How to alleviate the networking pain in hybrid cloud deployments
Limited Time Offer!
For Less Than the Cost of a Starbucks Coffee, Access All DevOpsSchool Videos on YouTube Unlimitedly.
Master DevOps, SRE, DevSecOps Skills!
Source – cloudcomputing-news.net
As cloud deployments have become more complex—with hybrid cloud environments growing in number and importance—networking technologies have not kept pace with advancements in cloud computing and storage. In fact, hybrid cloud networking has become a serious pain for enterprises across industries.
Fortunately, new approaches are emerging that will help IT teams better anticipate these issues, and to ultimately overcome the complexity and related project delays that currently plague them.
At a technical level, one problem is that on-premises, datacenter-based private cloud networks are built on complex, hardware-centric datacenter networking devices such as virtual local-area networks (VLANs), routing protocols, and private circuits. In contrast, public clouds such as Amazon Web Services (AWS) and Microsoft Azure provide virtual private cloud (VPC) and Internet-based connectivity that is dynamic, scalable, and elastic. But enterprises running multiple workloads on public clouds typically deploy each workload as an island in a separate VPC, generating a series of disjointed silos without any interconnection.
Networking alternatives offered so far—virtual routers, circuit-based approaches, home-grown legacy methodologies, or SD-WAN—fail to solve the fundamental challenge of enabling hybrid cloud networking to be as agile and elastic as cloud computing or cloud storage. These networking alternatives result in enterprises adding more expensive hardware, at times with reduced security, which impedes business agility and increases risk.
Clearly, enterprises need a modern approach to networking that is purpose-built for the cloud era.
Hybrid cloud ignores networking
Enterprises are turning to hybrid clouds, which integrate public and private cloud infrastructures, for reasons including application mobility between private and public clouds; on-demand access by DevOps to on-premises applications and data; and backup, disaster recovery, and high availability. As enterprises move more workloads to hybrid cloud infrastructures, they must be able to operate and manage their business applications regardless of the underlying network environment.
While the compute and storage aspects of the cloud have been made available as on-demand services, networking has not. This leaves many organisations struggling to extend traditional networking approaches to hybrid cloud. And it leaves DevOps teams, which are accustomed to moving at cloud speeds, unable to operate in hybrid cloud environments with the agility they require.
Managing traditional networking in the hybrid cloud today entails painstakingly slow, error-prone manual efforts. Connecting private clouds and public clouds involves multiple point-to-point networking and encryption technologies, including IPSEC VPN, SSL VPN, DirectConnect, ExpressRoute, and others. Coordinating these technologies adds complexity to the hybrid cloud network architecture and slows networking performance.
As a result, it can take several weeks to establish hybrid cloud connectivity. And even when the hybrid cloud is up and running, performing routine modify-add-delete change requests involves significant time and effort by highly skilled IT personnel.
For example, one Fortune 500 financial services enterprise ran into trouble when its strict change control processes collided with attempts to establish a hybrid cloud network. To get a connection to the cloud, it needed to open a ticket for the configuration change, review the ticket, test the change by networking experts, receive recommendations for the change, undergo review by the internal change review board, and schedule time to make the change. This process took months.
Traditional networking doesn’t scale in the hybrid cloud
Applying traditional networking technologies to hybrid cloud also requires deep networking technical skills, at a level that many companies lack, as well as coordination among multiple teams: networking, virtualization, cloud ops, security, compliance, etc.
Enterprise IT departments lacking the ability to seamlessly extend private cloud IP address spaces to the public cloud, or to securely connect the various clouds, can create hybrid cloud environments with gaps in end-to-end security. In addition, enterprises often find overlapping ranges between their assigned VPC and existing IP addresses. Sorting it out required one large enterprise to spend weeks performing IP management manually, using spreadsheets.
Not only is it impossible for IT to offer users the unified experience that hybrid cloud promises, current technologies prevent IT from operating with the speed or agility that developers demand from cloud environments, creating tension between IT and DevOps teams.
Because hybrid clouds currently consist of cobbled-together point tools and do it yourself scripts, scaling the hybrid cloud becomes very expensive. Operating costs rise exponentially as the hybrid cloud scales because there is no end-to-end network connectivity or performance visibility; no central location for logs and events; and no single console for controlling all the networking functions.
In the end, hybrid cloud implementations cannot deliver on the unified and agile experience that enterprises—or their DevOps teams, customers, or end users—expect from the cloud.
Overcoming cloud networking friction
Enterprises deploying a single application to a public cloud, or using an on-premises private cloud for all critical applications, might not notice networking issues. But as soon as an enterprise tries to run important applications in hybrid cloud environments, the challenges of networking across both public and private clouds become painfully obvious.
What’s needed is a new approach to networking developed specifically for the cloud: one that enables enterprises to set up and operate hybrid cloud networks that are secure, fast, and easy to implement; simple to operate; and far lower in cost and risk than existing technologies.
Such a purpose-built hybrid cloud network must:
- Be fully automated, so that even personnel without networking technical skills can deploy and manage hybrid cloud applications
- Connect clouds in minutes, not weeks, ideally using a browser-based interface and a few simple clicks
- Offer end-to-end security across private and public clouds
- Have centralised visibility across an enterprise’s entire hybrid cloud environment
- Use standard developer tools and work with all major cloud platforms
- Provide a software-only solution, so that enterprises need not invest in new networking equipment or reconfigure existing edge routers
Only a cloud networking approach built specifically for and from within the cloud can deliver hybrid cloud networking solutions able to overcome the friction of current hybrid cloud networking—so that enterprises can fully leverage the best of private and public cloud infrastructures while achieving the application flexibility and agility they need.