Your SlideShare is downloading. ×
0

Thanks for flagging this SlideShare!

Oops! An error has occurred.

×
Saving this for later? Get the SlideShare app to save on your phone or tablet. Read anywhere, anytime – even offline.
Text the download link to your phone
Standard text messaging rates apply

End-to-End Data Center Virtualization

1,099

Published on

Virtualization has been an integral part of IT planning for effective resource optimization, management simplification and isolation on Data Centres. Because Virtualization touches multiple layers in …

Virtualization has been an integral part of IT planning for effective resource optimization, management simplification and isolation on Data Centres. Because Virtualization touches multiple layers in the Data Centre, understanding the full scope of Virtualization technologies is required for effective planning, design and deployments. The effects are applicable to Classical Ethernet, Data Centre Bridging and SDN; Unified IO, Unified Fabric & Unified Computing; servers of multiple types & hypervisors; virtual machines, virtual switches, virtual service nodes, virtualized adapters, storage, cloud orchestration and transport environments which taken collectively require in-depth understanding for an end–to-end strategy.

Published in: Technology, Education
0 Comments
7 Likes
Statistics
Notes
  • Be the first to comment

No Downloads
Views
Total Views
1,099
On Slideshare
0
From Embeds
0
Number of Embeds
1
Actions
Shares
0
Downloads
0
Comments
0
Likes
7
Embeds 0
No embeds

Report content
Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
No notes for slide

Transcript

  • 1. © 2011 Cisco and/or its affiliates. All rights reserved. Cisco Connect 11© 2012 Cisco and/or its affiliates. All rights reserved.End To End DataCenter VirtualizationToronto, CanadaMay 30, 2013Ronnie ScottDC Technology Solutions Architectascott@cisco.comFollow us on Twitter at #CiscoConnect_TO
  • 2. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 2• If you can see it and it is thereIt’s real• If you can’t see it but it is thereIt’s transparent• If you can see it and it is not thereIt’s virtual• If you can not see it and it is not thereIt’s goneSetting the Stage:What’s the Meaning of Virtual?
  • 3. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 3
  • 4. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 4Humm …..
  • 5. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 5
  • 6. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 6The Journey in a NutshellNetworking teamServers teamStorage teamApplications teamFacilities teamVirtualisation Team
  • 7. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 7
  • 8. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 8• Data Center Virtualization Overview• Front-End Data Centre VirtualizationDC Edge LayerAggregation / Spine LayerAccess / Leaf Layer• Virtual Networking & Cloud NetworkServicesVirtual Access Layer: Nexus 1000vCloud Network ServicesInter DC Services: OTV & LISP• Virtual Compute & IO VirtualizationUnified Computing SystemHypervisors & Virtual IO @ Cisco UCS• Virtualised Storage & SANUnified FabricVirtualized SAN and Storage• Software Defined Network & OrchestrationSDN & Cisco Open Network Environment (ONE)Cloud OrchestrationToday’s Agenda
  • 9. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 9Overview
  • 10. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 10Nexus 700010 GE AggrNetworkServicesLayer 3Layer 2 - 1GELayer 2 - 10GE10 GE DCB10 GE FCoE/DCB4/8 Gb FCFCSAN AFCSAN BvPC+FabricPathNexus 700010 GE CoreCatalyst 6500End-of-RowNexus 5500 10GENexus 2248End-of-RowCBS 31xxBlade switchNexus 7000End-of-RowNexus 5500 FCoENexus 2232Top-of-RackUCS FCoE Nexus 3000Top-of-RackNexus4000FIP-Snoop.IBM BladeCenter1 GbE Server Access & 4/8Gb FC via dual HBA (SAN A // SAN B) 10Gb DCB / FCoE Server Access or 10 GbE Server Access & 4/8Gb FC via dual HBA (SAN A // SAN B)L3L2MDS 9500SANDirectorB22FEXHP BladeC-classFCSAN AFCSAN BAggregation& ServicesLayerDC EdgeLayer(LAN & SAN)Access LayerSAN EdgeWAN EdgeLayerMDS 9200 /9100Nexus5500FCoEHow it was
  • 11. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 11• Network ApplicationServices must be alignedto meet the VM geometry• Close interaction requiredbetween Virtualizedinfrastructure andApplication Servicessupporting VMsThe “Virtual Data Centre” Approach
  • 12. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 12Data Centre Row 1What’s Wrong With That?Data Centre Row 2 Virtualization (vMotion, Live Migration, etc.) arechanging multiple aspects of the Data Centre design Where is the server now? Where is the access port? Where does the VLAN exist? Any VLAN Anywhere? How large do we need to scale Layer 2? Capacity planning requirements Policy boundaries (Security, QoS, acceleration, …)? What about programmability and automation ?
  • 13. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 13
  • 14. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 14
  • 15. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 15
  • 16. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 16Front-End Data CentreVirtualization
  • 17. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 17Policy PlaneThe business glue of the network. Rules execution, decision making, ServiceManager and all the other components to make a productize service.Services PlaneOverlay “Layer 7” application flow built on the foundation of the other layers.Dependent on the other layers.ManagementPlaneThe management plane is the logical path of all traffic related to the systemmanagement of the platform.Control PlaneIt’s the brain of any networking platform and the technical glue of the network. Thecontrol plane is where all routing, switching, other protocols and control informationare exchangedData PlaneThe data plane receives, processes, and transmits network data between networkelements, and represents the bulk of network traffic that passes to and through thegear.Network Planes of Operation
  • 18. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 18 Port-channels extending across two separate physicalswitches Create resilient L2 topologies using Link Aggregation. Eliminates STP in the access-distribution Layer Enable seamless VM Mobility, Server HAClusters Scale Available Layer 2 Bandwidth Dual-homed server operate in active-active mode Simplify Network Design Available on Nexus 7000, 6000, 5000, and 3000Bi-sectional bandwidth with vPCL2SiSiNon-vPC vPCSiSiVirtual Port ChannelPhysical Topology Logical TopologyVirtual Port Channel (VPC)The “Lies and Deceit Protocol”
  • 19. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 19Distributed HighDensity EdgeSwitching System+Cisco Nexus® 2200 FEXCisco Nexus® 5500Cisco Nexus® 2200 FEXCisco Nexus® 7000+Cisco FEXlink: Virtualized Access SwitchNexus 2200 Fabric Extender (FEX)Cisco Nexus® 6000+Cisco Nexus® 2200 FEX
  • 20. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 20IEEE 802.1BR: Bridge Port Extension Standardized Port Extender (FEX Equivalent) Port Extenders managed by controlling switch Port Extenders can be Cascaded Traffic from each “Extended Port” is segregated in an E-channel,identified E-channel identifier (ECID) “tag” Controlling Bridge + PE = Extended Bridge Single Point of ManagementPEBridgePEPEPE Port ExtenderPEvFWServerVM1PEControllingBridgeExtended BridgeECID
  • 21. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 21Logical View: Star Topology Without L2 LoopsVirtual Blade Switching(VBS)Nexus 7000vPC+Nexus 5500 / 6000 + Nexus 2200Virtual AccessSwitch PODUnified ComputingSystem (UCS)Nexus 7000 + Nexus 2200Virtual AccessSwitch PODSpanning TreeStill Keeping AWatchful Eye
  • 22. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 22Cisco FabricPathScaling and Simplifying Layer 2 Ethernet Networks-All Links ActiveTraditional Spanning Tree Based NetworkUp to 16 Agg/Spine switches-Blocked LinksCisco FabricPath Network160+ Tbpsswitching capacity Eliminate Spanning tree limitations Multi-pathing across all links, high cross-sectional bandwidth High resiliency, faster network re-convergence Any VLAN, any where in the fabric eliminate VLAN Scoping
  • 23. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 23S10 S20 S30 S40S100 S101 S201FabricPathRack-MountServerL1 L2 L4L3L5 L6 L7 L8L9 L10 L11 L12Logical View with FabricPath:Distributed Topology without L2 loopsUnified Computing System(Cisco UCS)Virtual AccessSwitch POD(Nexus 7000 / 6000 /5x00 + Nexus 2200)Virtual Blade Switching(VBS)vPC+ vPC+S200LeafLayerSpineLayer
  • 24. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 24Virtual Networking & CloudNetwork Services
  • 25. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 25What Happens WhenWe Mix Network andServer Virtualization ?2
  • 26. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 26Current View of the Access Layer with VMs• Typically a trunk to the ESX server• No visibility to individual traffic from each VM• Unable to troubleshoot, apply policy,address performance issuesBoundary of network visibilityBudgetPolitics“Religion”“Human”Layer 1098
  • 27. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 27
  • 28. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 28VN-Link View of the Access Layer• Nexus 1000V and VN-Link providevisibility to the individual VMs• Policy can be configured per-VM• Policy is mobile within the ESX cluster
  • 29. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 29Cisco Virtual Networking VisionMulti-HypervisorMulti-ServicesMulti-CloudNexus 1000VVMWare vSphereMicrosoft Hyper-V @ Windows Server 2012KVMXen ServerFirewall, WAN/App optimization, ADC,Cloud Router, WAF, VM SegmentationPrivate, Public, Hybrid, Community
  • 30. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 30CiscoNexus1000VVEMCiscoNexus1000VVEMCiscoNexus1000VVEMVM VM VM VMVM VM VM VMVM VM VM VMCisco Nexus 1000V VSMVirtual Supervisor Module (VSM)• Virtual or Physical appliance runningCisco NXOS• Management, monitoring, and config• Tight integration with managementplatformsVirtual Ethernet Module (VEM)• Advanced networking switch inhypervisor• Dedicated “switch port” to each VM• Collection of VEMs : 1 virtual networkDistributed SwitchHypervisor HypervisorHypervisorServer Server ServerCisco Nexus 1000V ArchitectureVirtual Machine ManagerEx.: vCenter, SCVMM, etc.
  • 31. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 31VM VM VM VMNexus1000VVEMVM VM VM VMNexus1000VVEMNexus 1000VVSMWindows 8 Hyper-VNexus 1000VVSMVMware vSphereVMware vCenter SCVMMConsistent architecture, feature-set & network servicesensures operational transparency across multiple hypervisors.Cisco Nexus 1000v Multi-Hypervisor Support
  • 32. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 32Essential and Advanced Edition - Features ComparisonAdvanced Edition ($820 LIST)• Cisco TrustSec support• CISF: DHCP snooping, IP SourceGuard, ARP Inspection• VSGEssential Edition ($0)• VLAN, ACL, QoS• VXLAN, vPath• LACP• Multicast• Netflow, ERSPAN• Management• vTracker• vCenter Plug-in
  • 33. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 331. Port Profile Created in VSMPort Profile Published to VMM2. Server Admin selects Port Profile in VMMVMM Notifies VSM of new VM3. VSM Instantiates now vETH PortNexus 1000v Port Profiles1.VMW ESXServer 1Nexus 1000V - VEMVM#1VM#4VM#3VM#2Available Port GroupsWEB Apps HRDB Compliance2.Nexus 1000VVSMVirtual MachineManager (VMM)3.“WEB Apps” Port Profile: PVLAN 108, Isolated Security Policy = Port 80 and 443 Rate Limit = 100 Mbps QoS Priority = Medium Remote Port Mirror = Yes
  • 34. Virtual Extensible Local Area Network (VXLAN)• Ethernet in IP overlay networkEntire L2 frame encapsulated in UDP50 bytes of overhead• Include 24 bit VXLAN Identifier16 M logical networks• VXLAN can cross Layer 3• Tunnel between VEMsVMs do NOT see VXLAN ID• IP multicast used for L2 broadcast/multicast,unknown unicast• Technology submitted to IETF forstandardizationWith VMware, Citrix, Red Hat and OthersOuterMACDAOuterMACSAOuter802.1QOuterIP DAOuterIP SAOuterUDPVXLAN ID(24 bits)InnerMACDAInnerMACSAOptionalInner802.1QOriginalEthernetPayloadCRCVXLAN Encapsulation Original Ethernet Frame
  • 35. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 35VM 1 VM 3VM 2Layer 2 (Pod 1) Layer 2 (Pod 2)Layer 3VLAN 10VLAN 10 VLAN 10Existing Solution: Reachability of VMs Within VLANLimited Scalability with 4k VLANs
  • 36. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 36VM 1 VM 3VM 2Layer 2 (Pod 1) Layer 2 (Pod 2)Layer 3VXLAN 5500VXLAN 5500VXLAN: Crossing L3 Subnets within the DC
  • 37. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 37Data Centre Virtualized Services via ContextsPhysical Appliances/Modules Context Combination Examplev5v105v6 v7v107v2081v2082v2083v206 v207v206T-4T-2 T-3v105v108T-1vXXX = VLAN NumberT-X = TenantVRFVRFVRFVRFVRFv208“Front-End” VRFs (MSFC)Firewall / ASA Service Module ContextsACE Module Contexts“Back-End” VRFs (MSFC)Server Side VLANsv207v8
  • 38. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 38Cisco Nexus 1000V Architecture: vPathVirtual ApplianceVSMCisco vWAAS Cisco VSGCisco® ASA 1000 VLayer2ModeLayer3ModeVirtual Service Data Path(vPath)Service chaining(traffic steering)Fast-path offloadVXLAN awareEmbedding intelligence forvirtual servicesVEM-1vPath VXLANHypervisorVEM-2vPath VXLANHypervisor
  • 39. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 39vPATH – VMware IntegrationNexus 1000vVSMNetwork Admin viewvPATH interceptionvSphere clientServer Admin viewAttach Opt-port-profileto server VMsPort-Profile Port-group
  • 40. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 40Cisco Nexus 1110 Virtual Services ApplianceEnabling Physical-Virtual Consistency across Cisco and Ecosystem Partners ProductsNexus 1110 Series Cloud Network Services platform3rd partyvADCCiscoVirtualSecurityGatewayCiscoPrimeNetworkAnalysisModule3rd partyWAFMulti-HypervisorNexus 1000VUCS / NexusVM VMvWAASASA1000VVirtual Services Deployed on Cisco VirtualService ApplianceVirtual Services as VM’s onMultiple Hypervisors
  • 41. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 41Cisco Virtual Networking and Cloud Network ServicesNexus 1000V• Distributed switch• NX-OS consistencyVSG• VM-level controls• Zone-based FWASA 1000V• Edge firewall, VPN• Protocol InspectionvWAAS• WAN optimization• Application trafficMulti-HypervisorWANRouterServersPhysicalInfrastructureVirtualized/CloudData Centre6000+ Customers Shipping Shipping ShippingCSR 1000V(Cloud Router)• WAN L3 gateway• Routing and VPNBetaSwitchesEcosystemServices (*)• Virtual ADC• Web App. FirewallCloud Network ServicesTenant AASA1000VCloudFirewallNexus 1000VvWAASCiscoVirtualSecurityGatewayvADC (*)vWAF (*)CloudServicesRouter1000VZone AZone BvPath VXLANFUTURE
  • 42. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 42Cloud Virtual Data CenterVirtual Firewall and Physical NetworkHypervisorNexus 1000VHypervisorNexus 1000VHypervisorNexus 1000VInternal ZoningDCIVirtualIntra-ZonePhysicalVirtualInter-Zone
  • 43. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 43Overlay Transport Virtualization (OTV)• Ethernet traffic between sites is encapsulated in IP: “MAC in IP”Dynamic encapsulation based on MAC routing tableNo Pseudo-Wire or Tunnel state maintainedOTV at a GlanceCommunication betweenMAC1 (site 1) and MAC2 (site 2)Server 1MAC 1Server 2MAC 2OTV OTVMAC IFMAC1 Eth1MAC2 IP BMAC3 IP BIP A IP BEncap DecapMAC1  MAC2 IP A  IP B MAC1  MAC2 MAC1  MAC2
  • 44. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 44IP coreIP address representsIdentity and LocationNormal IP BehaviorLoc/ID “Overloaded” Semantic10.1.0.1 When device moves, it gets new IPaddress for both Identity and Location20.2.0.9IP address only representsIdentityWhen device moves, it keeps its IPaddress (Identity)LISP BehaviorLoc/ID “Split”IP core1.1.1.12.2.2.2Only the Location Changes10.1.0.110.1.0.1Location Identity Separation Protocol (LISP)What Do We Mean by “Location” and “Identity”?Location Is Here!
  • 45. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 45A LISP Packet WalkHow Does LISP Operate?Non-LISP siteEast-DCLISP SiteIP NetworkETREID-to-RLOCmapping5.1.1.15.3.3.31.1.1.15.2.2.210.3.0.0/2410.2.0.0/24West-DCPITR5.4.4.410.1.0.0/24Non-LISP siteITRSDDNS Entry:D.abc.com A 10.2.0.1110.1.0.1 -> 10.2.0.12EID-prefix: 10.2.0.0/24Locator-set:2.1.1.1, priority: 1, weight: 50 (D1)2.1.2.1, priority: 1, weight: 50 (D2)MappingEntry3This Policy Controlledby Destination Site10.1.0.1 -> 10.2.0.11.1.1.1 -> 2.1.1.1410.1.0.1 -> 10.2.0.152.1.1.1 2.1.2.1 3.1.1.1 3.1.2.1
  • 46. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 46Virtual Compute &IO Virtualisation
  • 47. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 47LANAny IEEE Compliant LANSAN BAny ANSI T11 Compliant SANMgmt SAN AAny ANSI T11 Compliant SANCisco Unified Computing System (UCS)One Logical Chassis to Manage*LAN ConnectivitySAN NetworkingBlade Chassis’Server BladesRack ServersServer Identity ManagementMonitoring, Troubleshootingetc.*160 servers supported as of UCS release 2.0
  • 48. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 48UCS Service ProfilesDeliver a “Server as a Service”48Service ProfileNIC toSwitch portMappingsQoSandSecurityPoliciesVLANsandVSANsNIC and HBASettingsBIOSSettingsFirmwareStorageSettingsUnify All Settings“as a Service”MACs andWWNs
  • 49. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 49UCS Service ProfilesDeliver a “Server as a Service”49Service ProfileNIC toSwitch portMappingsQoSandSecurityPoliciesVLANsandVSANsNIC and HBASettingsBIOSSettingsFirmwareStorageSettingsUnify All Settings“as a Service”MACs andWWNs
  • 50. Unified & Stateless via UCS Service ProfilesAligns People, Policy, and Configuration With WorkloadServer Policy…Storage Policy…Network Policy…Virtualization Policy…Application Profiles…Subject Matter ExpertsDefine Policies1StorageSMEServerSMENetworkSMEPolicies Usedin Service ProfileTemplates2Service ProfileTemplatesCreate Service Profiles3Associating ServiceProfiles with HardwareConfigures ServersAutomatically4UnifiedManagementApp 4UUID, MAC, WWNBoot InformationLAN, SAN ConfigFirmware PolicyApp 3UUID, MAC, WWNBoot InformationLAN, SAN ConfigFirmware PolicyApp 2UUID, MAC, WWNBoot InformationLAN, SAN ConfigFirmware PolicyApp 1UUID, MAC, WWNBoot InformationLAN, SAN ConfigFirmware PolicyServer NameUUID, MAC, WWNBoot InformationLAN, SAN ConfigFirmware Policy
  • 51. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 51*IEEE 802.1BR Pre-StandardFabric Extender EvolutionDistributed Modular System to the ToR, Server, and Virtual MachineFEX Architecture Consolidates network management FEX managed as line card of parentswitch Uses Pre-standard IEEE 802.1BRIEEE 802.1BR*Many applicationsrequiremultiple interfacesOne NetworkParent Switch to Top of RackLegacyFEXNetworkAdministrator
  • 52. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 52LegacyAdapter FEX Consolidates multiple 1Gb interfaceinto a single 10Gb interface Extends network into server Uses Pre-standard IEEE 802.1BROne NetworkParent Switch to AdapterIEEE 802.1BR *Adapter FEXMany applicationsrequiremultiple interfacesFEXNetworkAdministrator*IEEE 802.1BR Pre-StandardIEEE 802.1BR *Fabric Extender EvolutionDistributed Modular System to the ToR, Server, and Virtual Machine
  • 53. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 53LegacyIEEE 802.1BR *Adapter FEXHypervisorOne NetworkVirtual Same As PhysicalVM-FEX Consolidates virtual and physicalnetwork Each VM gets a dedicated port onswitch Uses Pre-standard IEEE 802.1BRIEEE 802.1BR *IEEE 802.1BR *VM networkmanaged byServeradministratorVM-FEXFEXNetworkAdministrator*IEEE 802.1BR Pre-StandardFabric Extender EvolutionDistributed Modular System to the ToR, Server, and Virtual Machine
  • 54. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 54HypervisorIEEE 802.1BR*One NetworkParent Switch to ApplicationSingle Point of ManagementFEX Architecture Consolidates network management FEX managed as line card of parentswitchAdapter FEX Consolidates multiple 1Gb interfaceinto a single 10Gb interface Extends network into serverVM-FEX Consolidates virtual and physicalnetwork Each VM gets a dedicated port onswitchIEEE 802.1BR*IEEE 802.1BR*Adapter FEXLegacyManage network allthe way tothe OS interface –Physical and VirtualFEXVM FEXNetworkAdministrator* IEEE 802.1BR Pre-StandardFabric Extender EvolutionDistributed Modular System to the ToR, Server, and Virtual Machine
  • 55. Cisco UCS C-Series Adapter-FEX and VM-FEXUCS P81E & VIC 1225 Virtual Interface Card• NIC partitioning to OS, 802.1BR to switchAdapter-FEX mode: up to 16 Eth vNIC and 2 FC vHBAVM-FEX mode: up to 96/112 vNics• Adapter Failover: vNICs transparently mapped to standby port on primary path failure• Security and scalability: no need to trunk all VLANs to one server interface
  • 56. Adapter-FEX at UCS C-Series ServersNetwork admin controls veth configuration and server NICsNexus-5548(config)# int veth6Nexus-5548(config-if)# shutNexus-5548(config-if)# no shutSupport matrix at Nexus 5500 (NX-OS 5.1(3)N1(1)) and UCS C-Series Servers
  • 57. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 57• Dual 4x 10 GE port-channels per server slot• Host connectivity PCIe Gen2 x16 - 32 Gbps• HW Capable of 256 PCIe devices• OS restriction apply• 112 Maximum Usable• PCIe virtualization OS independent• Single OS driver for M81KR and 1280 VIC• FabricFailover supported• Eth hash inputs : Source MAC Address, Destination MAC Address,Source Port, Destination Port, Source IP address, Destination IP address,and VLAN• FC Hash inputs: Source MAC Address, Destination MAC Address, FC SIDand FC DID Dual 4x 10 GE (80 Gb per host) VM-FEX scale, up to 112 VM interfaces /w ESX 5.0Customer benefitsFeature detailsUCS B-Series: Virtual Interface Card (VIC) 1280UCS 1280 VICUCS 2208 IOMSide A Side B256 PCIe devicesUCS 2208 IOM
  • 58. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 58Bring network to the hypervisor(Cisco Nexus 1000V Switch)UCS VICUCSServerBring VM awareness to physical network(Cisco UCS VM-FEX)HypervisorHypervisorCisco Nexus 1000VAdapterServerVM-FEX*IEEE 802.1Q NetworkCisco Nexus 1000V vs. UCS VM-FEXUCS FIorNexus 5500*Pre-standard, IEEE 802.1BR
  • 59. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 59Virtual Storage &SAN
  • 60. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 60iSCSIApplianceFile SystemApplicationSCSI Device DriveriSCSI DriverTCP/IP StackNICVolume ManagerNICTCP/IP StackiSCSI LayerBus AdapteriSCSIGatewayFCFile SystemApplicationSCSI Device DriveriSCSI DriverTCP/IP StackNICVolume ManagerNICTCP/IP StackiSCSI LayerFC HBANASApplianceNICTCP/IP StackI/O RedirectorFile SystemApplicationNFS/CIFSNICTCP/IP StackFile SystemDevice DriverBlock I/ONASGatewayNICTCP/IP StackI/O RedirectorFile SystemApplicationNFS/CIFSFCNICTCP/IP StackFile SystemFC HBAFCoE SANFCoESCSI Device DriverFile SystemApplicationComputer System Computer System Computer System Computer System Computer SystemBlock I/O File I/OEthernet EthernetBlock I/ONICVolume ManagerVolume ManagerFCoE DriverUnified FabricStorage I/O—Flexibility and Serialized Re-UseEthernetEthernetEthernet Any server, accessing anystorage, any time Serialized Re-Use:Boot from SAN / Run from NAS Virtualization requires Storagebe accessible from any server
  • 61. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 6161I/O Consolidation with FCoEStandards for Unified I/O with FCoEFCoE is fully defined in FC-BB-5 standardFCoE works alongside additional technologies to make I/O Consolidation a realityT11 IEEE 802.1FCFrameFC onothernetworkmediaFC onDedicatedMediaFC-BB-5PFC ETS DCBX802.1QbbDCB802.1Qaz 802.1QazLosslessEthernetPriorityGroupingConfigurationVerification802.1Qbg802.1BRPE EVBPort-ExtenderEdge VirtualBridge
  • 62. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 62FCoE Implementation - Phase 1Last Mile Cable ConsolidationEthernet FCLAN SAN BSAN ANo Consolidated IO I/O Consolidation with FCoESAN BLAN SAN AFCoENexus5000Ethernet FC
  • 63. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 63Example: Embedded FCoE in Cisco UCSFrom ad hoc andinconsistent……to structured, but siloed,complicated and costly……to simple, optimized andautomated
  • 64. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 64Looking forward: Full Unified FabricSAN Separation at the Access Switch• LAN/SAN traffic share switches and links• FabricPath enabled• All Access switches are FCoE FCF switches• VE_Ports to each neighbor Access switch• Shared forwarding engine (FabricPath)• Improved (N + 1) redundancy for LAN & SAN• Sharing links increases flexibility and scalability• Distinct SAN ‘A’ & ‘B’ for zoning and multipath• With FC-BB-6 on the future:• Access switches for server connectivity to behave as FDF• FDF to FCF transparent failover• VA_Ports to each neighbor FCF switchL2L3Isolation ConvergenceFCoENexus 7000Nexus 5500FCFFCFCNA1CNA210,20 20,30 10 30Array1 Array210,20 20,30 10 30Fabric ‘A’ConvergedFCoE linkDedicatedFCoE linkFCEthernetFabricPathFabric ‘B’
  • 65. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 6565Server-Based storage on Cisco UCS StorMagic SvSAN (Storage Virtual Appliance) VMWare Virtual Storage Appliance (VSA) Nexenta (VM-aware and scale-out) Nimble Storage CS-Series NetApp OnTap Edge Red Hat Storage Server
  • 66. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 66Software Defined Network& Orchestration
  • 67. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 67What is SDN?Evolving SDN:tackling strategic,technology, andoperationalchallengesNETWORKWORLDSDN revolution orevolution: Impacton the IT managerGoogle revampsnetworkswithOpenFlowWe share a more pragmatic view, noting Cisco(for example)is likelyto view SDNasa TAM expansionopportunity…Deutsche Bank Research Note“JedaNetworksproposesyet anothersoftware-definedoptionfor the data center”SDN
  • 68. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 68Before we get started: “SDN-related” DefinitionsWhat Is Software Defined Network (SDN)?“…Software Defined Networking (SDN) is a networkdesign concept in which the network control plane iscentrally accessible through an API to applicationswanting to better use the network…Source: wikipideaWhat is OpenStack?Opensource software for building publicand private Clouds; includes Compute (Nova),Networking (Quantum) and Storage (Swift)services.Source: www.openstack.orgWhat is Overlay Network?Overlay network is created on existing networkinfrastructure (physical and/or virtual) using a networkprotocol. Examples of overlay network protocol are:MPLS, GRE, IPSEC, LISP, OTV and VXLANWhat Is OpenFlow?“…open standard that enables researchersto run experimental protocols in campus networks.Provides standard hook for researchers to runexperiments, without exposing internal working ofvendor devices…”Source: www.opennetworking.org
  • 69. “SDN” ApproachData Plane Data Plane…ApplicationsAPIsSimpler Provisioning,Centralized Network TopologyTraditionalDC Mgmt.SWNetwork Programmability Models• Physical or VirtualCurrent Switch/RouterApplicationsAPIsControl PlaneData PlaneResilient, Scalable, Secure, Rich Features,Evolutionary, Investment ProtectionControllerOpenstack and Network Overlays Apply to All Models (Physical/Virtual)Custom Features Can Be BuiltHybrid ModelControl PlaneData Plane…Control PlaneData PlaneControllerCombined Benefits, Evolutionary Model,Investment ProtectionTraditionalDC Mgmt. SWApplicationsAPIsHybrid ModelControl Plane Control PlaneApplicationsAPIsControllerSimpler Provisioning,Centralized Network TopologyTraditionalDC Mgmt.SWData Plane… Data PlaneControlPlaneControlPlane
  • 70. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 70Preserve what’s working Evolve for emerging requirementsCisco Software Defined Network (SDN) StrategyEvolving The Intelligent NetworkEvolve the Network for the next wave of application requirements• Resiliency• Scale• Rich feature-set• Operational Simplicity• Programmability• Application Centricity+
  • 71. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 71aCisco Open Network Environment (ONE)Industry’s Most Comprehensive Networking PortfolioHardware + Software Physical + Virtual Network + ComputeNetworkPlatformAPIsControllers andAgentsVirtualOverlaysApplicationswww.cisco.com/go/oneonePKSDN:SW ControllerOpenFlow agentsNexus 1000vEnhancements
  • 72. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 72Network Programmability Models:Cisco’s Deeper View
  • 73. Selecting theBEST SERVICE PROVIDER& PUBLIC CLOUDPartner 1L2 & L3 HYBRID CLOUD viaCisco Nexus 1000vInterCloudPartner 3Partner 2
  • 74. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 74vPCDC EdgeInternal DC Zone(s)DC Core VDC (Routed)DC Aggregation Layer VDCCompute Access LayerFWCLUSTERHOTvMotion!ininoutOverlay Networks & Entanglement
  • 75. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 75Physical Public CloudVirtual Private Cloud1 Traditional (Physical) DC2 Virtual DC3 Virtual DesktopCisco VXI4 Internal Private CloudInternetVDC1VDC2vPCIPsec/SSLVMDCCustom DC5 Virtual Private CloudSaaSPaaS6 Public CloudVirtualization & Cloud – Amplifying Entanglement
  • 76. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 76Conclusion
  • 77. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 77
  • 78. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 78
  • 79. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 79
  • 80. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 80
  • 81. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 81
  • 82. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 82
  • 83. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 83Questions
  • 84. Complete Your Paper“Session Evaluation”Give us your feedback and you could win1 of 2 fabulous prizes in a random draw.Complete and return your paperevaluation form to the room attendantas you leave this session.Winners will be announced today.You must be present to win!..visit them at BOOTH# 100
  • 85. © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 85Thank you.

×