Ob peb xyoos dhau los, Cisco tau nquag txhawb nqa cov qauv tshiab rau kev tsim cov ntaub ntawv sib txuas hauv cov ntaub ntawv chaw - Application Centric Infrastructure (los yog ACI). Ib txhia twb paub lawm. Thiab qee tus txawm tswj hwm nws ntawm lawv cov lag luam, suav nrog hauv Russia. Txawm li cas los xij, rau feem ntau cov kws tshaj lij IT thiab tus thawj tswj hwm IT, ACI tseem yog ib qho tsis pom tseeb lossis tsuas yog xav txog yav tom ntej.
Hauv tsab xov xwm no peb yuav sim coj lub neej yav tom ntej los ze zog. Ua li no, peb yuav tham txog lub ntsiab architectural Cheebtsam ntawm ACI, thiab kuj qhia seb nws yuav siv tau nyob rau hauv kev xyaum. Tsis tas li ntawd, nyob rau hauv lub neej yav tom ntej peb yuav npaj ib qho kev pom ntawm ACI, uas txhua tus neeg nyiam IT tshwj xeeb tuaj yeem sau npe rau.
Koj tuaj yeem kawm paub ntxiv txog lub network tshiab hauv St. Petersburg thaum lub Tsib Hlis 2019. Tag nrho cov ntsiab lus muaj nyob rau hauv . Sau npe!
prehistory
Tus qauv tsim thiab nrov tshaj plaws network tsim yog peb-theem hierarchical qauv: core -> faib (aggregation) -> nkag. Tau ntau xyoo, tus qauv no yog tus qauv; cov tuam ntxhab tsim ntau yam khoom siv hauv lub network nrog cov haujlwm tsim nyog rau nws.
Yav dhau los, thaum cov ntaub ntawv thev naus laus zis yog hom tsim nyog (thiab, hais ncaj, tsis yog ib txwm xav tau) appendage rau kev lag luam, cov qauv no yooj yim, zoo li qub thiab txhim khu kev qha. Txawm li cas los xij, tam sim no IT yog ib qho ntawm cov tsav tsheb ntawm kev txhim kho kev lag luam, thiab nyob rau hauv ntau qhov kev lag luam nws tus kheej, qhov zoo li qub ntawm tus qauv no tau pib ua teeb meem loj.
Kev lag luam niaj hnub no tsim ntau qhov sib txawv ntawm cov kev xav tau sib txawv rau kev tsim vaj tsev network. Kev vam meej ntawm kev lag luam ncaj qha nyob ntawm lub sijhawm ntawm kev ua raws li cov kev cai no. Kev ncua hauv cov xwm txheej zoo li no tsis tuaj yeem lees txais, thiab cov qauv classical ntawm kev tsim kho network feem ntau tsis tso cai rau ua kom tau raws li txhua qhov kev xav tau ntawm kev lag luam raws sijhawm.
Piv txwv li, qhov tshwm sim ntawm ib daim ntawv thov kev lag luam tshiab xav kom cov thawj coj hauv lub network ua ntau qhov kev ua haujlwm zoo sib xws ntawm ntau lub network sib txawv ntawm ntau qib. Ntxiv nrog rau kev siv sijhawm ntev, nws tseem ua rau muaj kev pheej hmoo ntawm kev ua yuam kev, uas tuaj yeem ua rau muaj kev poob qis ntawm cov kev pabcuam IT thiab, vim li ntawd, kev poob nyiaj txiag.
Lub hauv paus ntawm qhov teeb meem tsis yog txawm tias lub sijhawm kawg ntawm lawv tus kheej lossis qhov nyuaj ntawm qhov yuav tsum tau ua. Qhov tseeb yog tias cov kev cai no yuav tsum tau "txhais" los ntawm cov lus ntawm kev lag luam kev lag luam mus rau cov lus ntawm kev sib txuas lus network. Raws li koj paub, ib qho kev txhais lus ib txwm yog ib feem ntawm lub ntsiab lus. Thaum tus tswv daim ntawv thov tham txog cov laj thawj ntawm nws daim ntawv thov, tus thawj coj hauv lub network nkag siab txog cov txheej txheem ntawm VLANs, Cov npe nkag mus rau ntau lub cuab yeej uas yuav tsum tau txhawb nqa, hloov kho thiab sau ntawv.
Cov kev paub ntau ntxiv thiab kev sib txuas lus tas mus li nrog cov neeg siv khoom tau tso cai Cisco tsim thiab siv cov hauv paus ntsiab lus tshiab rau kev tsim cov ntaub ntawv chaw cov ntaub ntawv sib txuas lus uas ua tau raws li cov qauv niaj hnub no thiab ua raws, ua ntej ntawm tag nrho cov, ntawm cov laj thawj ntawm kev lag luam kev siv. Li no lub npe - Application Centric Infrastructure.
ACI architecture.
Nws yog qhov tseeb tshaj plaws los xav txog ACI architecture tsis yog los ntawm lub cev, tab sis los ntawm sab laj thawj. Nws yog ua raws li tus qauv ntawm cov kev cai tswjhwm, cov khoom uas nyob rau theem sab saum toj tuaj yeem muab faib ua cov hauv qab no:
- Network raws li Nexus keyboards.
- APIC tswj pawg;
- Daim ntawv thov profiles;
Cia peb saib ntawm txhua qib hauv kev nthuav dav ntxiv - thiab peb yuav txav los ntawm qhov yooj yim mus rau qhov nyuaj.
Network raws li Nexus keyboards
Lub network hauv lub Hoobkas ACI zoo ib yam li cov qauv hierarchical, tab sis nws yooj yim dua los tsim. Tus qauv Leaf-Spine yog siv los npaj lub network, uas tau dhau los ua ib qho kev lees paub feem ntau rau kev siv cov tes hauj lwm tiam tom ntej. Cov qauv no muaj ob theem: Kab laug sab thiab Nplooj, feem.
Qib qaum tsuas yog lub luag haujlwm rau kev ua haujlwm. Tag nrho cov kev ua tau zoo ntawm Spine keyboards yog sib npaug rau kev ua tau zoo ntawm tag nrho cov ntaub, yog li cov keyboards nrog 40G lossis siab dua cov chaw nres nkoj yuav tsum tau siv nyob rau theem no.
Spine switches txuas mus rau tag nrho cov keyboards ntawm qib tom ntej: Nplooj hloov mus rau qhov kawg hosts txuas nrog. Lub luag haujlwm tseem ceeb ntawm Leaf keyboards yog qhov chaw nres nkoj muaj peev xwm.
Yog li, cov teeb meem scaling tau yooj yim daws tau: yog tias peb xav tau kom cov ntaub ntawv nce ntxiv, peb ntxiv cov pob txha caj qaum, thiab yog tias peb xav tau kom muaj peev xwm ntxiv, peb ntxiv Nplooj.
Rau ob theem, Cisco Nexus 9000 series keyboards yog siv, uas rau Cisco yog lub ntsiab cuab tam rau tsim cov ntaub ntawv chaw tes hauj lwm, tsis hais lawv architecture. Rau cov Spine txheej, Nexus 9300 lossis Nexus 9500 keyboards yog siv, thiab rau Leaf tsuas yog Nexus 9300.
Tus qauv ntau yam ntawm Nexus keyboards uas siv nyob rau hauv lub Hoobkas ACI yog qhia nyob rau hauv daim duab hauv qab no.
APIC (Application Policy Infrastructure Controller) Controller Cluster
APIC controllers yog tshwj xeeb lub cev servers, thaum rau kev siv me me nws muaj peev xwm siv ib pawg ntawm ib lub cev APIC maub los thiab ob lub virtual.
APIC controllers muab kev tswj thiab saib xyuas cov haujlwm. Qhov tseem ceeb tshaj plaws yog tias cov tswj hwm tsis txhob koom nrog cov ntaub ntawv hloov chaw, uas yog, txawm tias tag nrho cov pawg tswj hwm tsis ua haujlwm, qhov no yuav tsis cuam tshuam rau kev ruaj ntseg ntawm lub network txhua. Nws tseem yuav tsum raug sau tseg tias nrog kev pab los ntawm APICs, tus thawj coj tswj hwm tag nrho cov khoom siv lub cev thiab cov laj thawj ntawm lub Hoobkas, thiab txhawm rau ua kom muaj kev hloov pauv, tsis tas yuav tsum txuas mus rau ib qho cuab yeej tshwj xeeb, txij li ACI siv lub ib qho taw tes tswj.
Tam sim no cia peb mus rau ib qho ntawm cov khoom tseem ceeb ntawm ACI - daim ntawv thov profiles.
Daim ntawv thov Network Profile yog lub hauv paus ntsiab lus ntawm ACI. Nws yog daim ntawv thov profiles uas txhais cov cai tswj kev sib cuam tshuam ntawm txhua ntu network thiab piav qhia txog ntu ntawm lawv tus kheej. ANP tso cai rau koj kom paub daws teeb meem ntawm lub cev txheej thiab, qhov tseeb, xav txog seb koj yuav tsum tau teeb tsa kev sib cuam tshuam ntawm cov ntu sib txawv ntawm qhov kev pom ntawm daim ntawv thov.
Daim ntawv thov profile muaj cov pab pawg sib txuas (Cov pab pawg kawg - EPG). Ib pawg kev sib txuas yog ib pab pawg neeg muaj tswv yim (cov tshuab virtual, lub cev servers, ntim, thiab lwm yam) uas nyob hauv tib ntu kev ruaj ntseg (tsis yog network, tab sis kev ruaj ntseg). Qhov kawg hosts uas zwm rau ib qho EPG tuaj yeem txiav txim siab los ntawm ntau tus qauv. Cov hauv qab no feem ntau siv:
- Lub cev chaw nres nkoj
- Logical chaw nres nkoj (chaw nres nkoj pab pawg ntawm qhov hloov pauv virtual)
- VLAN ID lossis VXLAN
- IP chaw nyob lossis IP subnet
- Server attributes (npe, qhov chaw, OS version, thiab lwm yam)
Rau kev sib cuam tshuam ntawm EPGs sib txawv, ib qho chaw hu ua cov ntawv cog lus tau muab. Daim ntawv cog lus txhais cov kev sib raug zoo ntawm cov EPGs sib txawv. Hauv lwm lo lus, daim ntawv cog lus txhais cov kev pabcuam twg ib EPG muab rau lwm EPG. Piv txwv li, peb tsim ib daim ntawv cog lus uas tso cai rau cov tsheb khiav hla HTTPS raws tu qauv. Tom ntej no, peb txuas nrog daim ntawv cog lus no, piv txwv li, EPG Web (ib pab pawg ntawm web servers) thiab EPG App (ib pab pawg ntawm cov ntawv thov servers), tom qab ntawd ob pawg davhlau ya nyob twg tuaj yeem pauv tsheb los ntawm HTTPS raws tu qauv.
Daim duab hauv qab no piav qhia txog qhov piv txwv ntawm kev teeb tsa kev sib txuas lus ntawm EPGs sib txawv los ntawm kev cog lus hauv tib ANP.
Muaj peev xwm muaj tus lej ntawm daim ntawv thov profile hauv lub Hoobkas ACI. Tsis tas li ntawd, cov ntawv cog lus tsis raug khi rau ib daim ntawv thov tshwj xeeb; lawv tuaj yeem (thiab yuav tsum) siv los txuas EPGs hauv ANPs sib txawv.
Qhov tseeb, txhua daim ntawv thov uas xav tau lub network hauv ib daim ntawv lossis lwm qhov yog piav qhia los ntawm nws tus kheej profile. Piv txwv li, daim duab saum toj no qhia txog tus qauv qauv ntawm daim ntawv thov peb-tier, suav nrog N naj npawb ntawm cov neeg siv sab nraud (Web), daim ntawv thov servers (App) thiab DBMS servers (DB), thiab tseem piav qhia txog cov cai ntawm kev sib cuam tshuam ntawm lawv. Nyob rau hauv ib txwm network infrastructure, qhov no yuav yog ib txheej ntawm cov cai sau nyob rau hauv ntau yam khoom siv nyob rau hauv infrastructure. Hauv ACI architecture, peb piav qhia cov cai no hauv ib daim ntawv thov profile. ACI, siv daim ntawv thov profile, ua rau nws yooj yim dua los tsim ntau qhov chaw ntawm cov khoom siv sib txawv los ntawm kev sib koom ua ke rau hauv ib qho profile.
Daim duab hauv qab no qhia txog qhov piv txwv tseeb dua. Microsoft Exchange daim ntawv thov profile ua los ntawm ntau EPGs thiab cov ntawv cog lus.
Central tswj, automation thiab saib xyuas yog ib qho ntawm cov txiaj ntsig tseem ceeb ntawm ACI. ACI Factory daws cov thawj coj ntawm kev ua haujlwm tsis txaus ntseeg ntawm kev tsim ntau txoj cai ntawm ntau lub keyboards, routers thiab firewalls (thaum lub classic phau ntawv configuration txoj kev tso cai thiab siv tau). Cov chaw rau daim ntawv thov profiles thiab lwm yam khoom ACI tau txais kev siv thoob plaws hauv ACI ntaub. Txawm hais tias lub cev hloov cov servers mus rau lwm qhov chaw nres nkoj ntawm cov ntaub hloov pauv, tsis tas yuav tsum muaj qhov sib npaug ntawm cov keyboards qub mus rau cov tshiab thiab tshem tawm cov cai tsis tsim nyog. Raws li tus tswv tsev EPG cov kev ua tswv cuab, lub Hoobkas yuav ua rau cov chaw teeb tsa no tau txais txiaj ntsig thiab tuaj yeem ntxuav cov cai tsis siv.
Kev koom ua ke ACI kev ruaj ntseg cov cai raug coj los ua cov npe dawb, txhais tau hais tias yam tsis raug tso cai yog raug txwv los ntawm lub neej ntawd. Ua ke nrog kev hloov kho tsis siv neeg ntawm cov khoom siv network teeb tsa (tshem tawm "tsis nco qab" cov cai tsis siv thiab kev tso cai), txoj hauv kev no nce qib tag nrho ntawm kev ruaj ntseg network thiab nqaim qhov chaw ntawm qhov muaj peev xwm tawm tsam.
ACI tso cai rau koj los teeb tsa kev sib tham hauv network tsis yog ntawm cov tshuab virtual thiab ntim khoom nkaus xwb, tab sis kuj ntawm lub cev servers, hardware firewalls thiab cov cuab yeej thib peb, uas ua rau ACI yog ib qho kev daws teeb meem tshwj xeeb tam sim no.
Cisco txoj hauv kev tshiab los tsim cov ntaub ntawv network raws li daim ntawv thov logic tsis yog hais txog automation, kev ruaj ntseg thiab kev tswj hwm hauv nruab nrab. Nws tseem yog ib lub network kab rov tav scalable niaj hnub uas ua tau raws li txhua qhov kev xav tau ntawm kev lag luam niaj hnub.
Kev siv lub network infrastructure raws li ACI tso cai rau txhua lub tuam tsev ntawm lub tuam txhab hais lus tib yam. Tus thawj coj tsuas yog coj los ntawm cov laj thawj ntawm daim ntawv thov, uas piav qhia txog cov cai thiab kev sib txuas uas yuav tsum tau ua. Raws li lub logic ntawm daim ntawv thov, cov tswv thiab cov tsim tawm ntawm daim ntawv thov, cov ntaub ntawv kev ruaj ntseg kev pab cuam, cov kws lag luam thiab cov tswv lag luam raug coj los ntawm nws.
Yog li, Cisco tab tom tso rau hauv kev xyaum lub tswv yim ntawm cov ntaub ntawv txuas ntxiv tom ntej. Xav pom qhov no rau koj tus kheej? Tuaj mus ua qauv qhia Daim ntawv thov Centric Infrastructure nyob rau hauv St. Petersburg thiab ua hauj lwm nrog cov ntaub ntawv chaw network ntawm lub neej yav tom ntej tam sim no.
Koj tuaj yeem sau npe rau qhov kev tshwm sim .
Tau qhov twg los: www.hab.com