Enabling Application Aware Networks The Next Generation Data Centre with Citrix NetScaler & Cisco Nexus Ralph W. Lorkins Lead Systems Engineer
Orchestration and virtualization Automation and orchestration Virtualization Compute Storage Network 2
Server 1 Server 2 Server 3 Server 4 Server 5 Server 6 Server 7 Server 8 Server 9 Server 10 Server 11 Server 12 Server 13 Server 14 Server 15 Server 16 Core Routing (L3) Virtualized reconfigurable based on active workload Brought to you by Services Tier for S1-S8 L4-7 Services Tier Services Tier for S9-S16 Virtualized Brought to you by L2/L3 for S1-S4 L2/L3 for S5-S8 Flat L2/L3 Network L2/L3 S9-S12 L2/L3 S13-S16Virtualized 3 Virtualized *Sharefile StorageZones
4
5
Availability Optimisation Security Management and Visibility Link Aggregation/LB SSL Offload SSL VPN HDX Insight L4-7 Request Switching Advanced Healthchecks Content Switching Cache Redirection GSLB Dynamic Routing/PBR HTTP Callout CloudBridge Connector Front End Optimisation TCP Offload/Buffering Surge Protection Compression Caching Web 2.0 Push Client Keep-Alive TCP BIC/CUBIC/Westwood+ AAA for App Traffic Application Firewall L4-7 ACL DoS Protections Rewite + Responder Rate Limiting NetScaler Gateway Web Insight Action Analytics Nitro RESTful API CLI/GUI MSSCVMM/MSSCOM Appflow Syslog SNMP AppExpert Policies DataStream SPDY Gateway SSO Command Center 6
Operating expenses represent over 80% of DC spending Dynamic (re-)programming of the network is needed to curb Opex increase driven by server virtualisation Source: IDC, New Economic Model for the Datacenter 7
Service insertion in traditional networks Configure network to insert firewall Configure firewall network parameters Configure firewall rules required by application Configure load balancer network parameters Configure router to steer traffic to/from load balancer Configure load balancer and ADC functions required by the application Complex, time consuming, error prone, and fragmented 8
Network virtualization key components Orchestration platform Unified Northbound API SDN Controller Centralized control and visibility Connectivity service Network Virtualization layer Physical Network Spine switch Spine switch Spine switch Spine switch Leaf switch Leaf switch Leaf switch Leaf switch Leaf switch Leaf switch Leaf switch Leaf switch 10
Nexus 9000 ACI APIC Cisco ACI Application Centric Infrastructure
ACI DRIVING BUSINESS TRANSFORMATION APPLICATIONS BYOD MOBILE COMMON POLICY DECOUPLE APPLICATION & POLICY FROM IP INFRASTRUCTURE CIO IP NETWORK BUSINESS DECISIONS Time Governance SLA Audit Cost 12
APPLICATION CENTRIC INFRASTRUCTURE Nexus 9500 APIC Nexus 9300 and 9500 Physical Networking Hypervisors and Virtual Networking Compute L4 L7 Services Storage Multi DC WAN and Cloud Nexus 7K Nexus 2K Integrated WAN Edge 13
APIC - Application Policy Infrastructure Controller Open APIs APIC ACLs PCI Compliant Services Chaining Is Automated Manage Policy Via API and Can Export Policy via API Policy Is Separate from the Network Easy to Isolate with Full Scalability and Security Engineering / Dev and Testing Legal HR Sales Finance Marketing 14
Service Graphs Drag and Drop Configuration Ease 16
APIC DEVICE PACKAGE FOR NETSCALER Full NetScaler Feature Set 17
Cisco APIC Citrix NetScaler integration NetScaler configured from APIC, based on APIs Deep NetScaler policy integration for per-app configuration APIC Cisco service chaining and service insertion Service A Service B Service C Web VM Tenant #2 (Policy 2) Telemetry information exchange Joint standardization of Network Service Header Protocol for agile and elastic service delivery Service Tag Switching Web VM Tenant #1 (Policy 1) 18
Cisco ACI - NetScaler Integration NetScaler Device Package Set of XML library and scripts Imported by APIC Allows APIC to configure functions on NetScaler using APIs Platform Support All NetScaler platforms MPX, SDX, VPX. Also the Cisco OEM version NetScaler 1000V All editions SE, EE, PE 19
Responsive Network - example 1. Cloud Platform Autoscale server pool a) Creates new server b) Informs NetScaler c) NetScaler adds server to LB server pool APIC EM 2. NetScaler requests ACL update a) Uses REST API to APIC EM b) Requests ACL update with IP address / ports of new servers Cat3k 3. APIC EM Dynamically updates ACL settings on Cat3k a) using Cisco One Platform Kit (onepk) 20
Open Daylight Open Daylight Collaboration Cisco and Citrix - Interoperability
APIC Roadmap Network Service Header Protocol - Agile and elastic service delivery - Supports movement of service functions and application workloads - Cisco and Citrix co-authors of IETF draft, jointly guiding IETF standard OpFlex Protocol - Protocol for APIC-Device policy communication - Abstract policies rather than device-specific - Cisco and Citrix co-authors of IETF draft standard - Co-contributors in OpenDaylight proposed Opflex project 22
23
If you run virtualized applications, you re not making the most of them until you ve virtualized your infrastructure. NetScaler provides the necessary hooks to tie into all leading network virtualization frameworks for network automation. Server virtualization has fundamentally changed the infrastructure expectations of business application users; the network has to meet those new expectations. 24
WORK BETTER. LIVE BETTER. 25