Bb2942 fastert mission critical cloud infrastructure-final
-
Upload
hp-enterprise -
Category
Technology
-
view
329 -
download
1
description
Transcript of Bb2942 fastert mission critical cloud infrastructure-final
© Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
Mission Critical Cloud
Henry Fastert, Chief Technologist and Managing PartnerSHI International
The commercial marketplace has looked at public cloud computing and sees solutions that fit best for the consumer and casual user.
Public Cloud Solutions
Security
• Public Cloud oriented for all who want access
• Limited data security
• Difficulty meeting government regulations or company policies
Connectivity
• Internet-based
• Presents security, availability and performance concerns
Resiliency/Service Quality
• Wide fluctuations in availability and performance
• Overall availability only about 95%
• Not good enough for the business world of 24 X 7 !
3
Enterprise Cloud Solutions
Secure• Using low latency DWDM connections, VMs reside on customer’s network fully leveraging
their network security
• A design that uses the latest in data at rest encryption, intrusion protection, breach monitoring and audit reporting
High Performance• An infrastructure platform powered by leading hardware & software technologies for
maximum bandwidth, storage and performance
• A management platform enables self-service “on-demand”
Industrial Grade• A highly secure solution designed to optimize capacity, performance and reliability
• Solutions capable of handling the requirements of enterprise applications
Enterprise Cloud Solutions should be based on key design principles such as these:
4
Single Customer Federated Model
Shared or Multi-TenantMulti-tenant or shared solutions run VMs on hardware shared by multiple customers with multiple levels of isolation. The potential cost savings benefit of a shared platform makes this an attractive option for non mission-critical applications.
Private or DedicatedFeature VMs running in the cloud provider’s center running on hardware dedicated to a specific customer
Managed PrivateEnables VMs to be deployed within the customer’s data center while being remotely monitored and managed by the cloud provider.
PrivateTrue private Cloud with VM’s deployed and managed in the customer’s Data Center
Four ways to implement the “hybrid” strategy most want.
5
Infrastructure: Performance, Capacity & Reliability
Enterprise grade Cloud infrastructure should be designed to optimize Performance, Capacity and Reliability by providing multiple interconnects, maximum bandwidth and redundancy. The
design should assure no single points of failure, with unmatched connectivity and security.
6
Cloud ManagementPlatform
RedundantCore IP Network
RedundantCore SAN
ServiceCores
(vCores)
Infrastructure: Performance, Capacity & Reliability
Service Core (vCore)• No Single Points of Failure
• Multiple Enclosures, Switches, Servers and Storage Connections for maximum resiliency
• Virtual Fabric Technology for virtualized connections and easy manipulation of bandwidth to meet SLAs
• VMware High Availability to “fail over” to 2nd VM
• VMware Fault Tolerant provides 2nd “hot VM” for fail over
7
HP Storage HP Storage HP Storage
C7000BL460G7
(2) HP A5820
(2) HP A3100-8
(2) BrocadeSAN Encryption
Switches
VMware vSphere 4.1
C7000BL460G7
Powering the Cloud
A cloud management platform is an automated, fully managed platform that combines to enable on-demand provisioning of VMs.
A cloud management platform should provide:• Portal access for self-service and
centralized management
• Rapid deployment of VMs
• Automated provisioning of infrastructure
• Managed provisioning of application software from service catalog
• Comprehensive reporting for capacity, performance, service level, usage and auditing
Functional view of aCloud Management Platform
8
Cloud Management Platform
Redundant
CMP 1 CMP 2
High Level Network Architecture
1&2
The first generation of cloud services focused on Internet connectivity. The Next Generation of cloud for the enterprise should be able to offer excellent diversity in connectivity.
Customers should be able to connect via MPLS or IPsec VPN.) Most cloud service providers only offer IPSec VPN. However, there is a better way.
Connectivity for the Enterprise
Data Center 1
Cloud CenterPrivate DWDM
(Telco)
Metro Ethernet over DWDM(Cable Company)
MPLS, Private Line
MPLS, Private Line
IPSec VPN
IPSec VPN
IPSec VPN
IPSec VPN
Internet 1 &2
11
Data Center 2
12
Leveraging Technology Innovation
• HP Virtual Connect (for C7000 Enclosures)
A-Series Switches
• HP Intelligent Resilient Framework (IRF)
• 10GbE end to end, multi-link trunks for resiliency
• MPLS and 4094 VLANs down to the vCore
• 802.1QinQ Metro Ethernet support
• Single and double VLAN mapping/translation support
• Robust Configuration Management & Automation
13
HP “A” Series Switches
• A12518 – Performance: 6.66 Terabits per sec backplane
– Redundant components
– 512 x 10GbE ports
• A5820 – Performance: 40 Gigabit per sec backplane
– 24 x 10GbE Ports
HP A12518
Interop 2011: SHI Cloud Services
IRF, IMC management, MPLS, full 4094 VLAN support and 802.1QinQ
Data Center – Storage Area Network
Brocade EncryptionSwitches
Brocade DCXFabric
Security for the Enterprise
Cloud providers should have a multi-layered solution to assure a multi-tenant or shared enterprise cloud is secure enough to meet the requirements of enterprise-class applications.
The same design should apply to a dedicated (private cloud) platform.
Security Processes(Industry Best Practices, Standardized,Tested)
Event Monitoring(Comprehensive & Supplemented by Trusted Third-Party)
Perimeter Security(Access Control, Anomaly-Aware, Customer Transparent)
Infrastructure Security(Layered Cloud Management Protection and Change Control)
Customer Data Security(Encryption/Segregation)
15
Summary
Security
Connectivity
Resiliency/Service Quality
Next Generation Design
There is a Next Generation of Cloud for the enterprise capable of supporting mission critical applications. All providers are not equal in their capability, but there are those that are ready to
deliver on the needs of the enterprise today!
16