Virtualized Domain Name System and IP Addressing Environments. White Paper September 2010



Similar documents
Grid and Multi-Grid Management

How to Configure an Initial Installation of the VMware ESXi Hypervisor

Designing and Implementing a Server Infrastructure

WHITE PAPER. Infoblox IPAM Integration with Microsoft AD Sites and Local Services

Infoblox Grid TM. Automated Network Control for. Unifying DNS Management and Extending the Infoblox Grid TM to the F5 Global Traffic Manager

The Importance of a Resilient DNS and DHCP Infrastructure

Reliable DNS and DHCP for Microsoft Active Directory

VNLINFOTECH JOIN US & MAKE YOUR FUTURE BRIGHT. mcsa (70-413) Microsoft certified system administrator. (designing & implementing server infrasturcure)

Automated Network Control for

Challenges in Deploying Public Clouds

Installing and Using the vnios Trial

VMware vsphere 5.0 Boot Camp

Cisco Dynamic Workload Scaling Solution

Reliable DNS and DHCP for Microsoft Active Directory Protecting and Extending Active Directory Infrastructure with Infoblox Appliances

VMware vcloud Networking and Security Overview

Designing and Implementing a Server Infrastructure

TECHNICAL WHITE PAPER. Infoblox and the Relationship between DNS and Active Directory

Implementing Enhanced Secure Multi-tenancy Solutions (IESMT)

F5 Intelligent DNS Scale. Philippe Bogaerts Senior Field Systems Engineer mailto: Mob.:

COURSE OUTLINE MOC 20413: DESIGNING AND IMPLEMENTING A SERVER INFRASTRUCTURE

White Paper on NETWORK VIRTUALIZATION

Infoblox vnios Software for CISCO AXP

Parallels Server 4 Bare Metal

VMware vsphere-6.0 Administration Training

Remote PC Guide Series - Volume 1

Virtual Appliances. Virtual Appliances: Setup Guide for Umbrella on VMWare and Hyper-V. Virtual Appliance Setup Guide for Umbrella Page 1

20413C: Designing and Implementing a Server Infrastructure

Availability Digest. Redundant Load Balancing for High Availability July 2013

Quick Start Guide. for Installing vnios Software on. VMware Platforms

COURSE 20413C: DESIGNING AND IMPLEMENTING A SERVER INFRASTRUCTURE

Deploying the BIG-IP System with VMware vcenter Site Recovery Manager

DNS ROUND ROBIN HIGH-AVAILABILITY LOAD SHARING

Virtualizing Exchange

Designing and Implementing a Server Infrastructure

VMware vsphere 5.1 Advanced Administration

M.Sc. IT Semester III VIRTUALIZATION QUESTION BANK Unit 1 1. What is virtualization? Explain the five stage virtualization process. 2.

Storage Protocol Comparison White Paper TECHNICAL MARKETING DOCUMENTATION

Designing and Implementing a Server Infrastructure

VIA CONNECT PRO Deployment Guide

F5 and VMware Solution Guide. Virtualization solutions to optimize performance, improve availability, and reduce complexity

Designing and Implementing a Server Infrastructure 20413C; 5 days, Instructor-led

Advanced Server Virtualization: Vmware and Microsoft Platforms in the Virtual Data Center

Designing and Implementing a Server Infrastructure

Course 20413: Designing and Implementing a Server Infrastructure

Best Practices For Architecting DNS and DHCP Networks. No IP. No Network. No Business.

IP Address Management: Smoothing the Way to Cloud-Based Services

MOC 6435A Designing a Windows Server 2008 Network Infrastructure

VMware vsphere: Install, Configure, Manage [V5.0]

Increase Simplicity and Improve Reliability with VPLS on the MX Series Routers

Desingning and Implementing a Server Infrastructure

Virtualization Technologies and Blackboard: The Future of Blackboard Software on Multi-Core Technologies

VMware ESX Server 3 Configuration Guide

VMware vsphere 5.0 Evaluation Guide

Avaya Virtualization Provisioning Service

VIA COLLAGE Deployment Guide

DNS Appliance Architecture: Domain Name System Best Practices

The Benefits of Virtualizing Citrix XenApp with Citrix XenServer

IP ADDRESS MANAGER 4.3 (IPAM)

HBA Virtualization Technologies for Windows OS Environments

Interactive Intelligence Customer Interaction Center with Polycom

Altor Virtual Network Security Analyzer v1.0 Installation Guide

SummitStack in the Data Center

DMZ Virtualization Using VMware vsphere 4 and the Cisco Nexus 1000V Virtual Switch

Architecture Overview

VitalQIP DNS/DHCP & IP Address Management Software and Appliance Solution

Radware ADC-VX Solution. The Agility of Virtual; The Predictability of Physical

Securely Architecting the Internal Cloud. Rob Randell, CISSP Senior Security and Compliance Specialist VMware, Inc.

Beyond Quality of Service (QoS) Preparing Your Network for a Faster Voice over IP (VoIP)/ IP Telephony (IPT) Rollout with Lower Operating Costs

PROJECT SUMMARY ROWAN UNIVERSITY REQUIREMENTS

Designing and Implementing a Server Infrastructure

WHITE PAPER. Automating Network Provisioning for Private Cloud

Horizontal Integration - Unlocking the Cloud Stack. A Technical White Paper by FusionLayer, Inc.

Network Virtualization

Secure and Hardened DNS Appliances for the Internet

VMWARE VSPHERE 5.0 WITH ESXI AND VCENTER

Ease Server Support With Pre-Configured Virtualization Systems

F5 and Infoblox DNS Integrated Architecture Offering a Complete Scalable, Secure DNS Solution

Course 20412A: Configuring Advanced Windows Server 2012 Services

Top-Down Network Design

Simplifying Private Cloud Deployments through Network Automation

Configuring Advanced Windows Server 2012 Services

alcatel-lucent vitalqip Appliance manager End-to-end, feature-rich, appliance-based DNS/DHCP and IP address management

Secure networks are crucial for IT systems and their

Recommended IP Telephony Architecture

Fundamentals of Windows Server 2008 Network and Applications Infrastructure

Conquering the Challenges of IP Network Management with DHCP and DNS

Cisco Unified Computing Remote Management Services

Next Generation Network Firewall

Khóa học dành cho các kỹ sư hệ thống, quản trị hệ thống, kỹ sư vận hành cho các hệ thống ảo hóa ESXi, ESX và vcenter Server

Cisco Hybrid Cloud Solution: Deploy an E-Business Application with Cisco Intercloud Fabric for Business Reference Architecture

Virtualized WAN Optimization

EMC VPLEX FAMILY. Continuous Availability and Data Mobility Within and Across Data Centers

Disaster Recover Challenges Today

SCOPE DOCUMENT. Trade Name IT- Network Systems Administration Post- Secondary DATE OF DISTRIBUTION VIA WEBSITE

Network Management and Monitoring Software

Best Practices Guide: Network Convergence with Emulex LP21000 CNA & VMware ESX Server

Chapter 2 TOPOLOGY SELECTION. SYS-ED/ Computer Education Techniques, Inc.

Transcription:

Virtualized Domain Name System and IP Addressing Environments White Paper September 2010

Virtualized DNS and IP Addressing Environments As organizations initiate virtualization projects in their operating environments, common edge services such as Domain Name System (DNS) and Dynamic Host Configuration Protocol (DHCP) make a perfect candidate for virtualization. Because of the high costs and inflexibilities associated with traditional, hardwarebased DNS and IP addressing computing appliances, most organizations have implemented existing D-services (DNS, DHCP) by utilizing unsupported open source software (BIND, DHCPD) or generic Microsoft server products (Microsoft AD) on industry standard servers. These home-grown servers typically utilize a very low percentage of their CPU. They are also prone to vulnerabilities, unnecessarily tedious to manage, and require on-going maintenance. Virtualization is an excellent way to streamline these inefficiencies. Rather than re-building new virtual machines manually, the easiest way to virtualize any network service is to use productized software packages known as virtual or software appliances. A software appliance is a self-installing server optimized for a specific task. It contains all software components required for an installation from a hardened operating system to all necessary tools and application(s). Distributed as an installation media (ISO image) that can be used to boot up new virtual machines in just minutes, software appliances automate installation and maintenance processes thereby translating to higher productivity and lower total cost of ownership. Nixu Software specializes in virtualization-ready software appliances that provide an end-to-end solution for DNS and IP addressing needs. This White Paper suggests a route for virtualizing DNS and DHCP services in an enterprise network. For further details on individual Nixu Products, please visit. Benefits of Virtual DNS and DHCP Infrastructure 1. Optimization of CPU utilization and consolidation of computing resources as DNS and DHCP servers are migrated on virtual platforms 2. Savings in hardware and maintenance costs through decreased number of physical servers in the network, software appliance usage, and centralized management 3. Enhanced availability through continuous uptime offered by advanced virtual environments such as VMware Virtual Infrastructure 3 4. Rapid and flexible deployment, improved scalability through software appliance usage 5. Higher level of information security thanks to purpose-built, hardened software appliances optimized for a specific service 2

Virtualization Enables Better Security, Efficiencies In traditional network environments, DNS and DHCP services are typically run on industry standard servers that host a number of different network services. While pragmatic, this deployment strategy involves several disadvantages: 1. Scalability issues: running several network services on a single server translates to limited scalability during busy-hours and traffic peaks. 2. Single point of failure: if the hardware platform fails, all network services provided by that server will become unavailable. 3. Vulnerabilities: when running several network services on a single server, vulnerability in any one piece of software can make all services running on that server vulnerable to exploitations. 4. Compromises in server and system management: running several network services on a single server translates to compromises in management and maintenance processes. 5. Inflexible deployment processes: making changes or new additions to network architecture is unnecessarily complicated as different network services have been bundled together. The easiest and the most cost-efficient way to eliminate these problems is to install and run DNS and DHCP software appliances in virtual infrastructure as dedicated virtual machines. Thanks to their purpose-built design and automated software updates, software appliances are less prone to vulnerabilities and provide efficient tools for uncompromised server and system management. By auto-installing on advanced virtualization platforms such as VMware Virtual Infrastructure, they offer better scalability, higher availability, and flexible deployment options. Software Appliances for DNS, DHCP and IP Addressing (DDI) Nixu NameSurfer Suite is a secure management system designed for efficient, distributed management of organizations DNS data and IP address space. Nixu Secure Name Server (SNS) is a secure stand-alone server that can be operated as authoritative and/or as caching/recursive DNS server. Nixu DHCP Server is a secure, stand-alone DHCP server with configuration validations and built-in support for DHCP failover pairs. Nixu Network Equipment Extractor (NEE) has been designed to extract VLAN, MAC, Port ID and other information produced by routers and switches, in real time, and push that data to Nixu NameSurfer Suite IPAM. 3

Proceeding with DNS and/or DHCP Virtualization For organizations that have already implemented VMware Server, ESX Server or Virtual Infrastructure in their operating environment, virtualizing DNS and DHCP servers using Nixu Products is very straight forward. Generally speaking, the threestep installation process involves: 1. Booting up a new virtual machine with a Nixu Product installation media available at (ISO image with CentOS Linux inside). After the first virtual machine has been booted, it can be cloned into VMware Template simplifying the installation process even further. 2. Typing in basic network configurations such as an IP address, and installing VMware tools on the software appliance platform 3. Importing existing DNS data or DHCP configurations to the new virtual machine Solution Architecture and Related Considerations Illustration: DNS and DHCP services in a typical enterprise network The graph above provides a simplified illustration of DNS and DHCP services in an enterprise network environment. The descriptions below provide general guidelines on how DNS and DHCP services can be virtualized in a typical enterprise network environment. 1. Data center: VMware Virtual Infrastructure provides an excellent foundation for virtualizing DNS and/or DHCP services in enterprises. In order to ensure redundancy and availability, Nixu Software recommends the following solution architecture: 4

I. Centralized DNS and IP address management system that is used to manage the entire name and address space. This system would consist of single virtual machine with support for DNS views, so that internal and external authoritative DNS zones can be managed separately. II. Two or more virtual machines for internal authoritative DNS III. Two or more virtual machines for internal recursive/caching DNS IV. Two or more virtual machines running DHCP servers as failover pair If an enterprise has several data centers, it is recommended that a number of DNS and/or DHCP servers are distributed to different geographical locations for added redundancy. 2. Subnets: typically, subnets are workstation networks that rely on Microsoft AD for DNS and DHCP services. An alternate solution for providing DHCP and caching/recursive DNS services in subnets is to run software appliances as dedicated virtual machines on VMware Server or ESX server platforms. If this is not an option, management of authoritative DNS zone files in Microsoft AD servers can be centralized by configuring these zones files as slave zones for master zone files residing and managed in the centralized DNS management system described in paragraph 1 above. 3. External network / DMZ: external authoritative DNS servers residing in DMZ can be run on VMware Virtual Infrastructure as dedicated virtual machines. The data (authoritative external DNS zones) on these servers is managed using the centralized management system described in paragraph 1. 4. Remote Site(s): typically, remote sites are small(ish) networks that rely on Microsoft AD for DNS and DHCP services. An alternate solution for providing DHCP and caching/recursive DNS services in subnets is to run software appliances as dedicated virtual machines on VMware Server or ESX server platforms. By adopting the alternate approach, also other network services and resources can be run as virtual machines on the same virtualization platform. 5

About Nixu Software Nixu Software is a VMware Technology Alliance Partner specializing in virtualizationready DNS, DHCP and IP address management software appliances. All Nixu Products are certified for VMware Virtual Machine environments and can be used to build end-to-end DNS and IP addressing solutions. Headquartered in Helsinki, Finland, and with regional contact points in Americas, Western and Central Europe, and Asia Pacific, Nixu Software s mission is to offer the best value in industry by creating virtualization-ready DNS and IP addressing solutions that set the benchmark for combined security, ease of use and low cost of ownership. Nixu Products have an installed base of more than 3.000 instances worldwide. Our technology is used by nearly one third of all 2.5G and 3G mobile operators worldwide as well as by enterprises large and small from practically all industry verticals. Support Statement for VMware Virtual Machine Environment Nixu Software confirms that we will support customers running Nixu NameSurfer Suite, Nixu Secure Name Server (SNS), Nixu DHCP Server and Nixu Network Equipment Extractor on supported Operating Systems in a VMware virtual machine environment. Nixu Software will provide unqualified support for Nixu NameSurfer Suite, Nixu Secure Name Server (SNS), Nixu DHCP Server and Nixu Network Equipment Extractor running in a VMware virtual environment in an identical manner as with Nixu Products running on any other major x86 based system without initially requiring reproduction of issues on native hardware. Should Nixu Software suspect that the virtualization layer is the root cause of incident; the customer will be required to contact the appropriate VMware support provider to resolve the VMware issue. While Nixu Products are expected to function properly in a VMware virtual environment, there may be performance implications which can invalidate Nixu Software s typical sizing and recommendations. 6

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information