Fast IT innovation
in Datacenter
Panagiotis Golemis
Consulting System Engineer
Datacenter Technologies
Internet of Everything is HereNetworked Connection of
People, Process, Data, Things
Connecting people in more relevant, valuable ways
People
Leveraging data into more useful information for decision
making
Data
Delivering the right information to the right person (or machine) at the right time
Process
Physical devices and objects connected to the internet and each other for intelligent decision making
Things
IoE
Challenges:
• Manual processes
• Complex handoffs between teams and domains
• Static resource allocation
Business Outcome:
• Days/weeks/months to deploy IT services
• High operational cost
• Rigid silos
• Infrastructure inefficiency and under utilization
Complex IT Processes to Deploy Application Resources
Netw
ork
Ad
m
Update
Trunks
Create
VLANs
Configure
SAN Zoning
Create UCS
Service Profiles
Create
Network Policies
Serv
er
Ad
min
s
Configure
Servers
Bare metal
Provisioning
Setup
Servers
Add VLAN to
Service Profile
Create
VLAN
Create Storage
Resources (LUNs
and Volumes)
Sto
rag
e Add vFilers
to Group
Create
vFilers
Create
IP space
UCS Blade
Power On
Create
Storage Policy
Map
NetApp LUN
Add Users
and Groups
IT
Planning
ApprovalsDefine
Cost Models
Bu
sin
ess A
pp
licatio
n
Req
uire
men
ts
1
2
3
4
5
6
Complexity & Volume
Increasing
IT Consumption Models are
Changing Consumer Experience
Automation = Simplicity
Customers are Driving towards Automation :
• Consistency in CONFIGURATION across three technology silos
• Quick TIME TO MARKET for application owners
• Consistency in ACCURACY
• Minimize OPERATING COSTS
• COMPLEX Functions made easy.
• RAPID execution of repetitive tasks.
Network
Compute
Storage
Management
Automation
• Many interfaces
• Complex verification / rollback
Admin team
or
orchestration tool
New VLANs?
BIOS settings and
BIOS levelNeed the MAC
addresses?
ILO
/OS
Lights-Out Mgmt config
Need the WWNs?
RAID Controller settings /
firmware
NIC/HBA #?
Verification
NIC/HBA Firmware
Rollback
SANboot /
iSCSI boot
IPMI credentials
LAN, SAN, Firewalls,
Load balancers
Simplicity and Automation
Customers are Assuming Simplicity :
• Lack of features
• Possibility of Irrelevance
• Increase Engineering Costs
• Vendor Lock-in.
• Impedes innovation.
Network
Compute
Storage
Network
Compute
Storage
Management
Automation
• Fragmented APIs, that eventually can be consolidated using umbrella applications, increasing the complexity
FC
Eth
Chassis
Bla
de
• The problem gets worse with multiple chassis
FC
Eth
Chassis
Bla
de
How do we manage our network "Today"In a majority of environments:
Stage configuration in Notepad, copy/paste
Automation according to definition of fixed third party tools
Conversational configuration via expect scripts
Challenges:
Scaled Infrastructure
Manual, repetitive, error-prone tasks
Waste time & talent
Network lags behind industry automation capabilities
Pasting large configuration:
Typo? Start from scratch
Summary of the Amazon EC2 and Amazon RDSService Disruption in the US East Region
AWS official statement : http://aws.amazon.com/message/65648/
“The trigger for this event was a network configuration change. We will audit our change process and increase the automation to prevent this mistake from happening in the future. However, we focus on building software and services to survive failures. Much of the work that will come out of this event will be to further protect the EBSservice in the face of a similar failure in the future”.
The originating cause of the disaster was the review of a network configuration (human error).
The Good, the OK & the Ugly of Cloud Architecture
[...] By now, it should have been drilled into everyone’s heads that they need to architect for failure if they want guaranteed high availability from their cloud computing efforts.
http://gigaom.com/cloud/the-good-the-alright-and-the-ugly-of-cloud-architecture/
(distribution of risk, careful monitoring, analysis and reaction)
• The automation capabilities of existing tools is not enough
• Expensive additional tools are required
• Often these tools bring silo-functionality, and they need to be integrated with professional services
• Own custom automation development is too expensive
Save Resources Human Error Customize Innovate
Open Standards
OpFlexNSHVXLAN
Open Source Open APIs
RESTful APIs ( XML / JSON )
PowerShell /Python Clients
“We‘re big believers in open
standards and
open architectures…so we have
a say in how things evolve.”
Major Financial
Services Firm
“We also believe Cisco’s open
standards-based approach with
the ACI OpFlex protocol makes
ACI even stronger.”
“ OpFlex demonstrates
Cisco's commitment to an
open, application centric
approach to cloud services..”
“Cisco OpFlex…makes it much
easier for us to benefit from ACI
and its policy model in our
OpenStack deployment.”
Policy Architected Data Center
Fast IT
NetworkCompute
Security
UCS
2009: Industry’s First Application Centric
Infrastructure
StorageNexus & APIC
2013: ACI for the Data Center Fabric
UCS Integrated Infrastructure Solutions
2014: Leading a New Market Category
UCS Director
Policy Architected Datacenter Enables Fast IT
• Subject matter experts consumed by manual configuration chores
• Serial processes and multiple touches inhibit provisioning speed
• Configuration drift and maintenance challenges
Traditional Element Configuration
Storage SME
• FC Fabric assignments
for HBAs
• RAID settings
• Disk scrub actions
• Number of vHBAs
• HBA WWN
assignments
• FC Boot Parameters
• HBA firmware
• VLAN assignments for NICs
• VLAN tagging config for NICs
• QoS settings
• Border port assignment
per vNIC
• NIC Transmit/Receive
Rate Limiting
• Server UUID
• Serial over LAN settings
• Boot order
• IPMI settings
• BIOS scrub actions
• BIOS firmware
• BIOS Settings
• Remote KVM IP settings
• Call Home behavior
• Remote KVM firmware
LAN SAN
Server SME Network SME
UCS Is Policy Computing (Stateless)
Stateless computing facilitates much greater scalability and flexibility
• Servers waiting for their identity based on Application needs
• Service Profiles push out configuration to available HW
• Able to pre-provision compute platform
• Policy is the Server – Agile, Flexible, Mobile, and Scalable
Unified, Embedded Management
1. Subject Matter Experts Define Policies
Unified Management a
Storage SME Server SME Network SME
Server Policy…
Storage Policy…
Network Policy…
Virtualization Policy…
Application Profiles…
Unified, Embedded Management
1. Subject Matter Experts Define Policies
Unified Management a
Server Policy…
Storage Policy…
Network Policy…
Virtualization Policy…
Application Profiles…
Storage SME Server SME Network SME
2. Policies Used to Create Service Profile Template
Server Name
UUID, MAC, WWN
Boot Information
LAN, SAN Config
Firmware Policy
Unified, Embedded Management
1. Subject Matter Experts Define Policies
Unified Management a
Server Policy…
Storage Policy…
Network Policy…
Virtualization Policy…
Application Profiles…
2. Policies Used to Create Service Profile Template
Server Name
UUID, MAC, WWN
Boot Information
LAN, SAN Config
Firmware Policy
3. Service Profile Templates Create Service Profiles
Server Name
UUID, MAC, WWN
Boot Information
LAN, SAN Config
Firmware Policy
4. Associates Service Profiles with Hardware Configures Servers Automatically
Server Name
UUID, MAC, WWN
Boot Information
LAN, SAN Config
Firmware Policy
Server Name
UUID, MAC, WWN
Boot Information
LAN, SAN Config
Firmware Policy
Server Name
UUID, MAC, WWN
Boot Information
LAN, SAN Config
Firmware Policy
Storage SME Server SME Network SME
Provisioning & Administration Cost Reduction
Eliminate Manual
Configuration• UCS Manager embedded in all system devices
• UCS Manager: Auto-discovery, self integrating components
Automation
Replaces Repetitive
Tasks
Extend Investment
in Existing Tools
Extend the Reach
of SME’s
• UCS Service Profiles
• Policy based management
• Seamless integration with existing tools equals no
stranded systems management investments
• UCS Manager and UCS Central allow administrators to
scale across larger installations and across data
center/geographies
A New OPEN Operating Model is Required
TRADITIONAL NETWORK MODEL
Needs Agility and Time to Applications
Network of Boxes
A New OPEN Operating Model is Required
TODAY’S SDN DATACENTER MODEL
Lacks Scale, Visibility, Security
More Complexity
Decreases Reliability
Disjointed Overlay and UnderlayIncreases Costs
Software-BasedNetwork Virtualization
A New OPEN Operating Model is Required
TODAY’S SDN DATACENTER MODEL
Lacks Scale, Visibility, Security
More Complexity
Decreases Reliability
Disjointed Overlay and UnderlayIncreases Costs
Software-BasedNetwork Virtualization
A New OPEN Operating Model is Required
TODAY’S SDN DATACENTER MODEL
Lacks Scale, Visibility, Security
More Complexity
Decreases Reliability
Disjointed Overlay and Underlay
Software-BasedNetwork Virtualization
FUTURE OPEN MODEL
Application Centric Infrastructure
Network Virtualization
Open Single Point of Control and Management (Policy)
Application Policy and Automation
Physical and Virtual
Scale and Security
Visibility and Troubleshooting
An Innovative New Approach to Policy
Connectivity
Security
QoS
L4-7 Services
APPLICATION
NETWORK PROFILE
Contract Contract Contract
OUTSIDEDBAPPWEB
ADCF/W
ADC
What is an application policy?
End Point Group: A set of VMs / servers with the same policy1.
Contracts: A set of rules governing communication between groups2.
Service Chains: A set of network services between groups3.
Application
Stateless NetworkingApplication Network Profile
L/BAPP DBF/W
L/BWEB
APIC
HYPERVISORHYPERVISOR HYPERVISOR
CONNECTIVITY
POLICY
SECURITY
POLICIESQOS
STORAGE AND
COMPUTEAPPLICATION L4..7
SERVICES
SLA
QoS
Security
Load
Balancing
APP PROFILE
Network Profileapplication-centric network policy
Automated Policy Deployments
On-Demand
Automated Delivery
Policy-Driven
Provisioning
Secure Cloud
Container
VMsComputeNetwork Storage
Infrastructure
Automation and
Management
Domain Managers
OS and
Virtual
Machines
Storage
Network
Compute
Tenant
BTenant
CTenant
A
Virtualized and Bare-Metal
Compute and Hypervisor
B CA
Network and Services
VM VMBareMetal
Single Pane of Glass
End-to-End
Infrastructure
Automation and
Lifecycle Management
Cisco UCS Director Turn-Key Solution
On-Demand
Automated Delivery
Policy-Driven
Provisioning
Secure Cloud
Container
VMsComputeNetwork Storage
UCS Director
Domain Managers
OS and
Virtual
Machines
Storage
Network
Compute
Tenant
BTenant
CTenant
A
Virtualized and Bare-Metal
Compute and Hypervisor
B CA
Network and Services
VM VMBareMetal
Single Pane of Glass
End-to-End
Infrastructure
Automation and
Lifecycle Management
UCS DirectorAgility and Simplicity for Virtualized and Bare-metal IT Infrastructure Services
Centralized Lifecycle Management of Physical and Virtualization Infrastructure
UCS Director
Self Service Infrastructure Portal
Dynamic Capacity Management
Configuration Management
Service Catalog
Metering & Chargeback
Reporting
Model Based Infrastructure Orchestrator
Management & Administration
Enterprise Integration (LDAP/AD, XML Export – CMDB, Metering data, SSO (SAML))
Open API
Virtual InfrastructurePhysical Infrastructure
Cisco UCS Cisco Nexus
Cisco ASAv
Cisco ISE
Cisco
ASA5500Cisco VACS
The World of Many CloudsCustomer Requirements
Business Imperatives
Reduced
Complexity
Accelerated
Deployment
Dynamic,
Efficient,
Agile
Security Consistency ITaaS
Public Private
Hybrid
SaaS
IT Sourcing Spectrum
Cisco Offers a Complete Portfolio to Support Your Cloud Initiatives
CISCO CLOUD PRODUCTS AND SOLUTIONS for ENTERPRISE
Cisco UCS Integrated Infrastructure
Cisco Enterprise Cloud Suite
CISCO CLOUD CONSULTING SERVICES
Prime Service CatalogITaaS Storefront & Application Configuration
UCS DirectorInfrastructure Management
and Automation
VACS Application Centric
Infrastructure
OpenStack
EnterprisePrivateClouds
Public Clouds
Partner Clouds
Cloud Services and ApplicationsIntercloud Fabric
APIs
Portal
APIs
APIs
Intercloud
FabricSecure Hybrid
Cloud
Applications
• Cisco
• Partner and ISV
• IOE and Vertical
Customers Private Cloud
• On-prem
• Managed
• Hybrid
OpenStack Libraries
Platform and Infrastructure Services
Cisco Cloud Marketplace
Cisco Confidential© 2014 Cisco and/or its affiliates. All rights reserved. 34
Life in IT …