Introducing Application Delivery Networking
Download
Report
Transcript Introducing Application Delivery Networking
CONFIDENTIAL
Value Proposition of F5 in VMware Virtualized Environments
April 2008
2
What does F5 Virtualize?
Desktop Virtualization
Web Server Virtualization
Application Virtualization
Storage Virtualization
File Virtualization
Network Virtualization
Data Center Virtualization
…and more…
3
Virtualization means a lot of things
Desktop Virtualization
Web Server Virtualization
BIG-IP LTM
Application Virtualization
BIG-IP LTM
Storage Virtualization
ARX
File Virtualization
ARX
Network Virtualization
BIG-IP LTM
Data Center Virtualization
BIG-IP GTM & LC
4
F5 Virtualization Features
Web Server /
Application Virtualization
File /
Storage Virtualization
Network Virtualization
LAN traffic management
Load balancing
Acceleration
Full Proxy
SMB/NFS Load Balancing
Global Name Space
VLANs
Multiple Routing Tables
S/NAT
Global Load balancing
Data Center Virtualization
Geo location
Fastest response
5
F5 has been delivering virtualization
for a long time
Clients
1997
Clients
Clients
Web Server Traffic Virtualization
Web Server
Web Server
Web Server
6
F5 has been delivering virtualization
for a long time
Clients
2004
1997
Clients
Data Center Virtualization
Web Server Traffic Virtualization
Web Server
2004
Clients
Web Server
Web Server
Application Server Traffic Virtualization
App. Server
App. Server
App. Server
Data
Center
#2
Data
Center
#3
7
F5 has been delivering virtualization
for a long time
Clients
2004
1997
Clients
Data Center & Link Virtualization
Web Server Traffic Virtualization
Web Server
2004
Clients
Web Server
Web Server
Application Server Traffic Virtualization
App. Server
App. Server
App. Server
File Virtualization
2007
NAS Server
NAS Server
NAS Server
Data
Center
#2
Data
Center
#3
8
Web Server
Web Server
App. Server
App. Server
App. Server
File Storage Virtualization
Remote - WAN
Web Server
Application Server Virtualization
PC - Home
Web Server
Web Server Virtualization
Cell
Data Center & Link Virtualization
F5 Data Center Virtualization Today
NetApp
EMC
Windows file
storage
Web Server
PC - LAN
Windows file
storage
App. Server
Web Server
WLAN
GTM
& LC
LTM
LTM
ARX
9
F5 Application Virtualization with LTM
VMware makes 1 physical
server look like many
BIG-IP makes many
virtual servers look like 1
Intranet /
Internet
Intranet /
Internet
Problem
Your traffic is
more difficult
to allocate,
thus not
optimal
Application Virtualization
Server Virtualization
Server Virtualization
F5 abstracts
the VMs and
making them
appear like a
single massive
server
resource
10
Branch Office
F5 ADN
Making applications Secure, Fast & Available
DMZ
Primary Data Center
FirePass
Firewalls
WANJet
Router
Router
WANJet
Router
Enterprise Manager
Router
DMZ
Link Controller
Global Traffic Manager
ISP1
ISP2
FirePass
Firewalls
Remote Users
ISP
ISP
Internet
ISP
BIG-IP Local Traffic Manager
WebAccelerator
Router
Router
DMZ
Users
TrafficShield
WANJet
Firewalls
File
Virtualization
Web
Servers
Application Blade
Servers
Servers
Data
Base
Global Traffic Manager
FirePass
BIG-IP Local Traffic Manager
Disaster Recovery Site
11
F5 Data Center Virtualization with GTM
Japan
Client
US
Client
Internet
BIG-IP GTM
x
Japan
Data Center
US
Data Center
12
F5 File/Storage Virtualization with ARX
BEFORE
User / application access tightly
coupled to physical file storage
AFTER
File access decoupled from
physical storage location
– Inflexible: change is disruptive
– Flexible: change is non-disruptive
– Complex: multiple mappings to
heterogeneous storage devices
– Simple: single mapping to unified
storage pool
– Inefficient: low aggregate utilization
– Efficient: maximize utilization
13
F5 Partnership with VMware
14
F5 & VMware
F5 is a “Select” VMware partner
F5/VMware deployment guide
– BIG-IP
– WebAccelerator
– Global Traffic Manager
– WANJet
Solution Guide: VMware & Acopia ARX
F5 DevCentral VMware forum
15
Why do I need BIG-IP if I have VMware?
1.
VMware does not solve the need to load balance traffic optimally across data
centers, web servers, virtual machines or physical machines.
2.
VMware is unable to offload non-core functions from the CPU to enhance
performance (e.g. SSL connection termination, Caching, Compression, TCP
Optimization)
3.
VMware does not provide any way to re-route application traffic in the event of a link
or data center failure.
4.
Just because VC started another VM instance to respond to higher demand, it does
not necessarily mean that this new VM will begin receiving any traffic.
5.
Even with VMotion and VC, if a VM dies it may take 5+ minutes to restart it
elsewhere. LTM can overcome this through instantaneous redirection of traffic.
6.
LTM can detect application level errors and redirect traffic around those VM’s that
are producing errors (e.g due to data corruption, exhausted resources, OS or server
software bug, etc). It can also instruct VC to restart that VM.
Whether physical or virtual, it makes no difference. Applications
are faster, more available and more secure with F5
16
BIG-IP Load Balances VM Guest Apps
Benefits
Clients
• BIG-IP load balances traffic to VM guest
apps on one or more ESX hosts
• BIG-IP monitors the performance
of each VM
• BIG-IP can detect failure of
network or application in a timely
manner and redirect traffic the
appropriate amount of traffic to each
VM, based on its actual
performance
BIG-IP LTM
VM1 VM2
VM3
ESX1
VM4 VM5 VM6
VM7 VM8 VM9
ESX2
ESX3
• BIG-IP can use an advanced health
check to ensure the VM is ready to
receive traffic before directing to it.
•Even with VMotion and Virtual
Center, failed VM’s can take several
minutes to restart elsewhere. BIGIP can mitigate the impact through
instantaneous redirection of traffic.
17
BIG-IP Interoperability with DRS
Clients
Benefits
In the event that DRS moves a
guest via VMotion, BIG-IP
redirects traffic instantly and
maintains appropriate amount
of traffic volume to each VM.
BIG-IP LTM/WA
VM1 VM2
VM3
ESX1
VM3
VM4
ESX2
VMotion
Virtual
Center
18
BIG-IP Interoperability with HA
Clients
Benefits
In the event that HA restarts a
VM guest on a different host,
BIG-IP redirects traffic to the
new host instantly and
maintains appropriate amount
of traffic volume to each VM.
BIG-IP LTM/WA
VM1
VM2
ESX1
VM1 VM3
VM4
ESX2
VM2 VM5
VM6
ESX3
19
BIG-IP Offloads CPU and Memory-intensive
functions from VMs
Clients
Clients
Benefits
BIG-IP can offload the following:
• SSL connection termination
• Caching
• Compression
• TCP Optimization
VM01 VM02
VM03
VM04 VM05
VM06
VM07 VM08
VM09
ESX1
BIG-IP LTM/WA
vs.
VM01 VM02
VM03
VM04 VM05
VM06
VM07 VM08
VM09
VM10 VM11
VM12
VM13
ESX1
VM14
VM15
Example: Dell PowerEdge
1955 Blade Server. BIG-IP
offloading enables 25-50%
more VM capacity per blade
20
BIG-IP GTM Enhances Global Availability
Benefits
Clients
LTM/GTM/WA
LTM/GTM/WA
ES
X1
ES
X2
In case of site failure, GTM
load balances traffic between
data centers when the second
site is ready to receive the
traffic (e.g. replication of
VMware images is complete
and application is now
accepting traffic)
ES
X3
ES
X1
ES
X2
ES
X3
This is more than “IP
detection”. The application
can be tested for availability
prior to traffic redirection.
21
F5 WANJet Accelerates VMDK transmission
over the WAN by 5-10X
Benefits
VMDK1
VMDK1
VMDK2
VMDK2
VMDK3
WANJet
WANJet
VMDK3
VMDK4
VMDK4
VMDK5
VMDK5
VMDK6
VMDK6
VMDK7
VMDK7
VMDK8
VMDK8
WANJet can accelerate
transmission of time copies of
VMDK’s over the WAN by 510X faster.
Improves DRS & HA recovery
time.
Reduce the bandwidth
required for any given
tranmission by up to 90%.
22
F5 BIG-IP enables connection to VC via
NAT/SNAT
Clients cannot currently connect to VC through NAT/SNAT or if
behind a VIP. LTM can re-write the IP addresses and resolve this to
enable access.
Admin
NAT/SNAT
x
NAT/SNAT
IP Addresses Re-Written
Admin
VMware
Virtual
Center
VMware
Virtual
Center
23
How Can iControl Enhance Automation of VMs?
1.
Site www.TV-OnSale.com traffic triples
2.
VMware detect the traffic surge and starts
bringing online new VM
3.
Web Client
VMware make an iControl call to LTM
Web Client
Web Server Virtualization
BIG-IP LTM
and register the new VMs
4.
LTM starts sending traffic to the
new VM
Web Server
5.
iContol
Web Server
Web Server
Data center capacity increases
and is capable of handling the
Application Server Virtualization
BIG-IP LTM
traffic surge
6.
Business continues interrupted
iContol
7.
Traffic returns to normal
8.
The process is reversed
App. Server
App. Server
App. Server
Storage Virtualization
Storage
Storage
Storage
24
What is available today?
iControl is F5’s open API for BIG-IP
VMware Virtual Center can monitor VM performance
Virtual Center can be used to trigger events depending on VM performance
– E.g. Upon VM CPU exceeding 90%, create a new instance of the VM
However creating a new VM does not necessarily mean traffic will be routed
to it that VM
iControl can be used for VM to instruct LTM to add the new VM as a pool
member, than to enable the node.
All of the above can be reversed in the event that a floor-threshold is
triggered
– E.g. VM CPU is below 10%, remove this instance of the VM
iControl Authors:
–
–
–
–
Kyeong-Yun Yang, F5 – Perl version for VC
Nicolas Menant, F5 – C version for VC
Nicolas Menant, F5 - Stand-alone application that does not rely on Virtual Center
View DevCentral or contact Charlie Cano (F5) for questions
25
What iControl for Virtual Center looks like…
Select VM and choose
Alarms TAB menu
Managing
Virtual
Machines
26
Configuring Triggers within VC
You can configure trigger elements
here like CPU usage, Memory usage,
Network usage, VM status, hearbeat
etc.
27
Actions when triggering
You can choose actions like
email or SNMP trap notification,
VM enable/disable/restart or
“Run a script. In this case we
choose “Run a script”
This script enables new VMs
and sends an iControl
message to BIGIP
28
F5 Tech Center in Seattle, WA
VMware Usage
Tech Center usage of VMware
– Application Library
• Collection of application images (146+)
• Shared and hosted for global Development, QA, Solutions Engineering and Services use
– Customer Proof of Concepts
• Minimize risks associated with actual network and application deployments and develop
familiarity with F5 solutions
– Demo Center
• Robust real-world deployment of F5 solutions and partner applications
• Remotely accessible to F5 Sales and Channel Partners (1100+)
VMware technology used
–
–
–
–
–
–
ESX – Optimizes hardware resources, fast and flexible deployments
Virtual Center – Simplifies provisioning, monitors utilization
Resource Pools – Logical grouping of “like” hardware, simplifies deployments
VMotion – Image migration based on resource consumption
SnapShot – Rapid deployment of parallel apps to support different test teams
Virtual Switch – Isolates individual application traffic to simplify network architecture
29
F5 Tech Center – Virtual Architecture
30