{"id":20508,"date":"2017-09-25T20:52:29","date_gmt":"2017-09-25T19:52:29","guid":{"rendered":"https:\/\/aidanfinn.com\/?p=20508"},"modified":"2017-09-28T11:12:43","modified_gmt":"2017-09-28T10:12:43","slug":"azure-compute-new-features-roadmap","status":"publish","type":"post","link":"https:\/\/aidanfinn.com\/?p=20508","title":{"rendered":"Azure Compute: New Features &amp; Roadmap"},"content":{"rendered":"<p>Speaker: Corey Sanders, Director of Compute, Azure, Microsoft<\/p>\n<p>Lots of stuff that hasn\u2019t been talked about yet.<\/p>\n<h2>Compute Through The Ages<\/h2>\n<p>Some old PCs, aa rack, a video of Monkey Boy doing developers developers developers, tablets, the cloud, and an alien (Quantum Computing).<\/p>\n<h2>Digital Transformation<\/h2>\n<p>Drink!<\/p>\n<ul>\n<li>Engage customers<\/li>\n<li>Transform products<\/li>\n<li>Empower employees<\/li>\n<li>Optimize operations<\/li>\n<\/ul>\n<h2>What\u2019s Important to You?<\/h2>\n<ul>\n<li>Security<\/li>\n<li>Availability<\/li>\n<li>Cost savings<\/li>\n<li>Automation<\/li>\n<li>Infrastructure \u2013 sounds like a dev audience based on the boos.<\/li>\n<li>Application PaaS<\/li>\n<li>Management<\/li>\n<\/ul>\n<h2>VM \u2013 Compute<\/h2>\n<ul>\n<li>ND (new) and NCv2 (next few weeks) have launched with P100 and P40 GPUs.<\/li>\n<li>Partial Core Alternatives for SQL\/Oracle. You can reduce the number of cores that you can see\/use in large VMs to get the other features of that VM, e.g. lots of RAM.<\/li>\n<li>B-Series burstable VMs with a baseline low CPU capacity. Earn credits by using under the baseline, and burn those credits by getting more CPU capacity.<\/li>\n<li>SAP system has 20 TB of RAM, 960 CPUs, 60 TB multi-node, bare-metal performance because these are bare metal machines.<\/li>\n<\/ul>\n<h2>VM Scale Sets<\/h2>\n<p>Up to 1000 VMs in a single manageable unit. Adding auto-OS update by the end of the year. IPv6 load balancer support. Zone redundant VMSS (availability zone automation).<\/p>\n<h2>Managed Disks<\/h2>\n<p>Abstract away the underlying storage. Data always encrypted at rest. Coming:<\/p>\n<ul>\n<li>Incremental snapshots<\/li>\n<li>Larger disk sizes<\/li>\n<li>Cross-subscription\/region sharing<\/li>\n<li>Private repository<\/li>\n<\/ul>\n<h2>Security<\/h2>\n<ul>\n<li>Unified visibility and control<\/li>\n<li>Adaptive threat detection<\/li>\n<li>Intelligent threat detection and response<\/li>\n<li>Investigation into security risks<\/li>\n<\/ul>\n<p>Announcements:<\/p>\n<p>Missed all this because of speaker speed.<\/p>\n<p>Demo:<\/p>\n<p>An alert of a suspicious process being executed. We can run a playbook from a list. They\u2019re logic apps under the covers. The playbook designer looks like Office Flow. Example shows message being posted in Teams and a ticket being posted in ServiceNow in the event of a high priority alert. He shows that he could post a message in Slack.<\/p>\n<h2>Accouncements<\/h2>\n<p>Confidential computing which uses Intel silicon to run bits of processes with secure data. This is built on WS2016 Hyper-V technology. This should be small bits of code because you cannot debug it because it\u2019s \u2026 secure.<\/p>\n<h2>Governance and Management<\/h2>\n<p>Lock down who\/what\/when.<\/p>\n<p>New policy management is announced this week. JSON policy is a lot easier now. CloudDyn is free in Azure.<\/p>\n<ul>\n<li>Azure Policy Center<\/li>\n<li>Management groups<\/li>\n<li>Managed Apps GA<\/li>\n<li>Update and Configuration Management<\/li>\n<li>\n<h2>Azure Policy Center<\/h2>\n<\/li>\n<\/ul>\n<p>Policy Center is in the Azure Portal. under Policy \u2013 Compliance. You can do things like \u201cDeny Hybrid Use Benefit\u201d or control VM extensions, control managed disk usage, restrict image creation, etc.<\/p>\n<p>Sample JSON policies are shard in GitHub.<\/p>\n<h2>Management Groups<\/h2>\n<p>Organizational alignment for Azure subscriptions. Targeted resource policy, access control and budgets. Compliance, security, and reporting by team.<\/p>\n<h2>Update, Configuration, And Change Tracking<\/h2>\n<p>Windows and Linux, Azure and non-Azure.<\/p>\n<p>Collect and search inventory. Track changes to each system. Autocorrect configuration.<\/p>\n<p>Schedule patching and check compliance.<\/p>\n<h2>Application Service Catalog GA<\/h2>\n<p>Turnkey for managed workloads. Sealed for simplified usage. Managed by central IT.<\/p>\n<h2>Availability<\/h2>\n<p>Different tiers: single VM, availability sets, availability zones, and DR.<\/p>\n<p>Availability Zones<\/p>\n<p>PowerShell in the Cloud Shell<\/p>\n<p>Azure Automation with Python.<\/p>\n<h2>Availability Zones<\/h2>\n<p>Physically separated unlike fault domains. Still in a single region. A zone is one or more data centres. Redundant power, network, and cooling. Reduce single points of failure in the platform. At GA, will offer 99.99% SLA over the 99.95% SLA with availability sets, or 99.9% SLA on single VMs with Premium-only storage.<\/p>\n<p>And then there is DR, to give you replication of VMs using Azure Site Recovery to another region.<\/p>\n<p>Cosmos DB, MySQL\/SQL\/PostGres, Blob storage, and VMs all have inter-region DR solutions.<\/p>\n<h2>Backup and DR<\/h2>\n<p>Backup in a single click with VMs. DR with Azure-to-Azure Site Recovery. Recovery Plans, with Automation, offer single-click orchestrated failover.<\/p>\n<h2>Maintenance<\/h2>\n<p>Currently it typically takes under 30 seconds to do maintenance on hosts in Azure \u2013 warm reboot of Hyper-V called in-place migration. They actually replace the entire host OS during patching!<\/p>\n<p>On-demand maintenance. 2-4 week notice window. You can do the reboot on your own schedule. Full reboot updates only. Demo.<\/p>\n<p>A notice appears (also email) to say a VM will be rebooted for host maintenance. You can click Start Maintenance, to move (reboot) the VM to a host that is already updated. It\u2019s in preview in West Central US.<\/p>\n<h2>Cost Savings<\/h2>\n<ul>\n<li>Track usage and cost trends (CloudDyn)<\/li>\n<li>Detect spending anomalies<\/li>\n<li>Allocate usage to business units<\/li>\n<li>Reduce cost of services<\/li>\n<\/ul>\n<p>Batch:<\/p>\n<ul>\n<li>Reserved instances on the way.<\/li>\n<li>B-Series VMs<\/li>\n<li>Batch VMs \u2013 all sizes in all regions, and mixe low and high priority VMs<\/li>\n<li>Pre-emptible VMs with up to 80% fixed \u2013 for non-critical VMs where MS can take resources back from you.<\/li>\n<\/ul>\n<h2>Future: Serial Console<\/h2>\n<p>This is experimental at the moment. A Serial Console is connected to a VM (RHEL). This is an interactive console, not just the screenshot of Diagnostics today. He is logged into RHEL in the VM. He then runs a reboot and watches the entire process, which we wouldn\u2019t have seen via SSH.<\/p>\n<p>This is Linux focused, but they\u2019re working with Windows to find a solution.<\/p>\n<h2>Containers &amp; Microservices<\/h2>\n<p>Azure Container Instances (ACI) are on the same level as VMs in Azure. Service Fabric and Kubernetes sit above them in management layer. Containers with Kubernetes are \u201cmanaged containers\u201d.<\/p>\n<p>Announcing: ACI on Windows and ACI on Service Fabric.<\/p>\n<p>40% of Service Fabric customers today are also deploying on-prem, and containers are the perfect compatible solution.<\/p>\n<p>He does a demo to deploy IIS on Nano Server in an ACI (normal Windows container) with a public IP address.<\/p>\n<p>Now a demo of ACI in service fabric. There\u2019s a JSON that specifies the container spec. He\u2019s using a tool called Service Fabric Explorer. He deploys a Linux container in the Service Fabric.<\/p>\n<h2>Service Fabric Ga for Linux<\/h2>\n<p>You can deploy Linux service plans. You can orchestrate on Linux or Windows. Run a million containers on a single cluster.<\/p>\n<h2>Azure Container Service for Kubernetes<\/h2>\n<p>You can provision Kubernetes very quickly and easily on Windows and Linux.<\/p>\n<p>Some investments on tooling \u2013 an acquisition of a company that sounds like Deus.<\/p>\n<p>Lots of partner solutions from the likes of Dicker Enterprise to manage on-prem and in the cloud with one experience. RedHat OpenShift to manage Kubernetes &amp; RHEL ACI hosts. Pivotal is designed to lift and shift Java applications to containers \u2013 Azure, on-prem, and other clouds.<\/p>\n<h2>App Services and Serverless<\/h2>\n<p>This is a layer above Service Fabric and Kubernetes. We can do this cluster-less (App Services) and server-less (Functions) or Logic Apps.<\/p>\n<p>Web Apps and Linux Containers are GA. You can integrate with Docker Hub and VSTS, and SSH into them.<\/p>\n<h2>Azure Event Grid<\/h2>\n<p>Treat events as first class objects. Things like Logic Apps and Functions start because of events. Many platforms don\u2019t treat events as first class. As first-class, the events can go anywhere, e.g. from Azure Storage to AWS Lambda. Your apps can listen for events, e.g. WebHooks, Azure Automation, Logic Apps, Functions.<\/p>\n<p>When an event happens, it goes into Event Grid. Then it can be directed to one of the above 4 services in Azure.\u00a0 From Logic Apps, you can integrate into lots of things like Twitter, Slack, SalesForce, etc, via Logic Apps\u2019 ability to do workflows.<\/p>\n<p>This is \u201cevent-driven computing\u201d.<\/p>\n<h2>More Announcements<\/h2>\n<ul>\n<li>Cosmos DB Trigger<\/li>\n<li>Microsoft Graph Bindings<\/li>\n<li>MacOS and Linus Local Development<\/li>\n<li>App Insights GA<\/li>\n<\/ul>\n","protected":false},"excerpt":{"rendered":"<p>Speaker: Corey Sanders, Director of Compute, Azure, Microsoft Lots of stuff that hasn\u2019t been talked about yet. Compute Through The Ages Some old PCs, aa rack, a video of Monkey Boy doing developers developers developers, tablets, the cloud, and an alien (Quantum Computing). Digital Transformation Drink! Engage customers Transform products Empower employees Optimize operations What\u2019s &hellip; <a href=\"https:\/\/aidanfinn.com\/?p=20508\" class=\"more-link\">Continue reading<span class=\"screen-reader-text\"> &#8220;Azure Compute: New Features &amp; Roadmap&#8221;<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":19832,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"om_disable_all_campaigns":false,"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"_uf_show_specific_survey":0,"_uf_disable_surveys":false,"footnotes":""},"categories":[14],"tags":[170,176,177,203,190,153],"class_list":["post-20508","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-eventnotes","tag-azure","tag-eventnotes","tag-events","tag-ignite","tag-security","tag-virtual-machines"],"aioseo_notices":[],"jetpack_featured_media_url":"https:\/\/aidanfinn.com\/wp-content\/uploads\/2016\/08\/Capture.png","amp_enabled":true,"_links":{"self":[{"href":"https:\/\/aidanfinn.com\/index.php?rest_route=\/wp\/v2\/posts\/20508","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/aidanfinn.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/aidanfinn.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/aidanfinn.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/aidanfinn.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=20508"}],"version-history":[{"count":15,"href":"https:\/\/aidanfinn.com\/index.php?rest_route=\/wp\/v2\/posts\/20508\/revisions"}],"predecessor-version":[{"id":20524,"href":"https:\/\/aidanfinn.com\/index.php?rest_route=\/wp\/v2\/posts\/20508\/revisions\/20524"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/aidanfinn.com\/index.php?rest_route=\/wp\/v2\/media\/19832"}],"wp:attachment":[{"href":"https:\/\/aidanfinn.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=20508"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/aidanfinn.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=20508"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/aidanfinn.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=20508"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}