solutions datacenter cisco...julien couturier data center systems engineer, ccie #21502 june 10th,...
TRANSCRIPT
Julien Couturier
Data Center Systems Engineer, CCIE #21502
June 10th, 2016
Foundations for an agile and efficient NFV Infrastructure
Solutions Datacenter Cisco
Les usages changent…
…Les Data Centers aussi
2005
2016
Observation des tendances du marché
Ces nouveaux usages entrainent de
nouvelles demandes pour l’infrastructure
Digitalisation IoT, OTT, Fintech
Densification des workloads
virtuels Plus de VM par serveurs
Essor des containers, NFV
Nouveaux Modèles de
Déploiement Cloud, micro-services,
Fragmentation de la virtualisation
Applications Distribuées Big data, Analytics,
Video, social apps, SDS
APP
DevOps IT Plus grande agilité
Nouvel outillage
Applications Traditionnelles CRM, ERP, billing, etc.
Impact de la transformation métier sur les infrastructures
Métier
Développement
Production (Ops)
Méthodes Agiles
DevOps
Déplo
iem
ent
continu
Intégration continue
Infrastructure programmable
par conception
Automatisation
OPEX & Agilité
Contrôleurs et API
ASIC
Diversité
Coût / Performance
API
Ouverture
Cohérence
Analytics
Visibilité
Réponse & Prise d’action en temps réel
Applications
Focus Cisco dans le Data Center
Infrastructure de réseau Data Center
Programmable Network Programmable Fabric Application Centric
Infrastructure
DB DB
Web Web App Web App
• Je souhaite gérer et choisir mes
process d’automatisation
• Je souhaite baser mon
infrastructure sur une fabric
moderne et efficace
• Je souhaite gérer et choisir mes
process d’automatisation
• Je souhaite capitaliser sur des
architectures existantes
• J’ai des besoins d’architecture
spécifiques (exemple: MSDC)
• Je souhaite une automatisation
intégrée, prenant en compte mon
écosystème
• Je souhaite baser mon infrastructure
sur une fabric moderne et efficace
Les Architectures de LAN DC Cisco Des choix permettant de s’adapter au besoins de nos clients
Programmable Network Programmable Fabric Application Centric
Infrastructure
DB DB
Web Web App Web App
• Je souhaite gérer et choisir mes
process d’automatisation
• Je souhaite baser mon
infrastructure sur une fabric
moderne et efficace
• Je souhaite gérer et choisir mes
process d’automatisation
• Je souhaite capitaliser sur des
architectures existantes
• J’ai des besoins d’architecture
spécifiques (exemple: MSDC)
• Je souhaite une automatisation
intégrée, prenant en compte mon
écosystème
• Je souhaite baser mon infrastructure
sur une fabric moderne et efficace
Les Architectures de LAN DC Cisco Des choix permettant de s’adapter au besoins de nos clients
Pourquoi rendre le réseau programmable ?
Plus flexible Plus d’innovation Plus rapide Plus répétable
Moins d’erreurs humaines
Programmable Network Open NX-OS
3rd Party DevOps Automation Tools
Toolset Integration in Open NX-OS
Leverage same software
tools and expertise across
different IT departments
Programmable Open APIs
Open, Modular Operating System
Object-based model-driven
RESTFul APIs
Sandbox
OpenStack ML2 plugin
Custom Application Development
Nexus
Extensible
Open NX-OS
Custom application
development with option for
secure LXC containers
3rd party/custom apps
integration
Managing Switch with Linux Tools
Leverage Linux Toolchain for Switch Management
Leverage tcpdump, ifconfig
ethtool, iproute, BASH shell
commands for config and
troubleshooting
Cisco DevNet Open Developer Ecosystem
Open Environment for Building Compelling and Innovative Apps
Platform APIs SDKs and Tools Developer Support Community Management
• Northbound REST
APIs
• Network Services Java
APIs
• Southbound Network
Element Interfaces
• Developer
documentation
• Learning Labs
• Videos and Tutorials
• Code Samples
• Sandbox Environments
(with Load Tools and
Physical Hardware
Devices)
• Case-Based
Developer Support
• Community Support
• 100,000+ Registered
DevNet Members
• Hack-a-thons
• Learning Labs
• Online Communities
and Forums
http://developer.cisco.com
Programmable Network Programmable Fabric Application Centric
Infrastructure
DB DB
Web Web App Web App
• Je souhaite gérer et choisir mes
process d’automatisation
• Je souhaite baser mon
infrastructure sur une fabric
moderne et efficace
• Je souhaite gérer et choisir mes
process d’automatisation
• Je souhaite capitaliser sur des
architectures existantes
• J’ai des besoins d’architecture
spécifiques (exemple: MSDC)
• Je souhaite une automatisation
intégrée, prenant en compte mon
écosystème
• Je souhaite baser mon infrastructure
sur une fabric moderne et efficace
Les Architectures de LAN DC Cisco Des choix permettant de s’adapter au besoins de nos clients
INCREASED SCALE
Expanded L2 name space
Elimination of flooding
WORKLOAD MOBILITY
Integration of physical/virtual
Anycast gateway
SEGMENTATION
Layer 2 & Layer 3
Multi-tenancy
VTEP VTEP VTEP VTEP VTEP
BGP-EVPN VXLAN Overlay
INTEROPERABILITY
Standards-based
VXLAN BGP-EVPN
Programmable Fabric Multi-Tenancy and Seamless Host Mobility at Cloud Scale
ROBUST UNDERLAY NETWORK
IP routing: proven, stable, scalable ECMP : fair use of every links
PROGRAMMABILITY
NX-API, VTS,
NFM, Puppet
VXLAN EVPN Multi-Vendor Interoperability
MPLS SDN World Congress Hosted by EANTC
EVPN Interoperability Testing
Participants: Cisco, Juniper, Alcatel-Lucent, Ixia
Results:
• All participating vendor platforms can interoperate for VXLAN Layer-2 bridging
• Nexus 9300 functioned as both EVPN iBGP route reflector spine and VTEP leaf
• Nexus 9000 and Nexus 7000 demonstrated EVPN symmetric routing
White paper by EANTC:
http://www.eantc.de/fileadmin/eantc/downloads/events/2011-2015/MPLSSDN2015/EANTC-MPLSSDN2015-WhitePaper_online.pdf
https://puppetlabs.com/blog/networking-industry-s-first-puppet-orchestrated-vxlan-fabric
VXLAN EVPN Fabric Automation - Puppet
NX-APIs, CLI,
RESTConf YANG
VXLAN-EVPN Fabric Automation Virtual Topology Services
Operations /
Programmability
& Automation
external
networks
VM
OS
Physical Virtual
DCI/WAN
Bare Metal
servers & L4-L7
services
BGP EVPN
VMs
Flexible Hybrid Overlays
Physical and Virtual Overlays
Bare-metal and Virtualized Workloads
Service Chaining
Automated
Seamless Integration with Orchestrators
Automated Overlay Provisioning
Automated DCI/WAN Integration
Open and Programmable
REST-Based Northbound APIs
Multi-protocol Support
Multi-hypervisor Support
Scalable VXLAN Fabric
MP-BGP EVPN Control Plane
Virtual Tenant Networks
High Performance Virtual Forwarding (VPP integrated with DPDK)
VM
OS
REST-APIs
Programmable Network Programmable Fabric Application Centric
Infrastructure
DB DB
Web Web App Web App
• Je souhaite gérer et choisir mes
process d’automatisation
• Je souhaite baser mon
infrastructure sur une fabric
moderne et efficace
• Je souhaite gérer et choisir mes
process d’automatisation
• Je souhaite capitaliser sur des
architectures existantes
• J’ai des besoins d’architecture
spécifiques (exemple: MSDC)
• Je souhaite une automatisation
intégrée, prenant en compte mon
écosystème
• Je souhaite baser mon infrastructure
sur une fabric moderne et efficace
Les Architectures de LAN DC Cisco Des choix permettant de s’adapter au besoins de nos clients
Les enjeux de demain: hétérogénéité de l’infra Bare metal, Multi-Hyperviseurs, Containers, IP Services, micro-kernels, etc.
Réseau
Application
Virtualisation
Mises en
production Opérations
De grands enjeux pour le réseau de demain:
• Proposer un modèle d’abstraction permettant de décorréler les applications du réseau physique (préalable crucial à l’hybridation Cloud)
• Adresser de façon homogène les différents clients du réseau (solutions de virtualisation, serveurs physiques, containers, IaaS, service L4-L7, etc.)
• Donner de la maitrise et de la visibilité sur les flux transportés aux équipes d’exploitation afin qu’elles soient en mesure de garantir des SLA
• Présentation d’une API consolidée aux couches supérieures, permettant une consommation plus simple et flexible des ressources réseau
ESX Big
Data HyperV
BareMetal
Docker
LxC
KVM Rocket Hyper Convergence
/ Software Defined Storage FW
ADC
VLAN
Subnets
Bridging
Routage
Adresses IP
HSRP/VRRP
VRFs
Le langage de l’infrastructure Réseau
Traduction manuelle
WEB
APP
DB
Le langage de l’Application
Les enjeux de demain: la barrière de langage
WEB
APP
DB
Nexus 9000
Series
Application Centric Infrastructure
Application Centric Infrastructure
Langage d’abstraction réseau ouvert (Group-Based Policy,
Intégré dans ODL/OpenStack) aligné sur celui des applications
Outil de pilotage centralisé
Mise en route et opérations sur la Fabric
Programmation des règles d’abstraction sur l’infrastructure
Télémétrie avec indicateurs de santé par applications
Fabric Host-Based Routing automatisée
Améliorations des performances applicatives
Sécurité embarquée by design
Système ouvert via API publique (Nord et Sud)
Ecosystème étendu tirant bénéfice du pilotage de l’APIC
Support des workloads physiques et virtuels (VM, containers)
Nexus 9000
Series
L/B APP DB F/W
L/B
WEB
APIC
HYPERVISOR HYPERVISOR HYPERVISOR
CONNECTIVITY
POLICY
SECURITY
POLICIES QOS
STORAGE
AND
COMPUTE
APPLICATION
L4..7
SERVICES
SLA
QoS
Security
Load
Balancing
APP PROFILE
Application Centric Infrastructure
ACI Momentum & Ecosystem
6,000+ 50+ 1700+ Nexus 9K and ACI Customers Globally
Ecosystem Partners
ACI Customers
Infrastructure serveur
90 Industry
Performance Records
Achieved1
#2 Worldwide in the
Blade Server Market
#1 in the US Blade
Server Market
33,000 Cisco UCS
Customers, 75% of
Fortune 500
Customers
Sources1
: Cisco UCS Performance Benchmarks, Gartner 2016 Magic Quadrant for Blade Servers
From Unknown to
Universal
Cisco Unified Compute System A Market Leader in Just 5 Years
WHY ?
goUCS
Automation Tools
CDN .NET/
PowerShell, Perl XML
UCS Platform Emulator
UCSM Single UCS Domain UCSM Data Center 1 UCSM Data Center 2, 3,…
UCS Manager Industry-Leading Compute API
STANDARDS-BASED XML API PRESENTS BI-DIRECTIONAL SINGLE INTERFACE TO ENTIRE SOLUTION
UCS OFFERS THE CUSTOMERS THE BROADEST CHOICE OF CISCO OR THIRD-PARTY MANAGEMENT TOOLS
XML API
UCS Director Third Party Customer UCS CLI UCS Manager/Central
UCS Service Profiles Configuration Portability
SIM Card Identity for a Phone
Service Profile Identity for a Server
UCS Service Profile Unified Device Management
Network Policy
Storage Policy
Server Policy
Subject Matter Expert Define Policies
1
Policies Used to Create Service Profile Templates
Service Profile Templates Create Service Profiles
Associating Service Profiles with Hardware Configures
Servers Automatically
Uplink port configuration, VLAN,
VSAN, QoS, and EtherChannels
Server port configuration including
LAN and SAN settings
Network interface card (NIC)
configuration: MAC address,
VLAN, and QoS settings;
host bus adapter HBA configuration:
worldwide names (WWNs), VSANs,
and bandwidth constraints;
and firmware revisions
Unique user ID (UUID),
firmware revisions,
and RAID controller settings
Service profile assigned to server,
chassis slot, or pool
Uplink port configuration, VLAN,
VSAN, QoS, and EtherChannels
Server port configuration including
LAN and SAN settings
Network interface card (NIC)
configuration: MAC address,
VLAN, and QoS settings;
host bus adapter HBA configuration:
worldwide names (WWNs), VSANs,
and bandwidth constraints;
and firmware revisions
Unique user ID (UUID),
firmware revisions,
and RAID controller settings
Service profile assigned to server,
chassis slot, or pool
Uplink port configuration, VLAN,
VSAN, QoS, and EtherChannels
Server port configuration including
LAN and SAN settings
Network interface card (NIC)
configuration: MAC address,
VLAN, and QoS settings;
host bus adapter HBA configuration:
worldwide names (WWNs), VSANs,
and bandwidth constraints;
and firmware revisions
Unique user ID (UUID),
firmware revisions,
and RAID controller settings
Service profile assigned to server,
chassis slot, or pool
Uplink port configuration, VLAN,
VSAN, QoS, and EtherChannels
Server port configuration including
LAN and SAN settings
Network interface card (NIC)
configuration: MAC address,
VLAN, and QoS settings;
host bus adapter HBA configuration:
worldwide names (WWNs), VSANs,
and bandwidth constraints;
and firmware revisions
Unique user ID (UUID),
firmware revisions,
and RAID controller settings
Service profile assigned to server,
chassis slot, or pool
2 3 4
Network SME
Server SME
Storage SME
Uplink port configuration,
VLAN, VSAN, QoS, and
EtherChannels
Server port configuration
including LAN and SAN settings
Network interface card (NIC)
configuration: MAC address,
VLAN, and QoS settings;
host bus adapter HBA configuration:
worldwide names (WWNs), VSANs,
and bandwidth constraints;
and firmware revisions
Unique user ID (UUID),
firmware revisions,
and RAID controller settings
Service profile assigned to server,
chassis slot, or pool
UCS Service Profiles Stateless Computing
Unified Fabric Providing scale out architecture
Virtual Chassis
+
Fabric Interconnect
Nexus 2000 Fabric Extender =
UCS C460 M4 Mission-Critical, 4-Socket Server for
Large, CPU-Intensive Applications
Unified Fabric Performance Optimized for Bare Metal, Virtualized, and Cloud Applications
UCS B420 M4 Enterprise Class, 4-Socket Blade
for Large, Memory-Intensive
Bare Metal and Virtualized
Applications
UCS B260 M4 Mission-Critical, 2-Socket Blade
for Large, CPU-Intensive Bare
Metal and Virtualized
Applications
UCS B460 M4 Mission-Critical, 4-Socket Blade
for Large, CPU-Intensive Bare
Metal and Virtualized
Applications
UCS C240 M4 Ideal Platform for Big Data, ERP,
and Database Applications
UCS B200 M4 Optimal Choice for VDI, Private Cloud,
or Dense Virtualization/
Consolidation Workloads
UCS C220 M4 Versatile, General Purpose Enterprise
Infrastructure, and Application Server
UCS C3160 Ideal Capacity-Optimized Platform for
Large Object Storage at Scale
CLOUD SCALE ENTERPRISE
PERFORMANCE INTENSIVE / MISSION CRITICAL
RA
CK
B
LA
DE
SingleConnect
• Common access layer networking model
• Ethernet, SAN, management combined
• Cable for bandwidth vs. connectivity
Management
Ethernet
Storage
Unified Fabric Streamlining deployment of resources
Traditional Rack
Ad Hoc and Inconsistent
Traditional Blade
Structured, but Siloed and Complicated
Cisco UCS
Simplified
Unified Fabric Streamlining deployment of resources
Unified Fabric Virtual Interface Cards: Connectivity Anywhere Anyhow Anytime
Replaces Traditional
Approach of
Multiple NICs and HBAs per
Server: SingleConnect
Over 256 Interfaces Up to 80 Gb Bandwidth VM-FEX
SR-IOV
UCS Network Adapters
Cisco VIC, Qlogic, Emulex, Intel, Broadcom
Mix adapters within blade
UCS IO Module Inserts into Blade Chassis
Logically part of the Fabric Interconnect
UCS Blade Server Blade inserts into the Chassis
Industry Standard Architectures
UCS Blade Chassis Up to 20 chassis per environment
Logically part of Fabric Interconnect
UCS Fabric Interconnect 48/96 Unified Port 10Gb FCoE / 8Gb FC
UCS Manager Management resides in the Fabric Interconnect
UCS Major Components and Relationships
Single UCS Domain
Automatisation de l’infrastructure Data Center
Datacenter Management Stack
IP connectivity For DC services
APIC/VTS
Orchestration Tool or Portal
PODs and heterogeneous environments
Computing resources inside the UCS domain
UCS MANAGER
UCS DIRECTOR Single Pane of Glass for Infrastructure Provisioning
On-Demand
Automated Delivery
Policy-Driven
Provisioning
Secure Cloud
Container
VMs Compute Network Storage
UCS Director
Domain Managers
OS and Virtual
Machines
Storage
Network
Compute
Tenant
B Tenant
C Tenant
A
Virtualized and Bare-Metal
Compute and Hypervisor
B C A
Network and Services
VM VM Bare Metal
Single Pane of Glass
End-to-End Automation and
Lifecycle Management
API
Nord
UCS Director Automation and orchestration foundation for Data Center infrastructure
Q & A