Optimize Server Virtualization with QLogic s 10GbE Secure SR-IOV

Similar documents
8Gb Fibre Channel Adapter of Choice in Microsoft Hyper-V Environments

QLogic 16Gb Gen 5 Fibre Channel in IBM System x Deployments

Network Function Virtualization Using Data Plane Developer s Kit

Solving I/O Bottlenecks to Enable Superior Cloud Efficiency

I/O Virtualization Using Mellanox InfiniBand And Channel I/O Virtualization (CIOV) Technology

Accelerating Microsoft Exchange Servers with I/O Caching

How to Configure Intel Ethernet Converged Network Adapter-Enabled Virtual Functions on VMware* ESXi* 5.1

Broadcom Ethernet Network Controller Enhanced Virtualization Functionality

Virtualizing the SAN with Software Defined Storage Networks

SN A. Reference Guide Efficient Data Center Virtualization with QLogic 10GbE Solutions from HP

Intel Ethernet and Configuring Single Root I/O Virtualization (SR-IOV) on Microsoft* Windows* Server 2012 Hyper-V. Technical Brief v1.

iscsi Top Ten Top Ten reasons to use Emulex OneConnect iscsi adapters

QLogic 16Gb Gen 5 Fibre Channel for Database and Business Analytics

Optimized Storage I/O for HPE Virtual Server Environments

Solving the Hypervisor Network I/O Bottleneck Solarflare Virtualization Acceleration

PCI-SIG SR-IOV Primer. An Introduction to SR-IOV Technology Intel LAN Access Division

HBA Virtualization Technologies for Windows OS Environments

Emulex OneConnect 10GbE NICs The Right Solution for NAS Deployments

Best Practices Guide: Network Convergence with Emulex LP21000 CNA & VMware ESX Server

Evaluation Report: Emulex OCe GbE and OCe GbE Adapter Comparison with Intel X710 10GbE and XL710 40GbE Adapters

The Future of Computing Cisco Unified Computing System. Markus Kunstmann Channels Systems Engineer

Extreme Networks: Building Cloud-Scale Networks Using Open Fabric Architectures A SOLUTION WHITE PAPER

The 8Gb Fibre Channel Adapter of Choice in Oracle Environments

Why Use 16Gb Fibre Channel with Windows Server 2012 Deployments

Linux KVM Virtual Traffic Monitoring

Virtualization Technologies and Blackboard: The Future of Blackboard Software on Multi-Core Technologies

Virtual Network Exceleration OCe14000 Ethernet Network Adapters

Where IT perceptions are reality. Test Report. OCe14000 Performance. Featuring Emulex OCe14102 Network Adapters Emulex XE100 Offload Engine

Emulex OneConnect 10GbE NICs The Right Solution for NAS Deployments

Technical Brief. DualNet with Teaming Advanced Networking. October 2006 TB _v02

State of the Art Cloud Infrastructure

Creating Overlay Networks Using Intel Ethernet Converged Network Adapters

Doubling the I/O Performance of VMware vsphere 4.1

Intel Ethernet Switch Load Balancing System Design Using Advanced Features in Intel Ethernet Switch Family

Dell PowerEdge Blades Outperform Cisco UCS in East-West Network Performance

Simplify VMware vsphere* 4 Networking with Intel Ethernet 10 Gigabit Server Adapters

Overcoming Security Challenges to Virtualize Internet-facing Applications

OpenStack Networking: Where to Next?

Windows Server 2012 Hyper-V Virtual Switch Extension Software UNIVERGE PF1000 Overview. IT Network Global Solutions Division UNIVERGE Support Center

Enabling Technologies for Distributed Computing

Oracle Database Scalability in VMware ESX VMware ESX 3.5

Virtual Compute Appliance Frequently Asked Questions

OPTIMIZING SERVER VIRTUALIZATION

Hyper-V Networking. Aidan Finn

Install Guide for JunosV Wireless LAN Controller

White Paper. Recording Server Virtualization

A Platform Built for Server Virtualization: Cisco Unified Computing System

COMPUTING. Centellis Virtualization Platform An open hardware and software platform for implementing virtualized applications

Accelerating High-Speed Networking with Intel I/O Acceleration Technology

High Performance OpenStack Cloud. Eli Karpilovski Cloud Advisory Council Chairman

Unleash the Performance of vsphere 5.1 with 16Gb Fibre Channel

SAN Conceptual and Design Basics

VIRTUALIZATION 101. Brainstorm Conference 2013 PRESENTER INTRODUCTIONS

Peak Hosting, founded in 2001, provides comprehensive ITas-a-service

Broadcom Ethernet Network Controller Enhanced Virtualization Functionality

WHITE PAPER. Addressing Monitoring, Access, and Control Challenges in a Virtualized Environment

ACANO SOLUTION VIRTUALIZED DEPLOYMENTS. White Paper. Simon Evans, Acano Chief Scientist

Balancing CPU, Storage

VMWARE Introduction ESX Server Architecture and the design of Virtual Machines

SCO Virtualization Presentation to Customers

RED HAT ENTERPRISE VIRTUALIZATION FOR SERVERS: COMPETITIVE FEATURES

Feature Comparison. Windows Server 2008 R2 Hyper-V and Windows Server 2012 Hyper-V

How To Connect Virtual Fibre Channel To A Virtual Box On A Hyperv Virtual Machine

Networking for Caribbean Development

The Impact of Virtualization on Cloud Networking Arista Networks Whitepaper

Chapter 14 Virtual Machines

Red Hat enterprise virtualization 3.0 feature comparison

Global Headquarters: 5 Speen Street Framingham, MA USA P F

Virtualization Performance Analysis November 2010 Effect of SR-IOV Support in Red Hat KVM on Network Performance in Virtualized Environments

Brocade Solution for EMC VSPEX Server Virtualization

VXLAN Overlay Networks: Enabling Network Scalability for a Cloud Infrastructure

A Superior Hardware Platform for Server Virtualization

Veeam Cloud Connect. Version 8.0. Administrator Guide

Private cloud computing advances

Enabling Technologies for Distributed and Cloud Computing

HP StorageWorks MPX200 Simplified Cost-Effective Virtualization Deployment

QLogic 2500 Series FC HBAs Accelerate Application Performance

Accelerating Network Virtualization Overlays with QLogic Intelligent Ethernet Adapters

The Benefits of POWER7+ and PowerVM over Intel and an x86 Hypervisor

Cisco Application-Centric Infrastructure (ACI) and Linux Containers

Best Practices for Monitoring Databases on VMware. Dean Richards Senior DBA, Confio Software

Deploying Microsoft Hyper-V with Dell EqualLogic PS Series Arrays

SOLUTIONS FOR DEPLOYING SERVER VIRTUALIZATION IN DATA CENTER NETWORKS

Achieve Automated, End-to-End Firmware Management with Cisco UCS Manager

Achieving Real-Time Business Solutions Using Graph Database Technology and High Performance Networks

ADVANCED NETWORK CONFIGURATION GUIDE

Virtualization for Cloud Computing

Scalable Approaches for Multitenant Cloud Data Centers

Enterprise Cloud Services HOSTED PRIVATE CLOUD

Monitoring Databases on VMware

Network Virtualization for Large-Scale Data Centers

Microsoft Private Cloud Fast Track

PARALLELS SERVER BARE METAL 5.0 README

Configure Windows 2012/Windows 2012 R2 with SMB Direct using Emulex OneConnect OCe14000 Series Adapters

Ubuntu OpenStack on VMware vsphere: A reference architecture for deploying OpenStack while limiting changes to existing infrastructure

Increase Simplicity and Improve Reliability with VPLS on the MX Series Routers

Simplifying Data Center Network Architecture: Collapsing the Tiers

Transcription:

Technology Brief Optimize Server ization with QLogic s 10GbE Secure SR-IOV Flexible, Secure, and High-erformance Network ization with QLogic 10GbE SR-IOV Solutions Technology Summary Consolidation driven by server virtualization is accelerating the move to 10GbE technology in data center networks. ized environments require higher performance and greater bandwidth with the least overhead on server CU cycles. Server virtualization technologies have made significant progress over the past decade on improving the efficiency of virtualizing and sharing processor, memory, and peripheral devices. However, achieving high performance with low overhead for I/O has remained a significant challenge, especially for 10Gb Ethernet and other high-speed I/O interconnects. Software-based I/O virtualization solutions implemented in hypervisors suffer from significant performance degradation and require considerable host CU cycles to work effectively, thereby limiting the adoption of the solutions. An emerging and highly efficient approach to addressing the performance issues of I/O virtualization is the use of Single Root I/O ization (SR-IOV), a CI special interest group (CI-SIG ) standard. SR-IOV provides a set of hardware enhancements for a CIe device (such as a QLogic 10GbE Converged Network ), which removes major hypervisor intervention for data movement from the virtual machines (VMs) to the network. With SR-IOV, a QLogic 8300 Series 10GbE Converged Network can present itself as multiple virtual devices. Each of these virtual devices can be dedicated to a VM. The VM has direct access to the networking adapter, thereby bypassing a significant and resistive part of the hypervisor. QLogic 8300 Series 10GbE Converged Network s offer a flexible and secure SR-IOV solution that is qualified with major server and hypervisor vendors and offers a seamless path to high-performance I/O virtualization for enterprise, public and private, cloud deployments. While SR-IOV enables significant performance benefits, there are a few limitations. For example, it requires special support in server hardware and hypervisors. In addition, SR-IOV increases the complexity in achieving common VM tasks, such as checkpointing and live migration as it bypasses the hypervisor. For I/O virtualization needs in deployments on legacy systems, the QLogic 8300 Series

Technology Brief Converged Network also offers a server- and hypervisor-agnostic I/O virtualization technology called NIC artitioning. Benefits of QLogic SR-IOV High erformance VMs have direct access to the network adapter Low Latency VM network traffic bypasses the hypervisor and associated data movement Efficient Traffic Switching VM-to-VM traffic is switched in the adapter hardware Lower CU Utilization Switching of Ethernet frames is offloaded from the hypervisor vswitch to the adapter, reducing server CU utilization Reduced Load on External Switch Infrastructure VM-to-VM traffic does not burden the external switch and LAN infrastructure Secure QLogic s unique implementation provides complete isolation of VM network traffic Background I/O virtualization is an emerging category of technologies aimed at resolving the performance, provisioning, and management problems of server I/O in highly virtualized and clustered data center environments. In the evolution of the virtualized data center, the issues of CU and storage virtualization are actively being addressed, but are raising problems with the load, provisioning, and management of storage and network infrastructure. The technology evolution started with virtualized processors and memory. Next came VMs, then virtual storage, and finally I/O virtualization (IOV), where the I/O path from the server to the peripheral device is now virtualized. SR-IOV ization Architecture CI-SIG has completed a suite of I/O virtualization specifications that in conjunction with system virtualization technologies allows multiple OSs running simultaneously within a single computer to natively share CI Express devices. With SR-IOV, the QLogic 8300 Series 10Gb Converged Network appears to the operating system (OS)/hypervisor as multiple physical functions (Fs), virtual functions (s), and a embedded Layer-2 switch. hysical Function (F) One F is exposed per physical port of the adapter. The F is equivalent to the regular CIe physical function device s fully featured CI functions. The F is responsible for arbitration relating to policy decisions (such as link speed or MAC addresses in use by VMs in the case of networking) and in some cases for I/O from the parent partition itself. The F is strictly owned by the native OS/ hypervisor. From a security perspective, the F is considered as a trusted function. Function () s are lightweight CIe functions associated with a F. s are associated with VMs and are limited to processing I/O streams, moving data from the VM to the network adapter. I/O traffic from the to the network adapter bypasses the hypervisor, improving performance and reducing latency. s do not support management of the physical device. The QLogic 8300 Series Converged Network supports up to 64 s per F. From a security perspective, s are considered un-trusted functions. Edge Bridging (VEB) A VEB is a basic Layer-2 Ethernet switch embedded into the adapter. There is one eswitch per physical port. The VEB is capable of switching traffic between all s on a F and between the F and s. The embedded switch enables efficient routing of VMto-VM traffic without burdening the external switch infrastructure and preserving host CU resources. Although from a standards perspective SR-IOV applies to both networking and storage I/O, most current implementations, including the QLogic implementation, are focused on networking I/O only. Figure 1. SR-IOV ization Architecture QLogic 10GbE Converged Network SR-IOV Features F 1 4 n vports ized Server with SR-IOV VEB hysical port QLogic 10GbE Converged Network QLogic 8300 Series 10GbE Converged Network s provide a fully featured implementation of networking SR-IOV that is compliant to the CI Express Base Specification, revision 3.0, and Single Root I/O ization and Sharing Specification, revision 1.1. It has the following key features: There is a maximum of two SR-IOV-capable Fs per adapter There is a maximum of 64 SR-IOV s per F. There can be a total of 128 s per adapter. However, the hypervisor may impose a limit smaller than this number An adapter-embedded L2 switch (VEB) switches traffic between s and between the F and s. The switch does not switch traffic between Fs The assignment of Fs to a hypervisor is supported. But some hypervisors like VMware ESXi 5.1 do not allow this. s can only be assigned to VMs and not to the hypervisor All functions of the Converged Network physical and virtual can concurrently carry I/O traffic TB13003 SN0430945-00 Rev. A 05/13 2

Technology Brief The hardware design of the Converged Network offers complete isolation of traffic between s For security, the QLogic implementation allows only the F to have the capability to perform operations that affect the health and behavior of the entire adapter or physical port. s, which could be owned by tenants in public cloud deployment, are not allowed to perform any disruptive operations to protect against damage from a rogue driver irrespective of whether it is a rogue or trusted driver attached to the Full support for leading hypervisors supporting SR-IOV, including VMware ESXi 5.1+, Windows Server 2012, and Linux -based hypervisors Secure SR-IOV QLogic 8300 Series Converged Network hardware implements the concept of trusted and un-trusted functions. Fs are trusted functions and s are un-trusted. Only trusted functions have the capability to do operations that affect the operation of the entire adapter or physical port. Firmware restricts control commands issued from a if the command adversely affects the operation of other s or Fs. Strict cross-function isolation of adapter registers are visible through CI BARs. QLogic Secure SR-IOV NIC SR-IOV State of the Union With all the benefits that SR-IOV has to offer, the current state of SR-IOV is that the technology is nascent. The server support list is small but growing and non-linux hypervisors have just begun supporting it. Significant challenges remain for Live Migration and Snapshots. So while the adapter SR-IOV ecosystem is fully developed, SR-IOV adoption will continue to gain traction as the ecosystem matures. SR-IOV Features Windows VMware SR-IOV Support Windows Server 2012 VMware ESXi 5.1 Total Number of s No OS limit 128 VM Guest OS Support with SR-IOV Live Migration with SR-IOV Advanced Edge Bridging Data Center Wide Management Extensive OS CLI Support for SR-IOV W2012 W2008/2012 F 1 4 n F isters port I/O Only Config & I/O hysical 10GbE Converged Network Competitor s Vulnerable SR-IOV F 1 4 n All of Config & I/O Related isters port Config & I/O 10GbE Converged Network hysical TB13003 SN0430945-00 Rev. A 05/13 3

Technology Brief Alternative QLogic Solutions SR-IOV is a standard recognized by most OS and hypervisor vendors. It enables virtualization of I/O data paths at the server level. QLogic offers NAR as a standard way of addressing the customer needs of today for the network partitioning function while the SR-IOV technology is being adopted. QLogic s NAR is an OS-, platform-, and switch-agnostic solution available today. NAR together with SR-IOV provides a comprehensive solution for the heterogeneous enterprise data center. Features QLogic Networking SR-IOV QLogic NIC artitioning (NAR) Ability to artition a 10GbE ort into Multiple artitions Maximum Number of artitions or Functions Available 128 8 Server Hardware latform Agnostic OS Agnostic Quality of Service (Transmit Bandwidth Control) QLogic Advantage (due to a lack of support in leading hypervisors) QLogic 8300 Series Converged Network provides significant benefits in its SR-IOV implementation as compared to the competition. SR-IOV Features QLogic Emulex Intel Number of Fs 2 2 2 Number of s per F 64 32 32 Secure SR-IOV Implementation * - *Derived based on the Emulex BE3 SR-IOV security advisory at http://www.emulex.com/downloads/sr-iov.html. Learn More QLogic offers complete solutions to some of the most complex issues facing the data center. To visit the QLogic Solutions Web page, click QLogic Solutions under the Solutions tab at www.qlogic.com. The QLogic product deployment guide for implementing the functionality discussed in this technology brief can be found in the document download section on the QLogic Web site. Related Video: QLogic KnowHow SR-IOV Configuration for QLogic 8300 Series s Click on the Image to Watch a YouTube Video TB13003 SN0430945-00 Rev. A 05/13 4

Technology Brief Follow us: Share: Corporate Headquarters QLogic Corporation 26650 Aliso Viejo arkway Aliso Viejo, CA 92656 949-389-6000 www.qlogic.com International Offices UK Ireland Germany France India Japan China Hong Kong Singapore Taiwan 2013 QLogic Corporation. Specifications are subject to change without notice. All rights reserved worldwide. QLogic and the QLogic logo are registered trademarks of QLogic Corporation. Emulex is a registered trademark of Emulex Corporation. Intel is a registered trademark of Intel Corporation. Linux is a registered trademark of Linus Torvalds. CIe, CI Express, and CI-SIG are registered trademarks of CI-SIG Corporation. VMware is a registered trademark of VMware, Inc. Windows Server is a registered trademark of Microsoft Corporation. All other brand and product names are trademarks or registered trademarks of their respective owners. Information supplied by QLogic Corporation is believed to be accurate and reliable. QLogic Corporation assumes no responsibility for any errors in this document. QLogic Corporation reserves the right, without notice, to make changes in product design or specifications. TB13003 SN0430945-00 Rev. A 05/13 5

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information