Search icon CANCEL
Subscription
0
Cart icon
Your Cart (0 item)
Close icon
You have no products in your basket yet
Arrow left icon
Explore Products
Best Sellers
New Releases
Books
Videos
Audiobooks
Learning Hub
Conferences
Free Learning
Arrow right icon
The Ins and Outs of Azure VMware Solution
The Ins and Outs of Azure VMware Solution

The Ins and Outs of Azure VMware Solution: Deploy, configure, and manage an Azure VMware Solution environment

Arrow left icon
Profile Icon Kevin Jellow
Arrow right icon
$19.99 per month
Full star icon Full star icon Full star icon Full star icon Full star icon 5 (4 Ratings)
Paperback Jan 2023 328 pages 1st Edition
eBook
$9.99 $41.99
Paperback
$51.99
Subscription
Free Trial
Renews at $19.99p/m
Arrow left icon
Profile Icon Kevin Jellow
Arrow right icon
$19.99 per month
Full star icon Full star icon Full star icon Full star icon Full star icon 5 (4 Ratings)
Paperback Jan 2023 328 pages 1st Edition
eBook
$9.99 $41.99
Paperback
$51.99
Subscription
Free Trial
Renews at $19.99p/m
eBook
$9.99 $41.99
Paperback
$51.99
Subscription
Free Trial
Renews at $19.99p/m

What do you get with a Packt Subscription?

Free for first 7 days. $19.99 p/m after that. Cancel any time!
Product feature icon Unlimited ad-free access to the largest independent learning library in tech. Access this title and thousands more!
Product feature icon 50+ new titles added per month, including many first-to-market concepts and exclusive early access to books as they are being written.
Product feature icon Innovative learning tools, including AI book assistants, code context explainers, and text-to-speech.
Product feature icon Thousands of reference materials covering every tech concept you need to stay up to date.
Subscribe now
View plans & pricing
Table of content icon View table of contents Preview book icon Preview Book

The Ins and Outs of Azure VMware Solution

Introduction to Azure VMware Solution

Azure VMware Solution (AVS) is a first-party Microsoft Azure service developed in conjunction with VMware that provides a familiar vSphere-based, single-tenant private cloud on Azure that is like the one used by VMware. The VMware technology stack consists of the following components: vSphere, NSX-T, vSAN, and HCX. AVS is installed on a dedicated infrastructure in Azure data centers and runs natively on that infrastructure. In comparison to existing on-premises VMware infrastructures, AVS provides a consistent and well-known user experience. Customers may deploy an AVS environment in a matter of hours and migrate Virtual Machine (VM) resources in a matter of minutes. Microsoft supplies all the networking, storage, management, and support services that are required.

The following diagram depicts connectivity between your private cloud (on-premises infrastructure) and Microsoft Azure via an ExpressRoute running your AVS private cloud, as well as other Azure-native services:

Figure 1.1 – Connectivity relationship between your private clouds and AVS VNets

Figure 1.1 – Connectivity relationship between your private clouds and AVS VNets

In this chapter, we’re going to cover the following main topics:

  • Network connectivity to AVS
  • AVS high-level architecture
  • Use cases for AVS in the enterprise
  • Enterprise-scale for AVS
  • Network and connectivity topologies
  • Identity and access management
  • Business continuity and disaster recovery
  • Security, governance, and compliance
  • Management and monitoring

Network connectivity to AVS

AVS provides a private cloud environment that can be accessed from both on-premises and Azure-based infrastructure resources. The connectivity is provided by utilizing Azure ExpressRoute, Virtual Private Network (VPN) connections, or Azure Virtual WAN.

However, to make these services available, specific network address ranges and firewall ports must be configured.

When a private cloud is deployed, private networks are formed for management, provisioning, and vMotion. These private networks will be used to connect to vCenter and NSX-T Manager, as well as to perform virtual machine vMotion and deployment. The private network must use a /22 CIDR notation. This /22 is only used for the management components and not for your workload segments. You will need additional networks for your workloads.

It is possible to link private clouds to on-premises systems using ExpressRoute Global Reach. It establishes direct connections between circuits at the Microsoft Enterprise Edge (MSEE). Your subscription must have a Virtual Network (VNet) with an ExpressRoute circuit to on-premises for the connection to work. The reason for this is that VNet gateways (ExpressRoute gateways) are unable to transfer traffic across circuits. This means that you can connect two circuits to the same gateway, but the traffic will not be transferred from one circuit to another.

Each AVS environment is its own ExpressRoute region (and, thus, its own virtual MSEE device), which allows you to connect Global Reach to the “local” peering location by creating a virtual MSEE device for each environment. The ability to connect several AVS instances in a single region to the same peering location is provided by this feature.

AVS hosts, clusters, and private clouds

AVS private clouds and clusters are constructed on top of a hyper-converged Azure infrastructure host. These hosts are dedicated bare metal. At the time of writing, the High-End (HE) hosts have 576 GB of RAM and dual Intel 18 Core 2.3 GHz CPUs. In addition, the hosts are equipped with two vSAN disk groups, each of which contains a raw vSAN capacity layer of 15.36 TB (SSD) and a 3.2 TB (NVMe) vSAN cache tier. See the following hardware and software configurations:

AVS Software Specification

ESXi – 7.0U3c Enterprise Plus.

vCenter – 7.0U3c Standard.

vSAN – 7.0U3c Enterprise.

NSX-T – 3.1.2 Datacenter.

HCX Advanced.

HCX Enterprise is also available. Submit a Microsoft support ticket to get an upgrade.

Table 1.1 – AVS software specification

Figure 1.2 – AVS hardware SKUs

Figure 1.2 – AVS hardware SKUs

Creating new private clouds can be done through the Azure site, the Azure CLI, or automated deployment scripts.

There is a minimum of 3 nodes per vSphere cluster, and a maximum of 16 nodes per vSphere cluster, 12 clusters per private cloud instance, and a maximum of 96 nodes per Azure private cloud instance. You can review the Microsoft documentation at this link for more information: https://docs.microsoft.com/en-us/azure/azure-vmware/concepts-private-clouds-clusters#clusters.

As you can see from the preceding information, you can scale your private cloud to meet your workload demands.

AVS high-level architecture

AVS provides a private cloud environment that can be accessed from both on-premises and Azure-based infrastructure. Connectivity includes services such as Azure ExpressRoute, VPN connections, and Azure Virtual WAN.

Specific network address ranges and firewall ports, on the other hand, are required for these services to be enabled.

A private cloud is deployed, and private networks are constructed for management, provisioning, and VM movement (vMotion).

These private networks will be used to connect to vCenter and NSX-T Manager, as well as for VM vMotion and deployment. You can review the Microsoft documentation at this link for more information: https://learn.microsoft.com/en-us/azure/azure-vmware/tutorial-network-checklist#routing-and-subnet-considerations. A connection between private clouds and on-premises settings is made possible through the usage of ExpressRoute Global Reach. Global Reach establishes direct connections between Azure ExpressRoute circuits at the MSEE level. An ExpressRoute circuit to on-premises is required for the connection, which is included in your subscription with a VNet. The reason for this is that VNet gateways (ExpressRoute gateways) are unable to transfer traffic between circuits. This implies that you can connect two circuits to the same gateway, but the traffic will not be transferred from one circuit to the other.

Each AVS environment is deployed with its own 10 GB ExpressRoute circuit (and, thus, its own virtual MSEE device), which allows you to connect Global Reach to the “local” peering location by creating a virtual MSEE device in each environment. It enables you to connect several AVS instances in a single region to the same peering site by using a VNet interface.

See the following high-level AVS networking overview:

Figure 1.3 – An overview of high-level AVS networking

Figure 1.3 – An overview of high-level AVS networking

The preceding diagram shows the logical connections between AVS and the customer’s on-premises data center. It also shows the connection between AVS and Azure. Global Reach is used to connect two or more ExpressRoute circuits.

Use cases for AVS in an enterprise

You can migrate your VMware workloads from your on-premises data center to AVS and integrate additional Azure services with ease, using the same VMware tools that you are already familiar with. However, while there are other advantages, we’ve identified the top five reasons why AVS is proving to be the most cost-effective path to the cloud for many enterprises.

Data center footprint deduction, consolidation, and retirement

Nowadays, we see many customers reducing their on-premises data center footprint for many reasons, including cost, eschewing the management of data centers, and focusing more on their business.

AVS helps customers reduce the size of their data center’s footprint by redeploying their VMware-based VMs on a one-time basis.

The vSphere-based workloads can be migrated to AVS in a non-disruptive, automated, scalable, and highly available manner without having to change the underlying vSphere hypervisor.

Data center expansion based on demand

Customers are now able to increase their data center capacity in a seamless and elastic manner, while also adjusting their cost on demand for short periods of time. We see this kind of need in a logistic business, where customers need to increase their data center capacity for a period and then decrease that capacity once it is no longer needed.

Disaster recovery and business continuity

AVS can be used as a primary or secondary on-demand DR site for on-premises data center infrastructure by customers who require a backup data center in the cloud.

Speed and simplification of migration/hybrid cloud

AVS has proven to be one of the most efficient and straightforward methods of getting started on Azure without having to make any changes to your existing apps or servers.

AVS is very cost-effective

When it comes to running VMware apps on Windows Server and SQL Server, AVS is the most cost-effective option. If you use your on-premises data center effectively, you can save money by not having to purchase multiple licenses for both on-premises and cloud applications. When you migrate to AVS, you will receive 3 years of free Extended Security Updates (ESU) for Windows and SQL Server 2008/2008R2/2012.

Enterprise-scale for AVS

Enterprise-scale for AVS is a collection of open source templates of Azure Resource Manager and Bicep that can be used with AVS planning and deployment. You can think of it as a roadmap for how to build a scalable AVS for future growth. This open source solution gives you an example of how to set up Azure landing zone subscriptions for a scalable AVS. It also gives you an example of how to set up the subscriptions. The architecture and best practices of the Cloud Adoption Framework’s Azure landing zones are used in the implementation, with a focus on the design principles of a large-scale deployment.

If you want to make your landing zone more efficient, you should think about how to make it more scalable. It is important for your organization to follow this advice when it comes to making design decisions because this will help it to grow.

There are many ways for people to use AVS, and they all work well. It’s possible to use the enterprise-scale option for your AVS set to build a structure that works for you and puts your organization on a path to long-term growth.

To assist you with your AVS setup, enterprise-scale for AVS offers the following resources:

  • Customizable environment variables that can be implemented using a modular method
  • Helpful recommendations to assess the most important decisions
  • A landing zone design that you can use for reference to set up your AVS deployment
  • A deployment that includes the following:
    • A reference architecture to deploy your AVS environment
    • A reference architecture approved by Microsoft

Prerequisites for the implementation of the enterprise-scale landing zone for AVS

The AVS construction set is based on the fact that you’ve already set up an enterprise-scale landing zone. If you want to learn more about enterprise-scale landing zones, check out the following:

There are multiple design guidelines that you will need to go through when creating your landing zone for AVS. The following is a list of areas that you will need to focus on when creating an AVS enterprise-scale landing zone:

  • Network and connectivity topology
  • Identity and access management
  • Business Continuity and Disaster Recovery (BCDR)
  • Security, governance, and compliance
  • Management and monitoring
  • Platform automation

Let us dig a bit deeper into these design areas to provide you with some more detailed information.

Network and connectivity topologies

For both cloud-native and hybrid scenarios, implementing a VMware Software-Defined Data Center (SDDC) with the Azure cloud ecosystem has some unique design challenges to think about when planning for your deployment. Some of these challenges are outlined as follows:

  • Hybrid connectivity: This is the connectivity between your on-premises environment and your AVS. This is where you will need to look at what connectivity method you are currently using to connect your on-premises data center to Azure if you already have a presence in Azure. If there is no existing connectivity make sure you understand what the options are (ExpressRoute, S2S VPN, or SDWAN). We will dive deeper into these areas in a later chapter.
  • Reliability and performance: This is very important as you will need to have consistent and low latency for your workloads. You will also need to design for scalability for future growth.
  • A zero-trust network security model: Security should be the heart of every solution that you implement in Azure, and AVS is no exception. You will need to plan for security for your network perimeter, and for traffic inspection for ingress and egress flows.
  • Extensibility: Your network footprint should be easily extended without the need for a redesign. This is very important as your AVS needs grow.

We will now review the various network traffic flows within the AVS architecture between AVS, Azure-native services, and a customer’s on-premises environment:

  • AVS without any connectivity:
Figure 1.4 – An overview of AVS deployment without any connectivity

Figure 1.4 – An overview of AVS deployment without any connectivity

The preceding diagram shows AVS deployment without any connectivity to Azure or the customer’s on-premises data center.

  • AVS with Global Reach enabled:
Figure 1.5 – An overview of a BGP traffic flow to on-premises

Figure 1.5 – An overview of a BGP traffic flow to on-premises

The preceding diagram shows a BGP traffic flow (blue dotted arrows) from AVS to the customer’s on-premises data center. BGP traffic will flow between both environments once Azure Global Reach is enabled.

  • AVS with Global Reach enabled – BGP traffic flowing to Azure from AVS:
Figure 1.6 – The BGP traffic flow from AVS to Azure-native services through the customer MSEE

Figure 1.6 – The BGP traffic flow from AVS to Azure-native services through the customer MSEE

The preceding diagram shows the BGP traffic flow from AVS to Azure-native services through the customer’s MSEE. BGP traffic will flow between both environments once Azure Global Reach is enabled.

  • AVS connection between AVS and Azure-native:
Figure 1.7 – The BGP traffic flow from AVS to Azure-native services through the customer’s ExpressRoute gateway

Figure 1.7 – The BGP traffic flow from AVS to Azure-native services through the customer’s ExpressRoute gateway

The preceding diagram shows the BGP traffic flow from AVS to Azure-native services through the customer’s ExpressRoute gateway. This connection is only to Azure services and not to the customer’s on-premises environment.

  • Internet traffic flow from AVS via a vWAN:
Figure 1.8 – Internet traffic flow from AVS via a secure Azure Virtual WAN

Figure 1.8 – Internet traffic flow from AVS via a secure Azure Virtual WAN

The preceding diagram shows internet traffic flow from AVS via a secure Azure Virtual WAN.

  • Internet traffic flow from AVS via an Azure Route Server and a Network Virtual Appliance (NVA):
Figure 1.9 – Internet traffic flow from AVS via an NVA

Figure 1.9 – Internet traffic flow from AVS via an NVA

The preceding diagram shows internet traffic flow from AVS via an NVA.

  • Internet traffic flow from AVS via the customer on-premises firewall:
Figure 1.10 – Internet traffic flow from AVS via the customer’s on-premises infrastructure

Figure 1.10 – Internet traffic flow from AVS via the customer’s on-premises infrastructure

The preceding diagram depicts internet traffic flow between AVS and the customer’s on-premises infrastructure, flowing through their firewall.

Identity and access management

There are different identity requirements for AVS based on how it’s set up in Azure. AVS comes with a built-in user called cloudadmin in the new environment’s vCenter. This user has been given the CloudAdmin role, which gives them a lot of power in vCenter. It’s also possible to set up new roles in your AVS environment using the principle of least privilege:

  • Active Directory Domain Services (AD DS): It is highly recommended to deploy an AD DS domain controller in your identity subscription in Azure. This will help with users’ authentication in Azure instead of this request being made back in the customer’s on-premises environment.
  • Least-privilege roles: Allow only a small number of people to have the CloudAdmin role. When assigning users to AVS, use custom roles and as few permissions as possible.
  • Resource-based access control: People who need to manage AVS should only have Role-Based Access Control (RBAC) permissions for the resource group where AVS is installed, and for delegated users who need to manage it.
  • vSphere permissions: Only set up vSphere permissions with custom roles at the top level if you need to. It’s better to give permissions to the right VM folder or resource pool. In general, do not apply any kind of vSphere permissions at or above the level of the data center.
  • Active Directory sites and services: Ensure that Active Directory sites and services are configured with the appropriate and respective client IP subnets to provide a better authentication experience when attempting to locate the nearest domain controller.
  • Active Directory groups: When you set up groups in Active Directory, you can use RBAC to manage vCenter and NSX-T. You can make your own roles and assign them to Active Directory groups.

Business continuity and disaster recovery

Implementing a BCDR solution is very important for all organizations. Businesses need to be able to continue functioning in case of any disruption to day-to-day operations. AVS is no exception.

It is important for an organization and its enterprise application workloads to meet their Recovery Time Objective (RTO) and Recovery Point Objective (RPO) goals. Effective BCDR design meets these needs at the platform level. To figure out how to build DR capabilities, you need to know what your platform needs.

Even though AVS provides one or more private clouds that have vSphere clusters, built from dedicated hardware, a robust BCDR solution is highly recommended.

Design considerations for AVS BC

Choose a backup solution that has been proven to work for VMware VMs, such as Microsoft Azure Backup Server (MABS) or from one of the backup service providers. Some of the backup solutions for AVS are listed as follows:

  • MABS:
    • When you set up MABS, make sure it is in the same Azure region as your AVS private cloud. This method saves money on traffic costs, makes it easier to manage, and keeps the primary/secondary topology the same.
    • There are two ways to run MABS: you can run it as an Azure VM in your Azure-native environment, or you can run it on an Azure VM within your private cloud. It’s very important to put it outside of the AVS private cloud and into a VNet that has connectivity to AVS via ExpressRoute.
    • To get help restoring from a backup for parts of the AVS platform, such as vCenter, NSX Manager, or HCX Manager, you will need to create an Azure support request.
  • Cohesity
  • Dell Technologies
  • Rubrik
  • Veritas
  • Veeam
  • Commvault

Design considerations for AVS DR

The options for designing AVS DR are listed as follows:

  • Make sure that the business needs match up with the recovery time, capacity, and recovery point goals for your applications and VM tiers. To make sure you get what you want, plan and design accordingly. Use the right replication technology to do this. Technologies such as SQL always-on availability groups, VMware Site Recovery Manager (SRM), and Azure Site Recovery (ASR) are some ideal solutions to implement as part of your DR strategy.
  • VMware SRM is a very good option to back up your AVS private cloud to a second AVS private cloud in case of a disaster, so you can keep your business running. Please note that VMware SRM is not included in your AVS subscription. It is an add-on that you will need to have a separate license for.
  • ASR is another solution that you can use to back up your AVS private cloud to Azure IaaS.
  • There are also partner solutions such as JetStream Software that you can use to implement your DR solution for AVS.
  • Make sure you decide which of your AVS workloads needs to be protected if there is a DR situation Consider only protecting the things that are important to your business to keep the costs down.
  • Make sure to have copies of your domain controllers in your secondary environment.
  • Make sure both backend ExpressRoute circuits have ExpressRoute Global Reach turned on. This will make it possible for DR to happen between AVS private clouds in different Azure regions. These circuits connect the main private cloud to the secondary private cloud when DR solutions such as VMware SRM and VMware HCX are used.

Security, governance, and compliance

In this section, we will talk about how to make sure that AVS is safe to use and that you can manage it from start to finish. We will look at some specific design elements and give specific advice for the security, governance, and compliance of your AVS.

Security

It is important to make sure that you have your security components planned out before you deploy any solution in Azure. AVS is no exception. In the following, we will look at some of the key factors to consider:

  • Limits on permanent access: In the Azure resource group that hosts the AVS private cloud, the Contributor role is used. This role is used by the AVS service. To keep contributor rights from being misused, limit permanent access. Using a privileged account management tool can help you keep track of and limit how long highly privileged accounts are used.
  • Centralized identity management: AVS gives cloud administrators and network administrators credentials that can be used to set up the VMware environment. They are visible to everyone who has RBAC access to the AVS.

If you want to restrict built-in cloudadmin and network administrator users’ access to the VMware control plane, use the control plane RBAC features to properly control role and account access. Using least-privilege principles, make a lot of targeted identity objects such as users and groups. Limit access to the administrator accounts provided by AVS and set them up in a break-glass configuration. If you can’t use any other administrative account, use the built-in account instead.

Use the Cloudadmin account to connect Azure AD DS with the VMware vCenter and NSX-T control applications and the administrative identities for the domain services that are part of the cloud. Use users and groups from your domain to manage and operate your AVS. Don’t share your account. Customize vCenter roles and link them to AD DS groups so that you can control access to VMware control surfaces with fine-grained privilege level control, such as who can see what.

There are options in AVS that you can use to change and reset passwords for vCenter and NSX-T administrators. When you use the break-glass configuration, set up a regular rotation of these accounts, and rotate the accounts when you do.

Governance

Consider following these suggestions when you plan for an environment and guest VM governance:

  • Storage space on your vSAN: You need to have sufficient free space on your vSAN to maintain your VMware Service-Level Agreement (SLA). A minimum of 25 percent free space on your vSAN is required by VMware.
  • Host quota: If there are not enough host quotas, there could be delays of up to 7 days before you get more space for growth or DR. Make sure to think about growth and DR when you ask for the host quota, and check the environment’s growth and maximums on a regular basis to make sure there is enough time for expansion requests. Suppose a three-node AVS cluster needs three more nodes for DR If you need six nodes, ask for six hosts instead of just the primary three nodes. It doesn’t cost extra if you ask for a host quota.
  • Access to the ESXi: There is limited access to the ESXi hosts. Some third-party software that needs access to the ESXi host might not work. Identify any AVS-supported third-party software in the source environment that needs access to the ESXi host from AVS. Make sure you know how to use the AVS support request process in the Azure portal when you need to get into the ESXi host.

Compliance

There are many recommendations for compliance when planning your AVS environment. A few of these recommendations are listed as follows:

  • Monitoring
  • Backup
  • Country and/or industry regulatory compliance
  • Data retention
  • Corporate policies

Let us look at compliance in more detail:

  • Microsoft Defender for Cloud monitoring: When you use Defender for Cloud, you can use the regulatory compliance view to make sure that you are meeting the required security and regulatory standards. Defender for Cloud workflow automation can be set up to keep an eye on how well you’re doing in terms of deviation from the required compliance policies.
  • Workload VM backup compliance: Ensure your AVS guest VMs are being backed up. We mentioned earlier the importance of backing up your AVS in case of a disaster.
  • Country- or industry-specific regulatory compliance: If you want to avoid costly legal action or fines, make sure your guest workloads for AVS follow local and industry-specific regulations. It’s important to know how the cloud-shared responsibility model works for different industrial or regional regulatory compliance.
  • Data retention and residency requirements: AVS doesn’t allow you to keep or get data from clusters that are stored on the cloud. This means that when you delete a cluster, it stops all running workloads and components and also destroys all the cluster’s data and settings, such as public IP addresses. You will not be able to recover the deleted data.
  • Corporate policy compliance: Keep an eye on the guest workloads in AVS to make sure they don’t break company rules and regulations. Use solutions such as Azure Arc-enabled servers and Azure Policy, or a similar third-party solution. Routinely check and manage AVS guest VMs and applications to make sure they meet the required internal and external regulations.

Management and monitoring

When planning a public cloud solution, management and monitoring should be integral parts of your design construct, and AVS should be no exception.

Creating an AVS with optimum management and monitoring capabilities will help you get the best out of the solution.

Look at the following tips for managing and monitoring your AVS platform:

  • Keep track of the metrics that matter most to your operations teams and make alerts and dashboards that show them.
  • vSAN storage space is limited, so you need to keep an eye on vSAN capacity. When you use vSAN storage, only use it for guest VM workloads. VMware requires you to have a minimum of 75 percent free space on the vSAN to maintain the SLA. It is also recommended that you use Azure Blob Storage to store your backups instead of using vSAN storage.
  • A local identity provider is used by AVS. After you set up AVS, use a single administrative user account for the first configurations. Active Directory integration is highly recommended, since it provides a way to track the actions of each user.

Summary

AVS is a first-party Microsoft Azure service built in collaboration with VMware that delivers a familiar vSphere-based, single-tenant, private cloud on Azure. The VMware technology stack includes vSphere, NSX-T, vSAN, and HCX. AVS is deployed natively on dedicated infrastructure in Azure data centers. AVS provides a consistent, well-known user experience with existing on-premises VMware environments. Customers can deploy an AVS environment in just a few hours and quickly migrate VM resources. Microsoft provides all necessary networking, storage, management services, and support.

Throughout this chapter, we went over the critical design areas to help you design, implement, secure, and manage AVS.

Some of the critical design areas we covered were as follows:

  • AVS overview
  • Use cases for AVS
  • Enterprise-scale for AVS
  • Networking
  • Identity and access management
  • BC/DR
  • Security, governance, and compliance

You should now understand what AVS is and the use cases for the solution.

In the next chapter, we will go deeper into enterprise-scale for AVS and the available guidelines and take a deeper look into the overall architecture.

Left arrow icon Right arrow icon

Key benefits

  • Extend or migrate your existing VMware environment to Azure VMware Solution smoothly
  • Discover best practices that are based on real customer experiences
  • Join the cloud revolution by conducting the most suitable migration for your workloads

Description

Organizations over the world are migrating partially or fully to the cloud, but with the whole slew of providers, tools, and platforms available, knowing where to start can be quite challenging. If you know Microsoft Azure VMware Solution, you know it is the quickest way to migrate to the cloud without needing application modernization or rework. You can retain the same VMware tools to manage your environment while moving to Azure. But how does it work? The Ins and Outs of Azure VMware Solution has the answer. This high-level, comprehensive yet concise guide to Azure VMware Solution starts by taking you through the architecture and its applicable use cases. It will help you hit the ground running by getting straight to the important steps: planning, deploying, configuring, and managing your Azure VMware Solution instance. You’ll be able to extend your existing knowledge of Azure and VMware by covering advanced topics such as SRM and governance, setting up a hybrid connection to your on-premises datacenter, and scaling up using disk pools. By the end of the VMware book, you’ll have gone over everything you need to transition to the cloud with ease using Azure VMware Solution.

Who is this book for?

This book is for VMware administrators, cloud solutions architects, and anyone interested in learning how to deploy and configure an AVS environment in Azure. Technology leaders who want to get out of the datacenter business or expand their on-premises datacenter into Microsoft Azure will also find this book useful. Familiarity with VMware solutions and a basic understanding of Azure networking is necessary to get started with this book.

What you will learn

  • Get to grips with the overall architecture of Azure VMware Solution
  • Discover Enterprise-scale for Azure VMware Solution
  • Deploy an Azure VMware private cloud successfully
  • Deploy and configure HCX in Azure VMware Solution
  • Configure NSX-T network segments with the NSX-T Manager
  • Configure internet access, traffic inspection, and storage for AVS
  • Integrate Azure VMware Solution with Azure-native services
  • Use governance to improve your cloud portfolio

Product Details

Country selected
Publication date, Length, Edition, Language, ISBN-13
Publication date : Jan 06, 2023
Length: 328 pages
Edition : 1st
Language : English
ISBN-13 : 9781801814317
Tools :

What do you get with a Packt Subscription?

Free for first 7 days. $19.99 p/m after that. Cancel any time!
Product feature icon Unlimited ad-free access to the largest independent learning library in tech. Access this title and thousands more!
Product feature icon 50+ new titles added per month, including many first-to-market concepts and exclusive early access to books as they are being written.
Product feature icon Innovative learning tools, including AI book assistants, code context explainers, and text-to-speech.
Product feature icon Thousands of reference materials covering every tech concept you need to stay up to date.
Subscribe now
View plans & pricing

Product Details

Publication date : Jan 06, 2023
Length: 328 pages
Edition : 1st
Language : English
ISBN-13 : 9781801814317
Tools :

Packt Subscriptions

See our plans and pricing
Modal Close icon
$19.99 billed monthly
Feature tick icon Unlimited access to Packt's library of 7,000+ practical books and videos
Feature tick icon Constantly refreshed with 50+ new titles a month
Feature tick icon Exclusive Early access to books as they're written
Feature tick icon Solve problems while you work with advanced search and reference features
Feature tick icon Offline reading on the mobile app
Feature tick icon Simple pricing, no contract
$199.99 billed annually
Feature tick icon Unlimited access to Packt's library of 7,000+ practical books and videos
Feature tick icon Constantly refreshed with 50+ new titles a month
Feature tick icon Exclusive Early access to books as they're written
Feature tick icon Solve problems while you work with advanced search and reference features
Feature tick icon Offline reading on the mobile app
Feature tick icon Choose a DRM-free eBook or Video every month to keep
Feature tick icon PLUS own as many other DRM-free eBooks or Videos as you like for just $5 each
Feature tick icon Exclusive print discounts
$279.99 billed in 18 months
Feature tick icon Unlimited access to Packt's library of 7,000+ practical books and videos
Feature tick icon Constantly refreshed with 50+ new titles a month
Feature tick icon Exclusive Early access to books as they're written
Feature tick icon Solve problems while you work with advanced search and reference features
Feature tick icon Offline reading on the mobile app
Feature tick icon Choose a DRM-free eBook or Video every month to keep
Feature tick icon PLUS own as many other DRM-free eBooks or Videos as you like for just $5 each
Feature tick icon Exclusive print discounts

Frequently bought together


Stars icon
Total $29.97 $145.97 $116.00 saved
Solutions Architect's Handbook
$89.99
Microsoft Cybersecurity Architect Exam Ref SC-100
$39.99
The Ins and Outs of Azure VMware Solution
$51.99
Total $29.97$145.97 $116.00 saved Stars icon
Banner background image

Table of Contents

19 Chapters
Part 1: Getting Started with Azure VMware Solution (AVS) Chevron down icon Chevron up icon
Chapter 1: Introduction to Azure VMware Solution Chevron down icon Chevron up icon
Chapter 2: Enterprise-Scale for AVS Chevron down icon Chevron up icon
Part 2: Planning and Deploying AVS Chevron down icon Chevron up icon
Chapter 3: Planning for an Azure VMware Solution Deployment Chevron down icon Chevron up icon
Chapter 4: Deploying an Azure VMware Solution Cluster Chevron down icon Chevron up icon
Chapter 5: Deploying and Configuring HCX in Azure VMware Solution Chevron down icon Chevron up icon
Chapter 6: Networking in AVS using NSX-T Chevron down icon Chevron up icon
Part 3: Configuring Your AVS Chevron down icon Chevron up icon
Chapter 7: Creating and Configuring a Secure vWAN Hub for Internet Connectivity Chevron down icon Chevron up icon
Chapter 8: Inspecting Traffic for AVS Chevron down icon Chevron up icon
Chapter 9: Storage Concepts in AVS Chevron down icon Chevron up icon
Chapter 10: Working with VMware Site Recovery Manager Chevron down icon Chevron up icon
Part 4: Governance and Management for AVS Chevron down icon Chevron up icon
Chapter 11: Managing an Azure VMware Solution Environment Chevron down icon Chevron up icon
Chapter 12: Leveraging Governance for Azure VMware Solution Chevron down icon Chevron up icon
Chapter 13: Summary of Azure VMware Solution, Roadmap, and Best Practices Chevron down icon Chevron up icon
Index Chevron down icon Chevron up icon
Other Books You May Enjoy Chevron down icon Chevron up icon

Customer reviews

Rating distribution
Full star icon Full star icon Full star icon Full star icon Full star icon 5
(4 Ratings)
5 star 100%
4 star 0%
3 star 0%
2 star 0%
1 star 0%
Carlos V. Apr 05, 2023
Full star icon Full star icon Full star icon Full star icon Full star icon 5
As a member of the Global Black Belt Team (GBB) and having worked alongside Dr. Kevin Jellow for over two years, I can attest to his expertise in helping enterprise customers migrate their VMware environments to Azure VMware Solution (AVS). Not only is Kevin a respected colleague, but he is also a dear friend, and I am honored to be able to call him such. With "The Ins and Outs of Azure VMware Solution," Dr. Jellow shares his wealth of knowledge and experience in a well-structured, easy-to-follow guide, making it a must-read for professionals seeking to leverage the power of hybrid cloud infrastructure.Having witnessed the hard work Kevin put into this book for many months, it is evident that his dedication to researching complex topics and breaking them down into easily understandable explanations has paid off. His real-life experience, helping customers to migrate to Azure VMware Solution (AVS), is a crucial factor that makes this book so unique and valuable for someone who wants to understand AVS and execute a migration successfully.Dr. Jellow's book thoroughly examines AVS, an innovative collaboration between Microsoft and VMware. AVS enables organizations to seamlessly integrate their on-premises VMware environments with Azure's global infrastructure, providing the fastest way to migrate to Azure.The book is divided into three main sections designed to build the reader's understanding of the technology progressively. Dr. Jellow begins by providing a comprehensive introduction to AVS, its history, and the collaboration between Microsoft and VMware. He then delves into the core components of AVS, including the Azure VMware Solution portal and the integration with Azure services.In the second section, Dr. Jellow focuses on the planning and deployment of Azure VMware Solution. He offers a step-by-step guide to setting up and configuring the AVS environment, making the process accessible even for those not well-versed in Azure. He also explains key concepts like networking, storage, and compute while offering best practices for optimal configuration and performance.The final section delves into advanced topics, such as managing and monitoring the AVS environment, troubleshooting common issues, and securing the hybrid cloud infrastructure. Dr. Jellow also covers integrating AVS with other Azure services, such as Azure Files, Azure ARC, and Azure Monitor, enabling organizations to utilize the capabilities of the Azure ecosystem fully."The Ins and Outs of Azure VMware Solution" is distinguished by Dr. Jellow's clear, concise writing style and well-organized content, making it easy for readers to grasp complex concepts quickly. The book is also peppered with practical examples, case studies, and real-world scenarios that help to reinforce the material and demonstrate the tangible benefits of AVS in various industries.As a comprehensive guide to Azure VMware Solution (AVS), Dr. Jellow's book is essential reading for IT professionals, cloud architects, and decision-makers looking to harness the power of hybrid cloud infrastructure. It perfectly balances technical depth and practical application, empowering readers to effectively implement, manage, and optimize their Azure VMware Solution (AVS) environments.
Amazon Verified review Amazon
Suellen F. Apr 06, 2023
Full star icon Full star icon Full star icon Full star icon Full star icon 5
I recently had the opportunity to read "The Ins and Outs of Azure VMware Solution" written by my respected coworker, Dr. Kevin Jellow. I have the opportunity and pleasure of working with Dr. Kevin in the team of Azure VMWare Solution Specialists and I can tell the book provides a much-needed introduction and explanation for how Azure and VMware technologies can work together.One of the things I appreciated most about this book was how it was written in a way that was easy to understand. Rather than using technical jargon that can be overwhelming, Kevin breaks down each concept into simple terms that even beginners can easily grasp.In addition, the book provides a comprehensive overview of Azure VMware Solution, covering everything from the basics of the service to its various features and benefits. The book also covers network configuration and management, which is crucial when integrating VMware with Azure.Another notable feature is the emphasis on cloud migration. The book includes a chapter on how to migrate workloads to Azure VMware Solution, making it a valuable resource for organizations looking to move their VMware infrastructure to the cloud.Overall, I would highly recommend "The Ins and Outs of Azure VMware Solution" to anyone looking to better understand how these two technologies can work together. Whether you are a beginner just starting out, or a seasoned IT professional looking to expand your knowledge, this book is an invaluable resource that is well worth the investment.
Amazon Verified review Amazon
Melbourne Morgan Apr 24, 2023
Full star icon Full star icon Full star icon Full star icon Full star icon 5
"The Ins and Outs of Azure VMware Solutions" is an excellent resource for anyone looking to understand Azure VMware Solutions. Written by Dr. Kevin Jellow, this book provides a comprehensive guide to deploying and managing VMware workloads in the Azure cloud.The authors begin by introducing the reader to the benefits of running VMware workloads on Azure, including scalability, cost savings, and improved performance. They then dive into the technical details of the deployment process, including the prerequisites and architecture of the Azure VMware Solution. The step-by-step instructions and screenshots make it easy for even those new to the technology to follow along.One of the strengths of this book is the attention paid to the various configurations and options available when deploying Azure VMware Solutions. The authors cover everything from setting up a simple proof-of-concept environment to more complex scenarios, such as networking using NSX and leveraging VMWare Site Recovery Manager deploying.Overall, "The Ins and Outs of Azure VMware Solutions" is a well-written and comprehensive guide to deploying VMware workloads in the Azure cloud. The author (Dr. Jellow) has done an excellent job of breaking down complex technical concepts into easy-to-understand language and providing real-world examples to illustrate key points. As someone who has worked with extensively with various organization to deploy Azure VMware Solutions, I highly recommend this book to anyone interested in exploring the possibilities of running VMware workloads in Azure.
Amazon Verified review Amazon
USA - ID Mar 13, 2023
Full star icon Full star icon Full star icon Full star icon Full star icon 5
Introduction: As someone who's been working with VMware and Azure capabilities for years, I was excited to learn more about Azure VMware Solution (AVS). I must say that this book is an excellent resource for anyone looking to deploy and manage an Azure VMware Solution (AVS) environment. In this book, Jellow provides a comprehensive guide to deploying, configuring, and managing an AVS environment.Content: The book is divided into several parts, each covering a different aspect of AVS deployment and management. The first part provides an overview of AVS and its benefits, as well as the prerequisites for deploying it. The second part goes into detail on the deployment process, including how to create an AVS private cloud and configure networking, storage, and security. The final part covers the ongoing management of an AVS environment, including troubleshooting, backups, and disaster recovery.What I loved about this book is that it's written in a clear and concise manner, making it easy to follow even for those who are new to AVS. The author provides plenty of illustrations examples throughout the book, which are very helpful for visual learners like myself. The guidance is easy to follow, and Jellow provides tips and best practices along the way.One thing to note is that this book is focused solely on AVS deployment and management, and doesn't cover other Azure services comprehensively. However, the author does provide suggestions for how to integrate AVS with other Azure services if needed.Conclusion: Overall, I found "The Ins and Outs of Azure VMware Solution" to be an excellent resource for anyone looking to deploy and manage an AVS environment. The author's expertise in VMware and Azure shines through in his writing, and the book is packed with practical advice and insights. I highly recommend this book to anyone interested in AVS.
Amazon Verified review Amazon
Get free access to Packt library with over 7500+ books and video courses for 7 days!
Start Free Trial

FAQs

What is included in a Packt subscription? Chevron down icon Chevron up icon

A subscription provides you with full access to view all Packt and licnesed content online, this includes exclusive access to Early Access titles. Depending on the tier chosen you can also earn credits and discounts to use for owning content

How can I cancel my subscription? Chevron down icon Chevron up icon

To cancel your subscription with us simply go to the account page - found in the top right of the page or at https://subscription.packtpub.com/my-account/subscription - From here you will see the ‘cancel subscription’ button in the grey box with your subscription information in.

What are credits? Chevron down icon Chevron up icon

Credits can be earned from reading 40 section of any title within the payment cycle - a month starting from the day of subscription payment. You also earn a Credit every month if you subscribe to our annual or 18 month plans. Credits can be used to buy books DRM free, the same way that you would pay for a book. Your credits can be found in the subscription homepage - subscription.packtpub.com - clicking on ‘the my’ library dropdown and selecting ‘credits’.

What happens if an Early Access Course is cancelled? Chevron down icon Chevron up icon

Projects are rarely cancelled, but sometimes it's unavoidable. If an Early Access course is cancelled or excessively delayed, you can exchange your purchase for another course. For further details, please contact us here.

Where can I send feedback about an Early Access title? Chevron down icon Chevron up icon

If you have any feedback about the product you're reading, or Early Access in general, then please fill out a contact form here and we'll make sure the feedback gets to the right team. 

Can I download the code files for Early Access titles? Chevron down icon Chevron up icon

We try to ensure that all books in Early Access have code available to use, download, and fork on GitHub. This helps us be more agile in the development of the book, and helps keep the often changing code base of new versions and new technologies as up to date as possible. Unfortunately, however, there will be rare cases when it is not possible for us to have downloadable code samples available until publication.

When we publish the book, the code files will also be available to download from the Packt website.

How accurate is the publication date? Chevron down icon Chevron up icon

The publication date is as accurate as we can be at any point in the project. Unfortunately, delays can happen. Often those delays are out of our control, such as changes to the technology code base or delays in the tech release. We do our best to give you an accurate estimate of the publication date at any given time, and as more chapters are delivered, the more accurate the delivery date will become.

How will I know when new chapters are ready? Chevron down icon Chevron up icon

We'll let you know every time there has been an update to a course that you've bought in Early Access. You'll get an email to let you know there has been a new chapter, or a change to a previous chapter. The new chapters are automatically added to your account, so you can also check back there any time you're ready and download or read them online.

I am a Packt subscriber, do I get Early Access? Chevron down icon Chevron up icon

Yes, all Early Access content is fully available through your subscription. You will need to have a paid for or active trial subscription in order to access all titles.

How is Early Access delivered? Chevron down icon Chevron up icon

Early Access is currently only available as a PDF or through our online reader. As we make changes or add new chapters, the files in your Packt account will be updated so you can download them again or view them online immediately.

How do I buy Early Access content? Chevron down icon Chevron up icon

Early Access is a way of us getting our content to you quicker, but the method of buying the Early Access course is still the same. Just find the course you want to buy, go through the check-out steps, and you’ll get a confirmation email from us with information and a link to the relevant Early Access courses.

What is Early Access? Chevron down icon Chevron up icon

Keeping up to date with the latest technology is difficult; new versions, new frameworks, new techniques. This feature gives you a head-start to our content, as it's being created. With Early Access you'll receive each chapter as it's written, and get regular updates throughout the product's development, as well as the final course as soon as it's ready.We created Early Access as a means of giving you the information you need, as soon as it's available. As we go through the process of developing a course, 99% of it can be ready but we can't publish until that last 1% falls in to place. Early Access helps to unlock the potential of our content early, to help you start your learning when you need it most. You not only get access to every chapter as it's delivered, edited, and updated, but you'll also get the finalized, DRM-free product to download in any format you want when it's published. As a member of Packt, you'll also be eligible for our exclusive offers, including a free course every day, and discounts on new and popular titles.