Data Center LAN Migration Guide - Juniper Networks

More documents

Recommendations

Info

Data Center LAN Migration Guide Network Challenge and Solutions for Virtual Servers Server virtualization has introduced a new layer of software to the data center called the hypervisor. This layer allows multiple dissimilar operating systems, and the applications running within them, to share the server’s physical resources such as CPU, memory, and I/O using entities called virtual machines (VMs). A Virtual Ethernet Bridge (VEB) within the physical server switches traffic between the VMs and applications running within the same server, as well as between VMs and external network resources. Instead of interfacing directly to the physical NICs, the applications now talk to “virtual ports” on the internal VEB (or vSwitch). This creates virtual network endpoints, each with its own virtual IP and MAC addresses. Unique to server virtualization, a virtual switch (vSwitch) is a Layer 2 switch with limited function and security. Physical switches (or pSwitches) like the EX Series Ethernet Switches are actual pieces of network equipment. The network design for server virtualization requires an organization to consider the connections between the vSwitch and the pSwitch, including network functionality such as VLAN tagging and link aggregation (LAG) between network nodes. As VM to physical server ratios increase, server-based networking becomes more complex and may require multiple virtual switches, different VLANs, QoS tags, security zones, and more. Adding this amount of network processing to physical server infrastructures adds a great deal of overhead to their loads. It also requires more networking functionality to be added into hypervisors. To reduce this overhead and simplify operations, an alternative approach, strategically, is to use a Virtual Ethernet Port Aggregator (VEPA), where servers remain focused on application processing, and the hypervisor has visibility into the network, delegating switching tasks to collaborating physical switches. Networking for a large number of physical and logical servers can be simplified by attaching many of them to the wide configuration of a single Juniper Virtual Chassis switch. As previously described, EX Series switches, initially, the EX4200, can be logically combined into a single switch spanning over 400 physical server access ports and supporting several thousand virtual machines using Virtual Chassis technology. It is important to note that vSwitches and pSwitches are not competing technologies. The IEEE standards body is working on solving vSwitch issues within its VEPA standards working group. VEPA proposes to offload all switching activities from hypervisor-based vSwitches to the actual physical switches. In addition, VEPA proposes to ease management issues. The IEEE 802.1Qbg (Edge Virtual Bridging) and 802.1Qbh (Bridge Port Extension) VEPA standards specify how to move networking from virtual servers to dedicated physical Ethernet switches. This will help by concentrating networking functions into equipment that is purpose-built for tasks, enhancing performance, security, and management within the data centers. It will also help reduce computing overhead on virtual servers, allowing the CPU cycles to be spent on application processing as opposed to networking tasks. Offloading switching activities from hypervisor-based vSwitches will also result in an increase in the supported number of VMs. Most importantly, a ratified VEPA standard will be universal as opposed to a vendor-specific, proprietary solution. For more information on VEPA, please see: www.ieee802.org/1/files/public/docs2008/new-congdon-vepa-1108-v01.pdf. In addition to Virtual Chassis and VEPA-based forwarding, a management application such as Junos Space Virtual Control allows users to monitor, manage, and control the virtual network environments that support virtualized servers deployed in the data center. Virtual Control provides a consolidated solution for network administrators to gain end-toend visibility into, and control over, both virtual and physical networks from a single management screen. Network Automation and Orchestration Automation is a crucial tool for running a scalable and resilient data center at all levels. When developing an automation plan, it often works well to partition functions to be covered by the automation platforms and detail how these functions map into operations teams and data center domains. Within these boundaries, an open architecture should be selected that addresses the functions across the respective equipment suppliers’ platforms and maps them to the appropriate applications. In a multivendor infrastructure, a difference typically exists in the level at which vendor integration occurs—sometimes integration is possible in a multivendor application, and in other cases the integration is less complete and some number of each vendor’s specific tools needs to be kept in service to accomplish the necessary tasks. 38 Copyright © 2012, Juniper Networks, Inc.
Data Center LAN Migration Guide Significant levels of integration can be done in fault, performance, and network configuration and change management. As an example, IBM’s Tivoli NetCool is a well established leading multivendor solution for fault management. Juniper’s Junos Space platform licenses and integrates NetCool into its Junos Space offering. There are also well established multivendor solutions for performance management that include IBM NetCool Proviso, CA eHealth, InfoVista, and HP OpenView that an enterprise can consider for managing network and application performance for both current vendor and Juniper network infrastructures. There are currently over a dozen Network Configuration and Change Management (NCCM) vendors with multivendor tools. These tools bring more structure to the change management process and also enable automated configuration management. NCCM vendors include IBM Tivoli, AlterPoint, BMC (EmprisaNetworks), EMC (Voyence), HP (Opsware), and others. Prior to introducing Juniper into an existing single vendor infrastructure, Juniper recommends that you replace manual network configuration management processes and vendor-specific tools with automated multivendor NCCM tools. It is also good practice to establish standard network device configuration policies which would apply to all vendors in the network infrastructure. Automated network configuration management is more efficient and also reduces operational complexity. An IT management solution should be built around the standards outlined by the Fault, Configuration, Accounting, Performance, Security (FCAPS) Model. Refer to the following URL for more information: http://en.wikipedia.org/wiki/FCAPS. Integrating Management and Orchestration with Junos Space Some amount of integration for management and orchestration can be accomplished using Junos Space. Junos Space is a network application platform for developing and deploying applications that simplify data center operations. Junos Space abstracts network intelligence such as traffic flows, routing topology, security events, and user statistics (to name a few), and makes this available as services used both by Juniper-developed applications and applications from third-party vendors leveraging the Junos Space SDKs/APIs. Junos Space applications are designed to be collaborative. They share common services such as inventory and configuration management, job scheduling, HA/clustering, etc., and they use a common security framework. This enables users to optimize scale, security, and resources across their application environment. The Junos Space application portfolio currently includes Ethernet Design (rapid endpoint and switch port configuration in campus/data center environments), Security Design (fast, accurate deployment of security devices and services), Network Activate (point/click setup and management of VPLS services), Route Insight (visibility, troubleshooting, and change modeling for L3 MPLS/IP networks), Virtual Control, which provides a consolidated solution for network administrators to gain end-to-end visibility into, and control over, both virtual and physical networks from a single management screen, and Service Now (automated case and incident management). Data Center Consolidation Trigger Event Numerous large enterprises are consolidating their geographically distributed data centers into mega data centers to take advantage of cost benefits, economies of scale, and increased reliability, and to fully exploit the latest virtualization technologies. According to industry research, more than 50% of the companies surveyed had consolidated data centers within the last year and even more planned to consolidate in the upcoming year. Data center consolidation can involve multiple insertion points into access and core aggregation layers as well as consolidation of security services. Best Practices in Designing for the Access Layer Insertion Point We have already discussed the recommended best practices for the access layer insertion point. In this section, we will highlight key best practice/design considerations for the other insertion points related to the consolidation trigger event. Copyright © 2012, Juniper Networks, Inc. 39
Page 1 and 2: DATA CENTER LAN MIGRATION GUIDE
Page 3 and 4: Data Center LAN Migration Guide Cha
Page 5 and 6: Copyright © 2010, Juniper Networks
Page 7 and 8: 3-TIER LEGACY NETWORK Ethernet Figu
Page 9 and 10: Why Migrate? Data Center LAN Migrat
Page 11 and 12: The Case for a High Performing, Sim
Page 13 and 14: Why Juniper? Data Center LAN Migrat
Page 17 and 18: Junos Pulse SRX5000 Line SRX3000 Li
Page 19 and 20: Data Center LAN Migration Guide A k
Page 21 and 22: Data Center LAN Migration Guide For
Page 23 and 24: MPLS/VPLS for Data Center Interconn
Page 25 and 26: Junos Space applications include: D
Page 29 and 30: Data Center LAN Migration Guide Add
Page 31 and 32: TRIGGER EVENT NETWORK INSERTION LAy
Page 33 and 34: Data Center LAN Migration Guide •
Page 35 and 36: For more detailed information on NI
Page 37: PoC lab could include: - Interface
Page 41 and 42: Data Center LAN Migration Guide The
Page 43 and 44: Installation Tasks Refer to Figure
Page 45 and 46: Data Center LAN Migration Guide In
Page 47 and 48: Data Center LAN Migration Guide •
Page 49 and 50: Data Center LAN Migration Guide At
Page 51 and 52: Data Center LAN Migration Guide Ste
Page 53 and 54: Juniper Professional Services Data
Page 57 and 58: Hardware Data Center LAN Migration
Page 59 and 60: OSI Layer 3: Network Troubleshootin
Page 61 and 62: The commands presented in this sect
Page 65 and 66: Data Center LAN Migration Guide 3.
Page 67 and 68: Data Center LAN Migration Guide Cop

Data Center LAN Migration Guide - Juniper Networks

Create successful ePaper yourself

Delete template?

Save as template?