vCloud® Air Hybrid Cloud Manager™ technology seamlessly integrates vSphere® vCenter™networks into vCloud Air. Hybrid networking extends your on-premises vSphere® vCenter™ networks into vCloud Air, supporting bidirectional virtual machine (VM) mobility.

This introduction summarizes the tasks you can accomplish and the features that support and enhance migration and network extension.

Hybrid Cloud Manager owns the source and destination encryption and decryption processes, ensuring consistent security and providing admission for hybrid workflows such as virtual machine migration and network extension. Hybrid Cloud Manager creates an optimized, software-defined WAN to increase stretched network performance, enabling performance approaching LAN speed. Hybrid Cloud Manager also enables bidirectional workload and VMware NSX® security policy migration to vCloud Air Advanced Networking services. Hybrid Cloud Manager integrates with vSphere vCenters and is managed from the vSphere Web Client.

Securely stretch a network from a vCenter to a vCloud Air virtual data center (vDC).

Hybrid Cloud Manager provides two Layer 2 appliances: the Layer 2 Concentrator (L2C) and the High Throughput Layer 2 Concentrator (HT L2C).

Extended networks link to vCloud Air Advanced Network Services (ANS) edge appliances in the Org Gateway position.

You can deploy multiple standard Layer 2 concentrators to achieve scalability and increase throughput from your vCenter.

Virtual machines migrated through the Cloud Gateway and over stretched Layer 2 can retain their IP and MAC addresses.

Hybrid Cloud Manager moves live virtual machines in three ways: low-downtime migration, vSphere vMotion migration, and cold migration.

Low-Downtime Migration

Low-downtime migration relies on vSphere Replication, which is a distributed technology implemented in the VMware ESX®/ESXi® hypervisor. The Hybrid Cloud Manager creates a replica of a live virtual machine, moves it to a vCloud Air vDC, and performs a switchover to power off the source virtual machine and power on the migrated virtual machine.

The migration path is always through the Cloud Gateway. The transport can be the Internet, a Layer 2 stretched network, or a Direct Connect line.

A virtual machine can be migrated multiple times in either direction.

vMotion Migration

Uses vMotion to transfer a live virtual machine across a network stretched to the vCloud Air. vMotion migration is also called zero-downtime migration, or cross-cloud vMotion. See Migration with vMotion.

Cold Migration

Transfer a powered-off virtual machine to vCloud Air over a stretched network.

Common Features

Optional software-defined WAN optimization, if installed, increases migration, throughput, and speed.

Migration can be scheduled to occur at a specified time.

A migrated virtual machine can keep its host name, virtual machine name, or both.

The following networking features are built into the Cloud Gateway and the Layer 2 Concentrators.

Intelligent Flow Routing

Automatically selects the best connection based on the Internet path, efficiently flooding the entire connection so that workloads are moved as fast as possible. When larger flows, such as backup or replication, cause CPU contention, smaller flows are routed to less busy CPUs, improving performance of interactive traffic

Proximity Routing

Ensures that forwarding between virtual machines connected to stretched and routed networks both on-premises and in the cloud is symmetrical.

Security

The Cloud Gateway offers Suite B-compliant AES-GCM with IKEv2, AES-NI offload, and flow-based admission control.

Hybrid Cloud Manager owns the source and destination encryption and decryption processes, ensuring consistent security and providing admission for hybrid workflows such as virtual machine migration and network extension.

A security policy defined in your vCenter and assigned to a virtual machine can be migrated with the virtual machine.