VCE Vblock Solution for Trusted Multi-Tenancy Design Guide

  • View
    627

  • Download
    1

Embed Size (px)

Text of VCE Vblock Solution for Trusted Multi-Tenancy Design Guide

  1. 1. Vbl ock Sol uti on for Trusted M ulti-Tenancy: D esign Guide Tabl e of C ontents VBLOCK SOLUTION FOR TRUSTED MULTI-TENANCY: DESIGN GUIDE Version 2.0 March 2013 www.v ce.com 2013 VCE Company, LLC. All Rights Reserved.
  2. 2. Copy right 2013 VCE Company , LLC. All Rights Reserv ed. VCE believ es the inf ormation in this publication is accurate as of its publication date. The inf ormation is subject to change without notice. THE INFORMATION IN THIS PUBLICATION IS PROVIDED "AS IS." VCE MAKES NO REPRESENTATIONS OR WARRANTIES OF ANY KIND WITH RESPECT TO THE INFORMATION IN THIS PUBLICATION, AND SPECIFICALLY DISCLAIMS IMPLIED WARRANTIES OR MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE. 2 2013 VCE Company, LLC. All Rights Reserved.
  3. 3. Contents Introduction .........................................................................................................................................7 About this guide.................................................................................................................................7 Audience ............................................................................................................................................8 Scope .................................................................................................................................................8 Feedback ...........................................................................................................................................8 Trusted multi-tenancy foundational elements ..............................................................................9 Secure separation ...........................................................................................................................10 Service assurance...........................................................................................................................10 Security and compliance ................................................................................................................11 Availability and data protection ......................................................................................................11 Tenant management and control...................................................................................................11 Service provider management and control...................................................................................12 Technology overview.......................................................................................................................13 Management....................................................................................................................................14 Advanced Management Pod ......................................................................................................14 EMC Ionix Unified Infrastructure Manager/Provisioning...........................................................14 Compute technologies ....................................................................................................................15 Cisco Unified Computing System...............................................................................................15 VMw are vSphere .........................................................................................................................15 VMw are vCenter Server ..............................................................................................................15 VMw are vCloud Director..............................................................................................................15 VMw are vCenter Chargeback.....................................................................................................16 VMw are vShield ...........................................................................................................................16 Storage technologies ......................................................................................................................16 EMC Fully Automated Storage Tiering ......................................................................................16 EMC FA ST Cache .......................................................................................................................17 EMC Pow erPath/V E ....................................................................................................................17 EMC Unified Storage...................................................................................................................17 EMC Unisphere Management Suite...........................................................................................17 EMC Unisphere Quality of Service Manager.............................................................................18 Netw ork technologies......................................................................................................................18 Cisco Nexus 1000V Series .........................................................................................................18 Cisco Nexus 5000 Series............................................................................................................18 Cisco Nexus 7000 Series............................................................................................................18 Cisco MDS....................................................................................................................................18 Cisco Data Center Netw ork Manager ........................................................................................19 3 2013 VCE Company, LLC. All Rights Reserved.
  4. 4. Security technologies......................................................................................................................19 RSA Archer eGRC.......................................................................................................................19 RSA enV ision ...............................................................................................................................19 Design framework.............................................................................................................................20 End-to-end topology........................................................................................................................20 Virtual machine and cloud resources layer................................................................................21 Virtual access layer/vSw itch .......................................................................................................22 Storage and SA N layer................................................................................................................22 Compute layer..............................................................................................................................22 Netw ork layers .............................................................................................................................23 Logical topology ..............................................................................................................................23 Tenant traffic flow representation ...............................................................................................26 VMw are vSphere logical framew ork overview...........................................................................28 Logical design..................................................................................................................................32 Cloud management cluster logical design .................................................................................32 vSphere cluster specifications ....................................................................................................33 Host logical design specifications for cloud management cluster ...........................................33 Host logical configuration for resource groups..........................................................................34 VMw are vSphere cluster host design specification for resource groups ................................34 Security.........................................................................................................................................35 Tenant anatomy overview ..............................................................................................................35 Design considerations for management and orchestration.....................................................37 Configuration ...................................................................................................................................39 Enabling services ............................................................................................................................40 Creating a service offering ..........................................................................................................41 Provisioning a service..................................................................................................................41 Design considerations for compute..............................................................................................42 Design considerations for secure separation................................................................................43 Cisco UCS ....................................................................................................................................43 VMw are vCloud Director .............................................................................................................52 Design considerations for service assurance ...............................................................................58 Cisco UCS ................................................................

Recommended

View more >