Updates to VMware HCX on IBM Cloud

Updates to VMware HCX on IBM Cloud

IBM Cloud announced plans to offer VMware HCX included with our IBM Cloud for VMware offerings: Helping simplify cloud migration with updates to VMware HCX on IBM Cloud.

VMware is unifying their networking strategy around the Virtual Cloud Network, and as part of this, HCX (Hybrid Cloud Extension) will now be named NSX Hybrid Connect: VMware Advances Networking for the Digital Era with the Virtual Cloud Network.

Encryption at rest for VMware on IBM Cloud

Encryption at rest for VMware on IBM Cloud

One of the key topics we covered as part of our Fast Start education was encryption at rest for VMware on the IBM Cloud. There are many options for encrypting your workloads at rest, including:

  • VMware vSAN encryption
  • VMware vSphere encryption
  • HyTrust Data Control, part of IBM Cloud Secure Virtualization
  • Any other existing encryption solution you wish to bring to IBM Cloud

The first three offerings are available today directly from IBM Cloud for VMware Solutions, although some assembly is required in each case. There are important tradeoffs between these options that you need to take into consideration, such as ease of use, interoperability with other solutions like workload migration tooling, and the nature of what is encrypted. The following table that I shared at Fast Start summarizes the differences between these solutions:

Comparison vSAN encryption vSphere encryption HyTrust Data Control
Encryption type Datastore disks encrypted @ hypervisor

Secures: disk drives

VM disks encrypted @ hypervisor

Secures: VMDK files, disk traffic en route to datastore

Agent-based encryption of disks within VM

Secures: VMDK files, disk traffic en route to datastore

Key management External KMS must be provided (not included) supporting KMIP 1.1 (e.g., IBM KMIP for VMware, IBM SKLM, or HyTrust Key Control) External KMS must be provided (not included) supporting KMIP 1.1 (e.g., IBM KMIP for VMware, IBM SKLM, or HyTrust Key Control) HyTrust Key Control (included)
Additional capabilities Together with HyTrust Cloud Control, provides advanced access control, auditing, approval, and compliance capabilities; and enables Boundary Control for geofencing and hardware trust
Cost
  • vSAN Enterprise is required (per socket)
  • Key management server
Key management server
  • HyTrust Data Control (per socket)
  • HyTrust Cloud Control (optional, per socket)
Limitations
  • Not compatible with other storage types (e.g., IBM Cloud Endurance storage, NetApp ONTAP Select)
  • Does not encrypt storage traffic in flight between hosts
Eliminates benefit of vSAN deduplication and compression Eliminates benefit of vSAN deduplication and compression
Migration Compatible with all migration technologies
  • Compatible with Veeam
  • Compatible with VMware SRM when using array based replication
  • Not currently compatible with VMware HCX
  • Not currently compatible with Zerto
  • Not currently compatible with vSphere replication
  • Not currently compatible with cross-vCenter vMotion
Compatible with all migration technologies provided that HyTrust key management server availability and host compliance (if applicable) are maintained across sites. Some extra recovery steps are required post migration if the workload IP addressing has changed.

VMware around the world

VMware around the world

I just returned from a two–week trip as part of IBM’s Fast Start conference. We visited Madrid and Bangkok; next week the conference travels to Las Vegas. Fast Start is designed to enable IBM’s sales and tech sales teams, as well as our business partners, to more effectively sell and solution IBM’s offerings.

VMware on IBM Cloud was a big part of this conference! We provided training for sellers on IBM Cloud’s VMware portfolio, and deep dives for our technical sellers and partners on VMware solutioning, networking, storage, security, and encryption. By far the most popular sessions were on the new VMware Hybrid Cloud Extension (HCX) offering that we released in January. HCX radically simplifies the VMware workload migration process, and many IBM Cloud VMware engagements around the world are now looking to HCX as their solution for cloud migration. I’m excited to see the momentum of VMware on IBM Cloud building in 2018.

IBM Cloud for VMware at VMworld 2017

IBM Cloud for VMware at VMworld 2017

IBM has a significant lineup of activities at VMworld US 2017. I’m particularly excited about Dr. Michio Kaku’s session on Wednesday.

I’ll be speaking on Monday about integration between VMware applications and broader IBM Cloud services, and I’ll also be present at the IBM booth, for both US and Europe conferences. If you’re there, be sure to stop by and say hi!

Be sure to also check out our hands-on labs available at VMworld.

What’s new with IBM Cloud for VMware Solutions

What’s new with IBM Cloud for VMware Solutions

IBM Cloud for VMware Solutions just released the following updates:

Don’t forget that Zerto Disaster Recovery also remains available as a service for IBM Cloud for VMware. Zeb Ahmed provides some guidance on thinking about backup versus  disaster recovery, and Zerto recently received an award for their ransomware protection capabilities!

What’s new with IBM Cloud for VMware Solutions

This week IBM Cloud for VMware Solutions released our May version 1.6 release. The most significant changes in this release are the availability of new hardware choices, and the move to our new vCenter Server architecture, which allows for high availability deployments and aligns with our premier Cloud Foundation offering architecture.

Zane Adam, VP of IBM’s dedicated private cloud offerings, writes to share more details about the IBM, HyTrust, and Intel partnership to offer IBM Cloud Secure Virtualization on top of our VMware offerings.

IBM Cloud also recently announced the general availability of Veeam Availability Suite on IBM Cloud. This offering is independent of the VMware offerings, meaning that you can deploy it in IBM Cloud for our VMware automated offerings, your own custom VMware environments in IBM Cloud, or your own Hyper-V environments in IBM Cloud.

I’ve written two blog posts on the IBM Bluemix blog, highlighting the importance of considering all of the options and factors in migrating to the cloud, and also exposing some common security myths about the cloud aren’t true of IBM’s dedicated private cloud offerings.

IBM Cloud at ZertoCON

IBM Cloud offers Zerto Virtual Replication as one of the add-on services for our VMware Solutions offerings, enabling VM replication and migration between IBM’s cloud and on-premise installations in either direction. IBM Cloud’s Zerto service is a compelling foundation for disaster recovery of VMware workloads, whether you are looking to replicate your own workloads or provide disaster recovery services to your own customers. We’re proud to be one of the sponsors of ZertoCON 2017 and one of Zerto’s featured cloud service provider partners.

Don Wales discussing Zerto's cloud partnerships
Don Wales discussing Zerto’s cloud partnerships at ZertoCON 2017

If you’re in Boston for ZertoCON 2017, be sure to check out Zeb Ahmed’s presentation on Tuesday, How to Master Disaster Recovery for Enterprise Applications in IBM Cloud.