Dell EMC Cloud

Microsoft Azure Stack

Sirisak T.
Phinit L.
System Engineer -DellEMC
2
3
4
Introducing Microsoft Hybrid Cloud

Developers

Portal | PowerShell | DevOps tools Portal | PowerShell | DevOps tools

Azure Resource Manager Azure Resource Manager

CONSISTENCY
Azure IaaS | Azure PaaS
Compute | Networking | Storage
Azure IaaS | Azure PaaS
App Service | Functions

Cloud infrastructure
Cloud infrastructure
IT (Integrated systems)

Microsoft Azure Microsoft Azure Stack

Public On-premises

5
 One Azure Ecosystem

Azure services on-premises

use cases:
• Regulatory compliance

• Data sovereignty

• Data proximity

• Edge and disconnected

scenarios

6
7
8
Cyber Resilient Architecture

Protect A deep layer of defense built-in

Detect Identify breaches quickly

Recover Return to a trusted base rapidly

Retire Remove sensitive data instantly

I N T E G R AT E D S E C U R I T Y
9
Protect
Cyber Resilient Architecture

Secure from Factory to OS boot

Chain of trust rooted in silicon only allows

authenticated code to run. Prevent
inadvertent or malicious changes to
configuration or firmware settings.

I N T E G R AT E D S E C U R I T Y
10
Detect
Cyber Resilient Architecture

Detect drifts

Monitors for configuration or firmware drifts

away from baseline and provides
remediation with one click.

I N T E G R AT E D S E C U R I T Y
11
Recover
Cyber Resilient Architecture

Fix corrupted or damaged BIOS

BIOS image is recovered automatically

during the host boot process after the
BIOS corruption is detected.

I N T E G R AT E D S E C U R I T Y
12
Retire
Cyber Resilient Architecture

Erase storage securely

Retire or repurpose NVMe, SSD, and HDD

storage by securely erasing the data in
minutes rather than hours.

I N T E G R AT E D S E C U R I T Y
13
Innovative New Security Features in 14G
**** Secure Default
System Lockdown Hardware Root of Password
Trust
• Prevents against inadvertent
• Virtual lock for preventing • An immutable silicon-based root of exposure of new iDRAC’s on
configuration or firmware changes trust to securely boot iDRAC and unprotected networks
BIOS firmware
• Alerts when configuration or firmware • Encourages stronger password
deviates from baselines • Rapid recovery to a trusted image policies (rather than the tendency to
when authentication fails use generic default passwords)

Dynamic USB Port OS Image Rapid System Erase

Enable Recovery
• Allows USB port disable for normal • Quickly and securely erase internal
operation in secure environments • Allows booting of a trusted backup server storage devices including
OS image stored in hidden, protected HDD, SSD, and NVMe drives
• Dynamically can be unlocked via
storage • Wipe all user configuration and log
iDRAC authentication when needed
without rebooting the server file information

Internal Use - Confidential

14
15
 OpenManage Enterprise
Empowering IT with simplicity and intelligent automation

Intrinsic Simplicity Ubiquitous Extensibility

Intuitive dashboard and search Packaged as a virtual machine
engine enable IT optimization supporting Microsoft Hyper-V,
with minimal training or effort VMware ESXi and Linux KVM

Unifying Experience Intuitive Automation

Provides a single Reduces the time and effort
management layer for tower, needed to manage large
rack and modular platforms scale environments

Tablet/Smartphone integration via OpenManage Mobile

Based on Dell Internal Analyses 03/01/2017.

16 T H E B E D R O C K O F T H E M O D E R N D ATA C E N T E R
16
 Deployment Scenarios

17
 Disconnected Scenarios
I can run completely disconnected from the
internet where required.

Azure Stack

18
 Technical Overview

19
Dell EMC Ready System for Microsoft Azure Stack
Key design principles

Integrated system
Software Hardware

Support Services Closed system

Hyper-converged vs converged

Architecture, Deployment, Validation Monitoring,

hardware, and configuration, diagnostics Scale out building blocks
topology provisioning

Azure consistent management – No

System Center
Security and Business Patching and Field replacement
privacy continuity updating of parts

20
21
Logical architecture diagram

22
Azure Stack Architecture
Guest workload Storage Websites
blobs (.NET, PHP, Python … )
resources Virtual machines Service fabric
Virtual networks clusters
(IaaS + PaaS) (Linux or Windows)

End-user
experiences

Unified app Microsoft Azure

model Services

Core services
Subscriptions | RBAC | Gallery | Metrics | Usage
Extensible
service Additional
Additional services services
framework
Foundational services
Compute | Storage | Networking | Platform services

Cloud Infrastructure management Third-party

infrastructure services
Compute Storage Networking

24
 Single node dev/test for Microsoft Azure Stack
Dell EMC PowerEdge R640
Azure Stack admin & tenant experiences

The Dell EMC single-node Azure Stack is open to all DevOps/Infrastructure-as-Code with ARM templates
customers.
Try Web/Service Fabric services and others coming at GA
It will continue to be offered through the life of the
program to provide customers a way to purchase a
Azure Stack for the purposes of development and Visual Studio and PowerShell experience
testing.
Infrastructure-as-a-Service
It is not intended for use with production workloads.

Get started today with Azure Stack for PoCs and dev/test

25
Single-Node Dev/Test Configuration Options

Starter Edition PaaS Edition Developer Edition

Cloud Operator Experience Deploy PaaS Resource Providers Develop with PaaS Services
Infrastructure Management DevOps Tool Integration Apply DevOps Practices
Tenant IaaS Experience Prototype ARM Templates Prototype Applications

Cores: 8C, 16T Cores: 10C, 20T Cores: 12C, 24T

Memory: 96GB Memory: 192GB Memory: 384GB
SSD: 3 x 480GB SATA SSD: 3 x 480GB SATA SSD: 3 x 480GB SATA
HDD: 6 x 1TB SATA HDD: 6 x 1TB SATA HDD: 6 x 1TB SATA

26
 14g Scale Units
S\M\L Scale Units Flexible (capacity and perf) options per scale unit
Small: ~475 VMs Medium: ~1100 VMs Large: ~1750 VMs
HCI Node: Capacity configuration options
42 42 42 42

24 24
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 51 53
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 51 53

41 41 41 41 35 15 94 84 74 64 54 44 34 24 14 04 93 83 73 63 53 43 33 23 13 03 92 82 72 62 52 42 32 22 12 02 91 81 71 61 51 41 31 21 11 01 9 8 7 6 5 4 3 2 1

50 52 54
CISCO NEXUS 3172-10GE CISCO NEXUS 3172-10GE
50 52 54
14 14

Low: 12C/24T, 384G Mem, 5.7TB Cache, 40TB Data

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 51 53
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 51 53
45 25 05
E G01-2713 SUXEN OCSIC

40 40 40 40 35 15 94 84 74 64 54 44 34 24 14 04 93 83 73 63 53 43 33 23 13 03 92 82 72 62 52 42 32 22 12 02 91 81 71 61 51 41 31 21 11 01 9 8 7 6 5 4 3 2 1

50 52 54
CISCO NEXUS 3172-10GE CISCO NEXUS 3172-10GE
50 52 54
04 04
45 25 05
E G01-2713 SUXEN OCSIC

39 39 39 39

93 93
FAIL FAIL MGMT 0
1
FAIL FAIL MGMT 0
1
FAN CONSOLE FAN CONSOLE
STAT
STAT

38 OK OK 38 38 OK OK 38 1
0
TM GM LIAF
NAF
LIAF
ELOSNOC
TATS
ID STAT
ID STAT
N2200-PAC-400W N3K-C3048-FAN N2200-PAC-400W
N2200-PAC-400W N3K-C3048-FAN N2200-PAC-400W
83 KO KO 83
TATS DI

W004-CAP-0022N NAF-8403C-K3N W004-CAP-0022N

37 37 37 37

73 73

Mid: 16C/38T, 576G Mem, 11.5TB Cache, 80TB Data

36 36 36 36

63 63

35 35 35 35

53 53

34 34 34 34

43 43

33 33 33 33

33 33

32 32 32 32

23 23

31

30
31

30
31

30
31

30
13

03
13

03
High: 24C/48T, 768G Mem, 11.5TB Cache, 100TB Data
29 29 29 29

92 92

28 28 28 28
82 82

27 27 27 27
72 72

26 26 26 26
62 62

25 25 25 25
52 52

24 24 24 24
42 42

23 23 23 23
32 32

22 22 22 22
22 22

21 21
21 21
12 12

20 20
20 20
02 02

19 19
19 19
91 91

18 18
18 18
81 81

17 17
17 17
71 71

16 16
16 16
61 61

15 15
15 15
51 51

14 14
14 14
41 41

13 13
13 13
31 31

12 12
12 12
21 21

11 11
11 11
11 11

Available Professional Services

10 10
10 10
01 01

9 9
9 9
9 9

8 8
8 8
8 8

7 7
7 7
7 7

6 6
6 6

Developer Edition
6 6

5 5
5 5
5 5

4 4
4 4
4 4

2
3

2
3

2
3

2
3

2
3

2
Accelerator Services
1 1
1 1
1 1

Workshops and Implementation

Deployment
1xHCI node 4xHCI nodes 8xHCI nodes 12xHCI nodes
• Cores: 20-24 • Cores: 96-192
Integration and Implementation
• Cores: 192 – 384 • Cores: 288 – 576
• Mem: 96-384GB • Mem: 1.5TB – 3TB • Mem: 3TB – 6TB • Mem: 4.6TB – 9.2TB
• Cache: 1440 GB • Cache: 23 TB- 46TB • Cache: 46 TB- 92TB • Cache: 68 TB- 138TB
Support
• Data: 6TB • Data: 160TB – 400TB • Data: 320TB – 800TB • Data: 320TB – 1200TB
3 Available Configs 2x10GbE TOR 2x10GbE TOR 2x10GbE TOR
✓ Starter Edition 1x 1GbE Mgmt 1x 1GbE Mgmt 1x 1GbE Mgmt
✓ PaaS Edition 1x R640 Mgmt Node 1x R640 Mgmt Node 1x R640 Mgmt Node
Included: Services (Integration and Implementation), Software
✓ Developer Edition N+2 Redundancy N+2 Redundancy N+2 Redundancy

Note: VM sizes based on Azure D1 V2 VMs assuming 4:1 VCPU:CPU ratio

27 Note: Capacities based on Raw
14G Server Node Config
Configurations Low Capacity Mid Capacity High Capacity

Processor Model 5118 - 12 core/socket Model 6130- 16 core/socket Model 8160 - 24 core/socket
2.3Ghz 2.1Ghz 2.1Ghz

Memory 384 GB 576GB 768GB

Cache 6 x 960/800GB SSD = ~5.7TB 6x.1.6/1.92TB SSD = ~11.5TB 6x1.6/1.92TB SSD= ~11.5TB
SAS SAS SAS

Storage (HDD) 10 x 4TB = 40TB 10x8TB=80TB 10X10TB=100TB

TORs 2x Dell Networking S4048 10GbE/1x Dell Networking S3048 1GbE

Network Adapter Mellanox Connectx-4 Dual Port NDC

Border Switch NA

Management Node Dell PE R640 (At least 16C, 128GB Mem, OS+ Data 2 x 1920GB 2.5” MU SSD)

28
14G SOLUTION-LEVEL POWER THERMAL & ACOUSTIC SUMMARY

SCALE UNIT CONFIGURATION 4 NODE 8 NODE 12 NODE 16 NODE*

Configuration Totals for 220 AC Input Voltages and 25 °C
INPUT POWER LOW 3267.6 watts (11149.5 5307.6 watts (18110.3 7347.6 watts (25071.1 9387.6 watts (32031.8
btu/h) btu/h) btu/h) btu/h)
MID 3507.6 watts (11968.4 5787.6 watts (19748.1 8067.6 watts (27527.8 10347.6 watts (35307.5
btu/h) btu/h) btu/h) btu/h)
HIGH 3735.6 watts (12746.4 6243.6 watts (21304.0 8751.6 watts (29861.7 11259.6 watts (38419.3
btu/h) btu/h) btu/h) btu/h)
AIRFLOW RATE LOW 75.9 l/s (160.9 CFM) 135.8 l/s (287.7 CFM) 195.6 l/s (414.5 CFM) 255.5 l/s (541.3 CFM)

MID 78.6 l/s (166.5 CFM) 141.1 l/s (298.9 CFM) 203.6 l/s (431.3 CFM) 266.0 l/s (563.7 CFM)

HIGH 81.2 l/s (172.1 CFM) 146.4 l/s (310.1 CFM) 211.5 l/s (448.1 CFM) 276.6 l/s (586.1 CFM)

INPUT CURRENT LOW 14.7 amps 23.9 amps 33.1 amps 42.3 amps

MID 15.9 amps 26.3 amps 36.7 amps 47.1 amps

HIGH 16.7 amps 27.9 amps 39.1 amps 50.3 amps

SOUND POWER LOW 7.6 bels 7.6 bels 7.7 bels 7.8 bels
LEVEL MED 7.6 bels 7.7 bels 7.7 bels 7.8 bels

HIGH 7.6 bels 7.7 bels 7.8 bels 7.9 bels

WEIGHT 154.3 kg (340.2 lbs.) 286.7 kg (632.1 lbs.) 419.1 kg (924.0 lbs.) 551.5 kg (1215.8 lbs.)

*Denotes future configuration option (not available at GA)

29
Hyper-converged scale units
MINIMUM MAXIMUM
The current available sizing is in scale
12 Nodes units of 4, 8, 12 nodes.

Customers should plan for 12 months

8 Nodes of resources to meet their workload
needs.
4 Nodes
Azure Stack upgrades must be
upgraded homogenous in 4 node
increments.

The fundamental building block for Azure Stack

30
Services for your
Understanding howentire
Azurecloud journey
Stack scales

Example: Global enterprise or service provider

Resource Manager
Portal /Azure
1 One cloud “endpoint”

Resource management
2 Multiple
Single region
regions (Future)
Region 1 Region 2 Region 3

3 Multiple
Single scale
scaleunit
units per region (Future)

*Initially one region and one scale unit per region, future will support multiples
31
Software defined storage architecture
Virtual Machines
• Storage Spaces Direct
- Single scalable pool with all disk devices Scale-Out File Server
(except boot)
- Multiple virtual disks per pool (3-way Mirror) CSVFS Cluster File System
• Software Storage Bus
ReFS On-Disk File System
- Storage Bus Cache (Cache ratio target is 6 –
10% for WI SSDs and greater than 10% for Storage Spaces Virtual Disks
MU SSDs)
Storage Spaces Storage Pool
- Leverages SMB3 and SMB Direct
Software Storage Bus
• Servers with local disks
- Dell HBA330 Mini Integrated Storage
Controller
- Samsung or Intel SSDs

32
Software defined and physical network architecture
To aggregation layer /
Infrastructure subnet border layer

Storage subnet

Dell EMC Networking S3048-ON OOB

Dell EMC Networking S4048-ON ToR
Dell EMC Networking S4048-ON ToR
Storage 1 Hardware Lifecycle Host - PowerEdge R640
Storage 2 Hyper-V
Host Mgmt NIC
HNV PA TEAM ToR
Transit
Public VIPs subnet
Public VIPs subnet iDRAC
Hyper-V
NIC OOB
HLH Scale unit hosts
iDRAC PowerEdge R740xd
PowerEdge R740xd
iDRAC Subnet PowerEdge R740xd
Switch management Subnet PowerEdge R740xd

33
Key networking design considerations
Dell EMC networking supports Azure Stack configurations

• Mellanox PCIe Ethernet Adapter in Host

– Dual-port 10 GbE
– RDMA for storage performance
– Offload and converged capabilities on the adapter

• Dell EMC Networking S4048-ON and S3048-ON support

for Azure Stack requirements:
– Use BGP to discover SLB subnets on the physical
network (or static routes can be employed)
– Data Center Bridging (DCB) to ensure QoS on
converged fabric
› Enhanced Transmission Selection (ETS)
› Priority-based Flow Control (PFC)
– Segment OOB management traffic

3 Connections - BGP, Syslog and SNMP

34
Hardware Lifecycle Host
42 42

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 51 53

41 41
50 52 54
CISCO NEXUS 3172-10GE

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 51 53

40 40

Serves 3 Functions
50 52 54
CISCO NEXUS 3172-10GE

39 39

FAIL FAIL MGMT 0

1
FAN CONSOLE
STAT

38 OK OK 38
ID STAT

N2200-PAC-400W N3K-C3048-FAN N2200-PAC-400W

37 37

36 36

•
35 35

34

33
34

33
Initial software deployment of Azure Stack
32 32

31

30
31

30
cluster
29 29

28 28

•
27 27

26

25
26

25
Subsequent patch and update orchestration
and deployment
24 24

23 23

22 22

21 21

20 20

•
19 19

18

17
18

17
Hardware monitoring via Dell EMC Open
Manage Essentials and Network Manager
16 16

15 15

14 14

13 13

12 12

11 11

10 10

9 9

8 8

7 7

6 6

5 5

4 4

3 3

2 2

1 1

*Includes Windows 2016 Data Center

35
Hardware monitoring and alerting
Azure Stack Health and Alerts
Alerts generated from:
• Internal Health Services
• System Health Tests

Compute and Storage Health

and Alerts
• Out of Band monitoring
• Devices and Components
Open Manage Essentials

Networking Health and Alerts

Open Manage Network Manager

Agentless monitoring of hyper-converged hardware using BMC Solution

dependent on hardware vendor.
36
Maintainability: Patch & Update

• Pre-validated updates for

software and firmware by
Microsoft and partners.

• Rapid cadence of delivery,

customer chooses when to
apply. (3 months window)

• Automated application of
updates across entire
infrastructure.

37
 Security & Compliance

38
Security Principles: Hardened by Default
• Data at rest encryption

• Network encryption

• Strong authentication between infrastructure components

• Security OS baseline

• Disabled legacy protocols (e.g. NTLM)

• HW security features (e.g. TPM, secure boot, UEFI)

• Windows Server 2016 security features

• Credential Protection (Credential Guard)
• Code Integrity (Device Guard)
• Antimalware (Windows Defender)

39