Nhasi, tarisiro yedu haisi chete pamutsetse wechigadzirwa cheHuawei wekugadzira data center network, asi zvakare pamaitiro ekuvaka emhando yepamusoro-yekupedzisira mhinduro kubva pazviri. Ngatitangei nezviitiko, tienderere mberi kune chaiwo mabasa anotsigirwa nemidziyo, uye tipedze netarisiro yezvishandiso zvakanangana izvo zvinogona kuumba hwaro hwemazuva ano data nzvimbo ine yepamusoro soro ye automation yetiweki maitiro.
Hazvina mhosva kuti anoyemurika sei hunhu hwetiweki michina, kugona kweakashandisirwa zvigadziriso zvekuvaka kwakavakirwa pazviri zvinotemerwa nekubudirira kwekubatanidza kubatanidzwa kwehardware, software, chaiyo uye mamwe matekinoroji akabatana nawo. Kuedza kufambirana nenguva, tinoedza kukurumidza kupa vatengi mikana yemazuva ano uye inovimbisa, iyo inowanzova pamberi pezvirongwa zvemusango zvevamwe vatengesi.
Mhinduro dzakavakirwa pa Cloud Fabric dzinosanganisira data center network, SDN controller, pamwe nezvimwe zvinodikanwa kune chaiyo purojekiti, kusanganisira kubva kune vamwe vagadziri.
Mamiriro ekutanga uye akareruka anosanganisira kushandiswa kwehuwandu hushoma hwezvikamu: network yakavakirwa paHuawei Hardware uye yechitatu-bato maturusi ekugadzirisa maitiro etiweki manejimendi uye kutarisa. Semuenzaniso, seAnsible kana Microsoft Azure.
Mamiriro echipiri anofungidzira kuti mutengi ari kutoshandisa virtualization uye SDN sisitimu yenzvimbo dzedata, taura NSX, uye anoda kushandisa Huawei zvishandiso seVTEP yehardware (Vitual Tunnel End Point) mukati meiyo iripo VMware mhinduro. Pa webhusaiti yekambani iyi Huawei midziyo yakaedzwa uye inogona kushandiswa seVTEP. Mushure mezvose, hachisi chakavanzika kuti, zvisinei kuti yakabudirira sei VXLAN (Virtual Extensible LAN) software mhinduro pane virtual switches ndeye, kushandiswa kwehardware kunonyanya kushanda maererano nekushanda.
Mamiriro echitatu ndeyekuvakwa kwekutambira & computing kirasi masisitimu ayo anosanganisira controller, asi achishaya chero yakakwirira chikuva chaungazo batanidza nacho. Imwe yesarudzo dzekuita chiitiko ichi inosanganisira kuvapo kweakasiyana Agile Controller-DCN SDN controller. Masisitimu maneja anogona kushandisa chivakwa ichi kuita zuva nezuva network manejimendi mashandiro. Iyo yakawedzera kugadziridzwa vhezheni yechitatu mamiriro yakavakirwa pakudyidzana kweAgile Controller-DCN neVMware vCenter, yakabatanidzwa neimwe bhizinesi maitiro, asi zvakare isina yepamusoro manejimendi system.
Mamiriro echina akakosha - kubatanidzwa nepuratifomu yepamusoro yakavakirwa paOpenStack kana yedu FusionSphere virtualization chigadzirwa. Isu tinonyoresa zvikumbiro zvakawanda zvezvigadziriso zvezvivakwa zvakafanana, pakati peiyo OpenStack (CentOS, Red Hat, nezvimwewo) ndiyo inonyanya kufarirwa. Izvo zvese zvinoenderana nekuti ndeipi chikuva che orchestration uye manejimendi emakomputa zviwanikwa anoshandiswa munzvimbo yedata.
Chimiro chechishanu chitsva chose. Pamusoro pezvinozivikanwa hardware switch, inosanganisira yakagoverwa virtual switch CloudEngine 1800V (CE1800V), iyo inogona kushandiswa chete neKVM (Kernel-based Virtual Machine). Ichi chivakwa chinosanganisira kubatanidza Agile Controller-DCN neKubernetes containerization platform uchishandisa CNI plugin. Nokudaro, Huawei, pamwe chete nenyika yose, iri kufamba kubva kune host virtualization kune yekushandisa system virtualization.
Zvakawanda nezve containerization
Isu takambotaura nezve CE1800V chaiyo switch yakaiswa uchishandisa Agile Controller-DCN. Mukubatana neHuawei hardware switch, ivo vanogadzira mhando ye "hybrid overlay". Munguva pfupi iri kutevera, zvinyorwa zvemidziyo kubva kuHuawei zvichawana rutsigiro rweNAT uye basa rekuenzanisa.
Mhedziso yekuvaka ndeyekuti iyo CE1800V haigone kushandiswa zvakasiyana kubva kuAgile Controller-DCN. Izvo zvinofanirwawo kuverengerwa kuti imwe PoD yeKubernetes papuratifomu haigone kuve neanopfuura mamirioni mana emidziyo.
Kubatanidza kune VXLAN network ye data center inoitika kuburikidza neVLAN (Virtual Local Area Network), asi pane sarudzo iyo CE1800V inoita seVTEP neBGP (Border Gateway Protocol) process. Izvi zvinobvumira nzira dzeBGP kuti dzichinjane nemusana pasina kudiwa kwekusiyanisa hardware switch.
Intent-Driven Networks: network inoongorora zvinangwa
Huawei Intent-Driven Network (IDN) pfungwa kumashure muna 2018. Kubva ipapo, kambani yakaramba ichishanda pamanetiweki anoshandisa cloud computing tekinoroji, data hombe uye hungwaru hwekugadzira kuongorora zvinangwa uye zvinangwa zvevashandisi.
Chaizvoizvo, isu tiri kutaura nezve kufamba kubva kune otomatiki kuenda kuzvitonga. Chinangwa chemushandisi chinodzoserwa nenzira yekurudziro kubva kunetiweki zvigadzirwa zvemaitirwo echinangwa ichi. Pamwoyo wekushanda uku ndiko kugona kweAgile Controller-DCN iyo ichawedzerwa kune chigadzirwa kuti ive nechokwadi chekuitwa kweiyo IDN ideology.
Mune ramangwana, nekuunzwa kweIDN, zvinogoneka kuendesa network masevhisi nekudzvanya kumwe chete, izvo zvinoreva dhigirii repamusoro re automation. Iyo modular dhizaini yetiweki mabasa uye kugona kusanganisa aya mabasa kunobvumira maneja kuti angotaura kuti ndeapi masevhisi anoda kuitwa kuti awanikwe pane imwe network segment.
Kuti uwane iyi nhanho yekudzora, iyo ZTP (Zero Touch Provisioning) maitiro akakosha kwazvo. Huawei akawana budiriro yakakomba mune izvi, nekuda kwainopa kugona kuendesa zvizere network kunze kwebhokisi.
Iyo imwezve yekumisikidza uye kuendesa maitiro inotosanganisira maitiro ekutarisa kubatana pakati pezviwanikwa (network yekubatanidza) uye kuongorora shanduko mukuita kwetiweki zvinoenderana nemaitiro ayo ekushandisa. Iyi nhanho inosanganisira kuitisa simulation isati yatanga kushanda chaiko.
Nhanho inotevera ndeyekugadzirisa masevhisi kuti aenderane nezvido zvemutengi (sevhisi yekupa) uye kusimbiswa kwavo, kunoitwa neakavakirwa-mukati maHuawei maturusi. Ipapo chinosara ndechekutarisa mhedzisiro.
Ikozvino zvave kuita kuti ufambe nenzira yese yakatsanangurwa uchishandisa imwechete yakazara mashini yakavakirwa paIMaster NCE papuratifomu ine Agile Controller-DCN uye eSight network element management system (EMS).
Parizvino, Agile Controller-DCN inogona kutarisa kuwanikwa kwezviwanikwa uye kuvapo kwekubatanidza, pamwe nekuita (mushure mekubvumidzwa kwemutungamiriri) kupindura matambudziko mumambure. Kuwedzera masevhisi anodiwa iko zvino kwave kuitwa nemaoko, asi mune ramangwana Huawei anotarisira kuita otomatiki iyi uye mamwe mavhisi, akadai sevhavha deployment, network kumisikidza yekuchengetedza masisitimu, nezvimwe.
Sevhisi maketani uye micro-segmentation
Agile Controller-DCN inokwanisa kugadzirisa misoro yebasa (Net Service Headers, kana NSH) iri mumapaketi eVXLAN. Izvi zvinobatsira pakugadzira maketani ebasa. Semuenzaniso, iwe unotarisira kutumira imwe mhando yemapakiti munzira inosiyana neinopihwa neyakajairika routing protocol. Vasati vabva kunetiweki, ivo vanofanirwa kupfuura neimwe mhando yechigadzirwa (firewall, nezvimwewo). Kuti uite izvi, zvakakwana kugadzirisa ketani yebasa ine mitemo inodiwa. Kutenda kumuchina wakadaro, zvinokwanisika, semuenzaniso, kugadzirisa mitemo yekuchengetedza, asi dzimwe nzvimbo dzekushandiswa kwayo dzinogonekawo.
Iyo dhizaini inoratidza zvakajeka kushanda kweRFC-inoenderana sevhisi cheni yakavakirwa paNSH, uye inopawo runyoro rwemadhizaini emagetsi anovatsigira.
Huawei's sevhisi ketani yekugona inowedzerwa ne-micro-segmentation, network yekuchengetedza tekinoroji inoparadzanisa zvikamu zvekuchengetedza pasi kune zvega zvebasa zvinhu. Kudzivisa kudiwa kwekugadzirisa nemaoko nhamba huru yeAACL inobatsira kutenderera neAccess Control List (ACL) bhodhoro.
Kushanda kwakangwara
Kuenderera mberi kune nyaya yekushanda kwetiweki, munhu haakwanise kutadza kutaura chimwe chikamu cheiMaster NCE amburera brand - iyo FabricInsight intelligent network analyzer. Inopa hunyanzvi hwakakura hwekuunganidza telemetry uye ruzivo nezve data inoyerera pane network. Telemetry inounganidzwa uchishandisa gRPC uye inounganidza data pamapaketi anofambiswa, akavharwa uye akarasika. Ruzivo rwechipiri rwakakura rwakaunganidzwa uchishandisa ERSPAN (Encapsulated Remote Switch Port Analyzer) uye inopa pfungwa yedata inoyerera munzvimbo yedata. Chaizvoizvo, tiri kutaura nezve kuunganidza TCP misoro uye huwandu hweruzivo rwunofambiswa panguva yega yega TCP chikamu. Izvi zvinogona kuitwa uchishandisa akasiyana Huawei zvishandiso - rondedzero yavo inoratidzwa mudhayagiramu.
SNMP neNetStream zvakare hazvina kukanganwika, saka Huawei ari kushandisa ese ekare uye matsva masisitimu kuti afambe kubva kunetiweki se "bhokisi dema" kuenda kunetiweki yatinoziva chaizvo zvese nezvayo.
AI Fabric: Yakarasika Smart Grid
Iyo AI Fabric maficha anotsigirwa nehardware yedu akagadzirirwa kushandura Ethernet kuita yakakwirira-inoshanda, yakaderera-latency, isina-packet-kurasikirwa network. Izvi zvinodikanwa kuita zvekutanga application deployment scenarios mune data center network.
Mumufananidzo uri pamusoro tinoona matambudziko ane njodzi yekusangana nawo kana uchishanda network:
- kurasikirwa kwepakiti;
- buffer overflow;
- dambudziko rekurodha zvakanaka network kana uchishandisa parallel link.
Huawei michina inoshandisa nzira dzekugadzirisa matambudziko ese aya. Semuenzaniso, padanho re chip, tekinoroji inopinda yemutsetse yakaunzwa, iyo panguva imwechete isingatenderi kuvharira kupinza (HOL blocking).
Padanho reprotocol, pane Dynamic ECN michina - inochinja-chinja saizi yebhafa, pamwe neFast CNP - nekukurumidza kutumira mameseji mapaketi nezvedambudziko mune network kune sosi.
Kodzero dzakaenzana pakuyerera ΠΈ Tsigiro yeDynamic Packet Prioritization (DPP) tekinoroji inobatsira, iyo inosanganisira kuisa zvidimbu zvipfupi zve data kubva kune dzakasiyana hova kuita yakaparadzana yepamusoro-yekutanga mutsara. Nokudaro, mapepa mapfupi anorarama zviri nani munharaunda yenguva refu, inorema inoyerera.
Ngatijekese kuti kuti nzira dziri pamusoro dzishande zvakanaka, dzinofanirwa kutsigirwa zvakananga nemidziyo.
Aya mabasa ese anoshandiswa mune chimwe chezviitiko zvitatu zvekushandisa Huawei midziyo:
- paunenge uchivaka masisitimu ehungwaru hwekugadzira zvichibva pane zvakaparadzirwa zvikumbiro;
- paunenge uchigadzira zvirongwa zvekuchengetedza data zvakagoverwa;
- paunenge uchigadzira masisitimu epamusoro performance computing (HPC).
Mazano akaiswa muhardware
Mushure mekukurukura akajairwa mamiriro ekushandisa Huawei mhinduro uye kunyora hukuru hwavo kugona, ngatienderere mberi takananga kumidziyo.
CloudEngine 16800 ipuratifomu inopa kushanda pamusoro pe400 Gbit/s interfaces. Hunhu hwayo hunhu kuvepo, pamwe neCPU, yayo yekuendesa chip uye yekugadzira intelligence processor, iyo inofanirwa kuita kugona kweAI Fabric.
Iyi puratifomu inogadzirwa zvinoenderana neyekare orthogonal architecture ine kumberi kune kumashure airflow system uye inouya neimwe yemhando nhatu dzechassis - 4 (10U), 8 (16U) kana 16 (32U) slots.
Iyo CloudEngine 16800 inogona kushandisa akati wandei emhando dzemakadhi emutsara. Pakati pavo pane zvose zvechinyakare 10-gigabit uye 40-, uyewo 100-gigabit, kusanganisira itsva zvachose. Makadhi ane 25 uye 400 Gbit/s nzvimbo dzakarongerwa kuburitswa.
Kana iri ToR (Pamusoro pe rack) switch, mamodheru avo azvino anoratidzwa mumutsara wenguva uri pamusoro. Chinonyanya kufarirwa imhando nyowani dze25-Gigabit, 100-Gigabit switch ine 400-Gigabit uplinks, uye yakakwirira-density 100-Gigabit switch ine 96 ports.
Huawei's main fixed-configuration switch parizvino ndeye CloudEngine 8850. Inofanirwa kutsiviwa ne 8851 modhi ine 32 100 Gbit/s interfaces uye sere 400 Gbit/s interfaces, pamwe nekukwanisa kuzvipatsanura kuita 50, 100 kana 200 Gbit / s.
Imwe shanduko ine yakagadziriswa dhizaini, CloudEngine 6865, ichiri mumutsara wezvino zvigadzirwa zveHuawei. Iri ihorse rakapupurirwa rine 10/25 Gbps kuwana uye masere 100 Gbps uplinks. Ngatiwedzerei kuti inotsigirawo AI Fabric.
Iyo dhizaini inoratidza hunhu hwese matsva ekuchinja modhi, kutaridzika kwatinotarisira mumwedzi iri kuuya, kana kunyange mavhiki. Kumwe kunonoka kusunungurwa kwavo nekuda kwemamiriro akatenderedza coronavirus. Zvakare, nyaya dzezvirango kudzvanywa paHuawei dzichiri dzakakosha, zvisinei, zviitiko zvese izvi zvinogona kungokanganisa nguva yekutanga.
Ruzivo rwakawanda nezvemhinduro dzeHuawei uye sarudzo dzadzo dzekushandisa dzinogona kuwanikwa zviri nyore nekunyorera kune yedu webinars kana kubata vamiriri vekambani zvakananga.
***
Tinokuyeuchidza kuti nyanzvi dzedu dzinogara dzichiita webinars pane zvigadzirwa zveHuawei uye matekinoroji avanoshandisa. Rondedzero yemawebinars emavhiki anouya inowanikwa pa .
Source: www.habr.com