VIR358

Hyper-V Architecture, Scenarios And Networking

Jeff Woolsey Senior Program Manager Windows Virtualization Microsoft Corporation

Objectives And Takeaways

Objective(s)
Windows Server 2008 Hyper-V
Architecture Why is there a parent partition? Hyper-V Isolation

Virtualization Demo Hyper-V Networking Hyper-V on Laptops, Demo Configs and Considerations Virtualization Comparison
2

Hyper-V Beta In The Press

Even though Hyper-V is still pre-1.0 code, I think Microsoft has done a bang-up job with its hypervisor, and it may just turn this Linux freak into a Windows 2008 junkie for running his own personal virtualization needs. - ZDNet Microsoft's virtualization has three unique advantages: It costs nothing, its administration is integrated into Microsoft's other server management tools, and Windows Server 2008 is the only host OS it needs to support. In that last case, Windows shops derive a serious performance and scalability kick... - Infoworld

Yes, jaws actually dropped when it [Hyper-V] was installed in the Test Center.
- CRN

My experience has left me extremely impressed. Windows Server 2008 on largescale, virtualized enterprise servers will make alternatives a very hard sell. - Infoworld

Hyper-V is free as a built-in feature in Server 2008 Standard and ESX Server costs several thousand dollars per copy, depending on the features purchased, so on a pure bang per buck and ease of use basis, it beats ESX and dare I say it the Xen solutions built into Linux distros hands down.

- ZDNet

Virtualization In The Industry

Virtualization Market Today

Computerworld
Although virtualization has been the buzz among technology providers, |only 6% of enterprises have actually deployed virtualization on their networks, said Levine, citing a TWP Research report. That makes the other 94% a wide-open market.

The Rise of the Virtual Machine and the Real Impact It Will Have
We calculate that roughly 6% of new servers sold last year were virtualized and project that 7% of those sold this year will be virtualized and believe that less than 4% of the X86 server installed base has been virtualized to date.
5

Virtualization 2010
Information Week Oct. 2007
The [virtualization field] is nowhere near saturated. IDC estimates that only 17% of the worldwide server market will be virtualized by 2010, up from 5% in 2005.

Microsoft IT Going Green

Production Use Virtual Server in heavy use for 18+ months 2,500+ virtual machines ~100 new VMs per month Consolidation Ratios
8 servers to 1 server

Test/Development Use Virtual Server in heavy use for 18+ months 500+ virtual machines Consolidation Ratios 16 servers to 1 server

Test/Development Savings
Item Number of servers required Physical System Cost 477 systems @ a cost of $5k each Total $2.3 million 19 terabytes 30 racks Virtual Server Build Cost 16 physical host systems @ $20k each Total: $320 thousand 8 terabytes 2 racks Savings Just under 2 million dollars

Hard drive space Rack space

11 terabytes 28 racks

Windows Server 2008 Hyper-V

Windows Hyper-V Requirements

Description
Hypervisor based virtualization platform Windows Server 2008 x64 Edition technology
Standard, Enterprise and Datacenter Editions

Hardware Requirements
x64 server with hardware assisted virtualization
AMD AMD-V or Intel VT

Hardware enabled Data Execution Prevention (DEP) required

AMD (NX no execute bit) Intel (XD execute disable)

Note: Enabling these BIOS features requires powering down (not rebooting) the server to take effect
9

Architecture

10

Hyper-V Architecture
Parent Partition

Provided by:
OS ISV / IHV / OEM Microsoft Hyper-V Microsoft / XenSource

Child Partitions

VM Worker Processes

Applications
WMI Provider VM Service

Applications

Applications

Applications

User Mode

Windows Server 2008

Windows Kernel IHV Drivers

Windows Server 2003, 2008

Windows Kernel

NonHypervisor Aware OS

Xen-Enabled Linux Kernel

Linux VSC

VSP

VSC

VMBus

VMBus

VMBus

Emulation

Hypercall Adapter

Kernel Mode Ring -1

Windows hypervisor
Designed for Windows Server Hardware
11

Why Not Get Rid Of Parent Partition?

No defense in depth Entire hypervisor running in the most privileged mode of the system
Virtual Machine
User Mode

Virtual Machine
User Mode

Virtual Machine
User Mode

Ring 3

Kernel Mode

Kernel Mode

Kernel Mode

Ring 0 Ring -1

Scheduler Memory Management Storage Stack Network Stack VM State Machine Virtualized Devices Drivers Management API

12

Hardware

Micro-kernelized Hypervisor
Defense in depth Using hardware to protect Hyper-V doesnt use ring compression, uses hardware assists
Further reduces the attack surface
Parent Partition
VM State Machine Virtualized Devices Management API

Virtual Machine
User Mode

Virtual Machine
User Mode

Ring 3

Storage Stack Network Stack Drivers

Kernel Mode

Kernel Mode

Ring 0
Ring -1

Scheduler Memory Management

Hardware

13

Hyper-V
Capabilities
32-bit (x86) & 64-bit (x64) VMs Large memory support (64 GB) per VM SMP VMs (up to 4 cores) Integrated cluster support for HA & Quick Migration BitLocker: Seamless, secure data encryption Live Backup: Volume Shadow Service integration Pass-through disk access for VMs Virtual Machine snapshots New hardware sharing architecture (VSP/VSC/VMBus)
Disk, networking, input, video

Robust networking: VLANs and NLB DMTF standard for WMI management interface Support for Full or Server Core installations
14

Windows Server Core

Server Core: New minimal installation option
Provides essential server functionality Command Line Interface only, no GUI Shell

Benefits
Less code results in fewer patches and reduced servicing burden Low surface area server for targeted roles More secure and reliable with less management
15

Security
Isolation
No sharing of virtualized devices Separate VMBus instance per vm to the parent No sharing of memory
Each has its own address space

VMs cannot communicate with each other, except through traditional networking Guests cant perform DMA attacks because theyre never mapped to physical devices Guests cannot write to the hypervisor Parent partition cannot write to the hypervisor
16

Hyper-V RC0
It Just Works
TAP, RDP & MSIT Hyper-V Deployments
Thousands of Hyper-V VMs in PRODUCTION Windows Server 2003/2008 Roles:
File, Print, AD, RODC, IIS/Web, TS, Application Services, DHCP, DNS, WSS and more

Microsoft Server Products

SQL, Exchange, HPC, ISA, Sharepoint, Project Server, VSTS, Configuration Manager, Ops Manager, VMM & more

Hyper-V Stats
Performance Blockers: ZERO Deployment Blockers: ZERO Application Compatibility Bugs: ZERO Scalability Blockers: ZERO
17

Hyper-V Demo

Mike Sterling Program Manager Windows Virtualization Microsoft Corporation

18

Hyper-V Networking

19

Hyper-V Networking
Two physical network adapters at minimum
One for management One (or more) for VM networking Dedicated NIC(s) for iSCSI Connect parent to back-end management network
Only expose guests to internet traffic

20

Hyper-V Network Configurations

Example 1
Physical Server has 4 network adapters NIC 1: Assigned to parent partition for management NICs 2/3/4: Assigned to virtual switches for virtual machine networking Storage is non-iSCSI such as
Direct attach SAS or Fibre Channel

21

Hyper-V Setup And Networking 1

22

Hyper-V Setup And Networking 2

23

Hyper-V Setup And Networking 3

24

Each VM On Its Own Switch

Parent Partition

Child Partitions

VM Worker Processes

Applications
WMI Provider

Applications

Applications

VM Service

User Mode

Windows Server 2008

VM 1
Windows Kernel

VM 2
Linux Kernel

VM 3

VSC

VSP

Windows Kernel

VSC

VSC

VSP VSP
VMBus

VMBus

VMBus

VMBus

Kernel Mode Ring -1

Windows hypervisor
Mgmt NIC 1 VSwitch 1 NIC 2 VSwitch 2 NIC 3 VSwitch 3 NIC 4

Designed for Windows Server Hardware

Hyper-V Network Configurations

Example 2
Server has 4 physical network adapters NIC 1: Assigned to parent partition for management NIC 2: Assigned to parent partition for iSCSI NICs 3/4: Assigned to virtual switches for virtual machine networking

26

Hyper-V Setup, Networking And iSCSI

27

Now With iSCSI

Parent Partition

Child Partitions

VM Worker Processes

Applications
WMI Provider

Applications

Applications

VM Service

User Mode

Windows Server 2008

VM 1
Windows Kernel

VM 2
Linux Kernel

VM 3

VSC

Windows Kernel

VSC

VSC

VSP

VSP
VMBus

VMBus

VMBus

VMBus

Kernel Mode Ring -1

Windows hypervisor
Mgmt NIC 1 iSCSI NIC 2 VSwitch 1 NIC 3 VSwitch 2 NIC 4

Designed for Windows Server Hardware

Networking
Parent Partition

29

Networking
Virtual Switches

30

VM With Legacy And Synthetic NIC

31

Don't forget The ICs!

Emulated versus VSC

32

Hyper-V Laptops And Demo Configs And Consideration

33

Hyper-V And Laptops

No support for wireless networking Cant sleep/hibernate system Use multiple spindles
Disk for system Disk for virtual machines

Intel Note: Santa Rosa Chipset and later

Supports 4 GB and greater

34

Hyper-V Laptop Configuration

Disk 1: Two Partitions Vista SP1 & Windows 2008
Disk 1, Partition 2: ~24 GB

Disk 2: Two Partitions VMs & Storage

Disk 2, Partition 2: ~84 GB

Windows Server 2008 x64 Edition

Storage ISOs

Disk 1, Partition 1: ~70 GB

Disk 2, Partition 1: ~65 GB

Vista SP1 RTM

Virtual Machines

Laptop
35

Inexpensive Dev/Demo System

Single Proc Quad Core
2.4 GHz 300 GB Drive DVD-RW Burner 1 Gb NIC $700

8 GB DDR2 800 MHz

$150

2 500 GB SATA disks

$200 ($99 x 2)

Total: $1050
36

Creating Virtual Machines

Steps
1. 2. 3. 4. 5. 6. 7. Create virtual machine Install guest operating system Install integration components Install anti-virus Install management agents SYSPREP Add it to the SCVMM Library

Windows Server 2003

Create vms using 2-way to ensure an MP HAL
37

Microsoft System Center

38

System Center
Hardware Virtual Provisioning

Backup Live host level virtual machine backup In guest consistency Rapid recovery Disaster Recovery

machine management Server consolidation and resource utilization optimization Conversions: P2V and V2V
Workload Provisioning

End to end service management Server and application health monitoring and management Monitoring Performance reporting and analysis

Patch management and deployment OS and application configuration management Patching Software upgrades

39

What About
Heterogeneous Virtualization Management Physical to Virtual Conversion (P2V) Virtual to Virtual Conversion (V2V) Virtual Server to Hyper-V VMware to Hyper-V Virtual Machine Library PowerShell Scripting Delegated Administration Virtual Machine Authoring VM Templates/Cloning Failover Cluster Integration

40

Virtualization Comparison

41

Virtual Server 2005 versus Hyper-V

Virtualization Feature
32-bit Virtual Machines 64-bit Virtual Machines
Multi Processor Virtual Machines Virtual Machine Memory Support Virtual Server 2005 R2 Hyper-V

Yes No
No 3.6 GB per VM Yes Yes Yes Yes, COM Web Interface

Yes Yes
Yes, 4 core VMs 64 GB per VM Yes Yes Yes Yes, WMI MMC 3.0 Interface

Managed by System Center Virtual Machine Manager

Support for Microsoft Clustering Services Host side backup support (VSS) Scriptable / Extensible User Interface
42

Microsoft Virtualization
Hyper-V
Architecture Support Large Memory Support Guest Multi-processing x86 & x64 64 GB per VM 2/4-core support (free)

VMWare ESX 3.5 Server

x86 & x64 64 GB per VM 2/4-core ($$)

Migration
Management Management

Quick Migration WAN Disaster Recovery

Unified Physical and Virtual

Live Migration ($$) Local Disaster Recovery ($$)

Virtual Machines Virtual Only

Microsoft Provides a Multilevel Approach

Infrastructure Management Applications Interoperability
43

Microsoft Roadmap
2008

Windows Server RTM Hyper-V Release

Within 180 days of Windows Server 2008 RTM

System Center Virtual Machine Manager 2008 System Center Virtual Machine Manager 2008 Beta
Adds support for managing Hyper-V Adds support for managing VMware

Now

Windows Server Hyper-V RC Windows Server Hyper-V Beta

With Windows Server 2008 RTM

System Center Virtual Machine Manager 2007

Support for Virtual Server

System Center Operations Manager 2007 System Center Configuration Manager 2007 System Center Data Protection Manager 2007 Virtual Server R2 SP1
44

Microsoft Virtualization APIs

Virtual Server COM Interface
http://msdn2.microsoft.com/enus/library/bb309134(VS.85).aspx

Virtual Hard Disk Format

http://www.microsoft.com/windowsserversystem/virtualser ver/techinfo/vhdspec.mspx

Beta Hyper-V WMI Provider APIs

http://msdn2.microsoft.com/enus/library/cc136992(VS.85).aspx

Beta Hyper-V Hypercall Interface

http://www.microsoft.com/downloads/details.aspx?FamilyId =91E2E518-C62C-4FF2-8E50-3A37EA4100F5&displaylang=en
45

Online Resources
Microsoft Virtualization Home
http://www.microsoft.com/virtualization

Windows Server Virtualization Blog Site

http://blogs.technet.com/virtualization/default.aspx

Windows Server Virtualization TechNet Site

http://technet2.microsoft.com/windowsserver2008/en/servermanager/ virtualization.mspx

Windows Server 2008 Hyper-V Release Candidate

http://support.microsoft.com/kb/949219

Windows Server 2008 Hyper-V RC Installation Guide

http://www.microsoft.com/windowsserver2008/en/us/hypervinstall.aspx

System Center Virtual Machine Manager 2008 Beta

http://connect.microsoft.com
46

47

Resources for IT Professionals

www.microsoft.com/teched
TechTalks Live Simulcasts TechEd Bloggers Virtual Labs

http://microsoft.com/technet Evaluation licenses, pre-released products, and MORE!

Resources
For virtualization
Events Whitepapers Downloads Case Studies Visit: www.microsoft.com/virtualization

Subscription!

1 Year

Complete an evaluation on CommNet and enter to win!

 2008 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

51