2014 cci clouds - home - cci...
Post on 14-Mar-2018
232 Views
Preview:
TRANSCRIPT
Data Center & Clouds
Presenter:
Derek Schaefer, CSE CCI Systems, Inc.
Caveats Some material included in this presenta?on covers newly released material from Cisco and as such can not be veBed by CCI Systems yet. It is important to include however, from a roadmap and planning perspec?ve. Cost and financial numbers included are dependent upon market and vendor availability and pricing at the ?me of its inclusion into the presenta?on. Where used, numbers for chargeback of offered cloud or virtualized, hosted workloads are used for examples and discussion generators. They are en?rely dependent upon final infrastructure deployed, customer billing methodology, cost of solu?on deployment, and several other variables.
The Road to Cloud
Public Private Hybrid Community Deployment
Models
Service Models
SoMware as a Service (SaaS)
PlaPorm as a Service (PaaS)
Infrastructure as a Service (IaaS)
Essen?al Characteris?cs On-‐Demand
Self Service Broad Network
Access Resource Pooling
Rapid Elas?city Measured Service
NIST Cloud Defini?on
Private Cloud Public Cloud
Enterprise (Virtualizing the DC)
Control combined with: • Rapid elas?city • Resource pooling • On-‐demand self-‐service • Chargeability & Metering • Agility / Speed of response
Regulated Informa?on Financials Legal
On-‐ demand access to addi?onal IT resources and func?onality
Test & Development
Hybrid Cloud Private cloud control/ public
cloud scale
Evolu?on of the clouds
Increased Automa?on DevOps Public facing Extreme
elas?city Self
Provisioning
Market Overview
• OEM’s and analysts con?nuing predic?ons for large cloud growth
• SMB’s, Enterprise customers looking for ways to simplify deployments, reduce OpEx, and gain agility
Market Overview
Cloud growth expected to outpace tradi?onal datacenter deployments by over 20% CAGR through 2017. Cloud DC traffic growth expected to hit 35% CAGR through 2017
Global Data Center Traffic by Des?na?on
Reference Architecture
CONFIDENTIAL -‐ Internal Use Only
FlexPod and FlexPod express with Vmware provides: • Flexibility • Scalability • Granularity at all levels allowing for quick and efficient use of all hardware resources. Cisco cloud CVD for full mul?-‐tenancy
Why FlexPod?
• Cisco UCS, Nexus core to primary leaders FlexPod, Vblock CI products.1
• Both products key in power, support, management, and flexibility
• FlexPod designs allow for flexible. Key to flexibility and future proofing solu?ons.
1. Gartner Magic Quadrant for Integrated Systems
Wire-‐Once Infrastructure
Infrastructure Standardiza?on Results in Applica?on Agility
Flexibility of Running File and Block on Same Infrastructure
Unprecedented Opera?onal Simplicity
FC
FCoE
NAS/iSCSI
United Fabric
FC, FCOE NAS
“Wire-‐Once” Fabric Compu?ng Infrastructure
Unified Compute
Virtual Workloads
FlexPod Express FlexPod, M-L FlexPod Express, S-M FlexPod, S
Fabric Extender
Scaling Architecture
UCS Mini
Fabric Interconnect Integrated FI and IOM Hot-‐swappable Unified Port Up to 1 addi?onal expanded chassis (post-‐FCS) Power Inlet
• Support for AC or DC power
Fan • Redundant Fans • Variable speed • Hot-‐swappable
UCS Mini Expansion FCS release -‐ 4 rack mount servers -‐ C220M3 and C240M3 Post FCS Release -‐ Connect up 2 Chassis 2nd chassis is child (with 2204XP or 2208XP IOM) Licensed 40G scalability port Total 20 Servers • 16 Blades • 4 Rack Servers
FlexPod: Points of Scale
Building Clouds
Unified Management Blade and Rack Servers Managed a Cohesive Resource Pool
UCS Manager
C-‐Series Rack Op/mized Servers
B-‐Series Blade Servers
Service Profile: HR_App1 VNIC1
MAC: 08:00:69:02:01:2E HR_WEB_VLAN (ID=50)
VNIC2 MAC: 08:00:69:02:01:2F HR_DB_VLAN (ID=210)
HBA 1 and 2 WWN: 5080020000075740 WWN: 5080020000075741 VSAN ID: 12
Boot Order: SAN BIOS Setngs:
Turbo On HyperThreading On
UCS Service Profile Unified Device Management
Network Policy
Storage Policy
Server Policy
UNIFIED MANAGEMENT
A SINGLE UNIFIED SYSTEM FOR BLADE AND RACK SERVERS
A Major Market Transforma?on in Unified Server Management
Benefits of UCS Manager and Service Profiles for Both Blade and
Rack-‐Op?mized Servers
Add Capacity Without Complexity
UCS Manager GUI
UCS Manager
CLI Packaged Systems Management SoGware
User Developed Portal, Tools, U/li/es
…
Embedded Device Manager • Discovery, inventory, monitoring, diagnos?cs,
sta?s?cs collec?on, configura?on
Unifies many UCS HW components into a single, cohesive system • Adapters, blades, chassis, fabric extenders,
fabric interconnects
APIs for integra?on with new and exis?ng data center infrastructure • SMASH-‐CLP, IPMI, SNMP • XML SDK for commercial and custom
implementa?ons
Key feature: Service profiles • Coordinated deployment to managed
endpoints
UCS Central Overview • What does it do?
– UCS Central aims to address mul? UCS domain management challenges such as service profile management, pool management, policy management, fault and log management and sta?s?cs aggrega?on.
• What is it? – A virtual machine based soMware solu?on that runs on ESX or Hyper-‐V hypervisors – Provides centralized pool and policy management for UCS domains – Aggregates inventory, state, fault and stats informa?on
• Base Architecture – Scales to 10,000 end points (servers) regardless of the number of domains
Hypervisor
UCS Central VMs
UCS Manager 1 UCS Manager
2 UCS Manager 3 UCS Manager
4 UCS Manager n
XML API
Cisco.com
DB Storage
Compute Capacity: Units of Scale
Server Chassis
Domain Single
Datacenter
Global Datacenters
UCS Manager
Cisco Management Overview
Manages mul?ple UCS Domains
Manages ACI Fabric
UCS CENTRAL
UCS DIRECTOR Centralized infrastructure control point for data center
APIC
INTELLIGENT AUTOMATION FOR CLOUD Private Cloud, PaaS (DevOps), Hybrid Cloud
Manages heterogeneous data centers and
converged infrastructure
Manages Single UCS domain
UCS MANAGER
Self-‐Service Portal and Service Catalog Self-‐Service Portal
Standardized Menu of IT and non-‐IT Business Services
Orchestra?on and Automa?on Secure, Consistent Process Automa?on
Integra/on Framework
APIs to integrate with Portal, Catalog and Orchestrator
Cisco UCS Director Converged Infrastructure Management
Mul?-‐Vendor Compute, Network, Storage, and Virtualiza?on
FlexPod / ExpressPod Cisco UCS � Nexus
Cisco IAC
XML HTML content
Cloud Accelerators “Content cartridges”
Building Clouds
Hosted Services
SDN or NFV? Both?
Network automa?on and flexibility is at the heart of SoMware Defined Networking (SDN) and Cisco is commiBed. However, it takes a broader view of the defini?on.
Network Func?onal Virtualiza?on is virtualizing tradi?onal network components taking advantages of virtualiza?ons inherent advantages. • Not mutually exclusive! • Security from the ground up • Distributed control plane • Hypervisor agnos?c, VxLAN, VLAN, NVRGE support
Nexus 1000V
• Distributed switch
• NX-‐OS consistency
VSG
• VM-‐level controls
• Zone-‐based FW
ASA 1000V
• Edge firewall, VPN
• Protocol Inspec?on
vWAAS
• WAN op?miza?on
• Applica?on traffic
Cloud Services Router
• WAN L3 gateway
• Rou?ng and VPN
Ecosystem Services
• Citrix NetScaler VPX virtual ADC
• Imperva Web App. Firewall
Securing the Tenant Edge with Cisco ASA 1000V
• Proven Cisco® security: virtualized physical and virtual consistency
• Collabora?ve security model
Cisco Virtual Secure Gateway (VSG) for intra-‐tenant secure zones
Cisco ASA 1000V for tenant edge controls
• Transparent integra?on
With Cisco Nexus® 1000V Switch and Cisco vPath
• Scale flexibility to meet cloud demand
Mul?-‐instance deployment for scale-‐out deployment across the data center
Tenant B Tenant A VDC
vApp
vApp
Hypervisor
Cisco Nexus® 1000V Cisco vPath
VDC
Cisco® Virtual Network Management Center (VNMC)
VMware vCenter
Cisco VSG Cisco
VSG Cisco VSG
Cisco ASA 1000V
Cisco ASA 1000V
Cisco VSG
Full ASA Feature Set in a VM • Use mul?ple vCPUs (up to 4) and vNICs (up to 10) with trunking and
VTEP (up to 1000)
• Stackable term-‐based licensing model
• Virtualiza?on benefits displace the need for mul?-‐context and clustering
Expanding Virtual ASA Firewall Use Cases
• Absorb ASA 1000V tenant edge-‐routed firewall with vPATH and VNMC
• Allow routed firewall to communicate with any host (VM or physical) on any interface
• Enable transparent firewall with VXLANs or VLANs
• Enable fabric integra?on with service tag switching mode
Enable Non-‐vPATH Standalone Mode • ASAv deploys on top of the hypervisor and connects to the vSwitch
Failover Ac?ve/Standby • Standby ASAv resides on a separate host for beBer redundancy
ASAv Feature Summary
Extending the Tenant into the Cloud with Cloud Services Router
• Single Tenant Use • Rapid deployment and service automa?on • Secure Enterprise network extension into external cloud • Network consistency
Mone?za?on Mone?za?on of a cloud offering is possibly one of the most customized facet of a solu?on’s deployment. Everything from hardware and soMware costs to support costs are taken into account to create a chargeback model for the customer/end user. The following is not an exhaus?ve list, but are some variables to weigh for inclusion in a chargeback model for any cloud deployment: • Total solu?on cost including:
• Hardware capital cost • SoMware licensing cost • Deprecia?on • Any financing of the solu?on
• Targeted ROI date, expected revenue • Customer/Market expecta?ons, compe??ve posi?oning of service offerings
This is part of the most cri?cal decisions when marke?ng your cloud service offerings and something that should be discussed at all levels, in all groups involved to ensure success.
But what else?
• Cisco • Unified Communica?ons • Secure Access Control Server (ACS) • Videoscape Distribu?on Suite Transparent Caching
• CCI BandWise • Hosted WiFi • Hosted Email, Exchange • Offsite DR/Storage site for customers • Virtualized Desktops
Cisco Intercloud “The use of hybrid clouds is itself a trend: 70 percent of enterprise customers surveyed by the Gartner Group in 2012 said their companies would pursue a hybrid cloud strategy by 2015.”
• Self-‐service consump?on of hybrid resources with end-‐user and IT portals • Workload provisioning and bi-‐direc?onal migra?on across on-‐premises and
cloud resources • End-‐to-‐end security with consistent policy enforcement across the hybrid cloud • A single point of management and control for physical and virtual workloads
across mul?ple private and public clouds • A choice of cloud providers and hypervisors (Azure, Amazon currently) • Extend your hosted cloud for customer into public clouds during peak demand
periods
Cisco Intercloud
Hybrid Cloud
Cisco Intercloud • Director
Provides a single portal for IT and end user provisioning of public/private cloud resources
• Secure Extender Maintains exis?ng network security across private-‐>public migra?on ensuring all policies are maintained
• Fabric Provider PlaPorm Virtualized appliance deployed and managed by cloud providers ensuring infrastructure insight
References [Cisco] UCS Compu?ng (B, C, M, & Mini servers, FI’s & Invicta storage) hBp://www.cisco.com/c/en/us/products/servers-‐unified-‐compu?ng/index.html Data Center Switches (Nexus & MDS) hBp://www.cisco.com/c/en/us/products/switches/data-‐center-‐switches/index.html UCS PlaPorm Emulator 2.x (61xx/62xxFI’s) & 3.x (6324FI’s)
hBps://communi?es.cisco.com/docs/DOC-‐37827 UCS Director hBp://www.cisco.com/c/en/us/products/servers-‐unified-‐compu?ng/ucs-‐director/index.html UCS Central Download [FREE LICENSE <5 UCSM domains] hBp://www.cisco.com/c/en/us/support/servers-‐unified-‐compu?ng/ucs-‐central-‐soMware/tsd-‐products-‐support-‐series-‐home.html UCS VMware vCenter plugin hBps://communi?es.cisco.com/docs/DOC-‐36989 Virtual Networking (Nexus 1000v, ASA 1000v, Virtual Services Gateway (VSG), NetScaler 1000v, Cloud Services Router) hBp://www.cisco.com/c/en/us/products/switches/virtual-‐networking/index.html Virtual Adap?ve Security Appliance (ASAv) hBp://www.cisco.com/c/en/us/products/security/virtual-‐adap?ve-‐security-‐appliance-‐firewall/index.html Prime Network Services Controller hBp://www.cisco.com/c/en/us/products/cloud-‐systems-‐management/prime-‐network-‐services-‐controller/index.html
References [Cisco, cont.] Intercloud Fabric Product & Services hBp://www.cisco.com/c/en/us/products/cloud-‐systems-‐management/intercloud-‐fabric/index.html Secure Access Control System (ACS) hBp://www.cisco.com/c/en/us/products/security/secure-‐access-‐control-‐system/index.html hBp://www.cisco.com/c/en/us/td/docs/net_mgmt/cisco_secure_access_control_system/5-‐2/installa?on/guide/acs5_2_install_guide/csacs_vmware.html Validated Designs
Program hBp://www.cisco.com/c/en/us/solu?ons/enterprise/validated-‐design-‐program/index.html FlexPod hBp://www.cisco.com/c/en/us/td/docs/unified_compu?ng/ucs/UCS_CVDs/esxi51_n7k_metrocluster.html Virtualized Mul?service Datacenter – Data Center Interconnect 1.0 hBp://www.cisco.com/c/en/us/td/docs/solu?ons/Enterprise/Data_Center/VMDC/DCI/1-‐0/DG/DCI/DCI1.html
Cisco Global Cloud Index: Forecast and Methodology, 2012–2017 hBp://www.cisco.com/c/en/us/solu?ons/collateral/service-‐provider/global-‐cloud-‐index-‐gci/Cloud_Index_White_Paper.html Gartner Magic Quadrant for Integrated Systems hBp://www.gartner.com/technology/reprints.do?id=1-‐1VG181T&ct=140616&st=sb
References [VMware] Player [FREE] hBps://www.vmware.com/products/player/ Fusion hBps://www.vmware.com/products/fusion/features.html Worksta?on hBps://www.vmware.com/products/worksta?on/ vSphere (vCenter/ESXi) hBps://www.vmware.com/products/vsphere/
®
Thank you
top related