Как повысить доступность ЦОД? Введение в...

КАК ПОВЫСИТЬ ДОСТУПНОСТЬ ЦОД? ОБЗОР ПРОДУКТОВ BROCADE SERVERIRON ADX

Vasiliy Soldatov, SrSE, Russia@CIS

[email protected]

Active-Active Data Center Complete mobility of VMs across DCs

© 2012 Brocade Communications Systems, Inc.

Internet

Data Center A

Servers

Fibre Channel SAN

Storage

Data Center B

SAN Extension

Servers

Fibre Channel SAN

Storage

SAN Extension

Brocade ADX

WAN

AA-Storage

AA-Storage

APP OS

STORAGE

Clients

MLX-MCT MLX-MCT

APP OS

STORAGE

APP OS

STORAGE

Hypervisor Integration

GSLB Controller Brocade

ADX Brocade

ADX local GSLB

local GSLB

ADX GSLB Primer

How GSLB works

3/8/2012 © 2012 Brocade Communications Systems, Inc. 3

•  Client asks DNS to resolve service name to IP •  Example: Client asks DNS for

www.brocade.com •  DNS is configured with Multiple IP

addresses, each representing a server farm (VIP)

•  ServerIron picks the BEST VIP for Client, according to specified policy and current metrics

•  Client then directly connects to the BEST IP address for service

GSLB Overview GSLB ADX gathers and compares metrics from all sites:

Server health check Session table statistics and CPU load

Round Trip Time (RTT) between client and remote site (Client’s TCP SYN and Client’s TCP ACK) Geographic location Site connection load Remote ADXs preference value

Local least response selection And others...

GSLB ADX adds intelligence to authoritative DNS Evaluates possible IP address options Best host is placed on top of the DNS returned list of IP addresses Sets DNS TTL — Local DNS has most current information

GSLB uses proprietary communication between sites


Manageability: Application Resource Broker (ARB) Automatically respond to capacity surges with tight VM orchestration 1.  ARB directly gathers real-time

performance data from the hypervisor / virtual machine manager and the ADX.

2.  Based on your policy thresholds, ARB tells the hypervisor to power up additional VMs until the thresholds are satisfied. ARB simultaneously tells the ADX to start using these additional servers. For example, automatically add capacity during an unusually high traffic period.

3.  Once the condition subsides, VMs are gradually returned to a standby pool until the next time they’re needed.

4.  ARB works as a VMware plug-in or as a stand-alone server with Xen and/or MS Hyper-V

1

2

3

4

Brocade Application Resource Broker Matching data center capacity with end-user demand in real time

© 2012 Brocade Communications Systems, Inc. 6

Resource Commissioning

when Load Increases

Brocade ADX

VM VM VM VM

User

VMware vCenter

Application Resource

Broker

VM VM

Network Resources

VM Resources

Application Resources

Brocade ADX

User Experience and VM Resource Monitoring

VM VM

User

VMware vCenter


Broker

Resource De-commissioning when

Load Decreases

User

Brocade ADX

VM VM VM VM

VMware vCenter


Broker

August 23, 2012

ADX Hardware Platforms

3/8/2012 7 © 2012 Brocade Communications Systems, Inc.

ADX 10000

ADX 4000

ADX 1000 ADX 1000F

•  True network hardware for true hardware-based performance – not commodity x86 components • ADX chassis models use the same blades – investment protection is designed into the platform

• True distributed computing running a Brocade network OS – not commodity Linux software

•  Capacity On Demand: increase capacity with a software license -- No hardware rip & replace! •  Industry’s highest performance 1RU platform (10G) – small doesn’t mean slow

• The 1U models use the same chipsets as the chassis models – common code & config across all systems

ADX решает четыре основные задачи

Клиенты

Серверы

Интернет

1. Обеспечивают масштабирование серверных приложений и сетевой инфраструктуры •  Распределение сессий между различными серверами при обслуживании максимального числа клиентских соединений и транзакций

•  Распределение трафика приложений к доступным в настоящий момент серверам приложений

2. Обеспечивают защиту серверов приложений и сервисов •  Скрытие реальных серверов и инфраструктуры за виртуальными IP-адресами

•  Защита от атак (Denial-of-Service) из внешней и внутренней сети

3. Оптимизируют ресурсы серверов приложений •  Освобождение серверов от трудоемких протоколов SSL и др.

4. Создают высокую доступность для серверов приложений •  Модернизация ОС серверов без остановки сервисов и доступа пользователей

•  Контроль состояния физических серверов и программных приложений

•  Обеспечение отказоустойчивости в режимах Active-Active/Standby

•  Обслуживание территориально распределенных сайтов заказчика – GSLB

19.08.13

Throughput (Gb/s)

# App.Cores

1008-1

1016-2

1016-4 & 1216-4

3/8/2012 9 © 2012 Brocade Communications Systems, Inc.

4000: ASM4 bundle

4000: 1 x ASM8 module

4000: 2 x ASM8 modules

10000: 1 x ASM8

10000: 2 x ASM8

10000: 4 x ASM8

Capacity On Demand

Start small, but with big plans

Carrier-class performance

1

2

4

8

16

32

2 4 9 9 17 35 35 17 70

Performance: Pay-as-you-grow Investment protection via simple in-place upgrades – no rip & replace!


Availability: ADX for Business Continuity Non-stop application availability

4

3

2

1

Методы включения One-Arm, In-Line

© 2010 Brocade Communications Systems, Inc. 19 August 2013 11


Availability & Control: Seamless IPv6 Transition Several options for translating from one address family to another

3/8/2012


13

Control: ADX OpenScript Open, flexible, and extensible scripting in a popular script language

Load Balancing Features

Server Offload

Features

Security Features

Optimizations

Features

Monitoring & Reporting

OpenScript Diagram

Clients Servers Protocol

Events API

Data Inspection

API

Data Manipulation API

Brocade OpenScript

User-Provided Custom Script

1.  Augment built-in ADX services with your own custom logic, written in the widely-used Perl programming language.

2.  Scripts are pre-compiled for high performance, unlike the slow script interpreters used by other platforms.

1.  Performance Predictors to estimate performance BEFORE script is deployed on live traffic.

3.   Online ADP Community and resources to allow for rapid & easy collaboration for new scripts.

Our standard Layer 7 Content Switching (CSW) functionality is still available in the easy-to-read CLI configuration syntax.

Not Into Scripting?

1


2

3

4


OpenScript: The my.Brocade.com Community Site for sharing scripts and questions

http://community.brocade.com/openscript


Security Comprehensive selection of security features

•  120 Million packets per second TCP SYN flood protection

•  18 Million DNS queries per second

•  SSL offload and acceleration

•  Both IPv4 and IPv6 Access Control Lists are implemented in hardware – extremely useful in virtualized server environments to enforce segmentation between VLANs

•  DNS Deep Packet Inspection can be used to filter and/or rate-limit DNS requests

•  DNSSEC-aware GSLB and DNS DPI

•  Multiple forms of Network Address Translation (NAT) to cloak servers and other internal hosts

•  Rate-limiting of any traffic type

•  Application filtering with OpenScript and CSW

1

2

3

4

5

6

7

8

9


Manageability Seamless integration with your network

1.  Web Graphical User Interface (GUI) Comprehensive, simple

2.  Command-Line Interface (CLI) Familiar syntax keeps it easy to read

3.  XML API (SOAP) Programmatic interface used by our own GUI & tools

4.  SNMP v1/v2/v3, syslog, NTP, SSH, telnet

5.  Role-based access control 6.  Simple upgrades

The same code runs on ALL models, regardless of licenses and features

7.  Brocade Network Advisor (BNA) Comprehensive network management system (optional/separate)

8.  HW-based sFlow & port mirroring

1

2

3

4

5

6

7

8

Brocade ADX Multitenancy

August 23, 2012 © 2012 Brocade Communications Systems, Inc. - For Internal Use Only 17

Brocade ADX multitenant architecture enables

CONSOLIDATION FLEXIBILITY ISOLATION

Shrink infrastructure cost of legacy ADCs

Mix and match any tenants combination

Enable high-degree of fault-tolerance

ADX Multitenant Architecture

CORE CORE CORE

Tenant 2

CORE

Tenant n Tenant 1

The Flexibility of Virtualization w/ the Performance of Purpose-Built Hardware

SIMPLICITY

Ease of operation and management

Throughput (Gb/s)

1 Core

2 Cores

4 Cores

Brocade ADX Portfolio Price/Performance leadership with pay-as-you-grow deployment model

© 2013 Brocade Communications Systems, Inc. CONFIDENTIAL 18

ADX 4000 – 4 Cores

8 Cores

16 Cores

ADX 10000 – 8 Cores

16 Cores

32 Cores

M I D - R A N G E H I G H - E N D

2 9 9 17 35 35 17 70

E N T R Y -L E V E L

Brocade ADX 1000

Brocade ADX 4000

Brocade ADX 10000

Brocade Virtual ADX

Pric

e

4 1

Как повысить доступность ЦОД? Введение в...

Technology

Transcript of Как повысить доступность ЦОД? Введение в...