cloud Roadmap C Team, Discovery & Innovation Core Essentials “Crawl” 3 2 Managed Adoption “Walk” Service Optimization “Run”

Customer’s network Partner Edge Primary circuit Secondary circuit Traffic to Office 365 Services Traffic to public IP addresses in Azure Traffic to Virtual Networks (VNets) Microsoft Edge

Gateway SKU Throughput (Gbps) Standard Up to 1 High. Performance Up to 2 Ultra. Performance Up to 10

Range AS Path From 10. 1. 0. 0/16 64496 LA 10. 1. 0. 0/16 64496 NY 10. 2. 0. 0/16 64496 LA Ethernet backbone network Range AS Path 10. 1. 0. 0/16 64496 10. 2. 0. 0/16 64496

Range AS Path From 10. 1. 0. 0/16 64496 LA 10. 1. 0. 0/16 64496 NY 10. 2. 0. 0/16 64496 LA Ethernet backbone network Range AS Path 10. 1. 0. 0/16 64496 10. 2. 0. 0/16 64496

Jason Carson Enterprise Cloud Architect

Manulife - John Hancock: Who are we? International financial services group with 34, 000 employees and 63, 000 agents worldwide Operates in the worlds’ top 3 economies - China, Japan and United States, as well as Canada. Global network with offices and datacenters in North America, Europe, and Asia

Some of Manulife’s Tenets Minimize supporting infrastructure allowing for more value for business solutions Modify and or Modernize not Lift and Shift enabling solutions which leverage key characteristics of the cloud i. e. On Demand Resources Regional pairs connectivity aligning with MS for resiliency based on business needs Encourage Distributed and Always on environments and connectivity to support needed resiliency

2013: Manulife’s Azure journey begins Subscriptions: 2 Virtual Networks: 2 Azure Regions: 1 VPNs 2 Express. Routes: 0 Virtual Machines: 20+

2014: Manulife’s Connectivity Formalized Subscriptions: 3 Virtual Networks: 5 Azure Regions: 4 VPNs 1 Express. Route: 1 Virtual Machines: 100+

Early 2015: Manulife Expands Globally Subscriptions: 12 Virtual Networks: 10 Azure Regions: 5 VPNs 2 Express. Route: 2 Virtual Machines: 200+

Mid 2015: Manulife Crosses the Ocean Subscriptions: 21 Virtual Networks: 30 Azure Regions: 8 VPNs 2 Express. Route: 4 Virtual Machines: 500+

2016: Manulife shortens the drive Subscriptions: 46 Virtual Networks: 55 Azure Regions: 10 VPNs 0 Express. Route: 8 Virtual Machines: 2000+

Flexible Global Networking

Results 2000+ Enabled flexible responsive networking allowing for focus on solutions Minimized duplicate supporting infrastructure. Support connectivity at scale

Future plans Continue to Expand supporting business needs with cloud native approaches Extend distributed security zones looking to minimize infrastructure required. Leverage new high performance networks to enable even more demanding workloads

Current State

Future Concept – Ignite Inspired

www. microsoft. com/itprocareercenter www. microsoft. com/itprocloudessentials www. microsoft. com/mechanics https: //techcommunity. microsoft. com

http: //www. microsoft. com/itprocareercenter https: //www. microsoft. com/itprocloudessentials https: //www. microsoft. com/mechanics https: //techcommunity. microsoft. com http: //azure. com/solutions http: //aka. ms/Azure. Monthly. Webinar

http: //myignite. microsoft. com https: //aka. ms/ignite. mobileapp