Hyper-V - MicroWarehouse
Download
Report
Transcript Hyper-V - MicroWarehouse
What’s New in Windows Server
2016 Hyper-V
Aidan Finn, MVP
Technical Sales Lead, MicroWarehouse
www.mwh.ie
About Aidan Finn
Technical Sales Lead, MicroWarehouse
• MVP, Cloud & Datacenter
Management (Hyper-V)
• Experienced with Azure, Hyper-V,
Windows Server/Desktop, System
Center, and IT infrastructure
• http://www.aidanfinn.com
• http://www.petri.com/author/aidan-finn
• @joe_elway
• aidanfinn.com
www.mwh.ie I
About MicroWarehouse
Value Added Distribution
• Irish owned/located distributor
• Park West, Dublin 12, Ireland
• Distributors for:
•
•
•
•
•
•
Microsoft on-premises & cloud
Microsoft Surface
DataOn for Storage Spaces
Gridstore for Hyper-Convergence
SkyKick for Office 365 backup
And many more
• Value added distribution:
•
•
•
•
Much more than selling licenses
Get your licensing right
Sales education
Technical training
@MWHDistribution
www.mwh.ie I
www.mwh.ie
Windows Server 2016
Windows Server 2012 / 2012 R2 Hyper-V
What we already have …
www.mwh.ie I
Notable Features
Difference makers
•
•
•
•
•
•
•
•
Storage Spaces
SMB Multichannel
SMB Direct (RDMA)
High speed Live Migration
vRSS
64 TB VHDX
Hyper-V Replica > Azure Site Recovery
SR-IOV
www.mwh.ie I
WS2016 Talking Points
Cloud, cloud, cloud
• Feedback has shaped WS2016
•
•
•
•
•
•
•
https://windowsserver.uservoice.com
WS2012 and WS2012 R2
5 x WS2016 Technical Preview releases
Easier management
Improved service availability
Cloud
Inspired by Azure
www.mwh.ie I
Greater Scalability
More RAM & CPU
Windows Server 2012/2012 R2
Standard and Datacenter
Windows Server 2016
Standard and Datacenter
VMware vSphere 6
Enterprise Plus
Physical (Host)
Memory Support
Up to 4 TB per
physical server
Up to 24 TB per
physical server (6x)
(12 TB for specific OEM certified platform)
Physical (Host) Logical
Processor Support
Up to 320 LPs
Up to 512 LPs
Up to 480 LPs
Virtual Machine
Memory Support
Up to 1 TB
per VM
Up to 12 TB
per VM (12x)
Up to 4TB
per VM
Virtual Machine Virtual
Processor Support
Up to 64
VPs per VM
Up to 240 VPs
per VM (3.75x)
Up to 128
VPs per VM
Capability
Up to 6 TB per physical server
www.mwh.ie I
www.mwh.ie
Hyper-V
Virtualization
New features
• Connected Standby support
• Discrete Device Assignments (DDA)
•
Used by Azure N-Series VMs
• VM version
•
•
WS2012 R2 is v5.0
WS2016 is v8.0
• Virtual machine binary configuration
•
•
Binary .VMCX instead of .XML
.VMRS instead of .BIN and .VSV
www.mwh.ie I
Demo
Nano Server
www.mwh.ie I
Nested Virtualization
New features
•
•
•
Fully supported feature
Enable Hyper-V inside a
VM
Requires host & VM to
run:
•
•
•
Great for:
•
•
•
•
Windows 10
WS2016
Learning
Demo
Training
Really for Hyper-V
containers
www.mwh.ie I
Nested Virtualization Notes
Things to know
• Restrictions:
•
•
•
•
•
Requires Intel VT-x and EPT
Windows 10 AU or WS2016 only
It might work with vSphere, but unsupported
Device Guard must be disabled
VMs with virtualization based security cannot do this
• The virtual host:
•
•
•
•
•
•
MAC spoofing enabled
Dynamic memory disabled
No runtime memory resizing
No Live Migration of virtual host
No checkpoints of virtual host
Must be on latest VM version (8.0)
www.mwh.ie I
Demo
Nested virtualization
www.mwh.ie I
www.mwh.ie
Security
Security
Protecting the cloud and tenants, offering trust
• Hypervisor has been
hardened
• Host Resource
Protection
•
•
•
•
•
From Azure
Linux secure boot
Credential Guard
Device Guard
Key Storage Drive for
Generation 1 VMs
www.mwh.ie I
Guarded Fabric
Trust for the tenant
•
•
Control where VMs can run
A new attestation service:
•
•
Host Guardian Service
•
•
•
Key/attestation service
Runs in dedicated physical
domain
Two models
•
•
•
Host must be authorized to start a
VM
Admin-trusted: easy to deploy &
good for PoC
TPM-trusted: more secure
TPM-trusted
•
•
HGS requires HSM
Hosts require TPM 2.0 and UEFI
2.3.1 with secure boot
www.mwh.ie I
Shielded Virtual Machines
Security for the tenant
•
•
Control who can see
inside your VMs
Shielded virtual
machines:
•
•
•
Virtual TPM: BitLocker that
you control
Optionally limit access to the
guest OS
Two levels of shielding:
•
•
Encryption supported: Trusted
admins
Shielded: Non-trusted admins
www.mwh.ie I
www.mwh.ie
Modern App Deployment
Containers
Operating system virtualization
•
A new way to deploy
services in a cloud
•
•
Instant deployment from
a repository
•
•
•
Meet demand immediately
Deployed in VM or on
physical machine
Windows Server
Containers
•
•
No longer 1 app per server
Shared kernel
Hyper-V Containers
•
Isolation via Hyper-V
www.mwh.ie I
www.mwh.ie
Operations
Operational Improvements
Day-to-day admin activities
• Hot Add/Remove of memory and virtual
NICs
• Hyper-V Manager slight improvements
• Integration services via Windows
Update
• VM version
• Resilient Change Tracking
•
•
In host RAM
Also on disk with VM
www.mwh.ie I
Demo
PowerShell Direct
www.mwh.ie I
www.mwh.ie
Storage
Storage
Virtual machine storage enhancements
• ReFS Accelerated VHDX Operations
•
•
•
Matured for data volumes
Recommended for Hyper-V
Faster VHDX operations – creation, checkpoint merge
• New Shared VHDX format
•
•
•
•
Host based backup
Hyper-V Replica
Online resizing of shared disk
Type specific extension: *.vhds
• Storage Replica
www.mwh.ie I
Storage Spaces Direct (S2D)
Storage Spaces without JBODs
•
•
Storage Spaces without
SAS hardware
Build a Scale-Out File
Server without:
•
•
•
•
S2D cluster:
•
•
•
•
•
SAS HBAs
SAS cables
JBODs
Servers with internal disks
Working as 1 storage system
CSVs span servers
Shared to Hyper-V hosts via
SMB 3.0
Use SATA disks to reduce
costs
•
•
Flash (SSD or NVMe):
persistent cache
SSD + HDD: mirror + parity for
performance + capacity
www.mwh.ie I
Hyper-Convergence
1 tier that includes compute, network, and storage
•
Classic virtualization
architecture:
•
•
•
•
•
If storage + compute = servers?
Hyper-converged infrastructure
•
•
•
•
Compute: Hyper-V
Network: iSCSI, FC(oE), SMB 3.0
Storage: SAN, SOFS
Flatten it all
1 tier of inter-connected servers
Includes storage in the servers
Simpler than you think:
•
•
•
CSVs deployed on Storage
Spaces
VMs are storage on CSVs
No file shares!
www.mwh.ie I
Checkpoints
Enabling DevOps
• Checkpoints (Hyper-V snapshots):
•
•
•
•
Were not supported in production
Were not backups!
Still aren’t backups!
Major cause of support tickets
• Production checkpoints
•
•
•
Uses backup features of Hyper-V
Supported in production
Restores the VM as if restored from backup
• Checkpoint merge
•
Near-instant if stored on ReFS
www.mwh.ie I
www.mwh.ie
Backup
Backup
Historically a source of issues in Hyper-V
• Several enhancements
• Resilient Change Tracking (RCT)
•
•
•
WS2016 Hyper-V does not need 3rd party filter
driver in the kernel of the host
Tracks block-level changes
Enables incremental backup of Hyper-V VMs
• Improved backup mechanism
•
•
•
Leverages production checkpoints
Should prove to be much more scalable
Recommend storing VMs on ReFS
www.mwh.ie I
www.mwh.ie
Networking
Networking
Cloud enhancements
• Network function virtualization
•
Moving appliances into the fabric
• Software-defined encapsulation
•
VXLAN supported added to NVGRE
• Network controller
•
•
•
New centralized management
Windows role
Ported from Azure
www.mwh.ie I
Virtual Switch Improvements
Switch Embedded Teaming and virtual (host) RDMA
Windows Server 2016
www.mwh.ie I
www.mwh.ie
High Availability
High Availability
Uptime = SLA = happy customers = happy boss = happy you
• Compute resiliency
• Ordered start of virtual machines
• Node fairness
www.mwh.ie I
Cluster Rolling Upgrade
Uptime = SLA = happy customers = happy boss = happy you
•
Huge amount of legacy
Hyper-V out there
•
•
•
•
No upgrade process
Too complicated/expensive to
migrate
“Upgrade” WS2012 R2
(only) to WS2016
Process:
1.
2.
3.
4.
5.
6.
7.
Drain host of VMs
Evict host from cluster
Rebuild host with WS2016 and
configure
Join rebuilt host to old cluster
Repeat steps 1-4 for each host
Upgrade cluster to WS2016
functional level
Upgrade VM Version
www.mwh.ie I
www.mwh.ie
Wrap Up
Aidan Finn
Thanks for attending!
@joe_elway
aidanfinn.com
@MWHDistribution
www.mwh.ie I