Upload
others
View
1
Download
0
Embed Size (px)
Citation preview
© 2008 Cisco Systems, Inc. All rights reserved. Cisco ConfidentialNexus 5000 1
思科数据中心训练营
Cisco Confidential - Internal OnlyData Center Access 2
议程安排
数据中心发展趋势及思科数据中心3.0战略
思科统一计算解决方案与Vblock
思科Nexus 统一交换解决方案实现I/O整合
思科MDS交换机组建SAN网络
思科应用网络ACE&WAAS解决方案
© 2008 Cisco Systems, Inc. All rights reserved. Cisco ConfidentialNexus 5000 3
数据中心发展趋势思科数据中心3.0战略
Cisco Confidential - Internal OnlyData Center Access 4
数据中心/计算架构的演进
© 2009 Cisco Systems, Inc. All rights reserved. Cisco Confidential4
颠覆性技术
Cisco Confidential - Internal OnlyData Center Access 5
运营的限制
数据中心面临日益严峻的压力
新的业务压力
合作 SLA 指标高效的用户 全球可达 法规遵从
电源及冷却系统 供应链资产利用 安全威胁 总线延续
Cisco Confidential - Internal OnlyData Center Access 6
“50% 的企业级数据中心将在24个月内处于技术淘汰边缘” - Gartner Group
• 存储以每年40-70% 的速度增长;
• 服务器和存储的利用率15-25% ;
• 电力和空调占数据中心总运行费用的25-30%,到
2008年,将有50%正在运营的数据中心面临因高密
度设备的需求而产生的电力及空调不足的困境;
• 一个新的应用需要花60天到180天才能部署完毕;
• 企业对高可用数据中心需求越来越高;
数据中心的现实和挑战
Cisco Confidential - Internal OnlyData Center Access 7
Cisco 数据中心3.0发展路线
数据中心联网
统一Fabric
统一计算
互联云
私有云
整合 虚拟化 自动化 公用事业 市场
2009
2010
Cisco MDS
Nexus 2000
UCS B Series
UCS C Series
Nexus 4000
Cisco ACE
Cisco WAAS
Cisco Catalyst
Nexus 5000
Nexus 7000
Nexus 1000V
2nd Gen UCS
2nd Gen FEX
Cisco Confidential - Internal OnlyData Center Access 8
• Multi-Protocol
• Modular Design
• Continuous Systems Ops.
• Consistent & Focused Features
数据中心级操作系统
• 10G Density
• 40/100G Readiness
• Low Latency
• Active –Active links (STP Elimination)
系统可扩展性
• Cisco DCE
• FCoE
• Device & Cable Reduction
• Fabric scalability w/ Multipathing
统一交换
• Open XML API for all CLI parameters
• Consistent Device MGMT Platform
• DC wide service provisioning
统一管理机构
• Roles Based Access Control
• Link Layer Encryption
• Integrated Packet Analysis
无处不在的安全
• Consistent Network Policy (Physical or Virtual)
• Efficient use of servers & storage
• Improved VM performance, mobility & security
虚拟化服务器交换
新一代的数据中心
Cisco 数据中心3.0技术战略
Modular Switching
刀片服务器交换
机架交换机
Cisco Confidential - Internal OnlyData Center Access 9
FY11 数据中心3.0 产品线战略
解决方案 产品线 产品明细
应用服务
DCASACE Modules and C6500/ACE Bundles, ACE4710, CSS11000, GSS Appliances, ANM Mgmt Software
WAASWAAS/WAE Appliance and ISR WAAS Bundles
数据中心交换
Nexus 7K Nexus 7000
Nexus 5K & 2K Nexus 5500, 5000, 2000
Nexus 4K Nexus 4000 Blade Switch for IBM
Nexus 1K Nexus 1000v Software Switch
eBlade VBS 3x00 Blade Switch for HP/IBM/Dell
存储 MDS9000MDS9500 SAN Director, MDS9200/9100 SAN Fabric, MDS9124e for IBM/HP Blade servers
统一计算系统
UCS B/C UCS B-Series and C-Series
UCS ISV Software 3rd party software, e.g. VMWare, BMC
Cisco Confidential - Internal OnlyData Center Access 10
议程安排
数据中心发展趋势及思科数据中心3.0战略
思科统一计算解决方案概述
思科Nexus 统一交换解决方案实现I/O整合
思科MDS交换机组建SAN网络
思科应用网络ACE&WAAS解决方案
数据中心渠道政策及计划
© 2008 Cisco Systems, Inc. All rights reserved. Cisco ConfidentialNexus 5000 11
思科统一计算解决方案概述
Cisco Confidential - Internal OnlyData Center Access 12
Process AutomationService Management Performance Management Provisioning Management
Unified Computing System(UCS)在 DC 3.0 的角色
VirtualizationOS Applications Infrastructure
Compute
Hardware Device Management
I/O (Network)
Server Access Network
Storage
Storage Network
SAN
MDS9000
N5000
N7000Unified Fabric V VVVV VVV
N1000
N5000
CBS3100
C49xx
DC LAN GbE/10GbE
C6500 N7000
N7000
Network Services
ACE
WAASASA
VPN
E-mail Security
SecurityApplicationDelivery
Servers
VirtualizationPlatform
ComputePlatform
Network Platform
Resource ScalingWith Cisco Memory Expansion
Unified FabricWith Nexus Series
Dynamic Prov
Process Automation
Business Service Management
PerformanceManagement
Hypervisor OptimizationWith VN-Link
AutomatedProvisioning
Fully Integrated System That Brings Together the Network Fabric, Compute Resources, and Virtualization Software to Simplify
Setup, Improve Business Metrics, and Enable Just in Time Provisioning for Business Transactions
Cisco Inc., Company Confidential
Cisco Confidential - Internal OnlyData Center Access 13
UCS 产品系列- 刀片式 及 机架式
UCS B 系列 UCS C 系列
Cisco Confidential - Internal OnlyData Center Access 14
Cisco UCS 架构 是 Form-Factor Neutral
无论是刀片式或是机架式, UCS客户都享有一下的优势:
• Consolidated & Unified Infrastructure
• Unified Management & Dynamic Provisioning
• Virtualization Optimization
• Memory extension technology
Blade & Rack serversRack serversBlade servers
Cisco Confidential - Internal OnlyData Center Access 15
Virtualization Optimization Fine-grained control, portability, and visibility
of network, compute, and storage attributes
More than double the memory capacity of competing systems
Industry Standard Servers Intel Xeon processor 5500 series
150% generational performance increase
Intelligent platform for performance and energy efficiency
Unified Fabric Wire once, low latency FC and Ethernet
Virtualization aware
Less than half the normal amount of adapters, switches, cables
Automated Provisioning Embedded single point of management and
provisioning
Visibility and control across datacenter organizations
Infrastructure policy management and compliance
Cisco UCS - B 系列
Extended Memory
Scale Out
Unified Fabric
Fabric Extender
Virtualized Adapter
Designed to dramatically reduce datacenter total cost of ownership while simultaneously increasing IT
agility and responsiveness.
Cisco Confidential - Internal OnlyData Center Access 16
传统刀片服务器 Cisco 统一计算单元
最大限度减少布线UCS Uses Significantly Fewer Cables
Cisco Confidential - Internal OnlyData Center Access 17
Compute
Network
Virtualization
Vblock Infrastructure Packages
Solution Packages
Operating
Systems
Applications
Information
云计算理想IT基础平台—Vblock
Vblock是Cisco、EMC、Vmware联盟发布的新一代数据中心虚拟化解决方案打包产品
Vblock特点:为在虚拟化数据中心运行的业务系统提供强有力的支持并实现成本节约
1. 提供经验证的高可实践性——经过三方联合验证的虚拟化解决方案保证端到端的业务数据联通性,消除集成风险,加快业务方案的实施。
2. 提供灵活、快速的可扩展性——基于X86开放式平台,在虚拟数据中心扩容与新建过程中都可提供按需分配式的架构拓展
3. 提供固有的高可用性与安全性——方案设计时已充分考虑到HA和Security需求,用户无需添加相关投资
VCE联盟统一服务体系为Vblock提供保驾护航
Cisco Confidential - Internal OnlyData Center Access 18
为不同企业量身定做
Vblock 产品包配置支持模块化,标准化,扩充性
Vblock 2 (3000 – 6000+ VMs)• 为大型企业设计,可满足高扩展性
和整体IT需要
Vblock 1 (800 – 3000 VMs)• 为中型企业设计,用于实现企业IT
业务全面支撑
Vblock 0 (300 – 800 VMs)
• 为小型数据中心设计
• 主要用于测试、开发及小规模应用
Cisco Confidential - Internal OnlyData Center Access 19
思科UCS C系列服务器家族
Item CPU Size Memory Disks I/O
UCS C460 M1Intel Xeon
75004RU
64 DIMM
512GB12 SFF
SAS/SATA 10 PCIe
UCS C250 M2Intel Xeon
56002RU
48 DIMM
384 GB
8 SFF SAS/SATA
5 PCIe
UCS C210 M2Intel Xeon
56002RU
12 DIMM
96 GB
16 SFF SAS/SATA
5 PCIe
UCS C200 M2Intel Xeon
56001RU
12 DIMM
96GB
4 x 3.5” SAS/SATA
2 PCIe
UCS C200 高密度机架式
UCS C210通用型机架式
UCS C250超大内存容量机架式
高密度服务器,平衡的计算性能和灵活的IO吞
吐能力
通用服务器,特别适用与需要高可扩展能力,大容
量内部存储的应用
大容量的内存,特别适合虚拟化和内存密集型应用
UCS C460 高性能机架式
适合企业级应用
C系列机架式服务器,现在可以满足绝大多数数据中心对计算能力的要求
Cisco Confidential - Internal OnlyData Center Access 20
海量内存扩展技术
Capacity Speed DIMMs Cost* DIMMs Cost* Savings
64 GB 1033Mhz 4x 8GB & 8x 4GB $7,860 32x 2GB $3,840 51%
96 GB 1033Mhz 12x 8GB $15,780 48x 2GB $5,760 63%
192 GB 1033Mhz 12x 16GB** $78,900 48x 4GB $15,600 80%
384 GB 1033Mhz 12x 32GB** N/A 48x 8GB $63,120 N/A
* DDR2 pricing as of 12/08 – asssumed for DDR3 at 12/09
** Nonexistent or Nonstandard DIMM (MetaRAM or other). Est. MetaRAM pricing.
Cisco Confidential - Internal OnlyData Center Access 21
UCS C250 M2
UCS C系列服务器市场定位与价值
2-socket/4-socket
机架式服务器
业界标准的2-socket/4-socket 服务器家族
主要优势
超大内存容量– C250 M2
今年第三季度,支持Cisco虚拟网卡
今年第四季度,支持UCS Manager
更低的成本,内存密集型应用
灵活并且高性能的IO处理能力
更低的运营成本,简化管理
Cisco Confidential - Internal OnlyData Center Access 22
C系列服务器的目标市场和应用
市场及应用 C200 C210 C250 C460
中小企业应用 Yes
文件服务器/打印服务器
Yes Yes
Web/应用服务器 Yes Yes
虚拟化/虚拟桌面应用
Yes 高端 高端
数据库/即使消息/邮件
小型数据库 Yes 大型数据库
内存密集型 Yes Yes
存储密集型 Yes
Cisco Confidential - Internal OnlyData Center Access 23
Rack Server市场的Major Player
•如果我们把以上这几个vendor的产品特别是Rack Server拿出来比较下,会发现绝大多数产
品的区别不大,产品的相似度很高。所谓的创新多数时间仅停留在口号上。
•绝大多数的产品区别仅在一两个PCI-e的插槽,一两个硬盘插槽等,对于绝大多数用户来说,意义不是很大。
•管理功能也大同小异,而且不同厂家采用的协议也不尽相同。
Cisco Confidential - Internal OnlyData Center Access 24
Rack Server市场的Major Player 续2
•Cisco的Rack Server真正体现了创新的含义。在诸如内存扩展技术,统一管理系统和服务器硬件设计方面大大领先了竞争对手。
•Cisco在创新的同时,还是沿用了业界的标准技术,没有给用户带来额外的,私有的技术标准,在保护用户投资的同时,又能完美融入到用户现有的IT环境中。
Cisco Confidential - Internal OnlyData Center Access 25
总结
•Cisco的Rack Sever可以满足绝大部分用户的需求。
•Cisco C250 服务器真正体现了Cisco的创新,为用户带来了独特的内存扩展技术,特别适合虚拟化和大内存应用如search。
•Cisco C210 服务器支持16个热插拔硬盘槽,支持6G SAS硬盘和RAID卡,特别适合需要海量存储和极高I/O性能的应用,如分布式文件系统或近线存储如备份系统。
•Cisco C200 服务器适合通用应用如Web,DHCP等应用。
•Cisco 独特的统一管理架构可以大大简化用户的IT管理,并可无缝融入到用户当前的管理架构中。
Cisco Confidential - Internal OnlyData Center Access 26
为什么要选统一计算产品? 为什么选择思科?
为了更好的发展,数据中心需要做出改变
•需要演变的不仅是计算,同样包括网络
因为虚拟化,市场正在转型
•“服务器”变成了网络里流动的对象
思科的创新正在领导这场变化
•第一步会是统一的网络
•统一计算把所有的技术整合到了一起
思科为下一代虚拟数据中心提供了最好的解决方案
•重点关注基础设施部署和管理
•相对于目前行业中的补丁性解决方案,另辟新径
Cisco Confidential - Internal OnlyData Center Access 27
议程安排
数据中心发展趋势及思科数据中心3.0战略
思科统一计算解决方案概述
思科Nexus 统一交换解决方案实现I/O整合
思科MDS交换机组建SAN网络
思科应用网络ACE&WAAS解决方案
数据中心渠道政策及计划
Cisco Confidential - Internal OnlyData Center Access 28
FC
IPFC
IP
FC
IPFC
IP
现阶段
•服务器利用效率较低
•千兆以太网上联
•存储和IP分离
第一步:服务器虚拟化
•服务器整合虚拟化,提高利
用率
•要求万兆以太网上联
•存储和IP分离
第二步:接入交换机整合
•服务器上联融合,降低运维
成本
•要求万兆FCoE网络上联
•存储和IP部分融合
第三阶段:IP存储完全融合
•IP和存储完全融合,降低运维
成本
•要求万兆FCoE网络上联
•存储和IP全部融合
数据中心网络技术的运用路线图
1GFC
10GFC
10G FCoE 10G FCoE
10GFC
存储设备
存储交换机 以太网交换机
存储设备
存储交换机 以太网交换机
存储设备
存储交换机 以太网交换机
存储设备
以太网交换机
服务器
新一代以太网交换机以太网交换机
服务器 服务器 服务器
新一代以太网交换机
新一代以太网交换机 10G FCoE
Cisco Confidential - Internal OnlyData Center Access 29
Nexus数据中心产品家族
7.5Tb/s
15Tb/s
520G
Nexus 5010
Nexus 7010
1Tb/s
Nexus 5020
接入 核心/汇聚服务器
Nexus 2000
Nexus 7018
VM
Nexus 1000V
数据中心操作系统:NX-OS VN-Link
Fabric Extender
Cisco Confidential - Internal OnlyData Center Access 30
Nexus 7000 介绍
Industry’s First Data Center Class Platform
Linecard Modules
Nexus 7000 and NX-OS
• 10 & 18 Slot versions
• 15+ Terabit System
• Unified Fabric Ready
• Modern, Modular OS
• Device Virtualization
• Cisco TrustSec
• Continuous Operations
Supervisor
Cisco NX-OS Multi-protocol Operating System
Data Center Network Manager (DCNM)
10G Ethernet
• 32 Port SFP+ 10G
• 8 Port X2 10G - XL (future)
1G Ethernet
• 48 Port 1G-TX
• 48 Port 1G
10G DCE
• 32 Port SFP+ 10G (future)
Cisco Confidential - Internal OnlyData Center Access 31
Nexus 7018 Chassis
Optional front
doors
Front Rear
System status
LEDs
Integrated cable
management
Supervisor
slots (9-10)
Power supply
air intake
Crossbar
fabric
modules
Power supplies
25RU
Beacon LEDs
on all FRUs
Side-to-side
airflowLocking
ejector
levers
Common equipment
removes from rear
System
fan trays
Payload slots
(1-8, 11-18)
Cisco Confidential - Internal OnlyData Center Access 32
17.3” (439mm)
21 R
U
36.7
5”
(934m
m)
Nexus 7000 10-Slot ChassisAir outlet
(rear/top)
Fabric modules
(up to 5)
Power Supplies
(up to 3)
Fans
(2 system + 2 fabric)
Chassis depth 30” (762mm)
Module Ejector
Release Buttons
Supervisor slots (2)
Linecard slots (8)
System status LEDs
Cable Management
Air intake
(front/bottom)
Air Filters (opt)
Lockable Front
Doors (opt)
Cisco Confidential - Internal OnlyData Center Access 33
Virtual Switches
One physical switch can act as multiple virtual switches
Reduces the number of physical switches in the network, lowers capex and power
Applications Include separating Networks, Isolating Security Domains using the same physical switch
Note: Should not be used for dual homing high availability. Physical redundancy is more robust
Prod
DMZExtranet
Cisco Confidential - Internal OnlyData Center Access 34
OTV to Solve Layer 2 issue
Ethernet traffic between sites is encapsulated in IP: “MAC in IP”
Dynamic encapsulation based on MAC routing table
No Pseudo-Wire or Tunnel state maintained
West
Site
East
Site
OTV OTV
VLAN MAC IF
100 MAC1 Eth1
100 MAC2 IP B
100 MAC3 IP B
IP A IP B
Encap Decap
Ethernet Frame IP packet Ethernet Frame Ethernet Frame
VLAN MAC IF
100 MAC1 IP A
100 MAC2 Eth 1
100 MAC3 Eth 2
Communication between MAC1 (West) and MAC2 (East)
Large L2 Domain
VMotion
Cisco Confidential - Internal OnlyData Center Access 35
N7K
N5/7K
在DC中取得竞争优势,屏蔽潜在竞争对手数据中心升级,扩容,新建中引入Nexus
升级 新建扩容
CAT
CAT
未来
现在
• 没有扩容空间,升级现有DC
• 在核心/汇聚层部署N7K,并且
• 把Catalyst升级到10GbE上联, VSS
• 在现有DC中扩容新的面积
• 在核心/汇聚层部署N7K,并且
• 在接入层部署N5K/7K或N5K/N2K
• 升级Cats (10GbE, VSS)
• 新建DC
• 主推端到端Nexus解决方案(7K 核心/汇聚, 5K/2K接入)
• 主推10GbE, 统一交换,数据中心以太网(DCE) VN-Link, VFrame
CAT CAT
CAT CAT接入
汇聚
N7K
接入
汇聚
10GbE
CAT
N7K
10GbE
CAT
N7K
10GbE
CAT N2K N2K
N5/7K
N7K
N5K
N7K
N5K
Cisco Confidential - Internal OnlyData Center Access 36
Nexus 5000 产品概述
业界第一款整合I/O 的数据中心虚拟网络交换机
Nexus 5000交换机系列
56-Port L2 Switch• 40 Ports 10GE/FCoE/DCE, fixed
• 2 Expansion Modules
28-Port L2 Switch• 20 Ports 10GE/FCoE/DCE, fixed
• 1 Expansion Module
FC + Ethernet • 4 Ports 10GbE/FCoE/DCE
• 4 Ports 1/2/4G FC
Fiber Channel • 8 Ports 1/2/4G FC
扩展模块
Ethernet • 6 Ports
10GE/FCoE/DCE
OS
Cisco Fabric Manager and Cisco Data Center Network Manager
Cisco NX-OS
管理
合作伙伴SW FCoE/DCE + 2x10GE2x10GE/DCE/FCoE 2x10GE
Nexus 5010Nexus 5020
Cisco Confidential - Internal OnlyData Center Access 37
Nexus 5000/2000产品的定位
首先,N5K/N2K是一款虚拟的模块化以太网交换机,定位在数据中心接入层
支持纯GE、10GE全线速的以太网交换机,支持高密度和高性能的接入层网络迁移和数据中心改造
带来数据中心L1、L2的灵活性
其次,N5K是一款支持网络融合FCoE的交换机
FCoE已于2009年6月3日正式成为ANTS T11的工业标准
IBM、HP的服务器相继宣布了对FCoE的支持
NetApp的存储已经支持FCoE的端口、EMC也将于年底支持
第三, N5K是虚拟化ready的交换机,可以向虚拟化数据中心发展
N5K将直接支持与服务器虚拟机融合的VN-Link的技术
Cisco Confidential - Internal OnlyData Center Access 38
业界第一个“数据中心级”网络平台灵活的交换矩阵Fabric扩展技术
• Nexus 5000 + Nexus 2000组成一台虚拟交换机• Nexus 2000 FEX是Nexus 5000交换机的一个虚拟线卡• Nexus 5000/2000间没有Spanning Tree
• Nexus 5000维护所有的管理和配置
Fabric Extender (Nexus 2000)
Nexus 5000
Cisco Confidential - Internal OnlyData Center Access 39
接入层
汇聚层N7000+C6500+服务模块
核心层N7000
服务器群
机架-1 机架-2 机架-3 机架-11 机架-13机架-12
10GE 10GE
L3,L2
中心管理点
FE
4x10G 光纤上联
服务器群
N2K
Nexus 5020
N2K N2K N2K N2K
新建数据中心Server Farm网络架构设计End2End Nexus & N5K/N2K ToR
架顶扩展器Nexus 2148T
…
10GE上联vPC
Cisco Confidential - Internal OnlyData Center Access 40
接入层
汇聚层N7000+C6500+服务模块
核心层N7000
服务器群
机架-1 机架-2 机架-3 机架-N EoR设备机架机架-N+1
10GE 10GE
L3,L2
中心管理点
1GbE 铜线
服务器群
Nexus 5020
新建数据中心Server Farm网络架构设计End2End Nexus & N5K/N2K EoR
N2148T级联
10GE上联vPC
…
Cisco Confidential - Internal OnlyData Center Access 41
Cisco Nexus 1000V
vSphere
Nexus1000V
Nexus 1000V
VM VM VM VM
Industry’s most advanced software switch for
VMware vSphere
Built on Cisco NX-OS
Compatible with all switches
Compatible with all servers on the VMware
Hardware Compatibility List
Winner of VMworld Best in Show 2008 and
Cisco Most Innovative Product of 2009
Cisco Confidential - Internal OnlyData Center Access 42
Cisco Nexus 优势分析
现有数据中心采用了传统以太网技术搭建,存在着维护管理难;资源利用率低;服务策略不一致等问题,其服务能力已无法适应当前业务急剧扩展所需的资源要求
新型基于Nexus系列的架构改变传统的思路,实现面向服务的体现架构,做到了简化管理,高效复用和策略一致
Nexus产品的革新技术DCE的无丢包、高性能、高密度10GE、智能流控技术和带宽管理技术、高可扩展性、40G/100G就绪、虚拟化VDC技术、网络整合FCoE技术等使客户决定了选择Nexus系列构架其新型数据中心
NX-OS操作系统基于模块化设计,稳定,可靠,并且可以实现高可用性的软件模块自愈
接入层N5K+N2K带来了布线的灵活性和高可扩展性,同时大大减少了设备的管理点,为将来过渡到虚拟化数据中心和统一交换网络打下基础。
Nexus产品系列正式销售已经超过一年,全球部署1900余套;使用用户超过500个,有大量成功的案例
整体的架构经过严格的CVD验证测试,并且通过新技术的引入真正实现了绿色、节能
Cisco Confidential - Internal OnlyData Center Access 43
Distribution
Nexus 7000
DC Core
Nexus 7000
Customer Requirements
New data center in Shanghai for ICBC next-gen core banking applications, up and running before end of 2010
Highest standard on Data Center availability , stability and security
Simplify Data Center management and cabling
Integrated with ICBC existing DC management system and ECC operation process
Customer Benefits
Fully validated and Future proven architecture in new primary data center
Smooth operation transition
Reduce management complexity and cabling cost by deploying Cisco VDC/VPC and Fabric Extender technologies
The world largest bank deploys
Nexus end-to-end infrastructure
in its new primary data center in
Shanghai, China
Service-led Cisco Data Center 3.0 architectural win- Cisco Data Center Design Advisory Service
- 6-month onsite system validation testing
- 10x N7018, 18xN7010, 48x N5020, 168x N2248 were booked
in Q4FY10
- Cisco Data Center Service Node
- DC 3.0 management/operation Best Practice sharing
- Future Unified Fabric migration and UCS/MDS opportunities
Industrial & Commercial Bank of China(ICBC)
ICBC Primary Data Center in Shanghai
Cisco Confidential - Internal OnlyData Center Access 44
议程安排
数据中心发展趋势及思科数据中心3.0战略
思科统一计算解决方案概述
思科Nexus 统一交换解决方案实现I/O整合
思科MDS交换机组建SAN网络
思科应用网络ACE&WAAS解决方案
数据中心渠道政策及计划
Cisco Confidential - Internal OnlyData Center Access 45
思科存储网络产品分类 高端FC交换机系列: MDS9500
MDS 9513: 业界最高端口密度FC交换机;528 端口
MDS 9509: 336端口
MDS 9506: 192端口
低端FC交换机系列: MDS 9100、MDS9222i
MDS 9134: 24-32 FC 口+ 2 10G互连FC端口
MDS 9124: 8-24 FC 口
MDS 9222i:18 FC端口+ 4 GE端口
存储网络扩展
MDS 9222i
18+4 业务模块
存储智能业务
SSM 智能业务模块: 存储虚拟化,存储智能应用服务
刀片系统FC交换机
模块化
固定端口
模块
Cisco Confidential - Internal OnlyData Center Access 46
Performance and density leadership
Scalable from 8- to 528-ports
Single code stream across MDS and Nexus families
Director investment protection
Integrated Multiprotocol and Multi-services
产品线
Cisco Fabric ManagerManagement
Cisco MDS 9000 Family NX-OSO/S
MDS 9506, 9509, 9513
MDS 9222i
MDS 9134
Small/Medium Business
Enterprise and Service Provider
HP/IBM FC Blade SwitchMDS 9124
MDS 9148
New
48口线速8G
Cisco Confidential - Internal OnlyData Center Access 47
24 line rate 4-Gbps Fibre Channel ports
64 buffer-to-buffer credits per group of 4 ports
1/2/4 Gbps shortwave Fibre Channel SFPs
8-port base configuration
8-port incremental licensing
Comprehensive Security Framework
Management through 10/100 Base-T Ethernet and RS232 Console Port
MDS 9124 Fabric Switch
2 hot-swappable power supplies with integrated fans
–3 Fans + 1 Fan per Power Supply
Complete SAN-OS 3.x feature set, with few exceptions
Non-disruptive software upgrade
Support for 16 VSANs
1 SPAN session
Full MIB and SMI-S support
Optional
Power Supply
Cisco MDS 9124 多层光纤交换机
Cisco Confidential - Internal OnlyData Center Access 48
48-port 8G FC光纤交换机
Platform Powered by NX-OS 5.0 Software
48 x 8G FC ports in 1 RU form-factor
3 SKUs to choose from – 16p, 32p or 48p
On-demand ports - 8-port license for growth
Redundant, hot-swappable power supplies and fan trays
Enterprise-class availability for increased business resilience
Flexibility to grow with changing business needs
Affordability without compromising functionality
Ease-of-Use with Quick Configuration Wizard
Front View
48 x 8G FC ports with line rate performanceIndustry leading 1RU 8G FC density
Back View
Dual Power Supplies and Dual Fan TraysFor Enterprise-Class Availability
Cisco Confidential - Internal OnlyData Center Access 49
Brocade 300Brocade 5100
and VA-40FCBrocade 5300 Cisco MDS 9148
# of 8Gbps FC Ports 8, 16, 24 (1RU) 24, 32, 40 (1RU) 48, 64, 80 (2RU) 16, 24, 32,40,48 (1RU)
Aggregate Bandwidth 384 Gbps 640 Gbps 1280 Gbps 768 Gbps
Architecture Line Rate Line Rate Over-subscribed Line Rate
Redundant Power &Fans No Yes Yes Yes
Seamless Server Deployment and Mobility
No Yes
Virtual Fabric Support No Limited Support Limited Support Yes (up to 32 VSANs)
Corrupted Data Handling Sends to Storage Check, Drop and Notify
Fault Isolation No Yes
MDS 9148 – 更快, 更好, 更便宜!!!
Extended Distances License Required Included
Link AggregationTrunking
4/8 links License Required
Port-Channeling
16 links
Included
Fabric ManagementFabric Manager / Fabric Watch
License Required
Fabric Manager / Device Manager Included
Cost of Optional Licenses ~$16,000 $0
Cisco Confidential - Internal OnlyData Center Access 50
Cisco MDS 9222i 多种服务模块化交换机
Fans
18 x 4G FC ports + 4 x GE ports
Expansion slot
12-Port, 24-Port, 48-
Port 1/2/4-Gbps FC
SSM (Intelligent Fabric Applications)
8-Port IP Storage Services iSCSI and FCIP
4-Port 10Gb FC
18/4-Port Multiservice
Module18/4-Port Multiservice
FIPS Module
Eighteen 4-Gbps Fibre Channel ports, four 1-Gbps Ethernet IP Storage Services ports for FCIP and iSCSI
Network Processing Engine to enable storage services
–FCIP SAN Extension (Bundled License)
–Data-At-Rest Encryption
Expansion slot
–Scales up to 66 Fibre Channel ports
–Enables Storage Virtualization with SSM
Redundant, hot-swappable power supplies and fans
Complete MDS 9500 Director feature-set with market leading enterprise-class SAN-OS
In Service Software Upgrade (ISSU) enables hitless SAN-OS upgrade
ISSU
Cisco Confidential - Internal OnlyData Center Access 51
Cisco MDS Fabric Manager
交换机内嵌的, 基于Java的应用
发现和拓扑映射
多重视图:
• Fabric View
• Summary View
• Physical View
配置
监控和告警
网络诊断
安全:
• SNMPv3
• SSH
• RBAC
简化多个交换机和Fabric的管理
免费!
Cisco Confidential - Internal OnlyData Center Access 52
Cisco 的虚拟SAN (VSAN):为Fabric整合提供严格的隔离
VSANs, defined as Virtual Fabrics, are ANSI T11 Standard
•FC-SW-4 and FC-FS-2 specifications
With VSANs, a SAN can be partitioned into multiple virtual SANs
Each VSAN has independent FC services with hardware-based isolation
Zoning Server with separate zone sets
Name Server
Domain Manager
Roles-based Access Controls (RBAC)
FC Addresses i.e. FC-IDs
FSPF Routing
VSAN can be assigned on a per port basis
ISLs can carry traffic for multiple VSANs
VSAN header is added at ingress point indicating membership
No special support required by end nodes
Enhanced ISL (EISL) Trunk carries tagged traffic from multiple VSANs
VSAN header is removed at egress point
Zoning Server, Name Server
FSPF, Domain Mgr
Role-based Access Controls
Zoning Server, Name Server
FSPF, Domain Mgr
Role-based Access Controls
CRM
VSAN
ERP
VSAN
Zoning Server, Name Server
FSPF, Domain Mgr
Role-based Access Controls
Zoning Server, Name Server
FSPF, Domain Mgr
Role-based Access Controls
CRM
VSAN
ERP
VSAN
Cisco Confidential - Internal OnlyData Center Access 53
利用虚拟SAN缩小错误影响范围
利用虚拟SAN实现网络分区,提高可用性
高可用性 – 所有网络服务都以VSAN为单位复制和维护 (名称服务,分区服务等)
每个 VSAN的网络事件是相互隔离的 – 通过隔离提高可用性
● 误操作的HBA或控制器● 网络重建事件● 区域设置修改● 其它
发生故障后以“每个VSAN”为单位实施矩阵恢复,以便加快重融合过程,缩小受影响的范围
未来:以每个VSAN为单位实施管理隔离
基于Cisco MDS 9500的SAN导向器总数: 6客户机端口总数:1024ISL 端口总数: 128
8链路捆绑 EISL干线(VSAN型)
每台导向器176 个客户机端口(VSAN型)
每台导向器160 个客户机端口(VSAN型)
!!网络事件!!HBA产生大量控制帧
错误被限制在VSAN范围内,只能影响到VSAN内的设备
Cisco Confidential - Internal OnlyData Center Access 54
MDS 9000的特点
全系列Crossbar交换结构,最高2.2Tbps交换容量
同时支持1G、2G、4G和10Gbps FC端口,最高可达528个, 8G、10G FCoE Ready平台
支持16条FC/FCIP的ISL捆绑,并最大支持4095个Buffer to Buffer缓冲信用点
集成式平台支持虚拟存储标准VSAN、VSAN路由,实现大型SAN网络的整合和业务隔离,是支持可扩展SAN 设计的必备功能
同时支持FC、FCIP、iSCSI及FICON多协议
支持智能存储应用存储加密、数据迁移、存储虚拟化、特有SANTap、网络加速Serverless Backup应用及高性能QoS
导向器支持全冗余高可用性,并提供丰富的故障诊断工具
设备端口支持4种的多厂商SAN Switch互连互通模式(inter operation mode1到4),专门用于与Brocade和McData存储交换机的互连,并已通过OEM厂商的认证
Cisco Confidential - Internal OnlyData Center Access 55
议程安排
数据中心发展趋势及思科数据中心3.0战略
思科统一计算解决方案概述
思科Nexus 统一交换解决方案实现I/O整合
思科MDS交换机组建SAN网络
思科应用网络ACE&WAAS解决方案
数据中心渠道政策及计划
Cisco Confidential - Internal OnlyData Center Access 56
Cisco ACE Family
ACE Module8 Gbps
(Software upgrade)
ACE Module16 Gbps
(Software upgrade)
ACE Module4 Gbps
+
Multi-Module(64 Gbps)
2 Gbps
ACE 4710
(Softwareupgrade)
1 Gbps
4 Gbps
ACE AP4 G
ACE AP 8 G (Software upgrade)
ACE APUpgrade to
64 G
ACE Module
ACE Appliance
ACE AP 16 G (Software upgrade)
6X
Cisco Confidential - Internal OnlyData Center Access 57
Cisco ACE 的技术体系架构
• 虚拟分区
• 多级管理域的划分
• 基于角色的管理访问控制
灵活的业务结构
超强的性能
• 高吞吐(64Gbps)
• 极强的可扩展性
• 多层次的可靠性,可用性以及可扩展性
• 服务器负载均衡
• 内容交换
集成网络安全
• 协议层检测
• TCP/IP 整形
• 硬件加速的协议控制器
• 高性能 NAT
访问控制列表(ACL)
DDoS 防护
可平滑扩展的网络架构
• 二到七层网络整合
• 功能合并
• 应用网络管理
• TCP 连接复用
• SSL 加速
• XML API
Cisco Confidential - Internal OnlyData Center Access 58
Cisco ACE 产品技术优势
L2-L7的All-in-one架构,简化网络部署实现网络层到应用层的全面整合
虚拟化技术提升设备和资源的利用率,打造极其灵活的网络结构
虚拟化技术明确管理员技术分工,改善现有的网络管理方法
强大的应用交换性能,通用协议解析器实现了应用安全和高速交换的完美组合
灵活的低成本扩容和升级方式
Cisco Confidential - Internal OnlyData Center Access 59
整合应用前端网络
Cisco Confidential - Internal OnlyData Center Access 60
整合应用前端网络和基础设施
Cisco Confidential - Internal OnlyData Center Access 61
Cisco System
产品列表 ACE4710 ACE module 4Gbps ACE module 8Gbps ACE module 16Gbps
架构和操作系统
10G 接口 no 0-88 (6500 support) 0-88 (6500 support) 0-88 (6500 support)
1G接口 4 2-528 (6500 support) 2-528 (6500 support) 2-528 (6500 support)
NP 处理器 yes yes (dual) yes (dual) yes (dual)
ASIC 处理器 yes yes yes yes
内存 (缺省/最大) 1G / 1G 4G / 4G 4G / 4G 4G / 4G
存储 CF card CF card CF card CF card
操作系统 Cisco IOS Cisco IOS Cisco IOS Cisco IOS
性能
四层新建连接数 120K 325K 325K 325K
七层请求数 50K 120K 120K 120K
吞吐量 (缺省/最大) 1G / 2G /4G 4G / 16G 8G / 16G 16G / 16G
并发连接数 1M 4M 4M 4M
SSL新建连接数 (缺省/最大) 1K / 7.5K 1K / 15 K 1K / 15K 1K / 15K
SSL吞吐量 1G 3.3G 3.3G 3.3G
HTTP压缩性能 500M / 1G 4G 6G 6G
NAT转换能力 1M 1M 1M 1M
Miercom 给出的Cisco ACE性能测试数据
Cisco Confidential - Internal OnlyData Center Access 62
数据中心
远程办公室
远程办公室
远程办公室
WAN
思科广域应用服务(WAAS)是一种强大的新型应用加速与广域网优化解决方案,它可以将分支机构昂贵的,不易管理的服务器和存储设备整合到数据中心,增强集中式应用和服务的性能,同时还能为远程用户提供类似局域网的服务水平。
什么是思科WAAS(广域应用服务)解决方案
Cisco Confidential - Internal OnlyData Center Access 63
Cisco WAAS提供全面广域网优化解决方案
广域网应用加速
分支机构的视频/媒体分发基础平台
提供集中管理的本地服务
Data Center
Remote Office
Remote Office
Remote Office WAN
Optimized Connections
VPN
InternetMobile
Backup Data Center V
B
2
V
B
3
V
B
1
Cisco Confidential - Internal OnlyData Center Access 64
Data Center & Campus Platforms
Branch Office and Mobile User Platforms
Cisco WAAS Product Line
Data Center & Campus
Large Branch / Small Data Center
Large Branch
Medium Branch
Small Branch
Mobile User
Data Center Appliance
WAE-7371
WAE-7341
WAVE-274
WAVE-474
WAVE-574
Branch/Virtual Blade Appliance
WAE-674
WAAS Module, ISR
On-Demand WAAS on SRE, ISR G2
Cisco
WAAS
Mobile WAAS Express, ISR G2
WAASView
Cisco Confidential - Internal OnlyData Center Access 65
‘WAAS Express’ - WAAS in IOS
Embedding WANopt in IOS
WANopt in IOS for smaller branches
TCP opt, Payload Compression, Data Redundancy Elimination (RAM-based)
Supported on 88x, 89x, 19xx, 29xx, 39xx
Unified WAAS Architecture
Common head-end at Datacenter
Common management and monitoring
Flexible deployment
Appliance, Service Module or WAAS-Express
Choose per requirements
WAAS ExpressBranch Office
WAN
Data CenterWAE WCM
2HCY10
Cisco Confidential - Internal OnlyData Center Access 66
WAAS Branch Product Line Positioning
WAAS Express – Bandwidth optimization for small branches
WAAS Transport – Bandwidth optimization for all branch sizes
WAAS Enterprise – Application acceleration and bandwidth optimization for all branches
WAAS Express WAAS Transport WAAS Enterprise
Bandwidth Optimization
Yes Yes Yes
Application Acceleration
No No Yes
Target WAN T1/E1/3G links All
Hardware Shared router resources
Dedicated SM and appliances
Dedicated SM and appliances
Compression/Byte Caching
RAM based RAM and HDD RAM and HDD
Cisco Confidential - Internal OnlyData Center Access 67
应用加速性能提升
Category Applications 2X 5X 10X 25X 50X 100X+
File Sharing CIFSNFS
Email Microsoft ExchangeLotus NotesInternet Mail
Web andCollaboration
HTTPWebDAVFTPMicrosoft Sharepoint
Software Distribution
Microsoft SMSAltirisHP Radia
EnterpriseApplications
Microsoft SQLOracle, SAPLotus Notes
BackupApplications
Microsoft NTBackupLegato NetworkerVeritas NetbackupCommVault Galaxy
Data ReplicationEMC SRDF/AEMC IP ReplicatorNetApp SnapMirrorData DomainDouble-TakeVeritas Vol Replicator
2-20X Avg >100X Peak
2-5X Avg 20X Peak
2-10X Avg 100X Peak
2-20X Avg >100X Peak
2-5X Avg 20X Peak
2-10X Avg 50X Peak
2-10X Avg 50X Peak
Category Applications 2X 5X 10X 25X 50X 100X+
File Sharing CIFSNFS
Email Microsoft ExchangeLotus NotesInternet Mail
Web andCollaboration
HTTPWebDAVFTPMicrosoft Sharepoint
Software Distribution
Microsoft SMSAltirisHP Radia
EnterpriseApplications
Microsoft SQLOracle, SAPLotus Notes
BackupApplications
Microsoft NTBackupLegato NetworkerVeritas NetbackupCommVault Galaxy
Data ReplicationEMC SRDF/AEMC IP ReplicatorNetApp SnapMirrorData DomainDouble-TakeVeritas Vol Replicator
2-20X Avg >100X Peak
2-5X Avg 20X Peak
2-10X Avg 100X Peak
2-20X Avg >100X Peak
2-5X Avg 20X Peak
2-10X Avg 50X Peak
2-10X Avg 50X Peak
Cisco Confidential - Internal OnlyData Center Access 68
高级压缩技术:重复数据消除 (DRE)独立于应用的压缩消除了TCP流中的重复数据,提供高达 100:1的压缩。持续LZ压缩技术,基于会话的压缩甚至能为已通过DRE优化的消息再提供 10:1压缩
TFO:WAAS传输流优化(TFO)的优化功能,使几乎所有基于TCP的应用的吞吐率和效率显著提高,消除几乎所有TCP性能障碍,且无需更改客户端、服务器或网络特性。
协议优化:HTTP, MAPI, CIFS, NFS, SSL,Printing
虚拟刀片技术:Windows on WAAS (WoW), ACNS on WAAS(AoW)
DRE DRE
同步DRE环境
LZ LZ
WAAS四大核心技术
Cisco Confidential - Internal OnlyData Center Access 69
Cisco WAAS 主要优势汇总
Cisco的品牌影响力和可持续发展能力会让客户更加放心,Cisco的技术支持给客户提供更好的保障;
WAAS4.1版本的卓越加速性能,处于业界领先地位,目前WAAS处于高增长阶段,Cisco会有持续的技术投入;
WAAS Module,可以插在ISR2800和3800平台上,便于未来分支机构等迅速部署,保护投资;
WAAS 一些硬件设备WAE可以支持Virtual Blade,方便分支部署虚拟服务器;
Cisco同其他主要软件厂商有很好的合作,比如Microsoft、Oracle、SAP等,WAAS可以针对其协议格式等进行针对性优化,其它厂商由于实力有限很难得同各大软件厂商高效合作,很难获得专有协议的加速支持;
WAAS 可采用透明式部署,如WCCP模式,配置非常简单,不影响现有网络环境,不影响QoS、Netflow、NBAR等策略部署;
WAAS采用统一管理模式,GUI界面方便配置和升级,WAAS的管理WAE Central Manager可以冗余部署,提高可靠性;
WAAS可以对磁盘进行加密,保障数据安全;
Cisco Confidential - Internal OnlyData Center Access 70
金融行业WAAS部署整体网络拓扑示意图
Cisco Confidential - Internal OnlyData Center Access 71
VXI System Architecture
Ecosystem
Thin Clients
Cisco ClientsCUPC
MSOffice
Video
Desktop Virtualization S/WVMWare/Citrix
Virtualized
Data Center
Virtual CUCM
Virtual QUAD
WAAS
ISR Router
ACNS/WAAS
Nexus
Branch Data Center
Network
Cisco
WAN
Microsoft OS
HypervisorVMWare/Citrix
FCFC
Virtualization Aware NetworkThin Clients
Business Tablets
IP Phones
Virtualized Endpoint
WyseDevon IT
iGEL ACE
VDS/CDN
Broker
End-to-End Security, Management and
Automation
Tandberg Endpoints
Cisco Confidential - Internal OnlyData Center Access 72
Virtualization Aware Network
Optimized WAN acceleration, 2-7x
increase in user density with WAAS
Optimized rich media delivery with
Virtual Desktop Services
Network services: location/security
Virtualized Workspace
High-def 720p video with Cisco Cius
Improved productivity with
other Cisco endpoints
Virtualized Data Center
50% more virtual machines with Cisco UCS
Control and security of desktops with Cisco 1000V
Rapid deployment and scale with UCS Service Profiles
Rich Collaboration experience with Cisco UC
Open eco-system Virtualization S/W, Broker, Storage
VXI End to End System Benefits
Nexus/Cat6K
WAAS
ACE
IP Phone withZero ClientBack-pack
Eco-systemThin Client
Connection Broker
CiscoVirtual
DesktopServices
Branch
Router
Branch
Switch
WAN
Cisco VDI ThinClient
UCS
CUCM
Hypervisor
OS
App
Desktop Virtualization S/W
WAAS
CIUSVirtualDesktop
Storage
StorageOptimization
OfficeCUPC
Future Cisco offerings
Cisco Confidential - Internal OnlyData Center Access 73
议程安排
数据中心发展趋势及思科数据中心3.0战略
思科统一计算解决方案概述
思科Nexus 统一交换解决方案实现I/O整合
思科MDS交换机组建SAN网络
思科应用网络ACE&WAAS解决方案
数据中心渠道政策及计划
Cisco Confidential - Internal OnlyData Center Access 74
Data CenterNetwork
Infrastructure
Compute&
Virtualization
StorageNetworking
SpecializationAdvanced Data Center
Storage Networking(DCSN)
ATPData Center UCS(DCUC B-Series)
Online Training C-SeriesAM Training (65 min)SE Training (120 min)
SpecializationAdvanced Data Center Network Infrastructure
(DCNI)
DCUC Design Specialist
DCUC Support Specialist
建立统一数据中心业务
Cisco Confidential - Internal OnlyData Center Access 75
销售返点计划 : VIP – 数据中心
VIP DC
Track
产品 / 返点:• UCS 5%
• Select Cat 6K 5%
• Select Cat 4900 5%
• ACE 5%
• Nexus 7K 5%
• Nexus 5K/2K 5%
• WAAS 5%
• MDS 9000 5%
Purpose:DC Practice Margin Enhancement
Qualifications:• DCNI / DCSN Specialization
• Min Bookings Requirement
• Customer Satisfaction
• Must Register for Program
Cisco Confidential - Internal OnlyData Center Access 76
总结
培训
展开 DCNI & DCSN 专业化认证
参加销售返点计划 - VIP
公司结构
销售思科数据中心解决方案
UCS C-series, MDS SAN switch, WAAS
Unified Fabric / Nexus 7K / 5K / 2K / 1Kv
建立统一数据中心业务团队
Cisco Confidential - Internal OnlyData Center Access 77
Questions ?