数据中心网络架构和设计指南

1©2005CiscoSystems,Inc.Allrightsreserved.CiscoConfidentialSessionNumberPresentation_ID数据中心网络架构和设计指南SESSIONDC-21012©2005CiscoSystems,Inc.Allrightsreserved.CiscoConfidentialSessionNumberPresentation_IDAboutthissessionDC-2101•IntermediateLevel•CoversManyTopics•Q&Aatendofsession•Availableafterwardsforadditionalquestions•RelatedSessionsofInterest:DC-2104:NetworkingGuidelinesforDeployingBladeServersDC-2103:ImplementingDataCenterServices(FWSM-CSM)DC-3101:ServerInterconnectArchitecturalandDesignPrinciplesTECDC-102:DataCenterTechtorial(fullday)3©2005CiscoSystems,Inc.Allrightsreserved.CiscoConfidentialSessionNumberPresentation_ID目录数据中心网络架构•ServerFarmArchitectureOverview•DesignRequirementsintheServerFarm•AccessLayerDesignModels•DensityandScalabilityImplications•ScalingB/WwithGigabitEtherChannel®and10GE•SpanningTreeDesignandScalability•HighAvailabilityintheDC•Summary数据中心服务器群交换架构DC-210111127_05_2005_c2444©2005CiscoSystems,Inc.Allrightsreserved.5©2005CiscoSystems,Inc.Allrightsreserved.CiscoConfidentialSessionNumberPresentation_ID定义数据中心接入层2层,3层服务器和主机连接•L2andL3requirements•Dualandsingleattached•Highperformance,lowlatencyL2switching•Mixofover-subscriptionrequirements•Manyuplinkoptions•STPprocessingforconfiguredVLANsonly•UtilizesservicesintheaggregationlayerL3AccessBladeChassisw/IntegratedSwitchBladeChassisw/PassThruMainframew/OSAL2w/ClusteringandNICTeamingEnterpriseCoreDCAggregationDCCoreDCAccess6©2005CiscoSystems,Inc.Allrightsreserved.CiscoConfidentialSessionNumberPresentation_ID定义数据中心汇聚层提供共享的应用/安全服务•AggregatesaccessuplinksintoDCcore•LargeSTPprocessingload•Providesadvancedapplicationandsecurityfunctionsviaservicemodules•Maintainssessionstateandconnectiontablesforredundancy•Whataretheseservices?EnterpriseCoreDCAccessServiceModulesL3AccessBladeChassisw/IntegratedSwitchBladeChassisw/PassThruMainframew/OSAL2w/ClusteringandNICTeaming7©2005CiscoSystems,Inc.Allrightsreserved.CiscoConfidentialSessionNumberPresentation_ID定义数据中心汇聚层集成服务•Applicationandsecurityservicescanbedeployedas:AppliancesServiceblades•Servicebladessuchasfirewallbladesandloadbalancingblades…providehardware-basedstatefulfunctions•Integratedbladesoptimizerackspace,cablingandconfigurationmgmt•ProvidehighestflexibilityandeconomiesofscaleLayer4–7Services:FW,SLB,SSL,IDS8©2005CiscoSystems,Inc.Allrightsreserved.CiscoConfidentialSessionNumberPresentation_ID定义数据中心汇聚层服务器之间的通信路径AccessAggregationDCCoreWhatTypesofServertoServerTrafficWillExist?Multi-TierInteraction,Backup,Replication,ClusterMessaging,StorageoverIP•Theaggregationmodulemayprovidetheprimarycommunicationpathforservertoservertraffic•Nontraditionaltrafficemerging•Drivingloweroversubscriptionand10GEuplinks•ServersnowshipwithPCI-XNIC’sandGE•Planbandwidthforfutureservertruecapacity9©2005CiscoSystems,Inc.Allrightsreserved.CiscoConfidentialSessionNumberPresentation_ID定义数据中心核心层汇聚层之间的高速交换矩阵Nx100ServersNx100ServersAggModule1AggModule2DCCoreAggregationGE/10GEGE/10GEAccessEnterpriseCore•InterconnectsAGGmodules•Isolatesfailuredomains•ScaleslargeSTPdiameters•Improves10GEscaling•PlanandbuildDCcoreupfront10©2005CiscoSystems,Inc.Allrightsreserved.CiscoConfidentialSessionNumberPresentation_ID定义数据中心服务器交换矩阵服务器间流量的高速交换•Purposebuiltserverswitchingfabricenabling:LowlatencyRDMAServervirtualizationGRID/Utilitycomputing•ClusteringenvironmentsDatabaseclusteringHAclusteringHPCclustering•GatewaytoIPswitchingandstoragelayers•New,leadingedge,stillmaturingNASNASBladeServersUNIX/WindowsServersVirtualServerFabric#2(Blade-based)VirtualServerFabric#1Linux/WindowsIPInfrastructureUNIXUNIXWINWINStorageNetworkServerSwitchFabricInfinibandEthernetEthernetFCEnterpriseGRID服务器群网络的设计需求DC-210111127_05_2005_c2111111©2005CiscoSystems,Inc.Allrightsreserved.12©2005CiscoSystems,Inc.Allrightsreserved.CiscoConfidentialSessionNumberPresentation_ID什么时候需要2层的网络连接满足服务器群应用要求•Clustering:applicationsoftenexecuteonmultipleserversclusteredtoappearasasingledevice;commonforHAandloadbalancingrequirements;(WindowsMSCSandNLB)•NICteamingsoftwarerequireslayer2adjacencybetweenteamedNICsMicrosoftApplications.NETJavaBasedApplications,J2EE…13©2005CiscoSystems,Inc.Allrightsreserved.CiscoConfidentialSessionNumberPresentation_ID定义网络2层邻接关系“Layer2adjacencybetweenserversmeansthattheserversareinthesamebroadcastdomain.WhenserversareLayer2adjacent,eachserverreceivesallbroadcastsandmulticastpacketsfromanotherserver.”PacketMagazine:SecondQuarter2005DesigningtheDataCenterAccessLayer14©2005CiscoSystems,Inc.Allrightsreserved.CiscoConfidentialSessionNumberPresentation_ID定义集群的服务器高可用性集群•Commongoal:combinemultipleserverstoappearasaunifiedsystemthroughspecials/wandnetworkinterconnects•A2NodeHAclustercanuseadedicatedcrossovercableforexchangeofdata,sessionstate,monitoring…•Twoormoreserversuseaswitchtoprovidetheinterconnectonanisolatedlayer2segment/VLAN•Examples:MS-Windows2003AdvancedServer2003ClusterService(MSCS),forExchangeandSQLServers(uptoeightnodes)•VeritasClusteringforHA•L2AdjacencyisrequiredServer-AServer-BClusterNetworkwith2Nodes-CrossoverCableConnectionFront-EndInterfaceFront-EndInterfaceABCClusterNet