orchestration of iaas...

Orchestration of IaaS (Infrastructure-as-a-Service) Cloud Services and Cloud Hosted Applications such as Cisco HCS BRKSPG-2610

Yousuf Hasan ([email protected]), Manager Product Management, Cloud Systems Orchestration

Minal Santhosh ([email protected]), Product Manager, Cloud Systems Orchestration

© 2013 Cisco and/or its affiliates. All rights reserved. BRKSPG-2610 Cisco Public

Agenda

Introduction to Cloud Orchestration

Cloud Orchestration journey

Orchestrated VMDC – Joint Cisco & BMC Solution

• Overview

• Features

• Demo

Data Center Automation for HCS

• Overview

• Use Cases

3


Agenda




• Overview

• Features

• Demo


• Overview

• Use Cases

4


Public Private Hybrid Community

Deployment

Models

Service Models Software as a Service (SaaS)

Platform as a Service (PaaS)

Infrastucture as a Service (IaaS)

Essential

Characteristics On-Demand Self Service

Broad Network Access

Resource Pooling

Rapid Elasticity Measured Service

Cloud Defined

5


What is Cloud Orchestration

Cloud Orchestration enables Automation of IT lifecycle for

– Service Oriented Architecture

– On-demand Self-Service

– Resource Pooling of Converged Infrastructure

– Rapid Elasticity

– Measured Service

– Architectural abstraction and consistency

– Compliance and Policy Management

6

Portal, Catalog

Orchestrator

Storage

Virtualized & Bare-

Metal

Network

APIs, Workflows

End-User Admin DevOps


Market Trends in Public Cloud

7

• Extreme urgency in developing competitive cloud offerings and

operating models optimized around those offerings

• Cloud customers favoring SP driven public/multitenant clouds: • Reduced functional and trust gaps between private datacenters and

public cloud services

• Public cloud SPs have significantly lower costs than most private

datacenters

• Reduced Cost and Increased Differentiation: • Packaged and SaaS Cloud Management Solutions

• Focus on improved scalability, configurability and multi-tenant

capabilities

• Broad Cloud systems management software implementations: • Leverage Ecosystem with respect to best practices, configuration,

provisioning standardization and integration and implementation

• Increased priority on SMBs and Emerging market: • Emerging markets growing at the rate of 44.1% CAGR from 2011 to

2016

• Align with price points and functional capabilities optimized for these

markets

* Source: IDC’s IT Management Quick Poll Survey, January 2013


1

2

3

4

5

Simplify IT operations through consolidation, unification and automation of IT infrastructure

Reduce overall IT costs through greater efficiency of assets

Better aligning IT resources to business needs for flexibility and innovation.

Adoption of IT models that reflect today’s public and private usage demands

Cloud Services will Change the

Economics and Operations of IT

Improved pace and consistency of Business Application roll-outs

Customer Drivers for Cloud Adoption

8


System Development Unit Innovation and Quality Through System Level Design and Validation

9

System

Development

Fundamentals

System Development Guidelines

Planning Design End-To-End Validation Documentation

Unit

Featu

re

Inte

gra

tion

Syste

m

Custo

mer

www.cisco.com/go/designzone


Agenda




• Overview

• Features

• Demo


• Overview

• Use Cases

10


Simplified Functional View of Cloud Orchestration Where we are in the Journey

time

Portal, Catalog

Orchestrator

Middleware Network, Compute, Storage

Portal, Catalog

Orchestrator

Portal, Catalog

Orchestrator

today

sta

ck

Network

Resource

Controller

Compute

Resource

Controller

Storage

Resource

Controller

Network

Resource

Controller

Compute

Resource

Controller

Storage

Resource

Controller

SDN

APIs

Compute

APIs Storage

APIs

Trends

– Monolithic Orchestrators to tiered systems

– Bigger role for Resource Controllers, APIs, SDKs

– Multi-domain Service Catalogs

– Mix of Proprietary and opensource components

11


Cloud Orchestration 360 View

Service Orchestration & Catalogs (SML) Cross-Domain Mgmt (SML)

App Integration Layer

Application Devices

Application Domain Mgrs

Self-Service

HCS VXIaaS SPT

Application Services

Devices

Domain Mgrs

DC Infrastructure (VMDC) NGN/Mobile

Admin DevOps API Cloud Service Brokers, other

catalogs & portals

Network

Programmatic APIs

Cloud

Orchestration OpenStack / CloudStack

Resource Controllers Compute Storage

Resource

provisioning

IaaS Orchestration

Cloud

Orchestrator 2

Cloud

Orchestrator 1

Se

rvic

e A

ss

ura

nc

e

12


IaaS Orchestration & Resource Control: Today’s Building blocks

Cloud

Orchestration

Resource

Provisioning

Middleware

OpenStack / CloudStack

BMC CLM CIAC (Cisco Cloud

Orchestrator)

IaaS Orchestration

Network Compute Storage

Resource Controllers

PRIME Network Controller, One PK

APIs, Quantum,, BMC CLM (BNA)

Cloupia, XML API,

Nova, CloudStack,

BMC CLM (BSA)

Cloupia, BMC

CLM (BAO),

Cinder, Swift

Resource

Abstraction &

Control

Parallels CSB IAC (Cisco Cloud

Portal) BMC Portal

Cloud Service Brokers,

other catalogs &

portals

Cisco

Open Source

Third Party

13


Critical Success Factors in Cloud Automation

• Focus first on the use cases and business objectives, not on the automation tools and infrastructure

• Cloud Orchestration is a Service Lifecycle approach

• Propose solution within a functional architecture

Show that regardless of the specific toolset, we understand how to meet the requirement

• Favor validated solutions with out-of-the-box automation for critical use cases

Make sure the solution is right-sized to the requirement

Ensure fit to customer TTM. Beware of extensive one-off customizations (long development cycle, version management/support).

14


Customization vs Out-of-the-box Approach

15

# of

Customers

Served

% handled

“Out of the box” 20% 80%

Difference

in Models

•Validated/Certified

•Quicker TTM

•System SLA easier

•Can build Whole Offer

•Takes Longer

•Costs More

•Greater Flexibility

•Services Led


Cloud Orchestration Stack Overview

16

Compute Network Storage

Physical Infrastructure Element Management


Compute API Network API Storage API

Ph

ysic

al

Mg

mt.

Virtu

al

Mg

mt.

Intelligent Placement, Resource, Consumption, Event Management

User/Admin Portal System API

Service

Catalog

Federated

Resource DB

Service

Assurance

Manager

Billing Integration

SA API

Clo

ud

Mg

mt.

CRM Integration

CMDB Integration

Help

Desk

SA Integration

16


CLM Stack Overview

17





Ph

ysic

al

Mg

mt.

Virtu

al

Mg

mt.



Service

Catalog

Federated

Resource DB

Service

Assurance

Manager

Billing Integration

SA API

Clo

ud

Mg

mt.

CRM Integration

CMDBIntegration

Help

Desk

SA Integration

17


IAC Stack Overview





Ph

ysic

al

Mg

mt.

Virtu

al

Mg

mt.



Service

Catalog

Federated

Resource DB

Service

Assurance

Manager

Billing Integration

SA API

Clo

ud

Mg

mt.

CRM Integration

CMDBIntegration

Help

Desk

SA Integration

18


Cloupia (UCS Director) Stack Overview

19





Ph

ysic

al

Mg

mt.

Virtu

al

Mg

mt.



Service

Catalog

Federated

Resource DB

Service

Assurance

Manager

Billing Integration

SA API

Clo

ud

Mg

mt.

CRM Integration

CMDBIntegration

Help

Desk

19


OpenStack Stack Overview

Cisco Confidential 20





Ph

ysic

al

Mg

mt.

Virtu

al

Mg

mt.



Service

Catalog

Federated

Resource DB

Service

Assurance

Manager

Billing Integration

SA API

Clo

ud

Mg

mt.

CRM Integration

CMDBIntegration

Help

Desk

SA Integration

20


CloudStack Stack Overview





Ph

ysic

al

Mg

mt.

Virtu

al

Mg

mt.



Service

Catalog

Federated

Resource DB

Service

Assurance

Manager

Billing Integration

SA API

Clo

ud

Mg

mt.

CRM Integration

CMDBIntegration

Help

Desk

SA Integration

21


Orchestration Solutions Key Messages

22

Solution Today

BMC CLM • System-validated for Self-Service IaaS on VMDC 2.0, 2.1,2,2, 2.3 with

full multi-tenancy.

• Multiple SP deployments

CIAC • Currently positioned for Enterprises & Tier 2/3 SP with AS

customization

Openstack • Cisco Contributing to Quantum and Nova

• Openstack gaining lots of mindshare.

Cloudstack • Mix of SP, Enterprise customers looking at Cloudstack/CloudPlatform

Cloupia (UCS Director) • ICS Manager for Compute & Storage provisioning

• IT Managed Resource manager


Agenda




• Overview

• Features

• Demo


• Overview

• Use Cases

23


BMC’s CLM Value to the Cisco Cloud Orchestration and Automation of Cisco’s Data Center Infrastructure

Integration points including Cisco UCS, Cisco Nexus with testing and documentation

Tight integration of CLM + VMDC with joint product roadmap

Network containers, secure multi-Tenancy, heterogeneous support

Unique capabilities that enable innovative IT Service

Common solution for comprehensive cloud service, customer and application delivery

Cloud Management for Service Provider and Enterprise Data Center

Real-world experience in production situations, proven designs and accelerated deployments

3rd Generation Cloud Lifecycle Management

Simplify Network, compute and Storage configurations through pre-defined templates

Accelerate on-boarding of Tenants and Services to Cloud

24


Cisco – BMC Strategic Alliance

First UCS BMC

BladeLogic

OEM wins

BMC

BladeLogic &

UCS

Development

Service Provider

wins : EMEAR,

APJC

Expanded

Strategic Alliance

Announcement

BMC ProactiveNet

Perf Mgmt

& BMC BladeLogic

Compliance OEM

agreement

BMC

BladeLogic &

UCS

Announcement

2011 2009 2010

CLM Resale

Agreement

announced

at GSX FY’12

2012

CLO-VMDC

2.0 (CLM 2.1)

CVD Release

2013

CLM 1.01

Release CLO-VMDC

2.2 (CLM 3.0)

CVD Release

CLO-VMDC

2.2 (CLM 3.1)

CVD Release

Service

Provider

win: LATAM

Enterprise

win : US

Service

Provider

win: LATAM Service

Provider

win: EMEAR

25


Unique Joint Solution – Out of the Box

Orchestration describes the automated arrangement, coordination, and management of complex computer systems, middleware, and services

Unified Service Delivery

Cloud Lifecycle

Management

Common Physical

Infrastructure

Partners

Virtualization

Resource

Manager

Server

Automation

Cloud / App Service Management

IP Next

Generation

Network

Service

Provider

Data Center

Compliance

CMDB

BM

C A

trium

(Inte

gra

tion

& O

rch

es

tratio

n)

Service

Catalog

Self-Service

Portal

Network

Automation

Unified

Fabric

Unified

Computing

Peering and

Interconnect

Network

Intelligence

Secure Network

Container

Architecture

Pre-integrated

HW

Storage

Service

Governor

Orchestration

Engine

26


Unified Data Center Networking

Integrated Compute Stacks

Compute NAS SAN

VM

DC

V

MD

C

VM

DC

Data Center

Access

Services

Aggregation/Access

Core

VM

DC

Cloud Service

Management

Cisco Virtualized Multiservice Data Center Comprehensive, Modular and Flexible Approach

Business

Support

Provisioning

Configuration

VMDC

Portability/

Interoperability

Cloud Intelligent Network

27


MPLS Core

Enables per-VM segmentation of traffic w/full switching via VN-Link

Isolates L2 / L3 customer traffic via VLANs, VRFs, & Virtual Device Contexts

Enables monetization of differentiation by enabling value added services (e.g. SLB, Firewall)

Enables seamless extension of tenants between pods via OTV

COMMON PHYSICAL

INFRASTRUCTURE LOGICAL VIEW PER TENANT

OR SERVICE

FABRIC

PATH

Secure Multi-Service Network Containers Logical Network topologies

28


VMDC Validated Infrastructure (IaaS) Common Infrastructure – Differentiated Containers

VMDC 2.1

Palladium

L2

L3

FW

LB

LB

Public Zone

Private Zone

VMDC 2.2

Expanded

L2

L3

FW

LB

LB

vFW

vFW

FW

Protected

Back-End

Protected

Front-End

VMDC 2.0

Silver Gold Bronze

L2

L3

L3

vFW

LB

L2

L3

L3

vFW

FW

L2

L3

L3

vFW

LB

29


CLO – VMDC (CLM) – Solution Overview Cisco Validated Design

Provides an end-to-end automated lifecycle management solution for cloud-based IT hosting environments

Integrated full-stack cloud services from the network to applications

Integrated policy definitions to govern multi-tenancy, security, and make intelligent decisions on placement of provisioned services

Provides a complete self-service, Service-Catalog driven platform for Automation, Orchestration, and Management

Pre-defined and Pre-Validated Out of the box Network and Service blueprints for VMDC based Cloud Deployments

Integration to “Day 2 management” – Billing Systems , Service Assurance Systems

Operational Repository

Map to CMDB

Network Services

Secure Network Containers

FlexPod, Vblock

Networks

Integrated Compute Stack

Storage Servers

Virtualized Multiservice Data Center

Resource Management

Service Governor

Service Blueprint

Network Blueprint

Storage

Service Catalog

Service Catalogs

Design Services and Options

Translate to Business Offerings

VXI, HCS, IaaS

User completes a Service Request

30


CLO – VMDC – System Components

31

Network

BNA BSA Compute

VMDC 2.0/2.1/2.2/2.3

UCS B & C Series/UCSM

Compute NetApp/EMC

Storage Nexus/VSS/ASA/ACE/

ASR/CRS/VSG

Network

VMware vSphere, Citrix XenServer, Microsoft

Hyper-V

Virtual Compute

Cloud Portals

Service Catalog

Service Governor

Cloud API

MoM


Network Container Blueprints Deploy Secure VMDC Containers

Provides the customer with a fully secured and segmented environment as defined in Cisco’s VMDC architecture and Cloud Services

Elimination of administrative errors through service automation

Reduced cost through removal of skilled network engineers for network configuration

Abstraction of complexities from the user

Flexible Network Container blueprints for reserving resources during runtime

Reduction in service deployment time

Minimizing coordination of technologies between silos

MPLS Backbone

Physical Topology

Cloud

Service/Tenant 2

Cloud

Service/Tenant 1

32


Description:

• Allows a provider or tenant to create a container based on a fixed set of objects which cannot be modified after initial creation other than changes to Firewall and Load Balancing

Use Cases:

• Create Container

• Delete Container

• Add / Remove Server to/from Container

• Manage Load Balancer (LB) Pools

• Manage Server Entries in LB Pools

• Manage FW Rules

Description:

• Allows a provider or tenant to create a container dynamically which is not possible using the catalog of objects and relationships between the object provided in the Flexible container model.

Use Cases: • Flexible Container Use Cases

• Scale out max server capacity beyond initial blueprint definition

• Provider needs to add more public and private IP addresses for Tenant that has reached the limit of the blueprint

• Scale out topology • Provider wants to add new service

offering to existing containers (i.e. Platinum beyond Gold)

Description: • Allows a provider or tenant to

create a container based on selection of a subset of objects from a catalog containing all possible objects and relationships between the objects. Provides boundaries with respect to what can be built.

Use Cases:

• Static Container Use Cases

• Modify Container: • Enable/disable Networks to

add/remove server capacity

• Enable/disable Load Balancers to add/remove LBs to/from existing Networks.

• Enable/disable Zone to add/remove firewalled Networks

• Add/Remove vLANs in a zone

33

Dynamic Container

CLO - VMDC 2.3 (CLM 3.1)

Static Container

CLO – VMDC 2.0,2.1 (CLM 2.1)

Flexible Container

CLO – VMDC 2.2 (CLM 3.0)


Network Container Evolution

VMDC 2.0 + CLM 2.1 CRS, N7k, C6k, FWSM, ACE20

VMDC 2.1 + CLM 2.1 C6k, N7k, FWSM, ACE20

VMDC 2.2 + CLM 3.1 (With VSG & Expanded

Gold container) A9k, N7k, C6k, ASA, ACE30

VMDC 2.2 + CLM 3.0 4-Zone Flexible Container

(No VSG) A9k, N7k, C6k, ASA, ACE30

Flexible Container

34


VMDC 2.2 Expanded Gold Container

• Flexibility built into Network Blueprints

• PVT Zone enabled by default.

• DMZ zone is Optional.

• Each zone can be enabled with one or more

VLANs.

• Each zone can be enabled with VSG if needed.

35


VMDC 2.2 based Flexible Container

36


Cloud Service Blueprints Deploy VMs (Compute & Storage)

Exposed through Service Catalogs for Cloud End User

Functional Blueprints – Defined by service architects – Provides the “Enterprise architecture” view

of a given service (IaaS, HCS, DaaS) – Contains descriptions of functional

components and their connections

Deployment Blueprints – Defined by IT personnel responsible for

deploying Cloud Services – Provides the deployment time view of a

given Cloud Service – Describes resources required for normal

service operation

Can have multiple deployment blueprints per functional blueprint

37


Policy Based Service Governor Intelligent placement of resources (VMs & DataStores)

Places workloads in the most appropriate execution venues based on business and organizational policies

Intelligent placement across distributed cloud resources based on flexible policies

– Services (IaaS, HCS, DaaS)

– User Role

– Compliance

– Location

– QoS attribute

– Tenant

38


D:\

/data

Storage Provisioning: Server is indirectly connected to storage array, via hypervisor layer

Virtual Machine Cluster of hypervisors and datastore

(vSphere or Citrix XenServer)

NetApp SAN or NAS, EMC SAN or NAS, VCE Vblock,

SMT FlexPod

BMC Cloud Lifecycle Management

Managed by CLM

• Storage is indirectly connected to VM via the hypervisor layer • More vendors and models

supported, but only virtual • Supports Fiber Channel (FC)

FC

39


D:\

/data

Storage Provisioning: Server is directly connected to storage array

Virtual or physical machine

Atrium Orchestrator Adapter

NetApp SAN or NAS (OOB), EMC

SAN (requires customization)

BMC Cloud Lifecycle Management

Managed by CLM

• Storage is directly connected to VM using AO adapter

• Fewer vendors and models supported but supports virtual

and physical

CIFS, iSCSI, or NFS

40


Service Request Management Empower End Users

• Allows to easily define and publish service catalogs in a web portal

• Intuitive web user interface that provides information easily understood by users

• Orchestrates and automates the fulfillment of service requests based on predefined templates and approval policies

• Multiple Languages Support: English, French, German, Italian, Spanish, Portuguese, Korean, Japanese, Chinese

• Measure and analyze demand for existing and new services to adjust service offerings through audits

41


Integration to Cloud Assurance & Billing Systems

42

CLM provisions the

service

Up-to-date

pricing can be

reflected in

Portal

The business

manager

generates reports,

P&Ls and

recommends price

revisions Business Manager

BMC CLM

A tenant user

requests or

changes a service

at the Portal Tenant User

Start here!

The chargeback

administrator

defines costs and

sets prices

Chargeback Administrator Billing Engine

Billing Engine

Database

Zenoss collects actual usage data for the service

Automation sends a changing event to Billing

Engine


End to End New Request Flow

DML

Cloud DB Enterprise

CMDB

Updates

Service Governor

Resource Manager Resources Available in Portal

Cloud Admin/End-User

Self-Service Portal or

API Access

Service

Catalog

Service

Blueprint

Deployment Model 1

Deployment Model 2

Deployment Model 3

Maps to Service Blueprint Service

Offering

Makes Placement

Decision

Provisioning of

Compute, Storage

and Network

Integration with Change,

Assessment Mangement

BNA

Network

BSA

Compute

BAO

Storage

3

1 2

4 Deployment Model

8

5

6

7

= Partial Virtualized Multi-Service Data Center

43


Aggregation

Services

ICS

Virtual Access /

Compute

Nexus

Nexus 1000V,

6500, ASA, ACE

UCS Blades

Wan/Edge

ASR, CRS

Nexus

Multi - Hypervisor

UCS FI

vCenter

VSG

SCVMM

CLM

VM

DC

Multi-Hypervisor Support

44


Hyper-V Workflow

45


Multi-Site Orchestration

46


Target Use Cases – Out of the Box Use Cases (Cloud Admin) Use Cases (Cloud End User)

Service catalog items (NetworkaaS, IaaS Services) Request Services from Service Catalog

Network Container Definition Create/Remove VM snapshot(s)

Software packaging of off-the-shelf software (WAMP/LAMP) VM Provisioning using VM template cloning

Manage Tenants (On-board Tenants & Manage Lifecycle of Tenants) VM Start / Stop / Restart/ Decommission

Define Placement Policies for the workload within Network Containers Modify vCPU /RAM

Deploy Network Containers and associate them to Tenants Extend VM lease

Manage Lifecycle of Virtual Network Services VMs View and Request Storage resources

IPAM (Including integration to 3rd

party IPAM Vendor such as Infoblox) Manage Firewall Rules for deployed servers

Firewall Management Add/Remove Server from Load Balancing Pool

Bare-metal server provisioning (Windows/Linux) Application, Database & Web Server Provisioning

Dashboard visibility of CPU/RAM utilization Server Compliance – (Customizable & Industry Standards SOX (Financial),

HIPPA (Medical), PCI (Financial))

Manage Multiple Hypervisor Environments (VMWare, Hyper-V ) Add additional storage disk (on pre-existing VMFS datastores)

Manage Multiple Storage Environments (EMC, NetApp)

Deployment in High-Availability (HA) mode

Multi-site deployment (hub-spoke)

AD/LDAP Integration for user authentication

Compliance on DC Infrastructure (Network Configuration, Server Configuration)

– (Customizable & Industry Standards SOX (Financial), HIPPA (Medical), PCI

(Financial))

Cloud API SDK for integration with external systems

(Billing, Cloud Assurance, CSB etc.)

47


CLO-VMDC (CLM) – Solution Summary Orchestrate Network, Compute and Storage

Validated, integrated and comprehensive system for accelerated opex/capex savings

Secure, Scalable, Multi Tenant deployment of infrastructure platform supporting a wide range of Cloud Services

Simplified new Service Creation through Out of the Box Flexible Network and Service Blueprints

Rapid deployment of tenants from sandbox to cloud services roll-out facilitated by Service Catalogs

Intelligent, Flexible, policy-driven service placement based on business process and service needs

Enhanced user experience through Self Service access to Cloud Services

48


Customer Use Cases with VMDC and CLM

Customers Delivery Specifics

US Tier-2 SP VMDC Infrastructure Architecture deployment with 7 automated custom Network Containers

on BMC CLM 1.x

US Cloud SI VMDC Infrastructure & BMC CLM 1.x & 2.x delivered

EU Tier-1 SP VMDC with CLM 1.x in Production, Flexible Network Containers

APAC

National

Carrier

Data Center with VMDC and CLM Orchestration in Production. Considering upgrade to CLM

3.x.

US Tier-1

Wireless SP

Build for automation of agentless apps with VMDC Infrastructure and BMC CLM 2.x.

LATAM Tier-1

SP

Multiple countries in LATAM, VMDC Infrastructure, Automation with BMC CLM 2.x and

Parallels Cloud Services Broker

49

Orchestrating VMDC 2.2 using CLM 3.1

CiscoLive-CLM-Recording/CLM-Session-Recording.wrf


Agenda




• Overview

• Features

• Demo


• Overview

• Use Cases

51


Hosted Collaboration Solution (HCS) Brings together collaboration architectures with data center / cloud computing systems

Unified Communication System • Deliver a unparalleled user experience

HCS Management System • Zero-touch automation & proactive system assurance

Optimized Virtualization Platform • Provides hardware efficiency, customization, & scaling

Scalable System Architecture • Aggregation, Security, Network Integration & CBSA

52


HCS End Customer On-Boarding ProcessCurrent State - Manual (HCS 9.1.1)

53

Manual

Process


Current Pain Points for End Customer on-boarding

Time consuming and Error prone Network, Compute & Storage configuration for end customer on-boarding – Takes 4 days for a CCIE to configure and validate the network, compute and storage using scripts

– Higher cost to manage and maintain

Lack of tool to capture the best practices for the complete Network configuration for end customer on-boarding – The process is manual in nature for a large extent

Very complex placement algorithm – Difficult to manually decide and enforce

– Leads to longer time for provision

Lack of IT best practices – Non-Systematic approval and change management process

54


HCS Network Variations from VMDC

• CUBE configuration changes and NAT implementation required.

• ASA support to create one to

one NAT.

• Call patterns will need to be routed based on the destination

55


Placement Requirements for both NOS (Non-Over Subscribed and OS (Over Subscribed)

1. At the Application type (Voice or VM or Presence) Level

2. For each Application Instance (AI) (does not matter if there are multiple AI’s per tenant or not, we only care about the individual AI).

3. Each Application Instance Node (AIN) should be as distributed as possible across Datastores/Blades/Chasis. (Only relevant for NOS)

4. Application Instance Nodes tagged for anti-affinity must be distributed across Datastores/Blades/Chasis (if more than one Chasis in the deployment). Failure to meet this must result in failure.

Example:

VM1 (A), VM2(A’), VM3(B), VM4(B’), VM5, VM6 VM1 and VM2 must be on different hardware (rule 4)

VM3 and VM4 must be on different hardware (rule 4)

All 6 VMs should be on different hardware

56


SiSi SiSi

L2

L3

Tenant Red

Tenant Green

vPC Layer 2 Trunks

HSRP/Layer 3 gateway

Layer 2 Trunks

L3

L3

Layer 2 Trunks

MPLS

Core

Aggregation

L3

L3

WAN Edge

Placement of VMs and Data Stores for HCS Tenant

Vlan-A

FW-A

Storage

Green

VRFs

Onboard HCS

Tenant Green for

HCS Service Offer A

Green FW

Context

Green

vlan

FW-A

Application VM

Placement for HA

of Applications

VM-1 VM-2

VM-3 VM-4

Storage

Allocation for HA

VM1

VM2

VM3

VM4

FW-B

VM-1 VM-2

VM-3 VM-4

FW-B

VM1

VM2

VM3

VM4

Vlan-B

57


Unified Service Delivery

Collaboration

HCS

Unified

Computing

Unified

Network

Services

Unified

Fabric

Unified

Communication

& Collaboration

Apps

Cloud Optimized

Platform

Flexible

Deployment

Models

SP Data

Center

Cisco’s Corporate Cloud Strategy One Platform, Many Cloud Services…

Orchestration and Management

Infrastructure

as a Service

Cloud Collaboration

Services

58


How HCS can leverage VMDC & CLM

Efficiency through use of scalable multi-tenant infrastructure

On-Demand Scalability

HCS takes advantage of VMDC advances

Host multiple SaaS/Paas apps along with HCS

Infrastructure Accelerated

on-boarding of customers

Repeatable Templates for Configuration (Blueprints)

Fewer errors, improved productivity and quality

Unified operator experience across IaaS and HCS

Capex

reduction

- Mutualization

of applications

on to a

common

infrastructure

Opex

Reduction

- Repeatable

process

- Faster TTM

from 4 days

to few hrs

days to bring

up the infra

- Maintained

and

supported

by Cisco

HCS / Cloud

Orchestration

59


Vision for Integrated HCS and IaaS Fulfillment

Cloud Orchestration

(IaaS catalogs, HCS-IaaS blueprints, VM

Setup)

IaaS (IT Services)

Network & VMs HCM - Fulfillment

(UC Instantiation)

UC Domain Mgr

HCS (UC&C Services)

UC Applications

Service Management Layer (SML) (Service Catalog, Portals, Workflow, Application layer service orchestration)

Network

Domain Mgr

Compute

Domain Mgr

Storage

Domain Mgr

VMDC Infrastructure

Integrated Compute Stack (vBlock (VCE)/Flexpod (NetApp)

60


HCS-VMDC Fulfillment Integration - End State SML CLM HCS VMDC

Order Mgmt & Service Inventory Integrated HCS + DC Service

catalogs

Manage Life Cycle of HCS + DC

Services

Applications Sizing & Resource

definition Mapping to templates

Calculate compute, storage and

VMs required

Manage DC resource allocation

Orchestration between IaaS and

HCS Customer Order fulfillment

Manage LifeCycle of Customers

& Services Create, Update, delete customers

and services

HCS Network Container and Service

Blueprints Resource Allocation & Management

Storage Configuration

Service Blueprints for VM allocations

Support VM rules for deployment of UC

applications

Manage LifeCycle for Network

Container and Service Blueprints Create, Update and Delete Network

Containers, Service Blueprints and

Templates

Multi-Site support for Cloud-O

Orchestration of Backup & Restore

Integration to Cloud Assurance &

Resource Accounting Chargeback

UC Application

Deployment Create UC applications

templates

Create Platform

Configuration files

Install UC applications

Clone and move apps

Configure licenses

UC Application

Configuration (CUCDM) Configure SIP Trunks,

Dial Plan, security,

regions etc on CUCM

Configure HCS End

Customer Services such

as voice, voice mail,

Presence, Contact Center

Modular, Scalable

Infrastructure Modular, Scalable DC

design based on multi-tier

L3 centric architecture with

compact to large scale

integrated compute stacks

(Vblock, Flexpod)

High Availability, Multi-

Tenancy

End to End Infrastructure

Security Comprehensive security to

support “defense in depth”

policies

Profile based allocation of

resources and services

DC Interconnect w Geo

Redundancy Multiple DCs extended over

L2 or connected over L3

61


Vision: SP Service Mgmt Layer (SML) Integration with Cloud-Orchestration and HCS

62

SML Pre-Defined Application

and Resource Mapping

Cloud-O IP Resource Pool

Cloud-O Select the Templates

Check Resources Configure FW, VLAN,

Configure and bring-up VMs with SKIP

install.

Cloud-O Bring up the DNS, populate the IP and

hostname mapping

Cloud-O VM status, DNS, NTP and Nated IP

addresses of UC VMs

HCS - Fulfillment Run the scripts to automate the UC

applications PUB and SUB configurations

HCS - Fulfillment Send Nated IP address of PUB and SUB and

other pertinent requirements to Cisco UCDM

Cisco UCDM Activate HCS Services for

Subscribers

2

7

5

6

8

9

4

SML IP/hostname Mapping

IP Resource

SML Order Management

SML CLOUD – O & HCS – F

Integration

1 3

HCM – F - API

HCM – F - API


Effort for on-boarding of HCS customers reduced 75% (from 4 days to a few hours)

via automation and provisioning integration, leveraging pre-configured templates

delivered out of the box in Cloud Orchestration

Template-based HCS provisioning on VMDC for on-boarding HCS end-customers.

Templates enabling custom placement of VMs for HCS UC Apps.

Increase/Decrease VM Capacity (CPU & Mem) based on updates for customer size

and services

Leverage the out of the box HCS Network container and Service blueprints for On-

boarding/de-boarding of HCS Customers

Modify End Customer DC Resource Needs

Deployment of HCS across Multiple Data Centers

Multiple Integrated Compute Stack - vBlock & Flexpod Geo Redundant HCS UC and Mgmt Applications

End to End Security for HCS

Incremental Value

Use Cases Supported

HCS on-boarding to VMDC Systems HCS OB – 1.0

63


HCS End Customer On-Boarding Process Use Case Evolution – Out of the Box support – HCS OB 1.0

64

Manual

Process

Automated

Process


Out of the box support in CLM for HCS – On Boarding

• Automated provisioning of Network, Compute and Storage

• Standardized host naming convention

• Standardized sizing and configurations

• Out of the box Service Catalogs

• Automated placement following best practices

• Standardized approval and change management process

• Supported by Cisco Validated Design

• Result: Significant reduction in Network, Compute and Storage provisioning for end customer on-boarding to HCS: Reduced from 4 days to few hours

65


HCS Service Blueprints

HCS Service Blueprints encapsulate: Application Type: Cisco Unified CallManager (CUCM) – Voice Service

Cisco Unified Presence (CUP) – IM & Presence Service

Cisco Unity Connection (CUCxn) – VoiceMail Service

Number and Type of each HCS UC-App VM

HCS UC-App VM Compute Placement Logic: Vmware Cluster Type: Over-subscribed (OS) Cluster – Allows over-subscription of resources

Non Over-subscribed (NOS) Cluster – 1 vCPU: 1 Physical Core mapping

VM Anti-Affinity Rules

HCS UC-App VM Datastore Placement Logic VM Datastore Anti-Affinity Rules

UC-App VM deployment sequence

66


Sample HCS Service Blueprint

67


Sample HCS Resource Set Definition

68


HCS Service Blueprint Tagging

Policies in BMC Cloud Lifecycle Management can help you control which available resources are used when a user-requested service instance is created in the cloud.

Policies are managed through the Service Governor workspace.

Policies are based on resource tags.

CLM Service Governor will be used to set up the tag level policies for Tenant and Service Blueprint for first level filtering of compute pools and virtual disk repository pools.

HCS Custom Provider will make the final decision of HCS UC-App VM Compute and Datastore Placement.

69


HCS Service Offerings

70


Benefits to HCS Customers

Infrastructure:

• Reduced business risks via fully architected and tested DC system

• CAPEX and OPEX efficiencies through use of scalable, secure multi-tenant DC infrastructure

• Deploy HCS alongside other application services with full separation of tenants and resources

• Provide for elastic scaling of HCS for the operator as demand grows.

Orchestration & Management:

• Consistent approach for how application services can leverage cloud orchestration

• Accelerated On-Boarding of HCS end customers = OPEX savings and faster Time-to-Revenue

• Improved configuration accuracy through pre-defined blueprints

71


Summary




• Overview

• Features

• Demo


• Overview

• Use Cases

72


Key Takeaways

Focus on the requirements, not the tools. Cloud is a consultative approach, not a product view.

Validated solutions for IaaS provide a foundation for offering PaaS and SaaS.

A standard approach linking application provisioning to IaaS Orchestration makes it easier to maximize ROI

Evolution of VMDC to a Virtual Services Architecture will bring major benefits in terms of automation simplicity

IaaS-related use cases are covered by validated Cisco solutions. Others will require a custom approach. Leverage Out-of-the-Box solutions where available.

73


Look for the Cisco Powered logo to achieve:

• Faster time-to-value

• Assured performance

• Continuous innovation

Cisco Powered services enable you to connect with confidence

• Cisco validated architectures

• Rigorous partner certifications

• Deployed solutions are third-party audited

• Documented cloud scalability

• End-to-end security

• Commitment to open standards

• Highest percentages of R&D investment-to-revenue

Cisco Powered Services are Unique

www.cisco.com/go/ciscopowered

Cisco Powered Cloud and Managed Services

74

http://www.cisco.com/go/ciscopowered

http://www.cisco.com/go/ciscopowered


Design Zone and Partner Tab: http://www.cisco.com/en/US/solutions/ns340/ns414/ns742/cloud_orchestration_bmc_clm.html

Additional ResourcesCLM Design Zone

75

http://www.cisco.com/en/US/solutions/ns340/ns414/ns742/cloud_orchestration_bmc_clm.html

http://www.cisco.com/en/US/solutions/ns340/ns414/ns742/cloud_orchestration_bmc_clm.html


Related Cisco Live Sessions

BRKSEC-4025

– Building Flexible and Secure Cloud Containers

BRKSPG-2802

Cloud orchestration in the Service Provider with Intelligent Automaton

BRKSPG-2681

– Cloud Service Assurance for Virtualized Data Center and Hosted Applications and other data center topics.

76


Maximize your Cisco Live experience with your

free Cisco Live 365 account. Download session

PDFs, view sessions on-demand and participate in

live activities throughout the year. Click the Enter

Cisco Live 365 button in your Cisco Live portal to

log in.

Complete Your Online Session Evaluation

Give us your feedback and you could win fabulous prizes. Winners announced daily.

Receive 20 Cisco Daily Challenge points for each session evaluation you complete.

Complete your session evaluation online now through either the mobile app or internet kiosk stations.

77

Appendix


Cisco and BMC Joint Offering Joint innovations and testing

What We Offer Now: Automated provisioning of end to end components that make up the cloud infrastructure (VMDC 2.0, 2.1 and 2.2 Platforms)

Automated Deployment of secure network containers based on static pre-defined, or dynamic run time defined models

Provision sophisticated network containers to satisfy the application requirements:

Public/DMZ zones

Protected zones (up to six levels)

Public and/or private IP addresses (with or without NAT)

Load Balancer Services on individual security zones

Establish the connection to network services within a VDC zone Internet Connected VDC Zone

MPLS Connected VDC Zone

Portal driven automation for on demand resource consumption

Supporting customer portals and store-fronts that can link to third-party cloud providers

Highly available provisioning tools that can survive infrastructure failures

Resource Reservation Model through Service Catalog integration

Provision services based on multiple hyper-visors such as Vmware (ESXi), Microsoft (Hyper-V), Citrix (Xen Server)

Easier support for phased deployment of the Data Center from Standalone Integrated Compute Stacks (Flexpod, vBlock) to full VMDC

architecture

Deployment support for Multi-Tenant/Service across Multiple Data Centers through a Single Instance of CLM

What to Expect in July 2013: Support for VMDC 2.3 Platform (Smaller Footprint.)

End to End Provisioning of Hyper-V VMs with Network provisioning

Scale & Performance Testing: Provision 5000 VMs distributed across 100 Network Containers in multiple data centers

80


What is a Cisco Network Container?

•Network administrators can

•Quickly and easily configure physical and

virtual network infrastructure

•Deploy network services to interoperate with

computing and storage resources

•Provides a level of abstraction through

templates

81


Role Based Access Control (RBAC)

82

Cloud

Admin

Tenant

Admin

Tenant

End-User

Pod Management Yes No No

Container Management Yes No No

Compute Resource Management Yes No No

CRUD Service Blueprints Yes No No

Create/Manage Service Offerings & Policies Yes No No

Create & Delete vLB Pools Yes Yes No

Add and remove vFW Rules Yes Yes No

Add and remove resources from vLB Pools Yes Yes Yes

Add and remove Network Paths Yes Yes Yes

Monitor Resource Health Yes Yes Yes

Service Provisioning & De-provisioning Yes Yes Yes


Evolving from Vblock & Flexpod to VMDC

83

Aggregation

Services

ICS

Virtual Access / Compute

Nexus

Nexus 1000V,

UCS Blade

s

Wan/Edge ASR, CRS

Nexus

UCS FI

VSG

VM

DC

CLM can manage Containers & VMs in Flexpod / Vblock environments, and can help migrate them into a full VMDC environment

Vblock

Flexpod


Enable Compliance and Governance Contribute to Configuration Policies

IT Process Integration

– Enforce license compliance

– Federate CMDB/CMS

– Enable incident and problem management

Continuous Compliance

– Enforce regulatory, operational, and security compliance

– Facilitate auditing

– Integrate change management

Financial Management

– Enable billing (show back. chargeback)

– Drive usage accounting

– Actively manage suppliers

Automated Provisioning

Cisco UCS Physical Blades

Cisco UCS Virtual Servers

Cisco Nexus Network

Storage Cloud

CMS +

CMDB

Op

era

tio

ns

Performance Management

Compliance Management

Metering and Chargeback

84

HCS on-boarding use cases


Assumptions

HCS Partner (Service Provider) is using VMDC (Virtual Multi-Services Data Center) as a single platform to deploy multiple services

HCS Partner would deploy HCS across single or multiple data centers

– In Multiple Data Center Deployment, the HCS Network Container will be instantiated individually in those data centers

– For Geo Redundancy scenarios, the Network container and Service Blueprints will need to be instantiated in both geo-redundant data centers

HCS End Customers will not access the CLM Portal for any Life Cycle Management of Services

Centralized CLM deployment managing multiple Data Centers

Cloud Admin has tenant management privileges

If HCS Admin is managing tenants and users, should have appropriate tenant management privileges

86


Roles

Cloud Admin:

– Cloud Admin is used to deploy the VMDC architecture on which HCS is deployed.

– Cloud Admin is responsible for pre-provisioning setup of CLM

– Cloud Admin is responsible for creating the Tenant and the network container in CLM

– Cloud Admin is responsible for modifications of the out of the box Network Blueprints and Service blueprints or creating new ones if required

– Cloud Admin is responsible for creating Service Offerings and Request-able Service Offerings leveraging the Service Blueprints

HCS Admin:

– HCS Admin is responsible for creation of any golden templates for UC applications

– Provides the Tenant (HCS End Customer) Details (Name, Location etc.) to the Cloud Admin

– Manage a Tenant or a group of Tenants

– Makes a request for the Service Offerings for a Tenant

– Views the Inventory of Network, Compute and Storage allocated to the Tenant

87


Pre-Setup Activity - Manual

Network Topology & Services

Definition 1

Cloud

Admin

HCS

Admin

Network

Architect

Define POD/s and Add

Physical POD/s to the Data

Center/s

2

Compute Pool Definition (vSphere

Clusters, DataStores 4

Golden Template Definition 5

3

Network & Service Blueprint

Evaluation and modification

88


Day 0 Pre-Provisioning Setup in CLM Create Service

Provider Organization

1

Cloud Admin Portal or

API Access

Name, Locations, Roles

and Responsibilities

On-Board Phyiscal

POD/s to CLM

2

VMDC POD

Import HCS Network Blueprints

corresponding to the on-boarded POD/s

3

HCS Network Blueprints,

POD/s Cre

ate

HC

S

Specific

Tags

HC

S T

ag

4

On-Board virtual

compute resources

corresponding to CLM

5

VMware, POD/s,

cluster/compute

pools

Create compute pools

6

Pool Name, POD/s, Virtual

Hosts/Virtual Disk

Repository, Tag

Create Entitlement Packages,

Service Offerings &

Requestable Offerings

7

Name, Service Blueprint,

Deployment Definition,

Medium (Upto 7.5K Subs)

Large (> 10K Subs)

Small (Upto 2.5K Subs)

Cre

ate

Post

Deplo

y

Optio

ns

CP

U C

ount a

nd

Mem

ory

VM

Incre

ase/D

ecre

as

e 8

89


Day 1 On-Board Tenant (HCS End Customer) to CLM

HCS End Customer

Information

1

HCS Admin

Name, Location, Address,

Customer Sizing

information

Create HCS End

Customer Tenant in CLM

2

Customer Name,

Address, Tenant Admin

Provision Network Container

3

HCS Network Blueprint,

Data Centers Map H

CS

End C

usto

mer a

nd

com

pute

pool to

the N

etw

ork

Conta

iner

Tenant, C

om

pute

Pool,

Netw

ork

Conta

iner

4

Cloud Admin

Portal

Cloud Admin

Notify that HCS End Customer has been

created and network has been configured

5

Container Name, VRF Name, Server vLAN,

IP subnets for VMs, port-profile name HCS Admin

90


Day 1 Activate Service for Tenant (HCS End Customer) in CLM

Request for new Service through

‘mycloudservices’ portal

1

Service Catalog,

deployment model

Execute Identity script for UC Services

through HCS/IPA Portal

3

UC Apps Identity, IP address

HCS Admin

through Self

Care Portal

Get details of the VM provisioned

through the ‘mycloudservices’ tab

2

VM Name, ip addresses

91


Day 2 Delete Service for Tenant (HCS End Customer) in CLM

Request to delete service through


1

Service instance

HCS Admin

through Self

Care Portal

Check that VM is de-provisioned


2

VM Name

92


Day 2 Delete Tenant (HCS End Customer) in CLM

Request to delete service through


1

Service instance

HCS Admin

through Self

Care Portal

Check that VM is de-provisioned


2

VM Name

Cloud Admin thru

Amin Portal

Notify that HCS End Customer

needs to be deleted

3

Tenant

HCS Admin

Decom

mis

sio

n th

e N

etw

ork

Conta

iner/s

associa

ted th

e

Tenant

Tenant, N

etw

ork

Conta

iner

4

Delete the Tenant in CLM

5

Tenant

Cloud Admin

Notify the HCS Admin that HCS End

Customer has been deleted

6

Tenant

93


Day 2 Add New Subscribers to a Tenant (Add new capacity (CPU, RAM, Storage)) in CLM

Modify the VM through ‘mycloudservices’ portal

using the Post Deployment option for the VM

2

Tenant, VM/s, vCPU, Memory

HCS Admin

through Self

Care Portal

HCS Admin

Determine the CPU Count and

Memory to be modified for the VM

or a set of VMs

1

vCPU, Memory, VM/s

Modify the VM through ‘mycloudservices’ portal

using the Post Deployment option for the VM

2

VM (Increase/decrease)

HCS Admin

through Self

Care Portal

HCS Admin

Determine the VMs to be decresed

or inceased for the existing Service

1

vCPU, Memory, VM/s

Case a: Increase/Decrease CPU and RAM for existing VMs

Case b: Increase/Decrease number of VMs for a particular Service (Add or Remove

VMs to an existing group of service (voice, voicemail etc.))

94


Geo-Redundancy Scenario for HCS on-boarding

HCS End Customer

Information

1

HCS Admin

Name, Location, Address,

Customer Sizing

information

Create HCS End

Customer Tenant in CLM

2

Customer Name,

Address, Tenant Admin

Provision Network Container in active

and standby data centers

3

HCS Network Blueprint,

active and standby Data

Centers

Map H

CS

End C

usto

mer a

nd

com

pute

pool to

the N

etw

ork

Conta

iner

Tenant, C

om

pute

Pool,

Netw

ork

Conta

iner

4

Cloud Admin

Portal

Cloud Admin

Notify that HCS End Customer has been

created and network has been configured

5

Container Name, VRF Name, Server vLAN,

IP subnets for VMs, port-profile name HCS Admin

95


Geo-Redundancy Scenario for HCS on-boarding – Cont’d

Request for new Service through


1

Service Catalog,

deployment model

Execute Golden Templates for UC

Services through HCS/IPA Portal

3

Golden Template, IP address

HCS Admin

through Self

Care Portal

Get details of the VM provisioned


2

VM Name, ip addresses

Note: The VMs needs to be created in two containers (1 in active and 1 standby). It is

recommended that we create two tags say HCS and HCS Geo-Redundant. The

Service offering will need to be executed twice so that the VMs are created in both

the network containers.

96

orchestration of iaas...

Documents