Virtual Networking Features of the VMware vnetwork Distributed Switch and Cisco Nexus 1000V Series Switches



Similar documents
DMZ Virtualization Using VMware vsphere 4 and the Cisco Nexus 1000V Virtual Switch

What s New in VMware vsphere 5.5 Networking

Cisco Nexus 1000V Series Switches

Expert Reference Series of White Papers. VMware vsphere Distributed Switches

Cisco Nexus 1000V Switch for Microsoft Hyper-V

How To Set Up A Virtual Network On Vsphere (Vsphere) On A 2Nd Generation Vmkernel (Vklan) On An Ipv5 Vklan (Vmklan)

What s New in VMware vsphere 5.0 Networking TECHNICAL MARKETING DOCUMENTATION

Deploying 10 Gigabit Ethernet on VMware vsphere 4.0 with Cisco Nexus 1000V and VMware vnetwork Standard and Distributed Switches - Version 1.

vsphere Networking vsphere 6.0 ESXi 6.0 vcenter Server 6.0 EN

vsphere Networking vsphere 5.5 ESXi 5.5 vcenter Server 5.5 EN

Cisco Data Center Network Manager Release 5.1 (LAN)

Enabling NetFlow on Virtual Switches ESX Server 3.5

Network Troubleshooting & Configuration in vsphere VMware Inc. All rights reserved

vsphere Networking ESXi 5.0 vcenter Server 5.0 EN

LiveAction Application Note

Network Segmentation in Virtualized Environments B E S T P R A C T I C E S

VMware Network Virtualization Design Guide. January 2013

NX-OS and Cisco Nexus Switching

EX 3500 ETHERNET SWITCH

VMware vsphere 5.0 Evaluation Guide

Virtual PortChannels: Building Networks without Spanning Tree Protocol

Cisco Nexus 1000V Virtual Ethernet Module Software Installation Guide, Release 4.0(4)SV1(1)

Cisco and Canonical: Cisco Network Virtualization Solution for Ubuntu OpenStack

Enhancing Cisco Networks with Gigamon // White Paper

What s New in VMware vsphere 5.1 Networking

IMPLEMENTING CISCO SWITCHED NETWORKS V2.0 (SWITCH)

VMware Virtual Networking Concepts I N F O R M A T I O N G U I D E

- EtherChannel - Port Aggregation

vshield Quick Start Guide vshield Manager 4.1 vshield Edge 1.0 vshield App 1.0 vshield Endpoint 1.0

Implementing and Troubleshooting the Cisco Cloud Infrastructure **Part of CCNP Cloud Certification Track**

Network Virtualization

Simplifying. Single view, single tool virtual machine mobility management in an application fluent data center network

AT-S105 Version Management Software Release Notes AT-FS750/24POE and AT-FS750/48 Fast Ethernet WebSmart Switches

WHITE PAPER. VMware vsphere 4 Pricing, Packaging and Licensing Overview

Running a VSM and VEM on the Same Host

vshield Administration Guide

Cisco Virtual Security Gateway for Nexus 1000V Series Switch

How To Manage A Virtualization Server

How to monitor network traffic inside an ESXi host

VMware vcloud Networking and Security Overview

Datasheet. Managed PoE+ Gigabit Switches with SFP. Models: ES W, ES W, ES W, ES W

VMWARE Introduction ESX Server Architecture and the design of Virtual Machines

VXLAN: Scaling Data Center Capacity. White Paper

BEST PRACTICES. DMZ Virtualization with VMware Infrastructure

Management Software. Web Browser User s Guide AT-S106. For the AT-GS950/48 Gigabit Ethernet Smart Switch. Version Rev.

Secure Segmentation of Tier 1 Applications in the DMZ

VMware vsphere 4. Pricing, Packaging and Licensing Overview W H I T E P A P E R

hp ProLiant network adapter teaming

CloudEngine 1800V Virtual Switch

Vmware VSphere 6.0 Private Cloud Administration

20 GE + 4 GE Combo SFP G Slots L3 Managed Stackable Switch

ESXi Configuration Guide

VMware vsphere 5.0 Evaluation Guide

VMware NSX Network Virtualization Design Guide. Deploying VMware NSX with Cisco UCS and Nexus 7000

Implementing Cisco Data Center Unified Fabric Course DCUFI v5.0; 5 Days, Instructor-led

Cisco Bandwidth Quality Manager 3.1

Visibility into the Cloud and Virtualized Data Center // White Paper

Juniper / Cisco Interoperability Tests. August 2014

VMware Virtual SAN Network Design Guide TECHNICAL WHITE PAPER

Application and Network Performance Monitoring in a Virtualized Environment

Redefine Network Visibility in the Data Center with the Cisco NetFlow Generation Appliance

Microsegmentation Using NSX Distributed Firewall: Getting Started

W H I T E P A P E R. Understanding VMware Consolidated Backup

Configuring DHCP Snooping

How to Configure an Initial Installation of the VMware ESXi Hypervisor

Network Management for Common Topologies How best to use LiveAction for managing WAN and campus networks

"Charting the Course...

Juniper Networks EX Series/ Cisco Catalyst Interoperability Test Results. May 1, 2009

Control Tower for Virtualized Data Center Network

Virtualizing Business-Critical Applications with Confidence

What is VLAN Routing?

Datasheet. Managed Gigabit Fiber Switch. Model: ES-12F. Non-Blocking Throughput Switching. High Performance and Low Latency

TP-LINK. 24-Port 10/100Mbps + 4-Port Gigabit L2 Managed Switch. Overview. Datasheet TL-SL

HARTING Ha-VIS Management Software

Cisco Virtualization Experience Infrastructure: Secure the Virtual Desktop

Reference Design: Deploying NSX for vsphere with Cisco UCS and Nexus 9000 Switch Infrastructure TECHNICAL WHITE PAPER

ALLNET ALL8944WMP Layer 2 Management 24 Port Giga PoE Current Sharing Switch

Tim Bovles WILEY. Wiley Publishing, Inc.

vsphere Private Cloud RAZR s Edge Virtualization and Private Cloud Administration

VMware vsphere 4.1. Pricing, Packaging and Licensing Overview. E f f e c t i v e A u g u s t 1, W H I T E P A P E R

TP-LINK L2 Managed Switch

High Performance 10Gigabit Ethernet Switch

CCT vs. CCENT Skill Set Comparison

Network Performance Management Solutions Architecture

Management of VMware ESXi. on HP ProLiant Servers

Huawei Enterprise A Better Way VM Aware Solution for Data Center Networks

DCS CT-POE fully loaded AT PoE Switch Datasheet

INDIAN INSTITUTE OF TECHNOLOGY BOMBAY MATERIALS MANAGEMENT DIVISION : (+91 22) (DR)

Virtualizing the SAN with Software Defined Storage Networks

ICND2 NetFlow. Question 1. What are the benefit of using Netflow? (Choose three) A. Network, Application & User Monitoring. B.

DCS C Fast Ethernet Intelligent Access Switch Datasheet

How To Extend Security Policies To Public Clouds

Apple Airport Extreme Base Station V4.0.8 Firmware: Version 5.4

Cisco Certified Network Associate Exam. Operation of IP Data Networks. LAN Switching Technologies. IP addressing (IPv4 / IPv6)

Cisco ACI Simulator Release Notes, Release 1.2(1i)

Set Up a VM-Series Firewall on an ESXi Server

Multipathing Configuration for Software iscsi Using Port Binding

Next Generation Data Center Networking.

Transcription:

Virtual Networking Features of the vnetwork Distributed Switch and Cisco Nexus 1000V Series Switches What You Will Learn With the introduction of ESX, many virtualization administrators are managing virtual switches inside the hypervisor. Since the virtual switches need to be configured consistently with the physical network, virtualization and network administrators have to work closely to help ensure proper virtual machine connectivity. This document will help virtualization and network administrators understand the virtual networking features and capabilities introduced by and Cisco in 2009. Alternatives for Virtual Networking With vnetwork in 2009, is introducing a number of alternatives for virtual networking with Infrastructure (VI). Table 1 summarizes and compares the features of these alternatives. vnetwork Standard Switch The vnetwork Standard Switch is the base-level virtual networking alternative. It extends the familiar appearance, configuration, and capabilities of the standard virtual switch (vswitch) in ESX 3.5 to the new release in 2009. vnetwork Distributed Switch The vnetwork Distributed Switch (vds) is new with the 2009 release of VI. The vds extends the feature set of the Standard Switch, while simplifying network provisioning, monitoring, and management through an abstracted, single distributed switch representation of multiple ESX and ESXi Servers in a data center. Cisco Nexus 1000V Series Switches Cisco Nexus 1000V Series Switches are the result of a Cisco and collaboration building on the vnetwork third-party vswitch API of vds and the industry-leading switching technology of the Cisco Nexus Family of switches. Featuring the Cisco NX-OS Software data center operating system, the Cisco Nexus 1000V Series extends the virtual networking feature set to a level consistent with physical Cisco switches and brings advanced data center networking, security, and operating capabilities to the VI environment. It provides end-to-end physical and virtual network provisioning, monitoring, and administration with virtual machine level granularity using common and existing network tools and interfaces. The Cisco Nexus 1000V Series transparently integrates with vcenter to provide a consistent virtual machine provisioning workflow while 2009 Cisco. All rights reserved. Page 1

offering features well suited for data center class applications, View, and other missioncritical virtual machine deployments. Table 1. Virtual Networking Feature Comparison Feature ESX 3.5: Standard vswitch vnetwork Standard Switch vnetwork Distributed Switch Cisco Nexus 1000V Series Switching Features Layer 2 forwarding Yes Yes Yes Yes IEEE 802.1Q VLAN tagging Yes Yes Yes Yes Multicast support (Internet Group Management Protocol [IGMP] v2 and v3) Yes Yes Yes Yes IGMPv3 snooping VMotion support Yes Yes Yes Yes Network VMotion Yes Yes Physical Switch Connectivity EtherChannel Yes Yes Yes Yes Virtual PortChannels Link Aggregation Control Protocol (LACP) Load-balancing algorithms Virtual port ID Yes Yes Yes Yes Source MAC address Yes Yes Yes Yes Source and destination IP Yes Yes Yes Yes Source and destination MAC addresses Source and destination port IP Additional hashing options Traffic Management Features Transmit-rate (from virtual machine) limiting Receive-rate (to virtual machine) limiting Yes Yes Yes Yes Yes Yes 2009 Cisco. All rights reserved. Page 2

Quality-of-service (QoS) marking Differentiated Services Code Point (DSCP) Type of service Class of service Security Features Port security Yes Yes Yes Yes VMsafe compatible Yes Yes Yes Yes Private VLANs (PVLANs) Yes Yes Local PVLAN enforcement Access control lists (ACLs) Dynamic Host Configuration Protocol (DHCP) snooping IP source guard Dynamic Address Resolution Protocol (ARP) Inspection (DAI) Management Features vcenter support Yes Yes Yes Yes Third-party-accessible APIs Yes Yes Yes Yes Network policy groups Yes Yes Yes Yes Multitier policy groups port mirroring (promiscuous) Switched Port Analyzer Yes Yes Yes (SPAN) Encapsulated Remote SPAN (ERSPAN) NetFlow v5 Yes* Yes* Yes* Yes NetFlow v9 Simple Network Management Protocol (SNMP) v3 read and write Cisco Discovery Protocol v1 and v2 Yes Yes Yes Yes Syslog Yes** Yes** Yes** Yes 2009 Cisco. All rights reserved. Page 3

Packet capture and analysis RADIUS and TACACS+ Configuration and management console and interface VI Client VI Client VI Client to vcenter Server vcenter and Cisco CLI * Experimental support provided. ** Virtual switch network syslog information is exported and included with ESX Server events. Features This section provides additional information about some of the features and capabilities listed in Table 1. Switching Features Multicast: Both vswitch alternatives support multicast traffic and multicast group membership through IGMP. The Cisco and switches differ slightly in implementation. The vswitches learn multicast membership through a nonflooding registration process, and the Cisco Nexus 1000V Series uses IGMP snooping in a similar fashion on a physical switch. Network VMotion: The network policy associated with a vds port is transferred with the virtual machine when it is migrated to another host using VMotion. In addition, the Cisco Nexus 1000V Series Switch maintains the network state of management and troubleshooting data associated with a virtual machine s network interface. This feature provides a consistent view of a network interface regardless of the virtual machine s location. Physical Switch Connectivity EtherChannel: EtherChannel and PortChannel are commonly used terms for IEEE 802.3ad and 802.1AX link aggregation. The vswitches use and require a static configuration on the adjacent physical switch without LACP negotiation, whereas the Cisco Nexus 1000V Series EtherChannels are fully negotiable through LACP. The Cisco Nexus 1000V Series additionally supports virtual PortChannels, which enables fine-grained traffic load balancing across multiple physical switches using a single PortChannel. This approach greatly simplifies network configuration and enhances the availability of network connectivity and therefore increases virtual machine uptime for EtherChannel configurations. Traffic Management Features Transmit-rate (from virtual machine) limiting: Transmit-rate limiting enables traffic from the virtual machine to the network to be rate limited. Receive-rate (to virtual machine) limiting: Receive-rate limiting enables traffic to the virtual machine from the network to be rate limited. 2009 Cisco. All rights reserved. Page 4

Security Features Port security: Port security with switches is a MAC address control feature governing the use of promiscuous mode, MAC address changes by a virtual machine, and forced transmits from a virtual machine. The Cisco Nexus 1000V Series supports MAC address based port security in addition to IP source guard, DAI, and DHCP snooping to help isolate malicious virtual machines. PVLANs: PVLANs are a new feature available with the vds and the Cisco Nexus 1000V Series. PVLANs provide a simple mechanism for isolating virtual machines in the same VLAN from each other. The vds implements PVLAN enforcement at the destination host. The Cisco Nexus 1000V Series supports a highly efficient enforcement mechanism that filters packets at the source rather than at the destination, helping ensure that no unwanted traffic traverses the physical network and so increasing the network bandwidth available to other virtual machines. Management Features Multitier policy groups: The unique port profile capabilities of the Cisco Nexus 1000V Series allow network administrators to build multitier network policies, simplifying policy creation and enforcement. port mirroring (promiscuous): The vswitch can send traffic for one VLAN or all VLANs to a virtual machine on a promiscuous virtual network interface card (vnic) port configured with traffic monitoring or sniffing. Packet capture and analysis: The Cisco Nexus 1000V Series enables true packet capture and analysis by supporting features such as SPAN and ERSPAN, which allow traffic to be copied to a local or remote destination, enabling thorough network troubleshooting and reducing time to resolution for virtual network problems. Syslog: ESX Servers can export syslog information for the entire server. This process requires filtering and analysis to extract the vswitch events. The Cisco Nexus 1000V Series can export extensive network-specific events to appropriate syslog servers, potentially eliminating error reports unrelated to network issues. This feature enables the network administrator to quickly diagnose any potential problems. Configuration and management console and interface: Virtual networking with vswitches is configured through the VI Client interface. A vcenter Server must be used when configuring and using the vds. The Cisco Nexus 1000V Series uses a combination of the Cisco command-line interface (CLI) to allow the network administrator to configure network policy and vcenter Server to preserve the virtual machine provisioning workflow. 2009 Cisco. All rights reserved. Page 5

Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA www.cisco.com Tel: 408 526-4000 800 553-NETS (6387) Fax: 408 527-0883, Inc 3401 Hillview Ave Palo Alto, CA 94304 USA www.vmware.com Tel: 1-877-486-9273 or 650-427-5000 Fax: 650-427-5001 Copyright 2009., Inc. All rights reserved. Protected by one or more U.S. Patent Nos. 6,397,242, 6,496,847, 6,704,925, 6,711,672, 6,725,289, 6,735,601, 6,785,886, 6,789,156, 6,795,966, 6,880,022, 6,944,699, 6,961,806, 6,961,941, 7,069,413, 7,082,598, 7,089,377, 7,111,086, 7,111,145, 7,117,481, 7,149, 843, 7,155,558, 7,222,221, 7,260,815, 7,260,820, 7,269,683, 7,275,136, 7,277,998,7,277,999, 7,278,030, 7,281,102, 7,290,253, 7,356,679 and patents pending. Cisco, the Cisco logo, and Cisco Systems are registered trademarks or trademarks of Cisco Systems, Inc. and/or its affiliates in the United States and certain other countries. All other trademarks mentioned in this document or Website are the property of their respective owners. The use of the word partner does not imply a partnership relationship between Cisco and any other company. (0903R) C22-526262-00 03/09 2009 Cisco. All rights reserved. Page 6

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information