Case Study

Juniper Asks “Why Not Cloud” and Fuels Innovation

Summary Accelerating innovation while increasing operational efficiency has been a prime objective for Juniper Networks, and like many other businesses, Juniper looked to the Company: cloud to accomplish those goals. Juniper’s cloud journey began back in 2010, and today, Juniper Networks Juniper manages a multi-cloud environment comprised of the leading public cloud Industry: services and a state-of-the-art private cloud. Technology Business Challenge: Business Challenge • Build a software-defined data Determining which applications and services to move to the cloud—and which to keep in center a private data center—has been a complex undertaking, but one that has delivered clear • Embrace the best of public business value, evidenced by Juniper’s technology innovation and lower operating costs. and private cloud to accelerate innovation and lower costs Juniper began its cloud journey by examining which applications it could move to the • Increase IT agility with cloud—first helpdesk, then e-mail and collaboration. But after the initial wins, progress automation slowed. To jumpstart the process, Juniper’s IT team decided to look at the cloud journey Technology Solution: in a fresh way. Instead of asking “why,” Juniper’s IT leaders began asking “why not?”

• Contrail Cloud Platform “The game-changing question was ‘why not cloud?’ to better understand if there was a • Junos Fusion technology specific need for an application to stay on-premise, rather than moving it to the cloud,” • MX240 3D Universal Edge Router says Serge Ovchinnikov, IT architect at Juniper. • QFX10002 and QFX5100 Guided by the “why not cloud” principle, applications and services were evaluated Switches against a framework that determined the strategic business value of moving to the • SRX5600 Services Gateway cloud, as well as cost, security, and availability of a suitable cloud provider. Juniper • Junos Space Security Director moved business-critical, back-office applications to the cloud. Development of Juniper Business Results: Networks® Junos® operating system was kept on-premise because of the efficiencies • Leveraged public and private gained from the tight linkage of software and hardware development. cloud to lower IT costs by 30 percent “In testing the migration of live workloads between data centers, we were • Consolidated 300 corporate able to move our intellectual property from Sunnyvale to Quincy without applications and 18 data centers to public cloud and state-of-the- interruption to the applications.” art private cloud Tony Tran, IT network Architect, Juniper • Used automation to move to high- velocity releases for Junos OS • Achieved significant increase in developer productivity • Enabled IT team to focus on innovation by reducing workload of day-to-day issues

1 Juniper Asks “Why Not Cloud” and Fuels Innovation Case Study

Technology Solution As a turnkey cloud management platform, Contrail Cloud Platform automates and orchestrates the creation of highly Embrace public cloud services. Juniper uses cloud services in its scalable virtual networks. The data center uses multiple many forms, including Software as a Service (SaaS), Platform orchestration tools such as OpenStack, VMware with Contrail as as a Service (PaaS), and Infrastructure as a Service (IaaS). the SDN supporting legacy and cloud native workloads. Juniper uses Microsoft Office 365 for e-mail and collaboration, Salesforce for sales opportunity management, ServiceNow for With an IP fabric and a microsegmentation, Juniper can use helpdesk, Coupa for procurement, and Concur to track business one approach to secure its private cloud. “We create AWS-like travel expenses. SAP, which is used for account management, security groups to create port-level firewalls on OpenStack,” sales orders, and invoicing, is hosted by T-Systems. says Overmon. “Instead of a single firewall with policies, we’re wrapping every host in its own private rules. We can create fine- Juniper uses Amazon Web Services (AWS) for development and grained access control, and monitor and manage it from a single for a variety of back-end corporate applications. AWS is also pane of glass.” used for single sign-on to all applications, Juniper’s partner quote tool, IDP signature updates for the Juniper Networks SRX Series Juniper Networks Junos Space Security Director centrally Services Gateways, licensing management, software downloads, manages security policies. Security Director provides extensive and many other systems. security management and granular policy control across the network, with visibility into threats, compromised devices, and Build a software-defined data center.Data center consolidation risky applications. and the public cloud create tremendous business value, but having a private cloud is essential to the development of Junos OS—the Moving data and workloads from one data center to another is heart of Juniper’s innovation and industry leadership. To support always challenging, and in many cases, organizations resort to the creation of a new engineering environment, Juniper moved renting trucks to transport clusters or installing temporary, dedicated its Americas engineering data center from Sunnyvale, CA to a high-speed lines. Instead of hitting the road or incurring additional collocation facility in Quincy, in eastern Washington State. Juniper’s telecom costs, IT developed several techniques for transitioning own leading technology is used in a software-defined data center workloads between the Sunnyvale and Quincy data centers, which that has become a critical enabler of engineering innovation. avoided downtime for critical applications during the move. Ethernet VPN (EVPN) was used to move workloads between the “By using our own products, we’re trying to create data centers. Ideal for data center interconnect, EVPN is a virtual a slingshot effect in our own engineering processes network overlay that supports near hitless workload migration, to build products for customers that are more fast service restoration, and policy control. “Using EVPN minimizes the impact during workload migration,” says Tony cloud-friendly.” Tran, IT network architect at Juniper. “In testing the migration

Neil Overmon, Director of Infrastructure Architecture, Juniper of live workloads between data centers, we were able to move our intellectual property from Sunnyvale to Quincy without The data center is designed to run heterogeneous workloads— interruption to the applications.” physical, virtual, and container workloads. Juniper Networks Junos Fusion is used to provide a scalable switch fabric for traditional Modernize the WAN for cloud. Juniper transformed its best- workloads. As a centrally managed fabric, Junos Fusion is designed effort, primarily MPLS-based network to a flexible, cloud-ready to greatly simplify operations at scale and reduce OpEx, while WAN that delivers 99.99-percent reliability and end-to-end accelerating the deployment of new applications and services. The quality of service. To get ahead of the cloud migration, IT highly scalable, high-density Juniper Networks QFX10002 Switch is decoupled the WAN from the data center compute environments, used for the aggregation devices, and the high-performance, low- which were located in the same facility. This allowed Juniper to latency QFX5100 Switch is used for the satellite devices. Juniper provide uninterrupted network services while data centers were Networks SRX5600 Services Gateway provides high-performance consolidated and shut down. “Before we leveraged the data routing and security. centers as the POPs, but we were more constrained because we only had a presence where our data centers were,” says Tran. A massively scalable IP fabric supports the Juniper Networks Contrail® network overlay to drive cloud-ready workloads. The Juniper expanded its WAN footprint by building seven points QFX10002 Switch is used for the spines and the QFX5100 Switch of presence, called JPOPs, which are geographically dispersed is used for the leaf devices. The carrier-class, SDN-ready Juniper across the globe. This brings WAN services closer to Juniper’s Networks MX240 3D Universal Edge Router is used as edge offices and cloud providers to connect employees to cloud gateways to the cloud environment. services more efficiently. The JPOPs are critical to deliver a great user experience for real-time services and voice and video. Leveraging SDN and Juniper Networks Contrail Cloud Platform Juniper peers directly with cloud providers at the JPOPs to allowed IT to create a single fabric across VMware, OpenStack, and provide a more direct onramp to their services. bare-metal servers. “We built a SDN enabled cloud using Contrail Cloud to provide a virtual network overlay for the workloads,” says Neil Overmon, director of infrastructure architecture at Juniper.

2 Juniper Asks “Why Not Cloud” and Fuels Innovation Case Study

Virtual networks are created across the MPLS core to provide real estate at the Sunnyvale headquarters for more talented isolation and extend secured network segments between data developers and other employees. centers. This allows Juniper to create global network segments Leveraging public cloud for the majority of corporate applications with increased security, operational efficiency, and agility while has allowed Juniper to slay the dragon of overprovisioning for reducing overall cost. corporate applications. “Moving to cloud allowed us to rightsize our Business Results environment,” says Ovchinnikov. “We can give folks the capacity they need in the way that they use it.” IT staff has also freed up Enable innovation and agility from public cloud. The ability time to work on R&D projects and focus on business innovation. to leverage public and private cloud has enabled innovation and agility at Juniper. Juniper is consolidating 300 corporate Increase IT agility with automation. “DevOps rides alongside applications and 18 corporate data centers into 150 applications in cloud adoption,” says Ovchinnikov. As administrators began to the cloud and in a single data center for the Americas. Half of the automate, the siloed nature of traditional IT departments—with applications and services have been migrated as of spring 2017. different administrators for servers, storage, and networking—got in the way. “We created a vertical execution SWAT team, so that “A major benefit of migrating to cloud is the ease of access to everything you need, from request to delivery, is one team,” says hardware resources,” says Ovchinnikov. “If you buy the hardware Ovchinnikov. Monitoring, operations, and change management yourself, you have the leverage of one company. When you also evolve in a highly automated cloud environment. acquire infrastructure from a cloud provider, you leverage the buying power of thousands of companies.” The scale of a cloud “As you move closer to automation, things work differently,” he provider—with sophisticated technology and an expert staff— says. “You don’t have servers—you have a code base. If there’s an has allowed the Juniper IT team to run leaner while still having issue, you have to go back to the code base because it persists access to the latest technology. Ovchinnikov also notes that the through the landscape changes,” he says. Support for automated performance and reliability of many applications and services apps and Platform-as-a-Service functions have evolved. In many improved when moved to the cloud. cases, the development team directly deploys the infrastructure and supports its own applications, rather than having application “The game-changing question was ‘why not cloud?’” support centralized.

Serge Ovchinnikov, IT Architect, Juniper Next Steps Innovate faster with private cloud. Juniper is building its With the transition to the Quincy data center nearly complete, next-generation engineering environment in the new software- IT is turning its attention to other regions, including building a defined data center in Quincy, which will allow Juniper to further software-defined data center in Bangalore, India. And Juniper accelerate innovation, improve product quality, and lower costs. continues to build its engineering environment of the future to Called the Engineering Environment of the Future, it’s a dynamic, continue to accelerate innovation and efficiency. integrated build and test platform. “By using our own products, we’re trying to create a slingshot effect in our own engineering The transition to the cloud also helps Juniper walk a mile in processes to build products for customers that are more cloud- our customers’ shoes. With firsthand insight using Juniper friendly,” says Overmon. technology to run the business, IT has partnered with customer support, engineering, and advanced services to improve A high-performance build grid is used to accelerate development, product quality, revise outdated processes, and create a better enabling Juniper to add features faster and resolve defects experience for customers. quickly. The pilot program is taking a novel approach to accelerate development, while simultaneously improving For More Information scalability and maintaining reliability by using specialized Juniper Professional Services can help your organization containers, which are each dedicated to a discrete step in the assess, design, and deploy your network solution. Juniper offers developer’s workflow. IT operations and development teams use professional services for data center, core and edge, and security. the Docker platform for more agile software delivery. Customers also can take advantage of Juniper’s cloud-based Developers are more productive. Testing is automated and Customer Certification Lab (CCL) test environment to simulate designed for massive scale, and developers can test on either a deployment, provisioning, and testing of their cloud platform. virtual or physical infrastructure. Automation has slashed lengthy Juniper’s CCL Lab works with customers to validate the test cycles, and Junos OS has moved from quarterly release proposed platform design, verify that the network elements are cycles to high-velocity releases. interoperable, and test performance and scalability. Increase IT efficiency. Overall, IT costs are significantly lower Contact your Juniper account manager or Juniper partner for and operations are streamlined. Moving the Americas engineering additional information. data center from Sunnyvale to Quincy delivered major OpEx savings. “We hadn’t completed the move last year, and we saved To find out more about Juniper Networks products and solutions, $1 million in OpEx on the electric bill just by moving the test please visit www.juniper.net. equipment,” says Overmon. The move also frees up premium

3 Juniper Asks “Why Not Cloud” and Fuels Innovation Case Study

About Juniper Networks Juniper Networks challenges the status quo with products, solutions and services that transform the economics of networking. Our team co-innovates with customers and partners to deliver automated, scalable and secure networks with agility, performance and value. Additional information can be found at Juniper Networks or connect with Juniper on Twitter and Facebook.

Corporate and Sales Headquarters APAC and EMEA Headquarters Juniper Networks, Inc. Juniper Networks International B.V. EXPLORE JUNIPER 1133 Innovation Way Boeing Avenue 240 Get the App. Sunnyvale, CA 94089 USA 1119 PZ Schiphol-Rijk Phone: 888.JUNIPER (888.586.4737) Amsterdam, The Netherlands or +1.408.745.2000 Phone: +31.0.207.125.700 Fax: +1.408.745.2100 Fax: +31.0.207.125.701 www.juniper.net

Copyright 2017 Juniper Networks, Inc. All rights reserved. Juniper Networks, the Juniper Networks logo, Juniper, and Junos are registered trademarks of Juniper Networks, Inc. in the United States and other countries. All other trademarks, service marks, registered marks, or registered service marks are the property of their respective owners. Juniper Networks assumes no responsibility for any inaccuracies in this document. Juniper Networks reserves the right to change, modify, transfer, or otherwise revise this publication without notice.

3520606-001-EN Jun 2017