Конференция Brocade. 4. Развитие технологии Brocade VCS, новое...
-
Upload
skillfactory -
Category
Technology
-
view
529 -
download
4
description
Transcript of Конференция Brocade. 4. Развитие технологии Brocade VCS, новое...
Развитие технологии Brocade VCS, новое поколение
коммутаторов VDX6740
Vasiliy Soldatov, SrSE
[email protected], Russia&CIS
Ethernet Fabrics vs Legacy NetworksAutomation, Efficiency and Scale on demand
Inflexible: Rigid architecture, optimized for legacy client/server applications
Inefficient: Spanning Tree disables links to prevent loops, limiting network utilization
Complex: Each switch managed individually
VM-ignorant: No concept of server virtualization
Flexible: Topology freedom, optimized for east/west traffic patterns and virtualized applications
Efficient: All links in the fabric are active with Layer 1/2/3 multipathing
Simple: Entire fabric behaves as logical switch
VM-aware: Facilitates VM/network interoperability
CLASSIC, HIERARCHICAL ARCHITECTUREC
ore
Agg
rega
tio
nA
cces
sETHERNET FABRIC ARCHITECTURE
Ed
ge
Co
re
Scalability
Key Value Propositions of VCS Fabric
Zero-touch provisioning, configuration, and VM mobility
Self-forming trunks
5x faster to deploy additional network
capacity
AUTOMATEDAUTOMATED
All links fully active, none on standby
Multi-pathing at all layers of the network: L1/L2/L3
2x greater network utilization
AUTOMATEDEFFICIENT
Flexible deployments
Flexible topology
Native scalable multi-tenancy
Evolve rather than replace existing networks
Built for Cloud
VDX 6740 & 6740T: Next Generation TOR DC Switch
Leading performance Fixed 48 X1/10Gbe SFP+ /Base-T ports and 4 X 40GbE QSFP+
850ns / 3us any port to port latency ,
24MB Deep buffers with Dynamic Buffering
160K MAC, 32K ARP, 13K ACL, 1K port profiles
Advanced capabilities 32 Flex Ports(FC/Ethernet/FCOE)*
Advanced (IPv4, IPv6*) Layer 2/3 feature set
Full IP storage support with DCB capabilities
Cloud ID/Fine Grained Label/NVGRE capable
VXLAN end point(VTEP) capable . Up to 2K VTEP *
SDN Capable (Openflow support)*
ISSU capable*
Unparalleled Value Single ASIC, Non-blocking, Cut through Architecture
Linear scalability options through POD license scheme
Up to 160GbE Brocade Trunk support
Note : All the numbers mentioned on this slide are Hardware supported. For latest scale numbers check release notes
* H/W ready, some features to be enabled post-GA
Ethernet Fabrics
Data Center Access
NEW
VDX 6740 – Product Overview
Dual hot-swappable, load-sharing power supplies
System cooling fans integrated into the power supplies
Two types of FRUs supported – Exhaust and Intake
Rear View
Front View
8 Flex Ports
(FC/FCoE/
Ethernet)
48X10Gb
E SFP+
(FCOE/
Ethernet)
8 Flex
Ports
(FC/FCoE/
Ethernet)
16Flex Ports
(FC/FCoE/Et
hernet)
4X40GbE
QSFP+
1 RU
Yellow ports are FC capable (Flex Ports). Will be supported post-FCS
Ports in Trunk Group 3-3A and 4-4A can be trunked in future release
Trunk Groups
VDX 6740T – Product Overview
Rear View
Trunk Group
Dual hot-swappable, load-sharing power supplies
5 Redundant cooling fans
Two types of FRUs supported – Exhaust and Intake
1 RU
4X40GbE
QSFP+
48X10base-T
(Ethernet/FCOE
)
Trunk Group 1 Trunk Group 2
Trunk Group 3 Trunk Group 4
Trunk Group 3A
Trunk Group 4A
Front View
Yellow ports are FC capable (Flex Ports). Will be supported post-FCS
Software Licenses – VDX6740/VDX 6740T/VDX8770
Layer3 (OSPF, VRRPe, PIM, BGP1, VRF-Lite1 )
FCOE LicenseVCS License
(Logical Chassis Included1)
All inclusive license bundle:ALLSW SKU (VDX6740/VDX6740T)
Advance services License (VDX8770)
VDX 6740 & VDX 6740T SKUs : 24P, 48P, 64P , 64P-ALLSW
NOTE : For VDX 8K L3 license is sold separately . VDX 6K includes L3 license in Base version.
Two node VCS , does not require any VCS license. More than 2 nodes in a VCS fabric would require VCS license on all nodes1 – New in NOS 4.0
24P
SKU
8 Port
DPOD
license
8 Port
DPOD
license
8 Port
DPOD
license
2X40Gb
DPOD
license
2X40Gb
DPOD
license
48P(Orderable SKU)
DPOD Licensing
Applicable to VDX6740
64P(Orderable SKU)
24P(Orderable SKU)
NOS 2.1
• VCS Scale – 24
• L2 Feature & security
enhancements
• BNA Support
• Connectivity from
VCS to FC SAN
• Manageability –
SNMPv3
Hardware and Software Roadmap
2H2010
NOS 3.0
• Increased VCS
scalability
• OSPF
• Multilayer
multipathing
• IGMP Snooping
• L3 ACLs
• BUM Storm
Control
• IPv6 Management
Layer3
2H2011
Sept
2012
VDX6720VDX6710
VDX6730
VDX8770 VDX6740
VDX6740T
Top level view
Jan
2014
July
2013
Mid
2014
NOS 4.0
• Multilayer-HA
• Logical Chassis
Management
• VRFs
• 128K MACs
• PVLAN
• Metro VCS
NOS 4.1
• VirtualFabric
• VXLAN Gateway
• VM Ware NVP
Integration
• Auto NAS
• DHCP Based
FW and Config
Upload - ZTP
NOS X
• ToR ISSU
• L3 scale
• FlexPorts
• L3 HA
• VirtualFab
ric scale
• REST APIs
• OpenFlow
• IPv6
LC 6x100 CFP2, LC 27x40GE,
LC 48x10GE-T, VDX6740G
Resiliency &
Automation Multitenancy Planning… Layer2
NOS 4.0 Release Release Contents and Segment Alignment
Public Clouds
Managed Private Clouds
Managed Hosting
Enterprise Data Center
Flat
LAN
SAN
Target Segments
1Supported on VDX 87XX only
• Logical Chassis Management
• Single IP based NETCONFManageability
• VRF-Lite, BGP
• Private VLANMultitenancy
• Large Fabrics (32 Nodes)
• Port Profiles, MAC, ACL, ARPScalability
• In Service Software Upgrade1
• Hitless Failover1Resiliency
• UDLD, RSPAN
• VCS Mode STP, ACL Based QoSEvolutionary
NOS 4.1 OverviewRelease Overview
• GVLAN/Cloud-ID based L2 TRILL VPNsMultitenancy
• VXLAN Gateway, VM Ware NVP IntegrationNetwork
Virtualization
• NAS: NAS Traffic Prioritization Inside Fabric IP Storage
• DHCP (Option 66/67) based Firmware and Config update Automation
• Policy Based RoutingService Insertion
VCS
What is Multi-layer HA3 levels of resiliency
Fabric HA
System HA
Line Card HA
• Automatically reroutes traffic during failure
• Active – Active Resiliency with vLAG support
• ECMP based deterministic Multipathing
• Hitless Management Module Failover
• ISSU
• Virtualized Linecards for Active/Standby Images
• Reduce Linecards Restart
VCS Layered HA Architecture
New
NOS 4.0
Built-in VCS
Unique
differentiator
Resiliency Usecase: UpgradeFabric ISSU
Virtualized Line Card
Management Modules
VDX 8770
Stand ByActive
Stand ByActive
Start
ISSU
File Server
Download Firmware to
the Standby MMDownload to the Active
MM and all LC partitions
Reboot the Stand By MM
and the LC Partition so
that the Active gets
synced up with the Stand
–By MM/Partition
1 2 3
Install Sync
Sanity
Check
Virtualized Line Card
Management Modules
VDX 8770
Stand ByActive
Stand ByActiveVirtualized Line Card
Management Modules
VDX 8770
Stand ByActive
Stand ByActive
Resiliency Usecase: Upgrade contd.Fabric ISSU Old NOS New NOS
Fail Over the Line card
Partition. This causes
the current Active
Partition to Reboot.
Fail Over the MM. This
causes the current Active
MM to reboot
Firmware is committed
on the MM and LC
Partition.
4 5 6
3
Failover Commit
Virtualized Line Card
Management Modules
VDX 8770
Stand ByActive
Stand ByActiveVirtualized Line Card
Management Modules
VDX 8770
Stand ByActive
ActiveStand By
Virtualized Line Card
Management Modules
VDX 8770
ActiveStand By
ActiveStand By
Differentiator
What is Logical Chassis?Single point of Management
Third Party Orchestration Tools
Single IP Management
Single Point of Management For the Entire Fabric
Configuration
Monitoring
Troubleshooting
Extensible via Northbound APIs For Operational Simplicity
Centralized Monitoring and Troubleshooting
FEATURE
Brocade VCS Logical Chassis
Configuration Management
•Minimize Time to Repair and Diagnose
BENEFIT
•Lower Administrative _Operational Cost
•Reduce Errors/Downtime
9/15/2013 18 © 2013 Brocade Communications Systems, Inc. Proprietary Information18
Centralized Software Upgrade and Auto Provisioning
• Speed Time to Deploy
•Reduce Errors/Downtime
Single IP Management
Configuration
Management
Centralized
Software
Upgrade
Auto
Provisioning
Centralized
Monitoring
Three Components of Logical Chassis
BGP in DCBGP with Vyatta Routers
1 GbE
10 GbE
40 GbE DCB
Logical Chassis
MLX w/ MCT
Core
40G VLAG
…… VDX8770
VDX6740VDX6710
VDX8770
BGP Private AS Peer
Vyatta Router
VCS
L2 Leaf – L3 Spine
• Position as Virtual Edge (Flexibility)
• Rich Routing Functionality
• BGP Private AS for DC
• Can be achieved with or without Fabric
• Positioned where Fabric is considered
proprietary
BGP in DCBGP with Vyatta Routers
1 GbE
10 GbE
40 GbE DCB
Logical Chassis
MLX w/ MCT
Core
40G VLAG
…… VDX8770
VDX6740VDX6710
VDX8770
Shared Services
VCS
L3 Leaf – L3 Spine
• Position as Virtual Edge (Flexibility)
• Vyatta: Rich Routing Functionality
• eBGP Private AS for DC
• Can be achieved with or without
Fabric/VCS
• L3 is required at both Leaf and Spine
• Positioned where Fabric is
considered proprietary
BGP Private AS Peer
Tenant-2 Tenant-NTenant-1
eBGP Private AS Peering
VRF in DCVRF with Shared Services
1 GbE
10 GbE
40 GbE DCB
Logical Chassis
Active-Active L3 GW
Per Tenant VRF
E-W Optimized Agg.
MLX w/ MCT
Core
40G VLAG
…… VDX8770VDX8770
VDX6740
Tenant-2T2T1
TN TX
Tenant-N
Overlapping VLANS
Tenant-1
Statically Mapped
VRF to the Core
Shared Services
(VRF Route Leak)
• Multitenant DC with Overlapping
VLANs
• Tenant VRFs Mapped from VCS to
Core Router for N-S Traffic
• Tenant VRFs Mapped from VCS to
Service Router/FW for E-W shared
services (Backup/DR/DNS/AD)
• No Route Leaking or NAT needed on
VCS
• Use Case: L2 and L3 Multitenancy,
Firewall Offload
• Per VRF OSPF (instead of BGP)
Static VRF Mapping
VRF in DC for FW Offload VRF for Security Zone Separation
1 GbE
10 GbE
40 GbE DCB
Logical Chassis
Active-Active L3 GW
Per Tenant VRF
Inter VLAN Routing
MLX w/ MCT
Core
40G VLAG
…… VDX8770VDX8770
VDX6740
Tenant-2T2T1
TN TX
Tenant-N
Overlapping VLANS
Tenant-1
Statically Mapped
VRF to the Core Inter VRF Routing
• Tenant VRFs Mapped from VCS to
Core Router for N-S Traffic
• Tenant VRFs Mapped to FW
• All Inter VLAN Routing at Aggregation
without going to Firewall
• All Inter VRF routing (security zone)
inside the FW
• Use Case: Firewall Offload using VRF
at aggregation
Zone A: VRF 1: VE 10, VE 20
Zone B: VRF 2: VE 40, VE 50
Private VLAN in DCPVLAN with Shared Services
1 GbE
10 GbE
40 GbE DCB
Logical Chassis
MLX w/ MCT
Core
40G VLAG
…… VDX8770VDX8770
VDX6740
Tenant-2 Tenant-3
Isolated VLANS
Tenant-1
Shared Services on a SVI
• Multitenant DC with overlapping
VLANs
• Tenant Isolation through PVLAN
Isolated VLANs
• VE on a Primary VLAN for access to
shared services
• L2 Multitenancy with 8000 VLANs
• L3 at Spine (No VRF needed)Tenant-N
Private VLAN Mapping
VE on a Primary VLAN
Layer-3 N-S
(iBGP or OSPF)
VCS Mode Spanning TreeInteroperating with legacy deployments
Legacy
STP Root
STP Port STP Port
• Interoperable with legacy STP
deployments (Redundant Links)
• Supports STP, RSTP, PVST+, MSTP
• Entire VCS appears as a single switch
the STP topology
• No loss of bandwidth inside Fabric
• High utilization for E-W Traffic, loop
prevention for N-S traffic
NOS 4.0: Other EnhancementsOther Enhancements
Layer 3
BGP
Security, Monitoring and Troubleshooting
RSPAN
UDLD
ACL Based SPAN and Sflow and Rate Limiting
QoS
ACL based QoS Assignment and Remarking
VCS Mode xSTP
PVST+, RSTP, MSTP and STP – In VCS Mode
Distance Extension
30 KM Long Distance ISL using WDM (Vendors: ADVA and Ciena)
Encryption on Long Distance ISL using WDM (Vendors: ADVA and Ciena)
Direct Attached Storage (F-Port Connectivity on VDX 6730)