Post on 15-Aug-2015
시대별 IT 환경의변화네트워크관점에서바라보는 IT 환경
© 2015 BROCADE COMMUNICATIONS SYSTEMS, INC. 2
• Mainframe 시대• 단일시스템을통한자료가공
및처리• 네트워크불필요• 백업을위한테잎/디스크사용
1st Platform
• Client-Server 시대• 네트워크를이용해서로간
연결(connectivity)을제공• 네트워크방식에따라
구분되는서비스
2nd Platform
• 새로운방식의연결을만드는새로운네트워크필요
• 네트워크기반의서비스가아닌서비스기반의네트워크필요
3rd Platform - ?
SOCIAL CLOUD
MOBILE BIG DATA
안정성 / 지속성 속도 / 용량 개방성 / 확장성 / 연동성
네트워크의변화
© 2015 BROCADE COMMUNICATIONS SYSTEMS, INC. 3
SOCIAL CLOUD MOBILE BIG DATA
새로운서비스에맞는새로운형태의네트워크필요
3rd platform 에적합한네트워크필요
The New IP3rd Platform 에적합한네트워크
© 2015 BROCADE COMMUNICATIONS SYSTEMS, INC. 4
SDN
FabricNFV
“The New IP”” 3rd 플랫폼을위한네트워크
© 2014 BROCADE COMMUNICATIONS SYSTEMS, INC. CONFIDENTIAL—FOR 5
SDN and NFV
DC Consolidation
Cloud Multitenancy
Virtualization
Explosive Data
Source: IDC, Market Analysis Perspective: Worldwide Datacenter Networks, 2012.
Virtualization
DC 통합 클라우드 멀티테넌시
Data Center Trends
© 2014 BROCADE COMMUNICATIONS SYSTEMS, INC. CONFIDENTIAL—FOR 6
Applications
ComputingHardware
Storage
OperatingSystems
NetworkInfrastructur
e
Networking is NextIT 환경에서의가상화흐름 – Network 가상화
Virtualization and Cloud:차세대데이터센터로의진화
2011 2016
54%
Physical Compute
29%Physical Compute
46%Virtual Compute
71%
Virtual Compute
Virtualization
72%
Private Cloud
My on-premisesdata center
Apps In The Cloud
$54.5B
19% CAGR*
My SP hosted or managed
$131B
17% CAGR*
Public Cloud
My cloudservice provider
*Gartner, 2013, “Public Cloud Forecast 2011-2017
** Gartner, 2013, “Private Cloud Matures, Hybrid cloud is Next”
Cloud
cloud
Changing Application Architectures
기존구성 (Client-Server) • ADC 는 App 서버와최대한가까운곳에위치
• 수동환경
• 하나의서비스세트로동작ADC Web
Tier
App
Tier
DB
Tier
App Traffic
• App 을분산해위치가능
• 각 Object 의재사용및확장용이
• ADC 는각서비스와같은서버또는근처서버에설치
• 동적환경에적합
• 분산서비스세트에적합
현재의 DC 구조 (Active-Active DC 환경)
Data Center 2Data Center 1Cloud Service
Application Objects
App Traffic
물리서버에서 VM 환경으로의변화는서비스적용시간을대폭단축
Present
$3002 분
Enterprise storage
VLAN networks
Firewall, ADC
IDC, Security, Monitoring
Availability
$1,8005 Days,
2 Minutes
Past
$10,00010 주
Legacy ADC Ops Challenge
가상데이터센터모델
Decreasing Operational Timeframes
Changing App Data Flows
Cloud-Aware Data Centers
ADCBottlenecks
•Static
•Proprietary
•Hard to scale
•Slow to deploy
•Complex
•Costly
Today’s ADC Architectures
가상데이터센터환경의병목지점
• 가상화의장점을그대로수용
‒구성의유연성, 민첩성, 탄력성증가
‒장애시복구시간감소
‒서비스를위해소요되는시간대폭감소
• Traffic 흐름의효율성
‒ Server 내* 트래픽흐름에최적화
• 가상화환경의 ADC 솔루션에최적화
* 일반적인가상화환경에서의트래픽 : 외부네트워크/ADC 스위치를통해 L3/L4 통신
Benefit of Brocade vADC
가상화환경에서의 vADC 장점
Performance
Web Accelerator
Cost Savings
Services Controller
Security & Protection
Web Application Firewall
Efficiency & Control
Traffic Manager
Load Balancer 에서 ADC 까지…
Services Controller 구조
• Deployment
• Inventory
• Licensing
• Metering
Services Controller
Linux Containers (LXCs)
Traffic Manager micro instances
. . .256
Host Platform (physical or virtual) Multiple ADC Host
PlatformsLinux Containers
. . .256
Host Platform (physical or virtual)
혁신적인구조 : 제어부와데이터플레인을분리
Cloud 서비스를위한최적의서비스제공 – Bandwidth license 를나누어가입자별로 TM 서비스제공
Services Controller 주요기능들
© 2015 BROCADE COMMUNICATIONS SYSTEMS, INC. 15
InventoryInstance management (active / inactive)
LicensingFlexible on-demand provisioning of ADC instances
“Micro” ADCsScaling, multi-tenancy, isolation, elasticity, no VM overhead
Metering Billing / chargeback, monitoring and reporting
Deployment Service Implementation roll-out
Traditional Data Centers often have poor
utilization and low flexibility
Consolidate servers into a virtual environment to save infrastructure costs and improve utilization
SteelApp increases deployment flexibility
SteelApp auto-scaling helps cloud apps take advantage of hybrid cloud environments
ADC-as-a-Service: Usage-based licensing model
Victoria’s Secret: Dynamic Content Delivery
EMC: 80% cost savings
Key Benefits:Innovative licensing modelsFlexible deployment in cloudsIntegrate cloud provisioning tools
80%
Hybrid Cloud Deployment
1. $path = http.getpath();
2. if( string.startswith( $path, "/products" ) ){
3. http.redirect( "/services.html" );
4. }
Aptimize Accelerator Advanced Users Guide
Copyright © 2010 Aptimize Ltd Page 17 of 57
6. Getting the site as fast as possible Making any website fast is a matter of few simple rules:
1. Reduce the time it takes for the server to respond to a request 2. Reduce the number of objects being loaded by HTML pages 3. Reduce the size of everything sent from the server 4. Cache everything as much as possible to speed up repeat views 5. Load things in parallel to prevent gaps in downloading content
The Aptimize Accelerator product family helps you apply these 4 rules to any website quickly and without changes to the website code or content. The recommended technique is to start with the accelerator in safe mode, and then (assuming in safe mode that everything looks ok) incrementally turning features on as described below.
Reading waterfall charts The waterfall chart is one of the most useful ways of seeing the loading behavior of the site, and determining where your effort should be focused. Below is a waterfall chart generated by AOL page test for the sample SharePoint site referred to above:
Analysis of this chart and the related table shows that there is room for improvement – the chart x-axis measures load time in seconds, while the y-axis shows the objects that the browser loaded to display the page that was requested.
Powerful Tools, Easy to Manage
• 64-bit software binary• Linux 또는 Solaris 용• Maximum flexibility for
enterprise architects• H/W 기반의 ADC 대체
• Pre-packaged for leading cloud providers
• Closer integration with named CSPs and CSFs
• AMIs for Amazon• VHD for Azure
• Pre-packaged VA• Range of Hypervisors• VMware, Hyper-V,
Oracle VM, 등지원• Hypervisor-specific
features
• Linux Containers• High-density deployment• Micro in footprint only• Best for LB/SSL features• Services Controller 사용시적용가능
PureSoftware
VirtualAppliance
CloudPackaging
MicroADC
Deployment Options
고객사례#1
• 배경‒ 가상화(MS Hyper-v) 환경
• 당면과제‒ HTTPS 서비스시 안정적인 서비스제공 필요
‒ 이미지가 많은웹 트래픽 처리를위한 고성능 장비가필요
‒ 사용자 환경에따른 로드밸런싱 정책필요
• 해결방안‒ SSL Offload 기능으로 서버 부하 절감 및사용자 응답시간 단축
‒ Traffic Script 로 모바일 기기만특정 서버로 로드밸런싱적용
© 2015 BROCADE COMMUNICATIONS SYSTEMS, INC. 19
고객사례#1
© 2015 BROCADE COMMUNICATIONS SYSTEMS, INC. 20
BackBoneSwitch
TrafficManager
WebTrafficManager
Web
• 모바일기기만특정 서버로접속
• SSL Offload 로사용자응답시간단축
고객사례#2
• 배경‒ 가상화(Vmware Vsphere) 환경
• 당면과제‒ 계열사가 하드웨어네트워크 시스템 유지보수
‒ 서비스 변경및 요청에 따른 즉각적인대응 필요
• 해결방안‒ S/W 기반의 Traffic Manager로 계열사에 요청없이 즉각적인 대응 가능
© 2015 BROCADE COMMUNICATIONS SYSTEMS, INC. 22
고객사례#2
© 2015 BROCADE COMMUNICATIONS SYSTEMS, INC. 23
• 로그인시클라이언트 IP주소확인필요
• 스팸서버 IP주소만 허용Servefarm
SwitchDMZ
SwitchDB
Switch
TrafficManager
WebMail TrafficManager
WebMail
고객사례#2
© 2015 BROCADE COMMUNICATIONS SYSTEMS, INC. 24
• 서버에서 Source NAT로 인해 모든클라이언트가TM의 IP주소로 변경됨
‒ 메일서버로들어오는 트래픽에 대해스팸서버를 거친트래픽이구분 불가
‒ 웹서비스시클라이언트 IP 주소확인이 안되서로그인이 안됨