april-june 2006 windows hosting seminar series product roadmap: iis 7.0 matthew boettcher web...
TRANSCRIPT
April-June 2006
Windows Hosting Seminar SeriesWindows Hosting Seminar Series
Product Roadmap: IIS 7.0Product Roadmap: IIS 7.0
Matthew BoettcherWeb Platform Technical Evangelist (Hosting)Developer & Platform Evangelism Division (DPE)Europe, Middle East, and Africa Region (EMEA)[email protected]
Product HistoryProduct History
1996 - V1 ships with WindowsNT 4.0 V2 & V3 releases came in follow-up SP releases
1997 – V4 part of NT 4 Option Pack
2000 – V5 installed by default in Windows 2000
2003 – V6 released in Windows Server 2003
2007 – V7 to be released in “Longhorn” Server
IIS 6.0 TodayIIS 6.0 Today Secure by Default
IIS no longer installed by default with OS IIS installs with “locked down” configuration Runs with minimal permissions, secure configuration
Secure by Design Extensive design & code reviews Penetration testing Defense in depth
Process architecture design for application failure Health detection Automatic recycling of applications
Result: Zero critical security patches since release. #1 in reliability for major internet sites.
Internet Information Services (IIS) 7.0Internet Information Services (IIS) 7.0
Key Benefits for Hosting
Extensibility: Flexible extensibility model for powerful customization
Scalability: Increased density in terms of Web sites hosted per Web server
Administration Tool: All new delegated administration
Diagnostics: Rich troubleshooting tools and diagnostic information
IIS7: a next generation web application platform.IIS7: a next generation web application platform. Componentized server
Reduce memory footprint and attack surface area Specialize the server Plug features in and out after deployment
Unified request processing pipeline across ASP.NET and IIS
All services can apply to all content types Single place to manage each feature
Rich extensibility model Powerful and easy extensibility APIs Extend the server with native or managed components
IIS6 Architecture RefresherIIS6 Architecture Refresher
w3svc
http.sys
iiscoreiiscore
cgicgi staticstaticfilefile
IsapiIsapiextsexts
handlershandlers
Pre-proc headersPre-proc headers
auth’c reqauth’c req
url mapurl map
loglog
End net sessionEnd net session
ISAPI Filter NotificationsISAPI Filter Notifications
aspnet_isapi.dllaspnet_isapi.dll
IHttpModule EventsIHttpModule Events
url mapurl map
begin reqbegin req
auth’c reqauth’c req
auth’z reqauth’z req
resolve cacheresolve cache
handler maphandler map
handler exechandler exec
update req cacheupdate req cache
rel req staterel req state
end reqend req
IHttpHandlersIHttpHandlers
Trace.axdTrace.axd PageHandlerPageHandler
• Server is monolithic:cant extend core featurescant remove core featurescant add features
•Feature duplication between IIS and ASP.NET.
•Features limited due to position in pipeline.
•ASP.NET functionality not applied to IIS content types.
w3wp.exe
custom errorscustom errors
authenticationauthentication
logginglogging
compressioncompression
determine handlerdetermine handler
IIS7 ArchitectureIIS7 Architecture
w3svc
http.sys
iiscoreiiscore
cgicgi staticstaticfilefile
IsapiIsapiextsexts
DetermineDetermine handlerhandler
handlershandlers
Pre-proc headersPre-proc headers
auth’c reqauth’c req
url mapurl map loglog
End net sessionEnd net session
Isapi filter notificationsIsapi filter notifications
aspnet_isapiaspnet_isapi
IHttpModule EventsIHttpModule Events
url mapurl map
begin reqbegin req
auth’c reqauth’c req
auth’z reqauth’z req
resolve cacheresolve cache
handler maphandler map
handler exechandler exec
update req cacheupdate req cache
rel req staterel req state
end reqend req
IHttpHandlersIHttpHandlers
Trace.axdTrace.axd *.aspx*.aspx
Integrated pipelineIntegrated pipeline
beginbegin
authenticateauthenticate
authorizeauthorize
resolve cacheresolve cache
map handlermap handler
acquire stateacquire state
pre-execute handlerpre-execute handler
execute handlerexecute handler
release staterelease state
update cacheupdate cache
loglog
endend
forms authforms authwindows authwindows auth
digest authdigest auth
basic authbasic auth
IHttpModuleIHttpModule
Native or Managed Handlers
*.aspx*.aspx trace.axdtrace.axd
Managed IHttpHandlerManaged IHttpHandler
isapi extisapi extstatic filestatic file
Native ModuleNative Module
other other native modulesnative modules
otherothermanaged modulesmanaged modules
role mgrrole mgr
url auth’zurl auth’z
•Unified request processing pipeline.
•All services provided by self-contained modules
•Modules can be managed or native
•All services can apply to all requests
Native HandlerNative Handler
HighlightsHighlights Server = modular components (44+)
Customize the server Reduce attack surface area Reduce memory footprint Replace IIS7 components with own or third party Specialize server workload (edge server, load
balancer, etc)
Gain control of the server Enable and disable features while server is running Enable and disable features for each application
I can modify the server out of band Add new features from Microsoft or third party
Extensibility and ScalabilityExtensibility and Scalability
Customization tools for your service offerings Enable granularity of specific features
Facilitate reduction of support and administration issues
Modular core server built on public extensibility APIs Building block architecture where core features can be added and
removed
Configurable server workload with reduced attack surface
Choose to install only required modules
Easy-to-use server farm configuration and management features
Use the administration tool to manage thousands of sites
Administration Tool and DiagnosticsAdministration Tool and Diagnostics
Consistent set of management tools IIS and ASP.NET integrated together
Security set in one place
Administration tool that supports hosting scenarios Enable delegated management on a per-site/per-application basis
Admin account on remote server not required for tool access
In real time, view the currently executing requests See which customer request is taking the CPU to 100%
Easily see the state of all Sites, AppPools, and Apps Example: Are there any failed application pools on this machine?
Example: What applications are currently active?
SummarySummary
With IIS 7.0, hosting partners gain: Tremendous extensibility, flexibility, and
customization
An integrated Web application server stack
Compatibility with existing applications
Bullet-proof reliability
For more information regarding IIS 7.0: IIS 7.0 Software Development Kit available via MSDN
Library
IIS 7.0 Operations Guide & Feature Reference available via TechNet Windows Server TechCenter
Matthew BoettcherWeb Platform Technical Evangelist (Hosting)Developer & Platform Evangelism Division (DPE)Europe, Middle East, and Africa Region (EMEA)[email protected]