1. Home
  2. Luận văn tổng hợp
  3. Tài liệu Data Center Architecture

Tài liệu Data Center Architecture - Pdf 89

1
© 2005 Cisco Systems, Inc. All rights reserved.
DC-1101
11201_05_2005_c2
Data Center Architecture
Overview
Willie Yam
Data Center Lead, APAC
222
© 2005 Cisco Systems, Inc. All rights reserved.
DC-1101
11201_05_2005_c2
Agenda
• Introduction
• Data Center Design Overview
• DC IP Infrastructure
• DC Application Optimization
• DC Security
• DC Storage Networking & Business Continuance
• Summary
333
© 2005 Cisco Systems, Inc. All rights reserved.
DC-1101
11201_05_2005_c2
Layers & Services
Aggregation
Edge
Access
Core
Fabric Routing Services
Data Replication Svcs

… A Data Center Topology
The Physical Facility…
• Flooring
• Racks
• HVAC and Electrical infrastructure
• Cabling
• Fire Suppression Systems
• Compute Equipment
• Network Equipment
Raised
Flooring
Ceiling Plenum
HVAC
Rack
Rack
Rack
555
© 2005 Cisco Systems, Inc. All rights reserved.
DC-1101
11201_05_2005_c2
Blueprints and Best Practices
The baseline of an architecture…
666
© 2005 Cisco Systems, Inc. All rights reserved.
DC-1101
11201_05_2005_c2
The Data Center Network
System Validation Roadmap…
Foundation
Architecture

Performance
Network Intelligence

Service Integration

Security:
FWSM, IDS, CSA, Riverhead,
Portego

Application Optimization
WASF, Content Switching,
SSL, AONS, CDN, caching

Network Management
« ------ »

Interop., transparency and
Integration
Network Intelligence

Service Integration

Security:
FWSM, IDS, CSA, Riverhead,
Portego

Application Optimization
WASF, Content Switching,
SSL, AONS, CDN, caching


Virtual Services
Virtual Firewalls
Virtual Load balancers

System Virtualization
Server Virtualization
Storage Virtualization

Segmentation
« ------ »

Logical Partitioning, Dynamic
Provisioning & Self Adjusting
Architecture
Definition
Network Areas

IP switching Infrastructure

Storage Switching Infrastructure

Distributed Data Center
Infrastructure
« ------ »

Baseline Fundamental
Functional Network Areas

Mapping DC technology to
customer requirements

Risk Analysis—too much vs. too little
• Business Continuance and Disaster Recovery Policy
Business Impact Assessment (BIA) per application
How many Data Centers, how far apart
Active/Active, Active/Standby, both
Personnel Support Plan during outage
• Application and Service Level Agreements
Application bandwidth and redundancy
BIA prioritization between applications
Layer2 and Layer3 server adjacency requirements
NIC Teaming and Backup and Management networks
Good Design Requires Defined
Business Policies
999
© 2005 Cisco Systems, Inc. All rights reserved.
DC-1101
11201_05_2005_c2
N-Tier
Applications
DB Servers
App Servers
Web Servers
Mainframe OperationsIP Comm.
Front End
Network
Application/Server
Optimization
Content
Switch
Cache

FC
Switch
WAN/
Internet
101010
© 2005 Cisco Systems, Inc. All rights reserved.
DC-1101
11201_05_2005_c2
Systems and Solutions
Tactical Execution
Data Replication and SAN
Extension
SAN TopologiesL3 and L2 FeaturesCachingServer Farm Topologies
Synchronous and Asynchronous
FC Over Campus and MAN
FCIP Over WAN
Best Practices
Intra-DC
Inter-DC
PVLANs, Static ARP, Port
Security, MD5 Authentication
AAA, SSH, Root and BPDU Guard,
ARP Spoofing, DHCP Spoofing,
VLAN Hoping
Reverse Proxy Caching
WCCP and SLB Redirection
Content Prepositioning
NIC Teaming
Clustering
iSCSI, FC, NAS,

Networking
Storage Network
Infrastructure
DC SecurityApplication
Optimization
IP Network
Infrastructure
111111
© 2005 Cisco Systems, Inc. All rights reserved.
DC-1101
11201_05_2005_c2
DATA CENTER
IP Infrastructure
111111
© 2005 Cisco Systems, Inc. All rights reserved.
DC-1101
11201_05_2005_c2
121212
© 2005 Cisco Systems, Inc. All rights reserved.
DC-1101
11201_05_2005_c2
Data Center Architecture
Load
Balancer
Firewall SSL
Offloader
Cache
Aggregation
Layer
Access

Service Integration
WEB
APP
APP
APP
FTP
DNS
WEB
DHCP
Mainframe
Primary Server Farm
Campus Core
Internet Edge
DMZ
Application Services
Cisco 7500/7200
Routers
Cisco 3550/4500
Switches
Cisco PIX
Firewalls
Catalyst 6500
Switches
Cisco GSS
Content Router
IDS sensor
Content Engine
SSL Module
Content Switching Module
Firewall Module

151515
© 2005 Cisco Systems, Inc. All rights reserved.
DC-1101
11201_05_2005_c2
161616
© 2005 Cisco Systems, Inc. All rights reserved.
DC-1101
11201_05_2005_c2
Application Optimization
High Availability, Scalability and Health of Application Services
• Load Balancing
Application Availability
Scalability
• SSL Offloading
SSL Scalability
Centralized PKI
Management
Security/Traffic Inspection
• Caching
Server I/O and CPU
reductions
171717
© 2005 Cisco Systems, Inc. All rights reserved.
DC-1101
11201_05_2005_c2
Server and Application Scalability
Improving and Guaranteeing Service Levels
• Distribute Traffic Load
• HW alternative to clustering technologies
• Avoiding misbehaving apps/server: app health checking

Nhờ tải bản gốc

Tài liệu, ebook tham khảo khác

Học thêm

Music ♫

Copyright: Tài liệu đại học © DMCA.com Protection Status