Как повысить доступность ЦОД? Введение в...
-
Upload
skillfactory -
Category
Technology
-
view
231 -
download
5
description
Transcript of Как повысить доступность ЦОД? Введение в...
КАК ПОВЫСИТЬ ДОСТУПНОСТЬ ЦОД? ОБЗОР ПРОДУКТОВ BROCADE SERVERIRON ADX
Vasiliy Soldatov, SrSE, Russia@CIS
Active-Active Data Center Complete mobility of VMs across DCs
© 2012 Brocade Communications Systems, Inc.
Internet
Data Center A
Servers
Fibre Channel SAN
Storage
Data Center B
SAN Extension
Servers
Fibre Channel SAN
Storage
SAN Extension
Brocade ADX
WAN
AA-Storage
AA-Storage
APP OS
STORAGE
Clients
MLX-MCT MLX-MCT
APP OS
STORAGE
APP OS
STORAGE
Hypervisor Integration
GSLB Controller Brocade
ADX Brocade
ADX local GSLB
local GSLB
ADX GSLB Primer
How GSLB works
3/8/2012 © 2012 Brocade Communications Systems, Inc. 3
• Client asks DNS to resolve service name to IP • Example: Client asks DNS for
www.brocade.com • DNS is configured with Multiple IP
addresses, each representing a server farm (VIP)
• ServerIron picks the BEST VIP for Client, according to specified policy and current metrics
• Client then directly connects to the BEST IP address for service
GSLB Overview GSLB ADX gathers and compares metrics from all sites:
Server health check Session table statistics and CPU load
Round Trip Time (RTT) between client and remote site (Client’s TCP SYN and Client’s TCP ACK) Geographic location Site connection load Remote ADXs preference value
Local least response selection And others...
GSLB ADX adds intelligence to authoritative DNS Evaluates possible IP address options Best host is placed on top of the DNS returned list of IP addresses Sets DNS TTL — Local DNS has most current information
GSLB uses proprietary communication between sites
3/8/2012 © 2012 Brocade Communications Systems, Inc. 5
Manageability: Application Resource Broker (ARB) Automatically respond to capacity surges with tight VM orchestration 1. ARB directly gathers real-time
performance data from the hypervisor / virtual machine manager and the ADX.
2. Based on your policy thresholds, ARB tells the hypervisor to power up additional VMs until the thresholds are satisfied. ARB simultaneously tells the ADX to start using these additional servers. For example, automatically add capacity during an unusually high traffic period.
3. Once the condition subsides, VMs are gradually returned to a standby pool until the next time they’re needed.
4. ARB works as a VMware plug-in or as a stand-alone server with Xen and/or MS Hyper-V
1
2
3
4
Brocade Application Resource Broker Matching data center capacity with end-user demand in real time
© 2012 Brocade Communications Systems, Inc. 6
Resource Commissioning
when Load Increases
Brocade ADX
VM VM VM VM
User
VMware vCenter
Application Resource
Broker
VM VM
Network Resources
VM Resources
Application Resources
Brocade ADX
User Experience and VM Resource Monitoring
VM VM
User
VMware vCenter
Application Resource
Broker
Resource De-commissioning when
Load Decreases
User
Brocade ADX
VM VM VM VM
VMware vCenter
Application Resource
Broker
August 23, 2012
ADX Hardware Platforms
3/8/2012 7 © 2012 Brocade Communications Systems, Inc.
ADX 10000
ADX 4000
ADX 1000 ADX 1000F
• True network hardware for true hardware-based performance – not commodity x86 components • ADX chassis models use the same blades – investment protection is designed into the platform
• True distributed computing running a Brocade network OS – not commodity Linux software
• Capacity On Demand: increase capacity with a software license -- No hardware rip & replace! • Industry’s highest performance 1RU platform (10G) – small doesn’t mean slow
• The 1U models use the same chipsets as the chassis models – common code & config across all systems
ADX решает четыре основные задачи
Клиенты
Серверы
Интернет
1. Обеспечивают масштабирование серверных приложений и сетевой инфраструктуры • Распределение сессий между различными серверами при обслуживании максимального числа клиентских соединений и транзакций
• Распределение трафика приложений к доступным в настоящий момент серверам приложений
2. Обеспечивают защиту серверов приложений и сервисов • Скрытие реальных серверов и инфраструктуры за виртуальными IP-адресами
• Защита от атак (Denial-of-Service) из внешней и внутренней сети
3. Оптимизируют ресурсы серверов приложений • Освобождение серверов от трудоемких протоколов SSL и др.
4. Создают высокую доступность для серверов приложений • Модернизация ОС серверов без остановки сервисов и доступа пользователей
• Контроль состояния физических серверов и программных приложений
• Обеспечение отказоустойчивости в режимах Active-Active/Standby
• Обслуживание территориально распределенных сайтов заказчика – GSLB
19.08.13
Throughput (Gb/s)
# App.Cores
1008-1
1016-2
1016-4 & 1216-4
3/8/2012 9 © 2012 Brocade Communications Systems, Inc.
4000: ASM4 bundle
4000: 1 x ASM8 module
4000: 2 x ASM8 modules
10000: 1 x ASM8
10000: 2 x ASM8
10000: 4 x ASM8
Capacity On Demand
Start small, but with big plans
Carrier-class performance
1
2
4
8
16
32
2 4 9 9 17 35 35 17 70
Performance: Pay-as-you-grow Investment protection via simple in-place upgrades – no rip & replace!
3/8/2012 © 2012 Brocade Communications Systems, Inc. 10
Availability: ADX for Business Continuity Non-stop application availability
4
3
2
1
Методы включения One-Arm, In-Line
© 2010 Brocade Communications Systems, Inc. 19 August 2013 11
3/8/2012 © 2012 Brocade Communications Systems, Inc. 12
Availability & Control: Seamless IPv6 Transition Several options for translating from one address family to another
3/8/2012
© 2012 Brocade Communications Systems, Inc.
13
Control: ADX OpenScript Open, flexible, and extensible scripting in a popular script language
Load Balancing Features
Server Offload
Features
Security Features
Optimizations
Features
Monitoring & Reporting
OpenScript Diagram
Clients Servers Protocol
Events API
Data Inspection
API
Data Manipulation API
Brocade OpenScript
User-Provided Custom Script
1. Augment built-in ADX services with your own custom logic, written in the widely-used Perl programming language.
2. Scripts are pre-compiled for high performance, unlike the slow script interpreters used by other platforms.
1. Performance Predictors to estimate performance BEFORE script is deployed on live traffic.
3. Online ADP Community and resources to allow for rapid & easy collaboration for new scripts.
Our standard Layer 7 Content Switching (CSW) functionality is still available in the easy-to-read CLI configuration syntax.
Not Into Scripting?
1
© 2012 Brocade Communications Systems, Inc.
2
3
4
3/8/2012 © 2012 Brocade Communications Systems, Inc. 14
OpenScript: The my.Brocade.com Community Site for sharing scripts and questions
http://community.brocade.com/openscript
3/8/2012 © 2012 Brocade Communications Systems, Inc. 15
Security Comprehensive selection of security features
• 120 Million packets per second TCP SYN flood protection
• 18 Million DNS queries per second
• SSL offload and acceleration
• Both IPv4 and IPv6 Access Control Lists are implemented in hardware – extremely useful in virtualized server environments to enforce segmentation between VLANs
• DNS Deep Packet Inspection can be used to filter and/or rate-limit DNS requests
• DNSSEC-aware GSLB and DNS DPI
• Multiple forms of Network Address Translation (NAT) to cloak servers and other internal hosts
• Rate-limiting of any traffic type
• Application filtering with OpenScript and CSW
1
2
3
4
5
6
7
8
9
3/8/2012 © 2012 Brocade Communications Systems, Inc. 16
Manageability Seamless integration with your network
1. Web Graphical User Interface (GUI) Comprehensive, simple
2. Command-Line Interface (CLI) Familiar syntax keeps it easy to read
3. XML API (SOAP) Programmatic interface used by our own GUI & tools
4. SNMP v1/v2/v3, syslog, NTP, SSH, telnet
5. Role-based access control 6. Simple upgrades
The same code runs on ALL models, regardless of licenses and features
7. Brocade Network Advisor (BNA) Comprehensive network management system (optional/separate)
8. HW-based sFlow & port mirroring
1
2
3
4
5
6
7
8
Brocade ADX Multitenancy
August 23, 2012 © 2012 Brocade Communications Systems, Inc. - For Internal Use Only 17
Brocade ADX multitenant architecture enables
CONSOLIDATION FLEXIBILITY ISOLATION
Shrink infrastructure cost of legacy ADCs
Mix and match any tenants combination
Enable high-degree of fault-tolerance
ADX Multitenant Architecture
CORE CORE CORE
Tenant 2
CORE
Tenant n Tenant 1
The Flexibility of Virtualization w/ the Performance of Purpose-Built Hardware
SIMPLICITY
Ease of operation and management
Throughput (Gb/s)
1 Core
2 Cores
4 Cores
Brocade ADX Portfolio Price/Performance leadership with pay-as-you-grow deployment model
© 2013 Brocade Communications Systems, Inc. CONFIDENTIAL 18
ADX 4000 – 4 Cores
8 Cores
16 Cores
ADX 10000 – 8 Cores
16 Cores
32 Cores
M I D - R A N G E H I G H - E N D
2 9 9 17 35 35 17 70
E N T R Y -L E V E L
Brocade ADX 1000
Brocade ADX 4000
Brocade ADX 10000
Brocade Virtual ADX
Pric
e
4 1
Network Components:
ESX and Virtual ADX
© 2010 Brocade Communications Systems, Inc. 19
Спасибо за внимание! Вопросы…
20 © 2010 Brocade Communications Systems, Inc.