Upload
skillfactory
View
359
Download
3
Embed Size (px)
DESCRIPTION
Презентация с официальной онлайн-трансляции конференции по Ethernet-продуктам On-Demand Datacenter IP Networking.
Citation preview
1©2013 Brocade Communications Systems, Inc. Company Proprietary Information
BROCADE ADX В ЦОД, КОМПЛЕКСНЫЕ
РЕШЕНИЯ ОТ АППАРАТНЫХ К
ВИРТУАЛЬНЫМ
Vasiliy Soldatov, SrSE Russia@CIS
12 September 2013
Содержание
• Направления развития рынка виртуальных ADC
• Обзор продукта Brocade Virtual ADX
• Архитектура и функционал Brocade Virtual ADX
• Рекомендации при использовании Brocade Virtual ADX
©2013 Brocade Communications Systems, Inc. Company Proprietary Information 2
Направления развития рынка виртуальных ADC
© 2013 Brocade Communications Systems, Inc. CONFIDENTIAL3
Виртуальный ADC (Application Delivery Controller)?
© 2013 Brocade Communications Systems, Inc. CONFIDENTIAL 4
X86 HARDWARE
Virtual Machine
Guest OS
Application
ESX, KVM, Hyper-V
Linux OS
ADC SoftwareВиртуальный ADC
Аппаратный и Виртуальный ADC
©2013 Brocade Communications Systems, Inc. Company Proprietary Information 5
Internet
Аппаратный
ADC
Сервера
приложений
Layer 2/3 switching
Layer 2/3 switching Layer 2/3 switching
Hypervisor
Virtual
App 1
Virtual
App 2Virtual
ADC
Программный
ADC
Сервера
приложений
Направления развития рынка виртуальных продуктов
© 2013 Brocade Communications Systems, Inc. CONFIDENTIAL 6
66% ЦОД в мире будут
в облаке к концу 2016
$109 миллиардов было
потрачено на публичные
облачные-сервисы за
2012
966 экзабайт данных
будет сгенерировано к
2015 в мире
75%
глобальных
ЦОД переедут
в сторону
облака к концу
2016
79% IT директоров в мире заявляют, что используют
облачные приложения в производстве уже сегодня
Источник: Global Cloud Index
Источник: Global Internet Traffic
Источник: Zenoss.com
Источник: Gartner
Источник: Global Cloud Index
77
Архитектура облачных ЦОД подстегивает рост
рынка виртуальных ADCDELL’ORO ЦОД прогноз по ADC за 2013
© 2013 Brocade Communications Systems, Inc. CONFIDENTIAL 7
Общее значение рынка $757M к концу 2017
$294M в 2014
$0,0
$500,0
$1 000,0
$1 500,0
$2 000,0
$2 500,0
2012 2013 2014 2015 2016 2017
Virtual
Physical
Основной сегмент облачного рынка для
Виртуального ADC
© 2013 Brocade Communications Systems, Inc. CONFIDENTIAL 8
Высоко масштабируемый
ЦОДОблака Управляемый хостинг
Гарантирует надежную доставку сервиса (SLA)
Увеличивает живучесть
Уменьшает стоимость затрат на абонента
Уменьшает капитальные расходы (CAPEX)
Увеличивает эксплуатационную эффективность
Сервис
Провайде
ры
Большое
предприят
ие
Частные
Публичные
Гибридные
Интернет; Web
Приложения; Контент
Brocade Virtual ADX
©2013 Brocade Communications Systems, Inc. Company Proprietary Information 9
Brocade Virtual ADX - Application Delivery Controller (ADC)
©2013 Brocade Communications Systems, Inc. Company Proprietary Information 10
Поддержка
OpenStackРасширенная
управляемость
Ключевые компоненты виртуальных L4-7 сервисов
•Динамическое конфигурирование сетевых сервисов «по запросу»
•Более полный набор виртуальных сервисов (с Vyatta)
Быстрое развертывание новых облачных сервисов
•Увеличенная гибкость и контроль с OpenScript
•Стандартный API для лучшей интеграции с виртуальным ЦОД
Уменьшает стоимость доставки сервисов
•Уменьшает CapEx запуская Layer 4-7 SLB на существующих серверах
•Уменьшает OpEx автоматизируя настройку,конфигурацию и обслуживание
Обзор Brocade Virtual ADX
©2013 Brocade Communications Systems, Inc. Company Proprietary Information 11
Performance
Extensible Management
L4-7 SLB Services
Platforms
High Availability
1 Gbps
CLI, GUI, Syslog, Telnet, SNMP, SCP, SNTP, AAA
TCP, UDP, HTTP, OpenScript
Hot-standby
VMware
Cloud Orchestration OpenStack plug-in for LBaaS, XML/SOAP API
Throughput (Gbps)
1 core
2 cores
4 cores
Brocade ADX PortfolioPrice/performance leadership with pay-as-you-grow deployment model
©2013 Brocade Communications Systems, Inc. Company Proprietary Information 12
ADX 4000 – 4 cores
8 cores
16 cores
ADX 10000 – 8 cores
16 cores
32 cores
M I D - R A N G E H I G H - E N D
2 9 9 17 35 3517 70
E N T R Y - L E V E L
Brocade ADX 1000
Brocade ADX 4000
Brocade ADX 10000
Brocade Virtual ADX
Pri
ce
41
Brocade Software Networking PortfolioEnabling the on-demand network services
©2013 Brocade Communications Systems, Inc. Company Proprietary Information 13
X86 COMPUTE
HYPERVISOR
NETWORK FUNCTIONS
Router Firewall VPN
Brocade Vyatta vRouter
Layer 4-7 ADC
Brocade Virtual ADX
Network and
application delivery
infrastructure with the
flexibility and
economics of software
©2013 Brocade Communications Systems, Inc. Company Proprietary Information 14
The Comprehensive Application Delivery PortfolioSame software, different platforms for different deployment models
Dedicated ADX Hardware Shared ADX Hardware
Features
Configuration
Network
Management
Dedicated
resources
Dedicated
resources
Shared Resources
Multitenant ADX Hardware Virtual ADX
Orchestration: Brocade Application Resource Broker, OpenStack Plug-In
Features
Config.
Network
Mgmt.
Features
Config.
Network
Mgmt.
Virtual instance Virtual instance
Hypervisor Hypervisor
On-Premise Data Center
©2013 Brocade Communications Systems, Inc. Company Proprietary Information 15
Development | Testing
| Multi-tenancy
Brocade ADX
hardware-based
multitenancy
• Ability to quickly test/validate/replicate
production environment
• Increased agility for delivering new
services through features like Openscript
• Reduction of CapEx and OpEx
Testing,
Development, and QAValidation of new and existing
deployment
Multitenant
EnvironmentIsolation based on apps or
department requirements
• Networking and application group
• Application developers and IT architects
Be
ne
fits
Use
Ca
se
sR
ole
s
Cloud Hosting Environment
Cloud/IaaSOn-demand load
balancing as a
service
©2013 Brocade Communications Systems, Inc. Company Proprietary Information 16
CLO
UD
HO
STIN
G E
NV
IRO
NM
EN
T
Cloud Bursting|
Multi-tenancyB
en
efi
tsU
se
Ca
se
sR
ole
s • Networking and application group
• Network engineers and cloud architects
• On-demand control of ADC service
• Reduction of CapEx and OpEx
• Ease of migration between service levels
Hybrid Cloud Purpose-built ADX for
managed and virtual
ADX for cloud
Brocade Virtual ADX архитектура и функционал
©2013 Brocade Communications Systems, Inc. Company Proprietary Information 17
Brocade Virtual ADXVirtual appliance for application delivery control
©2013 Brocade Communications Systems, Inc. Company Proprietary Information 18
Hypervisor
Packaged together =
Virtual appliance =
Brocade Virtual ADX
Managing and abstracting physical resources
Virtual ADX
Bare Metal
Virtual machine (x86, DRAM, disk)
Application
Guest OS
Physical resources
©2013 Brocade Communications Systems, Inc. Company Proprietary Information 19
Brocade Virtual ADX Architecture Overview
MP*
BP1* BP2*
Linux Kernel
ESX Host (Hypervisor)
Distributed virtual core architecture
Brocade ADX Management
Linux management
Data port 1
Data port 2
Data port 3
Minimum
Footprint
SLB
Resources
1 virtual core/2 GB DRAM
32 VIPs/256 real servers
Performance 1 Gbps
License End user, service provider
Hypervisor ESX 4.x or later
*MP: Management processor to perform management tasks and monitor health of servers
*BP: Barrel processors to take user traffic and perform SLB
©2013 Brocade Communications Systems, Inc. Company Proprietary Information 20
Brocade Virtual ADX Interfaces
Linux Kernel
ESX mgmt
NA1*
NA 2
NA 3
NA 4
NA 5
vSphere view
Console access for vSphere client
Underlying Linux OS can’t
be accessed
Console access through
SSH
Eth 1
Eth0
Eth 4
Eth 3
Eth 2
Linux view
int management 1
int ethernet 1
int ethernet 2
int ethernet 3
Brocade Virtual ADX view
*NA: network adapter
ESX Host (Hypervisor)
Brocade Virtual ADX Files
• OVA (Open Virtualization Archive)
• Tar archive of OVF(Open Virtualization Format) files
• .OVF (XML file), .MF (integrity check), and .VMDK (vmware disk image)
• Binary GZIP File
• To upgrade Brocade Virtual ADX
• No need for the initial installation
©2013 Brocade Communications Systems, Inc. Company Proprietary Information 21
SSM12600v027.ova
ssmbin12600.gz
~ 96 MB
~ 71 MB
SSM*.OVA: switch template
SSR*.OVA: router template
Brocade Virtual ADX начальный функционал
©2013 Brocade Communications Systems, Inc. Company Proprietary Information 22
Load Balancing
Scripting
APIs/Management
Networking
Layer 4 SLB for TCP/UDP, Layer 7 SLB for HTTP, DSR, Source-NAT,
PBSLB, Application health check
Perl-based scripting engine (OpenScript)
SOAP/XML APIs, Web GUI, SSH/Telnet, SNMPv2, RADIUS/TACACS+
VLAN, 802.1q, Static routing
High Availability Hot-standby
Рекомендации при использовании Brocade Virtual ADX
©2013 Brocade Communications Systems, Inc. Company Proprietary Information 23
Virtual Network Topologies
©2013 Brocade Communications Systems, Inc. Company Proprietary Information 24
vSwitch
External VLAN
for VIPs
Internal VLAN
for servers
vSwitch
Single VLAN
vSwitch
Multi VLANs with
802.1q
pNIC • Source-NAT
• DSR
• In-Line (with standby-ip)
• In-Line (in Layer 2 without
standby-ip)
VGT (Virtual Guest Tagging)
VST (Virtual Switch Tagging)
EST (External Switch Tagging)
1~4094
Recommended
©2013 Brocade Communications Systems, Inc. Company Proprietary Information 25
Avoid Layer 2 In-line Virtual Network Topology
vSwitch
vSwitch
pNIC
• vSwitch does not learn MAC addresses
• Promiscuous mode is required on vSwitch
• Severe performance degradationRS1
PC
? Switch code*
* Note router code is good to support in-
line topology by separating VLANs
Be Careful with “Guest VLAN Tagging (VGT)”
• VLAN ID 4095 used to indicate “Guest VLAN
tagging”
• Switching based on destination MAC,
ignoring VLAN ID in this case
©2013 Brocade Communications Systems, Inc. Company Proprietary Information 26
vSwitch
VLAN 10, 20
VLAN 30, 40
eth 1
eth 2
• Eth 1 and Eth 2 belong to the same port group with
VLAN ID 4095
• This is NOT going to work well
• What if a broadcast frame is received on VLAN 10 from pNIC?
vSwitch
VLAN 10, 20,
30, 40
eth 1
VLAN 4095
VLAN 4095
pNIC
pNIC
Avoid
©2013 Brocade Communications Systems, Inc. Company Proprietary Information 27
Brocade Virtual ADX HA DeploymentHot-standby in switching configuration
vSwitch vSwitch
backup
port
backup
port
data
port
data
porte1
e3 e3
e1
• VIP MAC address is NOT shared by default (recommended setting)
• Egress port mac is always used as a source MAC
• Shared VIP MAC address requires promiscuous mode on vSwitch
• server backup ethernet <port> <mac> shared-mac
pNICpNIC
Physical
network
СПАСИБО!
Вопросы…
28©2013 Brocade Communications Systems, Inc. Company Proprietary Information