Windows Server 2012 R2 Investments - Center
Download
Report
Transcript Windows Server 2012 R2 Investments - Center
| Basel
Neue Möglichkeiten mit
Windows Server 2012 R2
Michael Faden
Technology Solution Professional – Datacenter
Microsoft Schweiz
Windows Server 2012 R2 Investments
Was ist neu bez. Virtualisierung?
Massive Scale
Extensible Switch
Live Migration
NIC Teaming
Generation 2 VMs
Virtual NUMA
ARP/ND Protection
LM with Compression
64 Node Clusters
Enhanced Session Mode
64TB VHDX File Format
Virtual Port ACLs
LM over RDMA
Enhanced Guest Clustering
VM Auto Activation
Online VHDX Resize
Trunk Mode to VMs
Storage Live Migration
Offloaded Data Transfer
Network Traffic Monitoring
Shared Nothing LM
Virtual Fiber Channel
vRSS & DVMQ
SR-IOV
Dynamic Memory
Resource Metering
Network QoS
Storage QoS
VM Live Cloning
PVLANS
Enhanced Linux Support
BitLocker Drive Encryption
Network Virtualization
Multi-Tenant HNV Gateway
Shared VHDX
Virtual Machine Monitoring
Cluster Aware Updating
Priority & Affinity
Windows Server Backup
Windows Azure Backup
Hyper-V Replica
Hyper-V Recovery Manager
New/Improved in
Windows Server 2012
R2
Massive scalability for the
most demanding workloads
Hosts
• Support for up to 320 logical processors
& 4TB physical memory per host
• Support for up to 1,024 virtual machines
per host
Clusters
• Support for up to 64 physical nodes &
8,000 virtual machines per cluster
Virtual Machines
• Support for up to 64 virtual processors and
1TB memory per VM
High levels of performance for
key Microsoft workloads
SQL Server 2012
• 64 vCPU support drove 6x performance
increase over previous version of Hyper-V
• 6.3% overhead compared with physical
Exchange 2013
• Virtualized 48,000 simulated users on a
single Hyper-V host across 12 VMs, with
low response times
SharePoint 2013
• Scaled to over 2 million heavy users at 1%
concurrency, across 5 VMs on a single
Hyper-V host
SharePoint
Workload
Scalability
Hyper-V Virtual
CPU Scalability
on Windows
2012 with
with OLTPServer
Workloads
Hyper-V
Online VHDX Grösse ändern
Online VHDX Resize provides
VM storage flexibility
Expand Virtual SCSI Disks
1. Grow VHD & VHDX files whilst attached
to a running virtual machine
2. Then expand volume within the guest
Shrink Virtual SCSI Disks
1. Reduce volume size inside the guest
2. Shrink the size of the VHD
or VHDX file while the VM is running
10 GB Unallocated
30 GB Primary Partition40GB Primary Partition
Expanded Virtual Disk & Volume without Downtime
Guest Clustering No Longer
Bound to Storage Topology
• VHDX files can be presented to multiple
VMs simultaneously, as shared storage
• VM sees shared virtual SAS disk
• Unrestricted number of VMs can
connect to a shared VHDX file
• Utilizes SCSI-persistent reservations
• VHDX can reside on a Cluster Shared
Volume on block storage, or on
File-based storage
• Supports both Dynamic and Fixed VHDX
Flexible choices for placement of Shared VHDX
Online Clonen von VM’s
Duplication of a Virtual
Machine while Running
Export a clone of a running VM
•
Point-time image of running VM
exported to an alternate location
•
Useful for troubleshooting VM
without downtime for primary VM
Export from an existing checkpoint
VM1 VM2
1
•
Export a full cloned virtual machine
from a point-in-time, existing checkpoint
of a virtual machine
2
•
Checkpoints automatically merged into
single virtual disk
3
4
User Initiates an export of a running VM
Hyper-V performs a live, point-in-time export of
the VM, which remains running, creating the new
files in the target location
Admin imports new, powered-off VM on the
target host, finalizes configuration and starts VM
With Virtual Machine Manager, Admin can select
host as part of the clone wizard
Live Migration Kompression
•
Utilizes available CPU resources on the
host to perform compression
•
Compressed memory sent across the
network faster
•
Operates on networks with less than 10
gigabit bandwidth available
•
Modified
Memory pages
Storage
Livecompressed,
migration
handle moved
setup
then transferred
MEMORY
Intelligently Accelerates Live
Migration Transfer Speed
Modified
memory
pages
Configuration
Memory
content
data
IP connection
Enables a 2X improvement in Live
Migration performance
iSCSI, FC or SMB Storage
•
SMB Multichannel uses multiple NICs for
increased throughput and resiliency
•
Remote Direct Memory Access delivers
low latency network, CPU utilization &
higher bandwidth
•
Supports speeds up to 56Gb/s
•
Windows Server 2012 R2 supports RoCE,
iWARP & Infiniband RDMA solutions
•
Delivers the highest performance for
Live Migrations
•
Cannot be used with Compression
Modified
Memory Storage
pages
Live migration
transferred
handle moved
setup
at high speed
MEMORY
Harness RDMA to Accelerate
Live Migration Performance
VMs built on Optimized,
Software-Based Devices
Ease of Management & Operations
•
PXE boot from Optimized vNIC
•
Hot-Add CD/DVD Drive
Dynamic Storage
•
VMs have UEFI firmware with support
for GPT partitioned OS boot disks >2TB
•
Faster Boot from Virtual SCSI with Online
Resize & increased performance
Security
•
Removal of emulated devices reduces
attack surface
•
VM UEFI firmware supports Secure Boot
Enhancing VMConnect for
the Richest Experience
Improved VMBus Capabilities enable:
•
Audio over VMConnect
•
Copy & Paste between Host & Guest
•
Smart Card Redirection
•
Remote Desktop Over VMBus
Enabled for Hyper-V on both Server
& Client
Fully supports Live Migration of VMs
Hyper-V Replica | Erweiterte Replication
Replicate to 3rd Location for
Extra Level of Resiliency
•
Once a VM has been successfully
replicated to the replica site, replica
can be replicated to a 3rd location
•
Chained Replication
•
Extended Replica contents match the
original replication contents
•
Extended Replica replication frequencies
can differ from original replica
•
Useful for scenarios such as SMB ->
Service Provider -> Service Provider DR
Site
Replication
canconfigured
be enabledfrom
on the
1st replica
to a 3rd site
Replication
primary
to secondary
DAS
Storage
Hyper-V Linux Support
Comprehensive feature
support for virtualized Linux
Significant Improvements in
Interoperability
•
Multiple supported Linux distributions
and versions on Hyper-V.
•
Includes Red Hat, SUSE, OpenSUSE,
CentOS, and Ubuntu
Comprehensive Feature Support
•
64 vCPU SMP
•
Virtual SCSI, Hot-Add & Online Resize
•
Full Dynamic Memory Support
•
Live Backup
•
Deeper Integration Services Support
Configuration
Store
Worker
Processes
WMI Provider
Management Service
Windows
Kernel
Virtual Service
Provider
Independent Hardware
Vendor Drivers
Hyper-V
Server Hardware
| Basel
Demo
Hyper-V Features
Generation 2 VM – Boot from PXE
Online VHDX Resize
Storage QoS
Shared VHDX
Enhanced Session Mode
Live Migration Settings
Was ist neu bez. Storage?
Storage Tiering
Live storage migration
Storage Spaces
Cluster Shared Volume 2
Thin and trim provisioning
Persistent write-back
cache
Data Deduplication
ODX
Windows PowerShell
Virtual Fibre Channel in
Hyper-V
SMI-S / SM-API
SC DPM
Windows Azure Backup
Windows Cluster in a Box
Mirrored and Parity
Storage Spaces
SC Management Packs
iSCSI Software Target
SMB application support
NFS enhancements
SMB Direct
VHDX online resize
Hyper-V Recovery
Manager
BPA
SC VMM Management
ReFS/NTFS enhancements
Storage QoS
SMB transparent failover
SMB Multichannel
New/Improved in
Windows Server
2012 R2
Was ist neu bez. Netzwerk?
Hyper-V Network
Virtualization
SMB Multichannel
SMB Direct
IP Address Management
Hyper-V Switch
Extensibility
DHCP Failover
Virtual RSS
Windows PowerShell
Multi-tenant S2S VPN
Gateway
QoS
NIC teaming
DVMQ
SR-IOV
Resource Metering
Network Management
with System Center VMM
Network Monitoring with
System Center Operations
Manager
Remote Live Capture
New/Improved in
Windows Server 2012 R2
Was bedeutet Software Defined Networking?
Enabling integrated policies that span physical
and virtual networks
Enables
software to
dynamically
manage the
network by:
Abstracting workloads from the physical
network
Controlling datacenter traffic flow
Hyper-V Netzwerk Virtualisierung
How network virtualization works
• Overlays multiple virtual networks on
shared physical network
Blue virtual
machine
Yellow virtual
machine
Blue network
Yellow network
• Uses industry standard General Routing
Encapsulation (NVGRE) protocol
Problems solved
• Creates VM mobility across datacenter,
hoster cloud or Azure without network
constraints
• Provides ability to import customer IP
addresses and network topology
• Helps remove VLAN constraints
• Helps eliminate hierarchical IP address
assignment for virtual machines
Physical server
Physical network
Multi-tenant VPN Gateway
Contoso
Fabrikam
Challenges
•
•
Internet
Hoster wants to provide isolated networks for tenant
VMs with integral S2S VPN and NAT
Enterprises have virtualized networks split across
different datacenters or virtualized networks (NVGRE
aware) communicating to physical networks (NVGRE
unaware)
Solution
•
Multi-tenant VPN
Gateway
•
Host Datacenter
Network Virtualization Fabric
Host
Bridge Between VM Networks
& Physical Networks
Host
•
•
•
•
Multi-tenant VPN gateway in Windows Server 2012 R2
Preview
Integral multitenant edge gateway for seamless
connectivity
Guest clustering for high availability
BGP for dynamic routes update
Encaps/Decaps NVGRE packets
Multitenant aware NAT for Internet access
NIC Teaming – Dynamisches Load Balancing
Maximizes resource utilization in
teamed NICs by balancing loads
across all NIC team members
Ideal when there are fewer
VMs per team
Virtual
adapters
Team network
adapter
Team network
adapter
Large TCP flow
Flowlet
Small TCP flow
Flowlet (swaps NICs)
Increased efficiency of network
processing on Hyper-V hosts
Without VMQ
• Hyper-V Virtual Switch is responsible for
routing & sorting packets for VMs
• This leads to increased CPU processing, all
focused on CPU0
With VMQ
• Physical NIC creates virtual network queues
for each VM to reduce host CPU
With Dynamic VMQ
• Processor cores dynamically allocated for a
better spread of network traffic processing
Virtuelles RSS
• vRSS provides near line rate to a VM on
existing hardware, making it possible to
virtualize traditionally network intensive
physical workloads
• Extends the RSS functionality built into
Windows Server 2012
• Maximizes resource utilization by
spreading VM traffic across multiple
virtual processors
• Helps virtualized systems reach higher
speeds with 40 Gbps and 100 Gbps NICs
• Requires no hardware upgrade and
works with any NICs that support RSS
vProc
vProc
vProc
vProc
vNIC
Node 2
Node 0
Node 1
0
1
2
3
0
1
2
3
Incoming
packets
Node 3
IP-Adressen Management (IPAM)
Network Administrator
Fabric Administrator
• Manages virtual address space in addition to
physical address space
System Administrator
Forensics Investigator
• Imports and exports network configurations
automatically through plugin for System Center
Virtual Machine Manager
• Enables synchronization of Active Directory
Sites and subnets information with IPAM
• Supports large scale enterprise deployments
• Uses SQL Server to store IP address information
• Lets admins define user roles, access scope and
access policy through role-based access control
Security Groups
Data collection tasks
Hyper-V Recovery Manager
Orchestrate protection and
recovery of private clouds
•
Protect important services by
coordinating replication and recovery of
VMM-managed private clouds
•
Automates replication of VMs within
clouds between sites
•
Hyper-V Replica provides replication,
orchestrated by Hyper-V Recovery
Manager
•
Can be used for planned, unplanned and
testing failover between sites
•
Integrate with scripts for customization of
recovery plans
Windows Azure
Hyper-V Recovery Manager
Hyper-V
Hosts
Hyper-V
Hosts
Replication
Channel
Datacenter 1
Datacenter 2
| Basel
Demo
Automation
Bare Metal Deployment
Hyper-V Recovery Manager
Was ist neu bez. Server Management und Automation?
Open Management
Infrastructure
Network Switch
management
Physical Server
management
Broader WS-Man
adoption
WMI
Desired State
Configuration
Declarative, repeatable
deployment
Defining exact
configuration of target
nodes
IPAM with virtual network
management
Essentials Experience
Declarative syntax
extensions
Schema validation
16 new modules
652 new cmdlets
3603 new parameters
New/Improved in
Windows Server 2012 R2
Open Managment Infrastructure
• New WMI provider API
(MI) with extended
Windows PowerShell
semantics.
• Open Management
Infrastructure (OMI) for
Linux and UNIX with the
same MI provider API.
Windows PowerShell
MI client API
Microsoft .NET MI API
Native MI API
WS-Man
protocol handler
Windows
MI
provider
Classic
provider
Linux/UNIX
MI
provider
Windows Management
Infrastructure
Open Management
Infrastructure
Any device
WS-Man
protocol handler
WS-Man
protocol handler
WS-Man
protocol handler
• Full implementation of
WS-Man on Windows
and Linux/UNIX.
• New MI client with
integrated Windows
PowerShell layer.
WS-Management
Microsoft Management Ansatz
Simplify and
lower the
cost of:
Instrumenting services and
devices for Windows—through
Windows Management
Infrastructure (WMI) providers.
Developing PowerShell
cmdlets in native code,
as CIM providers.
Use SMI-S to
manage external
storage arrays:
Standards-based way to
access and manage storage.
SMI-S service in the box for
easier storage discovery.
Use OMI to
manage network
switches:
Standards-based way
to access and manage
network switch.
OMI in the box for configuring
network switch.
Desired State Konfiguration
DSC
• Components of your data center
have the correct configuration.
• PowerShell language extensions and
providers which enable declarative,
repeatable deployment.
• Define the exact configuration of
target nodes (computers or devices)
and prevent “configuration drift.”
Was ist neu bez. Access & Information Protection?
Web Application Proxy
The Web Application
Proxy provides the
capability to publish
access to corporate
resources to external
and/or remote users.
IT can use the Web
Application Proxy to
authenticate users and
devices with multi-factor
authentication, and
publish access to
corporate resources
with conditional access
policies available to
validate the user and
their device
Active Directory
Federation Services
ADFS provides the ability to
configure conditional access
to claims based applications
and connect Active Directory
with other directories
including the cloud based
Windows Azure Active
Directory.
In conjunction with the Web
Application Proxy, conditional
access with multi-factor
authentication is provided on
a per-application basis,
leveraging user identity,
device registration & network
location. The Web Application
Proxy reads ADFS and makes
it very easy to publish
applications securely.
Workplace Join
Work Folders
Workplace Join is a feature that
allows BYOD devices to be
registered in Active Directory.
Work Folders provides
the ability to sync files
from a File Server to
user devices, regardless
of their location.
Users can register their BYO
devices for single sign-on and
access to corporate data using
Workplace Join. As part of this
registration process, a
certificate is installed on the
device, and a new device
object is created in Active
Directory. This device object
establishes a link between the
user and their device, making it
known to IT, and allowing the
device to be authenticated,
effectively a seamless 2nd
factor authentication.
IT can configure a File
Server to provide Work
Folder sync shares for
each user to store data
that syncs to all their
devices regardless of
location.
Was ist neu bez.VDI?
RDS Administration
• Built into mstsc
• Works with sessions and VMs
• Supports multi-mon remote
desktop and RemoteApp
In-place role service upgrade
• Allows custom authentication
schemes (e.g. two-factor)
• Supports launch from RDP
file/third-party browsers
• Live storage de-duplication
• Tiered storage support
RemoteApp and
Remote Desktop
• Full support for alpha
transparency
• Seamless window moves
and resizes
• Support for thumbnails,
aero peek and live taskbar
preview
• Improved app compatibility
with support for ClickOnce
apps
• Adapts to display changes
including rotation and
monitor addition/removal
• Easy touch keyboard access
• RemoteApp and Desktop
Connections
update/removal
Quick Reconnect
RemoteFX
Detect loss of
connectivity faster
RemoteFX Media
Streaming
Faster end to end
reconnect: down from up
to 70 seconds to less
than 10 seconds
Up to 50% bandwidth
reduction over WS12
Even faster in real-world
cases where UDP is
unavailable
Familiar and intuitive
RemoteApp reconnect
UX
RemoteFX Adaptive
Graphics
Lower bandwidth and
client CPU utilization
DirectX 11.1 support for
vGPU
| Basel
Demo
VDI by Microsoft
Server 2012 R2 Übersicht
HYPER-V
STORAGE
NETWORKING
POWERSHELL
AD / USER
BYOD
PS:
>
•
Online VHD Resize
•
Storage Spaces
•
Multi-Tenant GW
•
Workplace Join
•
V 4.0
•
VHDX Sharing
•
Storage Tiering
•
Dynamic LB
•
User Work Folders
•
DSC
•
GEN II VM
•
Write Back Cache
•
vRSS
•
Automatic VPN
•
~ 3500 CMDLETS
•
Live Cloning
•
Enhanced CSV Read
•
IPAM SCVMM
•
DC Cloning
•
Live Migration over
Cache
•
Enhanced vSwitch
•
SMB /RDMA
•
Online Dedup
Live Migration
•
SMB 3
Compression
•
ODX Support
•
Multi-Site Replica
•
Remote Console via
VMBus
•
Robust Linux Guest
Support
Port ACLs
•
Remote Network
Tracing
| Basel
Fragen…?