Presentación Carlos Spera Cablevisión Day 2010

Business and Technology Working as One

Next Generation Data Centers

Carlos [email protected]

2010


Presiones del negocio y del Data Center


Tecnologías estratégicas para 2010

Las 10 tecnologías estratégicas mas importantes de Gartner para 2010, definidas como “de potencial impacto considerable en la empresa en los próximos tres años”:

Virtualizacion.

Cloud computing.

Servidores (Más allá de Blades).

Arquitecturas orientadas a la Web.

Aplicaciones Web híbridas empresariales.

Sistemas especializados.

Software / Redes Sociales.

Comunicaciones unificadas.

Inteligencia de negocios.

TI Ecológica (“Green IT”).


Russ Daniels de HP:

“Escalado horizontal, control de recursos en grado fino, autoservicios, coste variable según uso”

Cloud Computing (Definiciones)

Wikipedia:

“Cloud computing es un paradigma que permite ofrecer servicios de computación a través de Internet”

ServePath:

“The use of a 3rd party service to perform computing needs on a publicly accessible IP basis. Cloud computing services are usually performed in consolidated Data Centers to keep costs low while improving overall

utilization”

Elementos habituales en todas las definiciones:

Acceso a través de Internet (la “nube”)

Virtualización

Escalabilidad

Coste por uso


Cloud Computing: Conceptos

Definimos al “Cloud Computing” como un estilo de computación donde los recursos de IT son:

Brindados a los clientes como un servicio utilizando tecnologías de Internet.

Masivamente escalables.

De alcance global.

Distribuibles dinámicamente, “a demanda” en cantidad y calidad medibles.

Asignados Just in Time

Servicios a múltiples clientes que comparten los mismo recursos.

Se paga solo por el servicio que se utiliza.

La virtualización es el fundamento para avanzar hacia los servicios del cloud computing


SaaS, PaaS, IaaS ?!!? Los “aaS”

SaaS (Software as a Service): Significa una sóla instancia del software que corre en la infraestructura del proveedor y sirve a múltiples organizaciones de clientes. Ejemplo: Salesforce.com

PaaS (Plataform as a Service): Es la encapsulación de una abstracción de un ambiente de desarrollo. Ejemplo: rackspacecloud.com.

IaaS (Infraestructura as a Service): Es un medio de entrega de almacenamiento y capacidades de cómputo como servicios estandarizados en la red. Ejemplo: Amazon EC2


Cloud Computing (Taxonomia)

http://cloudtaxonomy.opencrowd.com/taxonomy/


Las empresas hacia el cloud computing

“Las empresas dispondrán de una infraestructura dedicada para algunos propósitos y consumirán servicios On Demand

obtenidos de la nube para otros.”


Algunos Beneficios del Cloud Computing

Las infraestructuras de Cloud Computing proporcionan mayor capacidad de adaptación, recuperación de desastres y reducción al mínimo de los tiempos de inactividad.

Se redirigen los costos de CAPEX y problemas de capacidad al cloud provider.

La posibilidad de adquirir recursos bajo demanda.

Convertir costos fijos en variables.

Permite mayor flexibilidad y escalabilidad en el crecimiento.


Virtualización

La Virtualización consiste en la abstracción de los recursos físicos existentes en un equipo informático para poder correr sobre el mismo equipos virtuales.

Cada uno de estos equipos virtuales ve un servidor completo, interactuando con el mismo a través de la tecnología de virtualización.


Atributos impulsores de la virtualización


Beneficios de la virtualización

Reducción de los esfuerzos de administración:

Menores costos operacionales Menos servers para administrar.

Rapid deployment Ahora 1-6 Semanas (Compra, setup, software, test).

Con la virtualización se puede reducir a horas.

Reducción en los costos de infraestructura y servidores.

Mejora en la utilización de los recursos.

Incrementa y mejora la disponibilidad.

Herramientas para mejorar la seguridad.


Next Generation Data Center

A medida que la infraestructura IT se vuelve más compleja, los requisitos de IT cambian de gerenciar operaciones técnicas a operaciones de servicios. Esto plantea la necesidad de transformación del DC.

Cuatro fuerzas evolutivas

Están dando forma al NGDCLa nueva generación de Data Centers

será…

• Una infraestructura provisionada dinámicamente por medio del uso de capacidades automatizadas soportando el proceso de negocio de la compañía.

• Servicios de tecnología construidos sobre infraestructura virtual.

• Procesos estandarizados.

• Arquitecturas tecnológicas que permitan consolidar recursos de IT.


Data Center and App Delivery Evolution

Application Architecture EvolutionApplication Architecture Evolution

Mainframe

CENTRALIZED DECENTRALIZED VIRTUALIZED

Data Center 1.0Data Center 1.0

Client-Server and Distributed Computing

Data Center 2.0Data Center 2.0 Data Center 3.0Data Center 3.0

Service Oriented and Web 2.0 Based

Consolidate, Virtualize, Automate

Mainframe Minicomputer/PC Client Server ASP/ SaaS Cloud

Server Load Balancer

Cisco ApplicationControl Engine (ACE)

Front EndProcessor


Delivery Challenges

Your Application Delivery Reality Today - under increasing pressures

Business Requirements

Collaboration SLA MetricsEmpowered User Global Availability Reg. Compliance

TCO and Service Delivery

Shift to SOA / Web 2.0

App Availability and Performance

App Security Threats

TeleworkerBranch

Customer Partner

Data Center


Introducing ACE In The Virtual DC (AVDC)Solution That Addresses DC 3.0 App Delivery Challenges

“AVDC improves the integration between ACE, Nexus 7000, UCS and VMware products”

Enhancements focus on the following:

VM Intelligence – The ability to monitor and react to VM adds, move and deletes

Automation – Automatic service deployment and removal

Performance and Scale – Provisioning app delivery infrastructures to meet increased demands and “right size” resources

Operational Simplification – Streamline provisioning & monitoring

Initial phase focuses on provisioning simplification, advanced reporting & ACE/VMware vCenter integration

ACE Module & Appliance

Nexus 7000Unified Computing

Operational Simplification

AutomationPerformance and Scale

VM Intelligence


CSS – CSM to ACE:

CSS/CSM

FamilyCapabilities

ACE

FamilyCapabilities

Content Services Switch (CSS) Appliances –

CSS11501, 11503, 11506

Application Control Engine Module for Cat6K

Application Control Engine Appliance (ACE 4710)

Content Switching Module (CSM) for Cat6K

Basic load balancer with SSL offload

500 Mbps to 6 Gbps

Basic load balancer with SSL offload

4 Gbps max

Virtualized application switch

1 Gbps to 2 Gbps

Virtualized application switch

4 Gbps to 16 Gbps


ACE Portfolio SummaryComprehensive Application Delivery Solution

ACE Module4-16 Gbps

Module+

Multi-Module(64 Gbps)

ANM 3.0

Global Products and Tools

Appliance

ACE 47100.5-4 Gbps

ACE GSS20K DNS RPS

Application Switching

ACE XML Gateway Manager

“One-Click”Migration

Tools


Application Security

Protects applications and server farms from attacks

Virtualization / Isolation

Lower TCO (OPEX /CAPEX)

Improved application provisioning and scalability

Virtualized Data Center

WebApplications

Packaged Applications

CustomApplications

Virtual Partition 1 Virtual Partition 2 Virtual Partition 3

Internet

Cisco ACE Solutions

Faster response time better productivity

Application PerformanceBus Continuity / IT Agility


Cisco ACE Solution : Virtualization- lower TCO (OPEX / CPEX) with multi-tier consolidation

WebServers

ApplicationServers

DatabaseServers

Internet


After : single Cisco ACE

Front-EndFirewalls

• Infrastructure Simplification • Less Device Sprawl• Virtual ACE for Different Tiers• Additional Scalability• Faster Provisioning• Simplified Management• Improved Security• Cost Effective No Additional HW

Internet

Before: many devices

Internet

WebServers

ApplicationServers

DatabaseServers


Cisco ACE Solution : App Isolation- complete isolation of applications or departments

Internet

Virtual Device 1 Virtual Device 2

Virtual Device 3

• Virtual device for each app environment• Complete isolation of applications• Committed resource allocation• Infrastructure simplification• Improved application security

isolate with virtual partitions instead of physical devices

Internet Internet


Cisco ACE Solution : IT Agility- enhance IT agility , improved workflow

Servermaintenanceteam

Applicationteam

Networkadministrators

Request for change

Request for c

hange

Configchanges

TraditionalLoad Balancer

Internet


WebApplications


CustomApplications


Internet

• App roll outs• Configuration changes• Patch updates• HW maintenance

Network role

Server role

Application role

Improved workflow with Role Based Access Control (RBAC)

Cisco ACE

• Customizable role-based administration • Decrease operational overheads

faster application provisioning and better scalability


Cisco ACE Solution : App Performance- accelerating application performance

External WebBrowsers

Internet


WebApplications


CustomApplications


Internet

• Advanced application acceleration• Data encoding and compression• Smart image optimization• Dynamic browser caching• Server offloads

faster application response and improved productivity


Cisco ACE Solution : App Security- increase application security

• Enforces secure use of applications• Performs check on all data • Monitors all user sessions• Blocks any HTTP attacks

External WebBrowsers

Internet


WebApplications


CustomApplications


Internet

BLOCKED

protects applications and server farms from external attacks



ACE Module Software Key Features

Available SecureLoad Balancing Support SIP Extended RTSP Radius RDP Generic Protocol Parsing

Enhanced Predictors Adaptive Algorithms Least Loaded Least Bandwidth

General SLB KAL-AP HTTP Header Rewrite Partial Serverfarm Failover Application-based Probes SNMP-based Probes UDP Fast Age

Protocol Inspection SIP ILS/LDAP SCCP (Skinny)

ACL Improvements Object Grouping

DoS Protection SYN Cookie per Interface

Rate-Limiting Connection-rate Bandwidth-rate

HTTP Firewall Features Inspect HTTP POST Body Inspect HTTP “Secondary cookies”

FastSSL Enhancements Session ID Stickiness Client Authentication SSL Queue Delay

Fast DNS LB UDP “booster”

ANM 1.2 XML Tagged Config Real-time “TCP Dump” Mgmt Traffic Protection HA Sync Improvements Source NAT Changes

Management


ACE: Next-Gen Architecture Delivers Next-Gen Benefits

The Benefits of the ACE Architecture

Price and Performance

ACE Module – Industry’s highest performing app switching platform: 4–64 Gbps

ACE Appliance – More capacity, advanced features, lower price

Forklift-Free Licensing

Software-controlled upgrades for key scale and performance categories

Investment protection and pay-as-you-grow

Virtualization and Role-Based Access Control

Virtual devices guarantee application resources & performance

Virtual instead of physical devices to minimize device sprawl

Faster app rollouts, lower power and cooling requirements, less rack space


Fork-Lift Free Upgrades:ACE Pay-as-You-Grow Licensing

UpgradeThroughput

1 Gbps

2 GbpsUpgra

de

Path

UpgradeVirtual Devices

5

20Upgrade

Path

Upgrade SSL

1K TPS

5K TPS

7.5K TPS

Upgrade

Path

Upgrade Compression

100 Mbps

500 Mbps

1 Gbps

Upgrade

Path

Superior Investment Protection


Simplified Migration:Resources for New App Rollouts

Powerful testing, design guides, ISV validation

http://www.cisco.com/go/optimizemyapp


ANM 3.2 Guided SetupsSimplifying Deployment Of Devices & Services

Benefits Helps ensure successful initial deployment

Embedded information helps avoid configuration errors

To complete a deployment just follow the steps

New CapabilitiesIllustrations show concept being provisionedGuide text provides useful provisioning information“Learn More” link for deeper functionality understandingForms-based entries speeds user though tasks

ANM Reduces Complexity And Deployment Time While Improving Revenue Recognition

ANM Reduces Complexity And Deployment Time While Improving Revenue Recognition


ANM 3.2 Summary Monitoring DashboardsQuick Access To Core ACE Information

•At-A-Glance knowledge of application health

•High-level situational awareness

•Understanding of resource usage

•Early warning of future resource needs

Device Info License Status HA

Status

Device Info License Status HA

Status

Configuration & Service

Summary

Configuration & Service

Summary

Denied Virtual Resources

Denied Virtual Resources

Graphical Virtual

Resource Use

Graphical Virtual

Resource Use

Summary Dashboards: Single Views for ACE Status Summary Dashboards: Single Views for ACE Status


AVDC Component - VMware vCenter 4.0Centralized Management For Virtual Machines

Standalone Software product that simplifies & automates management of Virtual Data Centers

Provides centralized control and visibility of a virtual infrastructure.

Extensible management platform with a broad partner ecosystem

Benefits include increase IT productivity and reduce operational costs

vCenter Integrates With UCS, Nexus And ACE Delivering A Comprehensive VM Solution


AVDC Phase 1: ANM vCenter Plug-InUnified Management Tool For VM’s And ACE

Overview

ACE vCenter plug-in is a software component that allows an ACE environment to be configured and managed by vCenter

Key Components

vCenter, ANM, ACE Module and Appliance

Description

•Enables the association existing vCenter VMs to existing ACE server farms

•Dashboard showing ACE and ANM server health information inside of vCenter

•ANM is a proxy between the ACE Module/Appliance and vCenter

•Leverages ANM reporting capabilities and ACE MIB’s for monitoring information

ACE Appliance

ACE Module

ANM


Enabling a New Server - Traditional MethodMultiple Systems, No Integration

Traditional enablement requires two management systems and coordination of two administrators

Sysadmin uses VCenter to enable new VM

vCenter

SLB Admin creates new server in the server farm

ADC Manager

Systems Administrator

ADC Administrator


Enabling A New Server Traditional Workflow

ADC Manager (ANM) vCenter

Server Farm

Application serversACE Load Balancer

Virtual Server IP

ESX Cluster

VM

VM

•Multiple systems & administrators = High Operations Cost•No shared config & monitoring data = Complex operations

Inefficient Operations

SystemsAdmin

ADCAdmin

A

A


Enabling A New Server – AVDC MethodSimplified Process, Reduced OPEX

Using AVDC requires only the Sysadmin and one management tool

Sysadmin uses VCenter to enable new VM

Sysadmin adds new server to server farm with vCenter

vCenter

Systems Administrator


vCenter w/Plug-in

Enabling A New ServerAVDC Workflow

ADC Manager (ANM 3.1)

Server Farm

Application serversACE Load Balancer

Virtual Server IP

ESX Cluster

VM

VM

ANM Plug-in

VMA• Single admin & mgmt point = Lower Administrative Cost•Share config & monitoring data in vCenter = Simplified Operations

Operational Efficiency

SystemsAdmin

A

A


Q & A