Upload
amunoz81
View
71
Download
1
Tags:
Embed Size (px)
DESCRIPTION
Cisco VXI Architecture
Citation preview
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 1 Cisco Confidential Cisco Confidential © 2010 Cisco and/or its affiliates. All rights reserved. 1
Cisco VXI Architecture
Datacenter PVT June, 2012
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 2
81.6%
0.7%
1.7%
0.7%
0.2% 2.9%
12.2%
Hypervisor Market Share (2010 Revenue)
VMware
Microsoft
Parallels
Citrix
Oracle
Other
Non-x86 (IBM & HP)
units
Microsoft is the second largest player in the server virtualization space with ~25% share of the hypervisor unit shipments.
IDC, 2011
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 3
All Workloads VDI
68% 54%
16% 20%
14% 25%
2% N/A
Ref: http://www.channelregister.co.uk/2011/11/03/v_index_server_virtualization_q3_2011/
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 4
Will
Switch? 38% Why? 59%
Hypervisor Cost /
Licensing Model
Ref: http://www.channelregister.co.uk/2011/11/03/v_index_server_virtualization_q3_2011/
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 5
General
Version vSphere 5 Hyper-V R2 SP1 XenServer 6 RHEV 2.2 OVM 3.0
Edition Enterprise Plus DataCenter Platinum Edition Premium
Market Position Leader (P1) Leader (P2/3) Leader (P2/3) Follower Follower Pricing Virtualization ($) Ent+:
$3,495/socket/enables
96GB vRAM (NEW!) +
S&S: $734 (B) or $874
(Prod), vSphere Desktop:
$65/active desktop
DataCenter:
$2,999/socket
$5000/server+$3000
(support) $799/socket $599/socket
Management ($) $4,995(S) + $1,049 (B) or
$1,249 (P), $1,495(Fnd)
+ $545(B) or $645(P)
SMSE: $1569/host) or
SMSD: $1310
SMSD/CPU (2 CPU min) Free (XenCenter) Free
Oracle VM
Management
Guest OS Licensing Not included yes - unlimited (Windows) No No No Management Central Management Yes (vCenter Server +
vCenter appliance -
NEW)
Yes
(SCVMM/SMSE/SMSD)
Yes (XenCenter),
SCVMM (new)
Yes (RHEV-M) Yes (Oracle VM
Management)
Virtual and Physical No Yes Limited No No
VM Mobility Live Migration of VMs Yes vMotion and Metro
vMotion
Yes Live Migration (1) Yes XenMotion (1) Yes Live Migration Yes SSL
Migration
Migration Compatibility Yes (EVC) Yes (Processor
Compatibility)
Yes (Heterogeneous
Pools)
Yes Yes
Automated Live
Migration
Yes (DRS) - Storage
(NEW), CPU, Mem,
Semi-
Integr.(CPU,Mem,3rd
party)
Yes (WB) - CPU, Mem,
D, N
Yes Yes
Power Management Yes (DPM) Limited Yes Yes Yes
Storage Migration Yes (Storage vMotion /
DRS-automated - NEW)
Limited (Partially Live) No (offline only) Yes No
HA/DR Integrated HA (Restart
vm)
Yes (VMware HA) - incl
Storage heartbeat
Yes Yes Yes Yes
Site Failover No (SRM fee-based Add-
On)
Yes (Basic, MS Site
Recovery), Opalis
Integrated Disaster
Recovery (no storage
array control)
Yes Yes
Hypervisor Upgrades Yes (Update Manager) -
enhanced
Yes Limited (rolling upgrade
wizard - new)
Yes (Satellite) Unknown
Updates and Backup VM Snapshot Yes Yes yes Yes Yes
VM Templates Yes Yes Yes (templ + PVS) Yes Yes
Deployment Host Profiles Yes (Host Profiles) -
enhanced for Auto
Deploy - NEW
No No No No
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 6
Hyper-V
Cisco Confidential © 2010 Cisco and/or its affiliates. All rights reserved. 7
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 8
Why desktop virtualization? • Cost Savings
Accelerating deployment of new desktops
Ease of migration (e.g. Windows 7)
PC refreshment every 2 years vs Zero/thin-client consistency
Resource utilization (HDD, Memory, CPU, application licensing catalogue)
• End-point Security
More control to files and sensitive information
• Matching employee needs
Customize resource provisioning based on user needs
• Productivity
Now an end-point can be useful for contractors, employees or management without office-locks, providing mobility and cloud services
• Green
Less power consumption, emissions and noise
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 9
Terminal Services Application Streaming
Virtual Desktop Streaming Hosted Virtual Desktop
Server Hosted Computing Client Hosted Computing
O/S
De
sk
top
A
pp
lic
ati
on
Presentation Server
Display Data
OS
App App
Server
App OS
App
Main OS
Guest OS
Guest App
Hypervisor
Apps
OS
Apps
OS
Apps
OS App
Server
Synchronized
Desktop
OS
OS
Apps
OS Apps
OS Apps
OS Apps
OS
Display Data
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 10
• Personal Computer is disaggregated
• Keyboard, Video, and Mouse stay with user
• Compute and storage move to the data center
• Network availability is required for all application access
• Network performance is critical to user experience
Broker
Compute Storage
Keyboard, Video, Mouse
Network
Thin Client
• Large OS
• Many local
applications
• Vulnerable
• Constant patching
• Data backup
• Complex management
• Software distribution
delivery challenges
• Skilled local support
staff required
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 11
• Non-Persistent or Pooled
Generic virtual desktop assigned to users on a per session first come first server basis and then returned to the pool (possibly with profile removed) or destroyed
• Persistent or Assigned
Permanently assigned to a user statically or by first to connect
Users and
Groups
Desktops Pool of Virtual
Machines Entitle Group
to Desktop Assign
Pool
Entitle User to
Desktop Assign
Individual
Template
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 12
12
• Virtual Machine (VM)
• Small Computer System Interface (SCSI)
• Storage Area Network (SAN)
• Virtual Machine File System (VMFS)
• Fibre Channel (FC)
• Network File System (NFS)
• Network Attached Storage (NAS)
• Virtual Center (VC)
VMware ESX Host VMKernel (ESXi Console)
iSCSI
ESX Service Console
NFS
VMKernel
Cisco Nexus 1000v or Virtual Switch
Service Console
VM Network
VM Guest #1
VMTools
VM Guest #2
VMTools
VM Guest #N
VMTools
LAN VC Mgmt
VM Guest #3
VMTools
VM Guest #4
VMTools
VM Guest #5
VMTools
VM Guest #6
VMTools
VM Guest #7
VMTools
NAS File SCSI , iSCSI, FC SAN
VMFS Block Data Store
Fibre Channel
SCSI
IP Data Networks
Agent Agent Agent Agent Agent Agent Agent Agent
Remote Connections Directed by Broker
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 13
13
Desktop
Empty Windows Virtual Desktop #N
Windows OS
VMTools
Agent Empty Windows Virtual Desktop #1
Windows OS
VMTools
Agent
Cisco UCS with Hypervisor
• Profile decoupled from desktop OS using tools like AppSense
• Desktop provisioned with minimal or fixed set of applications installed
• Applications reside on File (VMware) or Streaming Server (Citrix)
• Administrator manages one master copy of an application that is streamed at run time
Application Streaming Server Profile
Display Connection #1 Display Connection #N
Data
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 14
= Cisco Products
WAAS
Virtualization-Aware
Borderless Network
Routing PoE
Switching
SiSi
CDN
Cisco®
Identity
Services
Engine
End-to-End Management and Optimization
Hypervisor
MS Office
Virtualized Data Center
ACE Unified
CM
Quad
ASA Nexus
1000v
Virtual Security Gateway
WAAS
Cisco Collaboration Applications
Compute
UCS
AnyConnect
Desktop Virtualization Software
Storage
Applications/Desktop OS
Virtualized
Collaborative Workspace
Cisco VXC 6215
Thin Client
Cisco Virtualization Experience Clients
Cius Business
Tablet
Cisco VXC 4000
PC Client
Cisco VXC
22xx &
21xx Zero
Client
AnyConnect
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 15
Thin Clients Capable Clients
Administrative Rich Media Graphics or Custom
Call Center or Clerical Professional Design Professional
Remote/Task Worker Knowledge Worker Power User
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 16
16
1. Status-quo - Use whatever desktop/notebook/etc you already have
2. PC refresh - buy new desktop/notebook hardware with HVD and application virtualization rollout
3. Recycle PC - Convert old PC hardware to a “homebrew” thin-client
4. New thin/zero clients - New purchases
User Hardware OS Software Execution Storage Security Life (Yrs)
Zero Task Chip Firmware None All remote None Low risk 7-10
Thin Task/Know
ledge
Limited Hardened Display All remote None Low risk 5-7
Hybrid Knowledge Capable
(possible
media
offload)
Hardened
General
(Linux or
Windows
Embedde
d)
Display
Rich
Media
Web
Client/Ser
ver remote
Rich
media
local
Transient
Encrypted
Medium
risk
5-7
Thick Knowledge
or Power
High End Open
General
(Windows
, Linux,
Mac)
Unlimited Mostly
local
Some
remote
Persistent High risk 3-5
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 17
VXC 2100 Series VXC 2200 Series VXC 4000* VXC 6215* Cisco Cius
Form Factor “Backpack” Integrated “Tower”
Standalone PC Software
“Tower” Standalone
Enterprise Tablet
Availability Shipping Shipping Q4 CY 2011 Q4 CY 2011 Shipping
Platform Zero Client Zero Client Win7, XP Linux Android (x86)
HVD Protocol Support
2111 – PCoIP 2112 – HDX,RDP
2211 – PCoIP 2212 – HDX,RDP
Citrix XenDekstop, VMware View
HDX, RDP, PCoIP Citrix XenDekstop,
VMware View
UC Protocol Support (add on)
N/A N/A Software Appliance HDX, RDP (Q4CY11)
PCoIP (Q1CY12) N/A
UC Client Support*
CUPC, Connect CUPC, Connect CUPC, CUCILync CUPC, CUCILync Native
Voice IP Phone 8961, 9951,
9971 N/A, can be used
with IP Phone Yes Yes Yes
Video IP Phone 9971, 9951 N/A, can be used
with IP Video Phone
No Yes Yes
Monitor Support Single or Dual,
1920x1200 Single or Dual,
1920x1200 Varies based on underlying HW
Single:2560x1600 Dual:1920x1200
Single Mirror, 1024x600 (on the roadmap for dual monitor support)
PoE PoE PoE N/A No PoE
Encoding & Decoding
Via IP Phone Via IP Phone Audio only. Video on the roadmap.
Standard Video HD Capable*
HD Capable (720p)
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 18
VMware View Citrix XenDesktop Microsoft
RDS
RDP
3389
ICA/HDX
2598/1494
PCoIP
4172
UDP TCP
• No Client-side hardware dependency
• Remote FX requires H/W assist
(server GPU)
• Standards-based encryption model
• No client-side or server-side
hardware dependency
• Announced hardware
specification for 3rd parties
• Standards-based as well as
proprietary encryption models
• Client-slide hardware
often used for optimal
experience
• Server side hardware
available
• MMR with Win7 desktops
not supported
• TCP 4172 used for control
Application
Underlying
Protocols
Deployment
Considerations
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 19
T1
Branch Router
Data Center
Protocols in the virtual desktop environment appear “monochrome” to QoS
Lack of flow differentiation prevents prioritization within a display protocol stream
Video stream competes with other flows in class – (e.g.: P2P)
Routing Protocol
Display Protocol
Video
Branch Office
Video Source
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 20
CUCM
IP
WAN
UC media separation •UC media handled in desktop
phones
•Signaling and media kept
separate from display protocol
•QoS can be used on media
•Path is optimized
Display protocol
UC signaling
UC media
Phase one
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 21
• Multimedia redirection (MMR) - Provides a greatly enhanced user experience for media such as video streaming
• The multimedia redirection (MMR) feature delivers the multimedia stream directly to the client using a RDP virtual channel. This enables full fidelity playback
• View Client and View Client with Local Mode support MMR on the following operating systems:
Windows XP
Windows XP Embedded
Windows Vista
• Make sure that the MMR port is added as an exception to your firewall software. The default port is 9427
MMR supports the following media formats:
AC3, MP3, MPEG‐1, MPEG‐2,
MPEG‐4‐part2, WMA, WMV 7/8/9
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 22
• Data Redundancy Elimination (DRE) eliminates redundancy within or between flows
• LZ compression eliminates redundancy within flows
• TCP Flow Optimization (TFO) fills the pipe over high latency links
• Transport Data De-duplication – No byte pattern crosses the network twice
DRE CACHE DRE CACHE
WAN
LZ LZ
Origin Connection Origin Connection
Optimized
Connection
Decode Encode
Window Scaling
Large Initial Windows
Congestion Mgmt
Improved Retransmit
Packet Aggregation
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 23
Protocol Vendor Transport Bandwidth
without WAAS
(Approx)
Bandwidth
with WAAS
(Approx)
Remote Desktop
Protocol (RDP)
Microsoft TCP 3389 384 Kbps 96 Kbps
Independent
Computing
Architecture (ICA)
Citrix TCP 2598 CGP
TCP 1494 ICA
120 Kbps 60 Kbps
PC over IP (PCoIP) Teradici /
VMware
Media – UDP
50002/4172
Control – TCP
50002/4172
192 Kbps 192 Kbps
Remote Graphics
System (RGS)
HP TCP 42966 1 Mbps TBD
Appliance Link
Protocol (ALP)
Oracle Media - UDP
>32768
Control – TCP
7007
400+ Kbps 400+ Kbps
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 24
2 Concurrent View Clients
Display Protocol: RDP and PCoIP
View Deployment Mode: Direct Connection
BW/Latency: T1/80 ms
Play Time: 5-6 Minutes of Repeat Tracks
• Rich Media Streaming w/ MMR (Direct Connect)
Audio: Format: MP3
Bitrate/Size: 192 Kbps/8.3 MB
Video: Format: WMV v.9
Bitrate: 1527 Kbps and 1772 Kbps
Size: 18.8 MB and 62.4 MB
WAAS Applied Policies: TFO, DRE, LZ
WAAS Classification Map:
- MMR – TCP Port 9427
- USB – TCP Port 32111
Overall Compression: 79.8%
RDP
Session
PCoIP
Session
0 5
10 15 20 25 30 35 40 45 50
0:50 0:53 0:56 0:59 1:02 1:05 1:08 1:11 1:14 1:17 1:20 1:23 1:26 1:29 1:32
BW Optimization for VIEW MMR Traffic
Original (MB) Optimized (MB)
Overall BW Consump.: 20 MB
Overall BW Consump.: 1.75 MB
(After WAAS Optimization)
Ratio = 20 MB: 1.75 MB
BW Capacity = 11x
S o l u t i o n s S e t u p
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 25
Nexus 1000V
VSM
Virtual
Center
Virtual Network
Manager
(VNM)
VMW ESX
Server 2
VM
#3
VM
#4
Virtual
Service
Node #3
Service Data Path (SDP)
Virtual
Service
Node #2
VMW ESX
Server 1
VM
#2
VM
#1
Service Data Path (SDP)
Virtual
Service
Node #1
VMW ESX
Server N
VM
#5
VM
#6
Service Data Path (SDP)
Nexus 1000V VEMs
VM
#8
VM
#7
Cisco Virtual Security Gateway
VC: Server policies
VSM: Networking policies
VNM: Security policies
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 26
Application Performance Optimizations VM-FEX delivering deterministic performance
Tier-0 Storage on Server IOPS and storage optimizations
Prioritization of Desktop Pools / Workloads UCS QoS and bandwidth controls deliver prioritization to desktop pools
Rapid Provisioning of Desktops Service profile templates for rapid provisioning of desktop pools
Desktop Density and Scalability Great virtual desktop density with linear performance scalability
Networking Visibility and Security to the Desktops Nexus 1000V with VSG and VM-FEX provide VM level controls
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 27
• Application virtualization decouples application from OS (i.e. ThinApp, AppV, Provisioning Server, etc.)
• Hypervisor decouples OS from compute hardware
• UCS Service Profile decouple server from BIOS
• Nexus Port Profile decouples cabling from server
Hypervisor
Server
OS OS
AppVirt
APP
AppVirt
APP
AppVirt
APP
AppVirt
APP
BIOS (UCS Service Profile)
Network (LAN/SAN)
Port Profile
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 28
Blade14 Server
CPU
Server
Memory
Desktop
Configuration
Per
Blade
Per
Chassis
Per
Domain
20
Chassis
B200-M1 Xeon5570 2.93 GHz 48 GB WinXP 512 MB 128 1,024 20,480
B200-M1 Xeon5570 2.93 GHz 96 GB WinXP 512 MB 160 1,280 25,600
B200-M1 Xeon5570 2.93 GHz 96 GB WinXP 1024 MB 150 1,200 24,000
B250-M1 Xeon5570 2.93 GHz 192 GB WinXP 1024 MB 332 1,328 26,560
B250-M2 Xeon5600 3.33 GHz 192 GB Win7-32 1.5 GB 110 440 8,800
B230-M2 Xeon2870 2.40 GHz 512 GB Win7-64 2.0 GB 175 1,400 28,000
B200-M3 Dual E5-2690 / 8
Core CPU
384 GB Win7 184 1,472 29,440
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 29
Storage CPU Memory
• Sample Calculation
~5% processor on 2 GHz core consumes 100 MHz per desktop
100 desktops require 10 GHz
Add 10% to 25% overhead for virtualization, display protocol, and buffer for spike
100 desktops achieved with 12.5 Ghz via 4 cores at >=3.125 GHz per core
• Planning
Windows XP 150-250 MHz
Windows 7 400-600 MHz
• Minimal oversubscription
Windows XP - 4 KB page sharing
Windows 7 - 1 MB page sharing
• Planning
Windows XP - 512-1024 MB
Windows 7-32 bit - 1-1.5 GB
Windows 7-64 bit - 2-3 GB
• Capacity
Base OS, App, Data, Profile size plus suspend/resume, page files, etc.
Linked v full clone (50%)
• IOPS (4096 Bytes/IOP)
4096 Bytes/IOP
15K RPM drive – 180-200 IOPS
SSD drive – 2,000s IOPS
Reads versus writes
Boot/login storms, AntiVirus, Peaks
Intellicache, VMW CBRC, Atlantis
• Planning
Windows XP 10-15 IOPS
Windows 7 15-25 IOPS
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 30
30
Single VM Latency Multi VM Latency
0
20
40
60
80
100
120
140
160
180
1
2
4
8
16
32
64
12
8
25
6
51
2
10
24
20
48
40
96
81
92
16
38
4
32
76
8
usecs
Message Size (bytes)
Cisco VM-FEX Hypervisor vSwitch
0
25
50
75
100
0
50
100
150
200
250
300
12 VM 24 VM 36 VM 48 VM
Std
Dev
Av
era
ge L
ate
ncy/V
M (
usecs)
Avg Latency Cisco VM-FEX
Avg Latency Hypervisor vSwitch
Std Dev Cisco VM-FEX
Std Dev Hypervisor vSwitch
67% Latency
50% Performance
Deterministic Delivery
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 31
• Client LAN Features
Port Security prevents CAM attacks, DHCP Starvation attacks and spanning tree loop mitigation
DHCP Snooping prevents Rogue DHCP Server attacks
Dynamic ARP Inspection prevents current ARP attacks
IP Source Guard prevents IP/MAC Spoofing and a wide variety of TCP/UDP splicing and DoS attacks
• Virtual Ethernet Module (VEM)
Networking capabilities at the hypervisor level
L2 switching, CDP, Netflow, ACLs, QoS, SNMP, SPAN, etc
Local Switching
Port Profile to simplify Network Policy
• Virtual Supervisor Module (VSM)
Mgmt, monitoring and config of VEM instances
Sees each VEM as a virtual chassis module
Configuration done through port-profiles
Tight integration with Virtual Center
Runs on dedicated appliance or virtual machine
• Virtual Chassis Concept
Redundant Supervisors (VSMs)
Currently up to 128 VEM instances (128 ESX hosts)
Presents a network view of the virtual access layer
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 32
Specify zoning policy with appropriate granularity
• Tenant, VDC, vApp
Zone: Research
Zone A: vApp
Zone B: vApp
vSphere
Nexus 1000V
vPath
Zone: Marketing
Virtual Network Management Center (VNMC)
Tenant: Coke Tenant: Pepsi
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 33
Storage: First – what about capacity?
1000 users, 10GB per desktop = 10TB – right?
Wrong…
Operating System
View Composer = savings capacity requirements for OS storage
60:1 savings (non-persistent)
2:1 - 5:1 savings (persistent)
Applications
Thin App = 50:1 savings for app storage
Assuming only 50% of apps can be virtualized
User Storage
Dedupe/Compress + Archive = savings on user data storage
4:1 savings (being conservative)
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 34
The Challenge
• Architecting a View Environment to size for BOTH capacity and performance at scale when leveraging Linked Clone or Snapshot Technology
The Analysis
• 1000 x 10GB boot images = 1TB2TB
>80% capacity savings
• 8-10 iops per user ≈ 10,000 iops
The Result
• at scale, data reduction technologies + EFD saves you $$$
How do you leverage EFD most efficiently?
The Case for Enterprise Flash Drives
Drive Type Sustained IOPS # of drives
7.2k SATA 80 125
10k FC/SAS 130 76
15k FC/SAS 180 56
EFD 2000 5
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 35
HDD
FAST Cache +
FAST Tiering
App
server
Controller
DRAM Cache
FLASH
9 of 10 I/Os
from FLASH
FLASH
1 of 10 I/Os
from disk
HDD
With
FAST Cache
App
server
Controller
DRAM Cache
FLASH
1 of 10 I/Os
from disk
9 of 10 I/Os
from Cache
HDD
View 4.5 + FAST = Lower Cost + Better Experience
Lower Cost + User Experience
DRAM Cache
4 of 5 I/Os
from disk
Without
FAST
App
server
Controller
1 of 5 I/Os
from Cache
Thank you.