Automating Network Services Provisioning for Multi-Tenant Data Centers

Automating Network ServicesProvisioning in Multi-TenantData CentersBrian PromesProduct Line Manager– Cloud ManageabilityCisco Cloud and System Management Technology GroupJune 2012© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 1

Virtualized Multi-tenant Data Center Fully isolated tenant environment (integrated security) Customer 1 Customer 2 Abstraction of complexities (enables speed) Automated processes and controls (ensures scale) Streamlined, holistic coordination of resources and services (maximizes capacity) Customizable service definitions and implementation (shortens time to market) Proven, tested solutions – infrastructure and automation/orchestration (reduces risk)© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 2

Bronze Silver Platinum Multiple VLANs Multiple VLANs Load Balancing 1 VLAN SLB and SSL Offload VPN Offload Firewall SLB and SSL Offload System Configuration System Configuration Virtual Firewall and Private VLANs Virtual Firewall and Private VLANs Virtual Firewall and Private VLANs Shared VMFS and Dedicated VMFS and Dedicated VMFS , No Data Protection DP Through Snapshots 100% DP, and Cloning© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 3

Tenant Creation Enterprise VPN Basic Network Container TNC Mgmt. VLAN Enhanced Network Container (Web) (App) (DB) Large Network Container FW FW Security and Load Balancing Services FW/LB Internet Multi-Tiered Network Containers Behind Firewalls Designed to Your Requirements Using Flexible Models© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 4

Sample Customer Use Case • Computing and storage resources attached to a routable VLAN • Capability to partition and zone virtual machines and access within their containers • Accessible from a VPN connections (hybrid cloud) NC Topology: VPN with Network Container Device Roles Router and PE Distribution Services Layer 2 Aggregation Layer 2 Aggregation Access Virtual machine is deployed outside Cisco Network Services Manager This use case supports creation of a protected private zone. The customer requires that the only way to reach this zone is through a private VPN (MPLS, SSL, and IPsec). To build this solution, Cisco® Network Services Manager will build both the private zone and the network container within it.© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 5

NB API Abstracted Business Model Network Services Manager allows administrators the ability to define the logical constructs of their cloud Cisco® Network Services Manager Engine (access/security, tiers of service, resources and constraints). Abstracted Operational Abstracted Services and Model Topology Model JMS Transport Cisco Network Services Manager Cisco Network Services Manager Cisco Network Services Manager Controller Controller Controller Tenant Container Tenant Container Compute Compute Compute Network Network Network Storage Storage Storage Tenant Network Tenant Network Tenant Network Container Container Container Network Network Container Network Network Container Container Container (Application) (Web) Pod/Block Pod/Block Pod/Block FW FW MPLS Network Internet Enterprise Network© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 6

This use case shows a combination of aset of the 4 possible zones in NetworkServices ManagerNote that the models will allow eachcombination in every zone - all possiblecombinations are shown but in this casedistributed across the 4 zones - theycould all be built in any zone © 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 7 7

Common abstraction layer Standardized API Orchestration Automation Service Catalog Service Portal Module Module Abstraction Layer Cisco® Network Open REST API Flexible, easily consumable interface Services Manager Cisco and 3rd party physical and virtual platforms VNMC Fastest deployment and lowest operating costs for cloud SP VMDC Pod Enterprise VMDC Pod© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 8

Automating Network Services Provisioning for Multi-Tenant Data Centers

by Cisco Data Center on Jun 14, 2012

Accessibility

Categories

Upload Details

Usage Rights

Statistics

Automating Network Services Provisioning for Multi-Tenant Data Centers Presentation Transcript