Pulogalamu ya ProHoster > Blog > Ulamuliro > Application Centric Infrastructure. Kapangidwe ka maukonde amtsogolo - kuchokera pakungopeka mpaka kuchitapo kanthu

Application Centric Infrastructure. Kapangidwe ka maukonde amtsogolo - kuchokera pakungopeka mpaka kuchitapo kanthu

Pazaka zingapo zapitazi, Cisco yakhala ikulimbikitsa zomanga zatsopano zomangira ma netiweki otumizira ma data mu data center - Application Centric Infrastructure (kapena ACI). Ena akuchidziwa kale. Ndipo ena adakwanitsa kuyigwiritsa ntchito m'mabizinesi awo, kuphatikiza ku Russia. Komabe, kwa akatswiri ambiri a IT ndi oyang'anira IT, ACI ikadali mawu osadziwika bwino kapena kungowunikira zamtsogolo.
M’nkhaniyi tiyesetsa kubweretsa tsogolo ili pafupi. Kuti tichite izi, tidzakambirana za zigawo zazikulu za zomangamanga za ACI, ndikuwonetsanso momwe zingagwiritsidwe ntchito pochita. Kuonjezera apo, posachedwa tidzakonza zowonetsera zowonetsera za ACI, zomwe katswiri aliyense wa IT yemwe ali ndi chidwi angalembetse.

Mukhoza kuphunzira zambiri za zomangamanga zatsopano za intaneti ku St. Petersburg mu May 2019. Zambiri zili mkati kugwirizana. Lowani!

prehistory
Mitundu yachikhalidwe komanso yotchuka kwambiri yomanga maukonde ndi yamitundu itatu: core -> distribution (aggregation) -> access. Kwa zaka zambiri, chitsanzo ichi chinali chokhazikika; opanga amapanga zipangizo zosiyanasiyana zapaintaneti zomwe zimagwiritsidwa ntchito moyenera.
M'mbuyomu, pamene luso lazidziwitso linali lofunikira (ndipo, zowona, osati nthawi zonse) zowonjezera ku bizinesi, chitsanzo ichi chinali chothandiza, chokhazikika komanso chodalirika. Komabe, tsopano kuti IT ndi imodzi mwazomwe zimayambitsa chitukuko cha bizinesi, ndipo nthawi zambiri bizinesi yokha, chikhalidwe chokhazikika cha chitsanzochi chayamba kubweretsa mavuto aakulu.

Bizinesi yamasiku ano imapanga kuchuluka kwazinthu zosiyanasiyana zovuta zomwe zimafunikira pakukhazikitsa maukonde. Kupambana kwa bizinesi mwachindunji kumadalira nthawi yomwe izi zikufunika. Kuchedwa m'mikhalidwe yotere sikuvomerezeka, ndipo chitsanzo chachikale cha kumanga maukonde nthawi zambiri sichilola kukwaniritsa zofunikira zonse zamalonda panthawi yake.

Mwachitsanzo, kuwonekera kwa ntchito yatsopano yovuta yamabizinesi kumafuna kuti oyang'anira maukonde azichita zinthu zambiri zofananira pamitundu yambiri yazida zosiyanasiyana pamilingo yosiyanasiyana. Kuphatikiza pa kuwononga nthawi, kumawonjezeranso chiopsezo chopanga zolakwika, zomwe zingayambitse kuchepa kwakukulu kwa ntchito za IT ndipo, chifukwa chake, kutaya ndalama.

Muzu wa vuto suli ngakhale masiku omalizira enieniwo kapena zovuta za zofunika. Chowonadi ndi chakuti zofunikirazi ziyenera "kumasuliridwa" kuchokera ku chinenero cha ntchito zamalonda kupita ku chinenero cha zomangamanga. Monga mukudziwira, kumasulira kulikonse nthawi zonse kumakhala kutaya tanthauzo. Mwini pulogalamuyo akamalankhula za momwe amagwiritsira ntchito, woyang'anira ma netiweki amamvetsetsa ma VLAN angapo, mindandanda yofikira pazida zambiri zomwe zimafunikira kuthandizidwa, kusinthidwa ndi kulembedwa.

Zomwe zinachitikira komanso kulankhulana kosalekeza ndi makasitomala zinalola Cisco kupanga ndi kukhazikitsa mfundo zatsopano zomangira malo otumizira deta omwe amakumana ndi zochitika zamakono ndipo amachokera, choyamba, pamalingaliro a ntchito zamalonda. Chifukwa chake dzinali - Application Centric Infrastructure.

Zomangamanga za ACI.
Ndizolondola kwambiri kulingalira kamangidwe ka ACI osati kuchokera kumbali yakuthupi, koma kuchokera kumbali yomveka. Zimatengera chitsanzo cha ndondomeko zodzipangira zokha, zomwe zinthu zomwe zili pamwambazi zikhoza kugawidwa m'magulu otsatirawa:

  1. Netiweki yotengera masiwichi a Nexus.
  2. APIC controller cluster;
  3. Mbiri yamapulogalamu;

Application Centric Infrastructure. Kapangidwe ka maukonde amtsogolo - kuchokera pakungopeka mpaka kuchitapo kanthu
Tiyeni tiwone mlingo uliwonse mwatsatanetsatane - ndipo tidzachoka kuchoka ku zosavuta kupita ku zovuta.

Netiweki yotengera masiwichi a Nexus
Maukonde mufakitale ya ACI ndi ofanana ndi machitidwe achikhalidwe, koma ndiosavuta kupanga. Mtundu wa Leaf-Spine umagwiritsidwa ntchito pokonzekera maukonde, omwe akhala njira yovomerezeka yogwiritsira ntchito maukonde am'badwo wotsatira. Mtunduwu uli ndi magawo awiri: Spine ndi Leaf, motsatana.
Application Centric Infrastructure. Kapangidwe ka maukonde amtsogolo - kuchokera pakungopeka mpaka kuchitapo kanthu
Mulingo wa Spine ndiwongogwira ntchito. Ntchito yonse ya masinthidwe a Spine ndi ofanana ndi ntchito ya nsalu yonse, kotero masinthidwe okhala ndi 40G kapena madoko apamwamba ayenera kugwiritsidwa ntchito pamlingo uwu.
Zosintha za msana zimalumikizana ndi masinthidwe onse pamlingo wotsatira: Kusintha kwa masamba, komwe makamu omalizira amalumikizidwa. Udindo waukulu wa masinthidwe a Leaf ndi mphamvu yamadoko.

Choncho, nkhani zowonjezera zimathetsedwa mosavuta: ngati tikufuna kuwonjezera nsalu yopangira nsalu, timawonjezera kusintha kwa Spine, ndipo ngati tikufuna kuwonjezera mphamvu ya doko, timawonjezera Leaf.
Pamagawo onse awiri, ma switch a Cisco Nexus 9000 amagwiritsidwa ntchito, omwe kwa Cisco ndi chida chachikulu chomangira ma data center network, mosasamala kanthu za kamangidwe kake. Pa Spine layer, ma switch a Nexus 9300 kapena Nexus 9500 amagwiritsidwa ntchito, ndipo pa Leaf okha Nexus 9300.
Mitundu yamitundu yosinthira ya Nexus yomwe imagwiritsidwa ntchito fakitale ya ACI ikuwonetsedwa pachithunzi pansipa.
Application Centric Infrastructure. Kapangidwe ka maukonde amtsogolo - kuchokera pakungopeka mpaka kuchitapo kanthu

APIC (Application Policy Infrastructure Controller) Cluster Controller Cluster
Oyang'anira APIC ndi ma seva apadera akuthupi, pomwe pakukhazikitsa pang'ono ndikotheka kugwiritsa ntchito gulu limodzi la olamulira a APIC ndi awiri enieni.
Olamulira a APIC amapereka ntchito zowongolera ndi kuyang'anira. Chofunika kwambiri ndi chakuti olamulira samatenga nawo mbali pa kusamutsa deta, ndiko kuti, ngakhale olamulira onse a magulu alephera, izi sizidzakhudza kukhazikika kwa intaneti konse. Tiyeneranso kukumbukira kuti mothandizidwa ndi APICs, woyang'anira amayendetsa zinthu zonse zakuthupi ndi zomveka za fakitale, ndipo kuti asinthe, sipafunikanso kugwirizanitsa chipangizo china, popeza ACI amagwiritsa ntchito malo amodzi owongolera.
Application Centric Infrastructure. Kapangidwe ka maukonde amtsogolo - kuchokera pakungopeka mpaka kuchitapo kanthu

Tsopano tiyeni tipite ku chimodzi mwa zigawo zazikulu za ACI - mbiri ya ntchito.
Ntchito Network Profile ndiye maziko omveka a ACI. Ndi mbiri yamapulogalamu yomwe imatanthauzira mfundo zolumikizirana pakati pa magawo onse a netiweki ndikufotokozeranso magawo a netiweki okha. ANP imakupatsani mwayi woti muthe kusanjikiza thupi ndipo, kwenikweni, lingalirani momwe muyenera kulinganiza kulumikizana pakati pa magawo osiyanasiyana a netiweki kuchokera pamawonekedwe a ntchito.

Mbiri yamapulogalamu imakhala ndi magulu olumikizirana (Magulu omaliza - EPG). Gulu lolumikizana ndi gulu lomveka la makamu (makina enieni, ma seva akuthupi, zotengera, ndi zina zambiri) zomwe zili mugawo lomwelo lachitetezo (osati network, koma chitetezo). Magulu omalizira omwe ali a EPG inayake amatha kutsimikiziridwa ndi njira zambiri. Zotsatirazi zimagwiritsidwa ntchito kwambiri:

  • Doko lakuthupi
  • Doko lomveka (gulu la doko pa switch yeniyeni)
  • VLAN ID kapena VXLAN
  • IP adilesi kapena IP subnet
  • Mawonekedwe a seva (dzina, malo, mtundu wa OS, ndi zina)

Pakuyanjana kwa ma EPG osiyanasiyana, bungwe lotchedwa makontrakitala limaperekedwa. Mgwirizanowu umatanthawuza mgwirizano pakati pa ma EPG osiyanasiyana. Mwa kuyankhula kwina, mgwirizano umatanthawuza zomwe EPG imodzi imapereka kwa EPG ina. Mwachitsanzo, timapanga mgwirizano womwe umalola kuti magalimoto aziyenda pa protocol ya HTTPS. Kenaka, timagwirizanitsa ndi mgwirizanowu, mwachitsanzo, EPG Web (gulu la ma seva) ndi EPG App (gulu la ma seva ogwiritsira ntchito), pambuyo pake magulu awiriwa amatha kusinthana magalimoto kudzera pa protocol ya HTTPS.

Chithunzi chomwe chili pansipa chikufotokoza chitsanzo chokhazikitsa kulumikizana pakati pa ma EPG osiyanasiyana kudzera m'mapangano mkati mwa ANP yomweyo.
Application Centric Infrastructure. Kapangidwe ka maukonde amtsogolo - kuchokera pakungopeka mpaka kuchitapo kanthu
Pakhoza kukhala nambala iliyonse yamapulogalamu mufakitole ya ACI. Kuphatikiza apo, mapangano samamangirizidwa ku mbiri inayake yofunsira; amatha (ndipo ayenera) kugwiritsidwa ntchito kulumikiza ma EPG mu ma ANP osiyanasiyana.

M'malo mwake, ntchito iliyonse yomwe imafuna netiweki mwanjira ina imafotokozedwa ndi mbiri yake. Mwachitsanzo, chithunzi pamwambapa chikuwonetsa kamangidwe kake ka mawonekedwe a magawo atatu, opangidwa ndi nambala ya N ya ma seva olowera kunja (Web), ma seva ogwiritsira ntchito (App) ndi ma seva a DBMS (DB), komanso amafotokoza malamulo olumikizirana pakati pawo. iwo. M'magawo amtundu wapaintaneti, izi zitha kukhala malamulo olembedwa pazida zosiyanasiyana zamakina. Muzomangamanga za ACI, timafotokozera malamulowa mkati mwa mbiri imodzi yogwiritsira ntchito. ACI, pogwiritsa ntchito mbiri ya pulogalamu, imapangitsa kukhala kosavuta kupanga zosintha zambiri pazida zosiyanasiyana poziphatikiza zonse kukhala mbiri imodzi.
Chithunzi chili m'munsichi chikuwonetsa chitsanzo chenicheni. Mbiri ya Microsoft Exchange yopangidwa kuchokera ku ma EPG angapo ndi makontrakitala.
Application Centric Infrastructure. Kapangidwe ka maukonde amtsogolo - kuchokera pakungopeka mpaka kuchitapo kanthu

Kasamalidwe kapakati, makina odzichitira okha ndi kuyang'anira ndi chimodzi mwazabwino zazikulu za ACI. ACI Factory imathandizira oyang'anira ntchito yotopetsa yopanga malamulo ambiri pama switch osiyanasiyana, ma routers ndi ma firewall (pamene njira yosinthira yachikale imaloledwa ndipo ingagwiritsidwe ntchito). Zokonda pazambiri zamapulogalamu ndi zinthu zina za ACI zimangoyikidwa pansalu ya ACI. Ngakhale mukamasinthira ma seva kupita ku madoko ena a masinthidwe ansalu, palibe chifukwa chosinthira zosintha zakale kupita ku zatsopano ndikuchotsa malamulo osafunikira. Kutengera njira ya umembala wa EPG wa wolandirayo, fakitale ipanga zosinthazi zokha ndikuyeretsa malamulo osagwiritsidwa ntchito.
Ndondomeko zachitetezo zophatikizika za ACI zimakhazikitsidwa ngati zoyera, kutanthauza kuti zomwe siziloledwa mwatsatanetsatane ndizoletsedwa mwachisawawa. Pamodzi ndi kusinthidwa basi kasinthidwe zida maukonde (kuchotsa "aiwala" malamulo osagwiritsidwa ntchito ndi zilolezo), njira imeneyi kwambiri kumawonjezera lonse mlingo wa chitetezo cha maukonde ndi narrows pamwamba pa kuukira angathe.

ACI imakulolani kuti mukonzekere kuyanjana kwa maukonde osati makina enieni ndi zotengera, komanso ma seva akuthupi, ma firewall ndi zida zapaintaneti za gulu lachitatu, zomwe zimapangitsa ACI kukhala yankho lapadera pakadali pano.
Njira yatsopano ya Cisco yopangira maukonde a data potengera malingaliro ogwiritsira ntchito sizongokhudza zokha zokha, chitetezo ndi kasamalidwe kapakati. Ilinso ndi netiweki yamakono yowongoka yomwe imakwaniritsa zofunikira zonse zamabizinesi amakono.
Kukhazikitsidwa kwa ma network ozikidwa pa ACI kumalola madipatimenti onse abizinesi kuti azilankhula chilankhulo chimodzi. Woyang'anira amangoyang'aniridwa ndi malingaliro ogwiritsira ntchito, omwe amafotokoza malamulo ofunikira ndi maulumikizidwe. Komanso malingaliro akugwiritsa ntchito, eni ake ndi omwe akupanga pulogalamuyo, chitetezo chazidziwitso, akatswiri azachuma ndi eni mabizinesi amatsogozedwa ndi izi.

Chifukwa chake, Cisco ikugwiritsa ntchito lingaliro la m'badwo wotsatira wa data center network. Mukufuna kudziwonera nokha izi? Bwerani ku chiwonetsero Application Centric Infrastructure ku St. Petersburg ndikugwira ntchito ndi data center network yamtsogolo tsopano.
Mutha kulembetsa pamwambowu kugwirizana.

Source: www.habr.com

Kuwonjezera ndemanga